1}, {&(0x7f0000000200)="a62cf6c03a9b0ecea9be53fe3bb43f4ccf47fa9b1e5c72386a8a24bc2b893ac5914106d5f18d415261951e63710eced4f2b6c8873da9115e5c595cb07059b80584ffbcc3f79d72b78e2671b94390641c63827c8333304128cb53a3efdd5d34a60468be3865c376302a6f33ddc2ac0ae9e2625d5fd2b1dd70dc8260f11c31404a810f5f58c085453b96212e23c17de2c573691a282e654cb8a30b5e88bfda25a288ad5ba4f0f76e5eee5deaca5c73502b6f959e7bccfda96997a2990483468211eddbcb9ab5edb110ce2b94e278d1cf271047d4c1d265cb523780176d7ede8f820b5b5bd66d99c00d76", 0xe9, 0x2}], 0x80, &(0x7f0000000380)={[{@rodir}], [{@context={'context', 0x3d, 'system_u'}}]})
ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611)

00:10:25 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x0, 0xfe, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:10:25 executing program 5:
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
setresuid(0x0, 0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r0=>0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r0, 0x0)
setfsuid(0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0xffffffffffffffff, r2, 0x0)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000240)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
mount$9p_unix(&(0x7f0000001180)='./file0\x00', &(0x7f0000001240)='./file0\x00', &(0x7f0000001280), 0x1144a0, &(0x7f0000001700)=ANY=[@ANYBLOB="7472756e733d756e69782c706f73697861636c2c616669643d3078666666666666666666666666663830312c667363616368652c736d61636b6673726f6f743d2a2c736d61636b66736465663de93a9d69e18e253f589e4ceafdfa1b1f036e3d7afa989163788c46a819e9d28a001d2c61707072616973655f747970653d696d617369672c7063723d30303030303030303030303030303030303032352c657569643c", @ANYRESDEC=r4, @ANYBLOB=',seclabel,\x00'])
stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0x0, r5, 0x0)
mount$9p_unix(&(0x7f00000012c0)='./file0\x00', &(0x7f0000001300)='./file0\x00', &(0x7f0000001340), 0x20810, &(0x7f0000001380)={'trans=unix,', {[{@cache_loose}, {@version_u}, {@version_u}, {@cache_loose}, {@dfltuid={'dfltuid', 0x3d, r4}}], [{@dont_hash}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@subj_user={'subj_user', 0x3d, 'afid'}}, {@euid_lt={'euid<', r5}}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]}})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0)={0x0, <r6=>0x0}, &(0x7f0000000140)=0xc)
write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000180)={0x61, 0x7d, 0x1, {{0x0, 0x43, 0x1000, 0xff, {0x0, 0x4, 0x3}, 0x80000000, 0xd7e, 0x0, 0x6, 0x6, 'tmpfs\x00', 0x2, ',^', 0x5, '&+\\#*', 0x3, '(^-'}, 0x9, '!@.,-$,-(', r4, r1, r6}}, 0x61)
unlink(&(0x7f0000000100)='./file0\x00')

00:10:25 executing program 4:
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000000)={0x5, 0x7, 0x2, 0x1000, 0xfc}, 0x14)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000100)={0x3a, 0x33, 0x10, 0x3, 0x3, 0x7c, 0x5, 0xdf, 0x1})
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000200)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f00000001c0)=0xffffffffffffff01)
setsockopt$IP_VS_SO_SET_TIMEOUT(r1, 0x0, 0x48a, &(0x7f0000000140)={0x5, 0x40, 0x3ff}, 0xc)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f00000000c0)={0x18, 0x39, 0x2, 0x1c, 0xb, 0x800000, 0x5, 0x94})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x2b, 0x0, 0x10015, 0x0, 0x7ff})

00:10:25 executing program 3:
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x2)
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000000)=""/156)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>r0, {<r2=>r0}}, './file0\x00'})
ioctl$KDSETMODE(r2, 0x4b3a, 0x0)
r3 = fcntl$dupfd(r0, 0x406, r1)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000100)="0ce98b6388b14b9665a6cae5f37a0329e58e2e359491956542f2e3c9b8fdd187473ecf07181753625c410f003870d80d2aa729ec705bb48957f6f5a63c334a3091c1bd585462f757d7268998eb390716d2335e8cc1d6450c4a48e71fc2407b6c83d1bf1307f976540c9ed8a0c542350158ef6d64e4", 0x75}, {&(0x7f0000000180)="4aa6fb2fe0db576cebd1ca09bf", 0xd}, {&(0x7f00000001c0)="fc6e3f3251ae3f7ed2b2eef6466b38f26c9108aa978eab8c06ca94108d170505deb9469f3edb7ccaa2df2202c4bf8c88a8b642fcce43e69f88297a195f940c15f51ae6b389105e90fb2f3cca7dac57fb8b00135411c4007d6d62dd8a67a40ceb75c4211e7a16579288c0d729ef9d6d156373312fc1c27c75d9cf9141940f33f934a92056493bb6812be02fa450ebea375644b0f0a5c39ff90f181dfbc9629363896ec50d116ade7734572b0dd27e255a20c533f144ce762c0d9ac3f6482c97f052d6c18c4ff6edd1935ae05fb5", 0xcd}, {&(0x7f00000002c0)="5e5e8de64284eaa2c4ec16e4fde54d3fa4f101cba64a75bddc7c8841a1bd8cbf94c681398e748fd77177900e36173e00fb2be9ae926f0f7e9efdb7704c2ef97dc577ef57674d9aea078222d89a469b52f2f22efe77f5c14a136a", 0x5a}, {&(0x7f0000000340)="88fa5791bdeef9ed12c9518b7b854623575ec7e52fc03e5e9e339f2fdfdaeb000ebb80f10b654ad1574e19b1327572f559eece5df19ddab02d63d0429895ead3d0e3bf6c8c3168a9e380199deac1517d64f19a2d2199f1828aac284468a5dec1a486b3", 0x63}], 0x5)
mmap(&(0x7f0000ff8000/0x6000)=nil, 0x6000, 0x2000002, 0x10, r0, 0x5663f000)
close(r1)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCGSERIAL(r4, 0x541e, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=""/9})
setsockopt$inet6_buf(r2, 0x29, 0x2c, &(0x7f0000000500)="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", 0x1000)
ioctl$TIOCMBIS(r3, 0x5416, &(0x7f0000001500)=0x11b)
r5 = openat(r1, &(0x7f0000001540)='./file0\x00', 0x371000, 0x188)
r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001580), 0x4d80, 0x0)
[ 1634.997137] FAULT_INJECTION: forcing a failure.
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, &(0x7f00000015c0)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r7=>0x0}], 0x7, "67985143a694b5"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r6, 0xd000943e, &(0x7f00000025c0)={0x0, r7, "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", "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"})
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1, 0x10, r3, 0x0)
socketpair(0x1, 0xa, 0x0, &(0x7f00000035c0)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
syz_io_uring_submit(r8, 0x0, &(0x7f0000003600)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r9, 0x3, 0x0, 0x4, 0x0, 0x1}, 0x1)

00:10:25 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 14)

[ 1634.997137] name failslab, interval 1, probability 0, space 0, times 0
[ 1635.000385] CPU: 1 PID: 11523 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1635.002141] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1635.004276] Call Trace:
[ 1635.005015]  dump_stack+0x107/0x167
[ 1635.005952]  should_fail.cold+0x5/0xa
[ 1635.006915]  ? v9fs_mount+0x5a/0x8f0
[ 1635.007968]  should_failslab+0x5/0x20
[ 1635.009014]  kmem_cache_alloc_trace+0x55/0x320
[ 1635.009977]  ? v9fs_write_inode+0x60/0x60
00:10:25 executing program 0:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4307, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0)}, 0x102e0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x2001)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = fcntl$dupfd(r1, 0x0, r2)
writev(r3, &(0x7f00000003c0)=[{&(0x7f0000000000)="0000abe02400030021206cda3b5e5672b89aeddb2a535fbd0706006dff0043a9d7cceb232fb81bf74ebdd05b7677", 0x2e}, {&(0x7f0000000700)="7fd41c04550300020000000000000000010046e92ed2616f72657d044129471d4fd47924fd0900e09e00", 0x2a}], 0x2)
r4 = openat(r3, &(0x7f0000000180)='./file1\x00', 0x404000, 0x21)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000), 0x100000)
socket$inet6_udplite(0xa, 0x2, 0x88)
signalfd(r4, &(0x7f0000000100)={[0x7f]}, 0x8)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x10, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r5, &(0x7f00000000c0)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x8002)
socket$inet6_udplite(0xa, 0x2, 0x88)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r7, 0x0, r6, 0x0, 0x10001, 0x0)
prlimit64(0x0, 0x9, &(0x7f00000017c0), 0x0)
getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x6, 0x0, 0x3f, 0x8, 0x0, 0x4, 0x11000, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x200, 0x1, @perf_config_ext={0x5, 0x2}, 0x18440, 0x100000000, 0xff, 0x1, 0x1000, 0xffffffc1, 0xa69, 0x0, 0x1, 0x0, 0xf8}, 0x0, 0x7, r4, 0xb)

[ 1635.010845]  v9fs_mount+0x5a/0x8f0
[ 1635.011755]  ? v9fs_write_inode+0x60/0x60
[ 1635.012631]  legacy_get_tree+0x105/0x220
00:10:25 executing program 7:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x2040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffe1, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$FIOCLEX(r0, 0x5451)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)
fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000001900)={0x0, 0x0, {0x0, @struct, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r2, 0x5000943f, &(0x7f0000000900)={{}, 0x0, 0x4, @inherit={0x60, &(0x7f0000000140)=ANY=[]}, @devid=r3})
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000003080)={r3, "1f97da2d965551153358c180300791a3"})
ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80))
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYBLOB="300000001e00210c00a900"], 0x30}}, 0x0)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804)
getsockopt$bt_sco_SCO_CONNINFO(0xffffffffffffffff, 0x11, 0x2, &(0x7f00000003c0)=""/90, &(0x7f0000000100)=0x5a)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f0000000580)=ANY=[@ANYBLOB=')\x00\x00 ', @ANYRES16, @ANYBLOB="280026bd704a8269462e46dcb4926efb5eb857d81fc94141572126b8eba150bf08098a1a14aad19ac45100b501f01c7da529946c511df08506140b37d0aaab057a20a534d9384aeb2bffcd376ca142ad2080cf0e686b8a6a2be4c78ab6b0c0ccb5535f0907b44df26f338b690a6d6c5cdf0858608a0f7f7ba43e695e61de70f99132446e85e620a18283509c50fb8da5390c4f377b0ad7a07f41a419a457db7933ac0f351ecd119f4b5352105e161b46ee9a09639014a45da9798a1581e0e88bd11e4355173e69311ec9ccd05e5eac91b15de1021325ae6c6523a83bf99073fbe5270b1fce879c2258b869537e852c05c6", @ANYRES32=r4, @ANYRES16], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f00000002c0)={0x4000000d})

[ 1635.013632]  vfs_get_tree+0x8e/0x300
[ 1635.014570]  path_mount+0x1429/0x2120
[ 1635.015379]  ? strncpy_from_user+0x9e/0x470
[ 1635.016319]  ? finish_automount+0xa90/0xa90
[ 1635.017261]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1635.018234]  ? _copy_from_user+0xfb/0x1b0
[ 1635.019112]  __x64_sys_mount+0x282/0x300
[ 1635.019969]  ? copy_mnt_ns+0xa00/0xa00
[ 1635.020825]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1635.021932]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1635.023015]  do_syscall_64+0x33/0x40
[ 1635.023817]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1635.024889] RIP: 0033:0x7f543d208b19
[ 1635.025669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1635.029540] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1635.031142] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1635.032660] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1635.034153] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1635.035653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1635.037151] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:10:25 executing program 4:
lookup_dcookie(0x5, &(0x7f00000000c0)=""/87, 0x57)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000000)={0x38, 0x2a, 0xe, 0x12, 0x6, 0x100, 0x1, 0xfd, 0x1})

[ 1635.074207] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.7'.
00:10:25 executing program 5:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000007c0))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)="6c917d5068143eb537a96c21228cd247", 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x2)
r3 = inotify_init1(0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r4 = socket$netlink(0x10, 0x3, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x1000)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000009c0)=ANY=[@ANYBLOB="010000000100000018000000f0c0142714d83d3059633acbece7795a038b749e383619a0c95598112140882a0692e6e20c62cda297ce32add0857c4b57142ff4120e40ac333ce64dc88e933b7c6b947f311f9d9ce001e6c4f7a74eee91122b3288d2901843714bffc066523058b9b203e41b8bcba1485ac3fbfc55bf220cb4f005bd7a8e4171d304ceaaaf45b6234dc2abc42629277f190352188a5a1db59ba75c45fdfdb319a6b21d6720d7d61463f1f9c8a1", @ANYRES32, @ANYRES32=0x0, @ANYRES32=r5, @ANYBLOB="6c6531001ad0c04920d25d4615d3597b56a7e4a68ed38425031f42fca0a326d52db0e7c787aaca8f29bdd24f613899018038f56cebcc7b10a798bdde7df352dff911692f69bb288e05e06bcc839b65f136a9f942cc2398c0dae77f6dee5542e86dd051fc61392c1487ce9fc0ef0507fb43a9fa940dbc17409c0b38496cff64c07e8f10671df8b53437499410329a5804a2ae961f61d46cbfb700f90a970fec4490bab7894e1ac6645248931923f69999b5306bd89231dbc05e67d2c356d7c2c7a0a5d6f47295f612052f07c77c24f4002484376d35b2886ac10f93"])
r6 = fcntl$dupfd(r4, 0x0, r4)
lseek(r0, 0x4202, 0x3)
sendmmsg$inet6(r6, &(0x7f0000003dc0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000000c0)='6', 0x1}], 0x1}}, {{&(0x7f00000002c0)={0xa, 0x0, 0x0, @local}, 0x1c, &(0x7f0000001b00)=[{&(0x7f0000000780)='7', 0x1}], 0x1}}], 0x2, 0x0)
inotify_add_watch(r3, &(0x7f0000000040)='.\x00', 0x2000003)
sendfile(r1, r2, 0x0, 0x100000001)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000080))
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)

00:10:25 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x0, 0xfe, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:10:25 executing program 1:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_readv(r0, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000000)=<r1=>0x0)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8914, &(0x7f0000000540)={'veth0_macvtap\x00'})
write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[], 0xfdef)
r4 = creat(&(0x7f0000000180)='./file0\x00', 0x1ea)
timer_create(0x4, &(0x7f00000004c0)={0x0, 0x26, 0x0, @thr={&(0x7f00000002c0)="1c2ae4a0e87cc96c0d470479ec81f1eaa928bb04fccb0596a239709317e3c832bce0e2e3febdf391b18bbd8952b277912e5cd32b1203e23d0d9b3eda92428ddfcf3cd4ce2c5365c86e231594384036c648ab2b7bd622c23ecdc7af30a21b62eca5286840335a8702c2fbe2669b02a6a05da9a8e5a13b158e9acc1f413a74d482df9c67ee75ac7cc58e2c1d9481b09ba880404922452426b9bb8f390af7aa070f7ffeb5088be308f1268a8826013d2291ceb6f10b6aa6901ccf6bd6fc0e79302e1a2f5e23ec013466c4d9a89d1d9a65830e046f543f73ffd8ed", &(0x7f00000003c0)="9ffbf227ac974233c0abcebf5c0cf2d9ff33ad068958a6634aa59dd930548efe5e83248f236555f912c853cb8c0e317ef4f57192ca7c43b2abb5a733d99d258b164d56122cbfd5ba876b2cd4c0a39a84c91fa35dc4c8f9675c3c764942d58b3c909a723738aee8275d47d00cb1f20a764d5943aeabeeec69450d1c0af15cf4412fa87f2012c69cd5bd7c70f31a4d7a6282e9c5d634a75a991b05d9980606d26e954862c12a287234133aba96602707c5fad36d0ad93753b473b741f54a333b87ce60974b5fe982e1"}}, &(0x7f0000000500))
pwrite64(r4, &(0x7f00000001c0)="c1fce0ee05e197e8e495d3c1d57e08a03489ff609063fe60d910e1a1e03f1d098d232cc25b76a01543945a1f4b736c0aee0692835421290adc7dc8ffccc943268ff68678b6a351d416a4e403224f49173eebbe02352bf6ec67d55c60d1358aa7b433c0ccd49a0234bb6cc61807bb56b7b2f6558ac3305e5694dda442df2c17fb4119af01e5e2a5f937c9141167c4759c56778ae3c18c526d57abfe751013d1122f52c1e1ab03adb5d72463f4074f414fbf5844b492577e4b506486493182c74f7242068b146c", 0xc6, 0x180)
ftruncate(r2, 0x2)
write$tun(r2, &(0x7f0000000000)={@val={0x0, 0x1c}, @val={0x0, 0x80, 0x22, 0x2, 0x3f, 0x7}, @x25={0x0, 0x7, 0x17, "5fc0bb600bf41603d7474c3e8c5acf3e25aa620b6ba0fda127397e0edc0a563f65db0c23ef6e0a59ccb17f45118fc26dc1f26e065f3d456c62fb7dd27ab7"}}, 0x4f)
waitid(0x0, r1, &(0x7f0000000040), 0x2, &(0x7f00000000c0))

[ 1635.128584] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1635.130219] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1635.133062] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1635.159666] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.7'.
00:10:41 executing program 3:
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x620e, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1000}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x3, 0x20010, r1, 0x8000000)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x200080}, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ff6000/0x4000)=nil, 0x4000, 0x1, 0x4010, r1, 0x8000000)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff4000/0x4000)=nil, 0x4000, 0x0, 0x13, r1, 0x8000000)
syz_io_uring_submit(r4, r3, &(0x7f0000000340)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x3, 0x8, 0x0, 0x2, 0x0, 0x40, 0x0, 0x7, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000080), 0x4}, 0x40, 0x0, 0xf87, 0x5, 0x400, 0x1, 0x2, 0x0, 0x8, 0x0, 0x2}, 0x0, 0xf, r0, 0x2)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x242e2, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

00:10:41 executing program 0:
unshare(0x28020600)
r0 = semget$private(0x0, 0x4, 0x100)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
semget$private(0x0, 0x3, 0x1)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="030000000008000000000076de76c4e4f082c1048dcc221e6b31f3c8f0cb3949f8e9ccfd62c5cdb805bec7163e36a1741a381ab25a3d352947291fd9f47eef68869bd87eb9f92a2e3dbfd87e33bfa61489c7740f139df0e8ab708c"])
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r1)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x280000, 0x0)
ioctl$SCSI_IOCTL_GET_IDLUN(r2, 0x5382, &(0x7f0000000080))
semctl$SEM_INFO(r0, 0x3, 0x13, &(0x7f0000000000)=""/35)
semget$private(0x0, 0x88d910663c72e37e, 0x41)
semctl$IPC_RMID(r0, 0x0, 0x0)
unshare(0x48020200)

00:10:41 executing program 1:
r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/pid_for_children\x00')
setns(r0, 0x2000000)
ioctl$FICLONE(r0, 0x40049409, r0)

00:10:41 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r1 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r2, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
pidfd_getfd(r1, r1, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x7)
ioctl$F2FS_IOC_PRECACHE_EXTENTS(r3, 0xf50f, 0x0)
recvfrom$inet6(r0, &(0x7f0000001700)=""/4099, 0xffffff3e, 0xcd04, 0x0, 0xfffffffffffffed7)
r4 = fcntl$getown(0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x0, 0x40, 0x6, 0x2, 0x0, 0x8001, 0xc0008, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3f, 0x1, @perf_config_ext={0xfe, 0x9}, 0x50, 0x8, 0x5c752b9f, 0x0, 0x2d520263, 0xfff, 0x8001, 0x0, 0x9, 0x0, 0x3ff}, r4, 0xa, 0xffffffffffffffff, 0x8)

00:10:41 executing program 4:
semtimedop(0x0, &(0x7f0000000340)=[{0x3, 0x9, 0x800}, {0x3, 0x4, 0x800}, {0x4, 0x3}, {0x4, 0x800, 0x800}, {0x0, 0x6, 0x1000}, {0x2, 0xff}, {0x4, 0x8, 0x1800}, {0x2, 0x62}, {0x1, 0x7fff}, {0x1, 0x3, 0x800}], 0xa, &(0x7f0000000dc0)={0x0, 0x3938700})
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$RTC_UIE_ON(r1, 0x7003)
r2 = pidfd_open(0x0, 0x0)
preadv(r2, &(0x7f00000004c0)=[{&(0x7f00000000c0)=""/54, 0x36}, {&(0x7f0000000100)=""/139, 0x8b}, {&(0x7f00000001c0)=""/151, 0x97}, {&(0x7f0000000280)=""/186, 0xba}, {&(0x7f0000000480)=""/5, 0x5}, {&(0x7f0000000380)=""/155, 0x9b}, {&(0x7f0000000440)=""/8, 0x8}, {&(0x7f0000000480)}], 0x8, 0x1000, 0x0)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000000)={0x13, 0x6, 0x6, 0xe, 0xb, 0x400, 0x0, 0xc3})
write$binfmt_elf64(r2, &(0x7f0000000540)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x6, 0x1f, 0x80, 0xbc, 0x2, 0x6, 0x5, 0x3b2, 0x40, 0x367, 0x2, 0xa2, 0x38, 0x2, 0x14, 0x4, 0x4}, [{0x6, 0x3f, 0x1, 0x10000, 0x3bea, 0x5, 0x8001, 0x400}], "4b3bd5263e7fb1a37c8ccf8e57e70ce8d9d801aa03890901cfc661308033ca2808001ffb1893bc1548068cea306049abcb7b1d50fc428438e9618253e6def18d7f4a71423d1795a4694907ab7c387dffd46b5ae5631cf91379e09dc58552619a7a62c4fb640b12ebd413cc4f96d29cb02f40d5873c515a190acbd92eb7854203ce4bb6e3466ce3780331759ba0acd91781184ae09b113b9d1ef933fde664a4e7e3d422888e5fea21a4a9c05495aaf97ebab71c0dde5c4c0983af58a8aee291c1a42a7ad5c8131d3587a929b2", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x844)
dup2(r0, r0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:10:41 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:10:41 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0xa}, 0x0, 0x0, 0xfffffffc, 0x0, 0x81}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x98a)
r1 = syz_open_dev$mouse(&(0x7f0000000440), 0x7ff, 0x100)
perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x3f, 0x6f, 0x5, 0x3, 0x0, 0x7ff, 0x80, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x6, 0x3}, 0x800, 0x7, 0x0, 0x1, 0xf52a, 0x8, 0x7, 0x0, 0x9}, 0x0, 0xffffffffffffffff, r1, 0x2)
fsetxattr$security_selinux(r0, &(0x7f00000005c0), &(0x7f0000000600)='system_u:object_r:syslog_conf_t:s0\x00', 0x23, 0x3)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x6c, 0x22, 0x100, 0x70bd2b, 0x25dfdbfe, {0x1d}, [@generic="f9a02146a6f2dbac9af3f41207150a56f592c07b834b0e98be3e398c578449523e03970ece7001b730a28411bca8e56b700063a03b96971b2d346a1fcba3fb1a8a0cbcf078cf950c6a0960735e8d5246bc546d363e55af"]}, 0x6c}}, 0x20008000)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r3 = getpgrp(0x0)
pidfd_open(r3, 0x0)
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000300), 0x800, 0x0)
ioctl$FICLONERANGE(r4, 0x4020940d, &(0x7f0000000380)={{r0}, 0x0, 0xc1, 0x7})
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x0, 0xff})
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000640)=ANY=[@ANYBLOB]})
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000480), 0x10002, 0x0)
ioctl$CDROM_LAST_WRITTEN(r5, 0x5395, &(0x7f00000004c0))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x1, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000500)=""/139, 0x8b}], 0x1, 0x10, 0x1}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x81)
unshare(0x48020200)

00:10:41 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 15)

[ 1650.283243] FAULT_INJECTION: forcing a failure.
[ 1650.283243] name failslab, interval 1, probability 0, space 0, times 0
[ 1650.285939] CPU: 1 PID: 11565 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1650.287412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1650.289168] Call Trace:
[ 1650.289725]  dump_stack+0x107/0x167
[ 1650.290499]  should_fail.cold+0x5/0xa
[ 1650.291299]  ? create_object.isra.0+0x3a/0xa20
[ 1650.292283]  should_failslab+0x5/0x20
[ 1650.293081]  kmem_cache_alloc+0x5b/0x310
[ 1650.293939]  ? cred_has_capability.isra.0+0x152/0x2b0
[ 1650.295029]  create_object.isra.0+0x3a/0xa20
[ 1650.295956]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1650.297028]  kmem_cache_alloc_trace+0x151/0x320
[ 1650.298013]  ? v9fs_write_inode+0x60/0x60
[ 1650.298864]  v9fs_mount+0x5a/0x8f0
[ 1650.299610]  ? v9fs_write_inode+0x60/0x60
[ 1650.300495]  legacy_get_tree+0x105/0x220
[ 1650.301352]  vfs_get_tree+0x8e/0x300
[ 1650.302130]  path_mount+0x1429/0x2120
[ 1650.302932]  ? strncpy_from_user+0x9e/0x470
[ 1650.303851]  ? finish_automount+0xa90/0xa90
[ 1650.304762]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1650.305729]  ? _copy_from_user+0xfb/0x1b0
[ 1650.306608]  __x64_sys_mount+0x282/0x300
[ 1650.307456]  ? copy_mnt_ns+0xa00/0xa00
[ 1650.308273]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1650.309385]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1650.310461]  do_syscall_64+0x33/0x40
[ 1650.311245]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1650.312396] RIP: 0033:0x7f543d208b19
[ 1650.313178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1650.317063] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1650.318657] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1650.320162] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1650.321666] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1650.323159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1650.324664] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1650.326477] audit: type=1326 audit(1747095041.071:663): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11564 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:10:41 executing program 1:
r0 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000200)=<r2=>0x0)
io_uring_enter(r0, 0x3487, 0xe627, 0x5, &(0x7f0000000000)={[0x800]}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x6}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)

[ 1650.336361] audit: type=1326 audit(1747095041.072:664): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11564 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:10:41 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0xa, 0x10035, 0x0, 0x802, 0x0, 0x0, 0xfffffffffffffffe})

00:10:56 executing program 1:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {0x6}}, './file0\x00'})
sendmsg$NL80211_CMD_SET_WDS_PEER(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x90)
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r2, 0x2ff, 0x70bd28, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r3)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000004c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_NOACK_MAP(r1, 0x0, 0x24004040)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r6=>0x0})
r7 = socket$inet(0x2, 0x1, 0x0)
getsockopt$inet_int(r7, 0x0, 0x16, 0x0, &(0x7f0000000840))
sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x28, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0)
syz_80211_join_ibss(&(0x7f0000000080)='wlan1\x00', 0x0, 0x0, 0x0)

00:10:56 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:10:56 executing program 5:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x100000001, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000080)={0x0, 0xffffffffffffffa1, 0x1, 0x80, 0x6, 0x8, 0x0, 0x2, 0x90002, 0x5, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_bp={&(0x7f0000000000), 0x2}, 0x3844, 0x2, 0xfffff837, 0x7, 0x7, 0x1, 0x101, 0x0, 0xf0c, 0x0, 0x7fffffff}, 0xffffffffffffffff, 0xf, r0, 0x25ce632be251b9a9)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='fdinfo/4\x00')
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x2400, 0xffffffffffffffe1)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYBLOB="24d31fd79000210c00000000000000000000000002006acc59ee7500020c0000c053ea3664bc82a0f5723b2717cf76990b82b7ebf9c0f1609875f244a9323e42cc082f9c3053c44646f34e5d8e4bd0124f81641546adac9ccf983ac218dc418fd758508ce892c90439d6533acf68fd9536928eede0564e4c5542b1cd5fde0dd406aaa3b24dbf7029a27b46beb96bc0a38f824bca8d4c46e81d3f29ce7f114051d9cf0da3bb6daf6b30ed1835d43d364a78b56de47f7a20bebba55617b28f304cc1f61ffa1aa8926aca92cface23c72bd7053b02d714c50dba2dc695410d71e60a3eed95411fea3ac41492e455676b6"], 0x24}}, 0x0)
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, 0xffffffffffffffff, 0x0)
r4 = perf_event_open$cgroup(&(0x7f0000000300)={0x5, 0x80, 0x2, 0x4, 0x80, 0x1, 0x0, 0x0, 0x90008, 0x9, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2fd, 0x1, @perf_bp={&(0x7f00000002c0), 0x4}, 0x2000, 0x8a34, 0x9, 0x5, 0x4, 0x7ff, 0x81, 0x0, 0x1, 0x0, 0x6}, r2, 0x8, r2, 0x6)
sendfile(r4, r0, &(0x7f0000000380)=0x961, 0x80000000)
ptrace$getregset(0x4204, r3, 0x0, 0x0)
syz_open_procfs(r3, &(0x7f0000000040)='timerslack_ns\x00')

[ 1665.667553] audit: type=1326 audit(1747095056.445:665): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11590 comm="syz-executor.6" exe="/syz-executor.6" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x0
00:10:56 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000440)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
mkdirat(0xffffffffffffffff, &(0x7f0000000480)='./file0\x00', 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, 0x0)
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x440a82, 0x0)
mkdirat(r0, &(0x7f00000001c0)='./file3\x00', 0x130)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x6}}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105140, 0x20)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
setxattr$security_selinux(&(0x7f0000000240)='./file2\x00', &(0x7f0000000280), &(0x7f0000000300)='system_u:object_r:hald_var_lib_t:s0\x00', 0x24, 0x0)
ioctl$LOOP_SET_STATUS(r2, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x4000, @fd_index=0x4, 0x0, 0x0}, 0x0)
r3 = openat$incfs(r0, &(0x7f0000000340)='.log\x00', 0x20000, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, r3, &(0x7f0000000380)={0x200, 0x100, 0x5}, &(0x7f00000003c0)='./file0\x00', 0x18, 0x0, 0x12345}, 0x1)
openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x48a000, 0x8)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0x100000001)

00:10:56 executing program 7:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)={0x28, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000180)={&(0x7f0000000380)={0x50, r2, 0x10, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xffffffb2, 0x26}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x15f4}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x585}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x4}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3800}]}, 0x50}, 0x1, 0x0, 0x0, 0x40011}, 0x4000001)
io_setup(0x9, &(0x7f00000001c0)=<r5=>0x0)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
io_submit(r5, 0x1, &(0x7f0000000800)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, r6, &(0x7f0000000240)='f', 0x1}])
r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r7, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r7}, './file0\x00'})
ioctl$FS_IOC_FIEMAP(r7, 0xc020660b, &(0x7f0000000000)={0x3, 0x20, 0x0, 0xfffffffb, 0x2, [{0x33b, 0x401, 0x20, '\x00', 0x400}, {0x8, 0x6, 0xcf5, '\x00', 0x100}]})

00:10:56 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 16)

00:10:56 executing program 4:
pwrite64(0xffffffffffffffff, &(0x7f00000002c0)="5d611764a3ab9b769d6f08ca", 0xc, 0x7)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000300), 0x200, 0x0)
ioctl$RTC_UIE_ON(r1, 0x7003)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000000c0))
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x19, 0x37, 0xf, 0xb, 0x3, 0x80000001, 0x3, 0x97, 0xffffffffffffffff})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r2, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)
ioctl$RTC_AIE_ON(r2, 0x7001)

00:10:56 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x142, 0x0)
accept4(0xffffffffffffffff, &(0x7f0000000340)=@isdn, &(0x7f0000000000)=0x80, 0x400)
r1 = socket$inet(0x2, 0x80000, 0x7ff)
setxattr$trusted_overlay_opaque(&(0x7f0000000100)='./file2\x00', &(0x7f00000001c0), &(0x7f0000000300), 0x2, 0x3)
close(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x44300, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10)
sendfile(r0, r2, 0x0, 0x100000001)

[ 1665.725439] loop0: detected capacity change from 0 to 41948160
[ 1665.727358] FAULT_INJECTION: forcing a failure.
[ 1665.727358] name failslab, interval 1, probability 0, space 0, times 0
[ 1665.728855] CPU: 0 PID: 11603 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1665.729713] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1665.730748] Call Trace:
[ 1665.731079]  dump_stack+0x107/0x167
[ 1665.731531]  should_fail.cold+0x5/0xa
[ 1665.732013]  should_failslab+0x5/0x20
[ 1665.732484]  __kmalloc_track_caller+0x79/0x370
[ 1665.733052]  ? v9fs_session_init+0xa7/0x1680
[ 1665.733597]  ? kernel_text_address+0xf2/0x120
[ 1665.734160]  kstrdup+0x36/0x70
[ 1665.734560]  v9fs_session_init+0xa7/0x1680
[ 1665.735093]  ? lock_release+0x680/0x680
[ 1665.735588]  ? find_held_lock+0x2c/0x110
[ 1665.736104]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1665.736709]  ? v9fs_show_options+0x690/0x690
[ 1665.737270]  ? trace_hardirqs_on+0x5b/0x180
[ 1665.737812]  ? kasan_unpoison_shadow+0x33/0x50
[ 1665.738384]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1665.739021]  v9fs_mount+0x79/0x8f0
[ 1665.739463]  ? v9fs_write_inode+0x60/0x60
[ 1665.740271]  legacy_get_tree+0x105/0x220
[ 1665.740786]  vfs_get_tree+0x8e/0x300
[ 1665.741252]  path_mount+0x1429/0x2120
[ 1665.741735]  ? strncpy_from_user+0x9e/0x470
[ 1665.742272]  ? finish_automount+0xa90/0xa90
[ 1665.742810]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1665.743388]  ? _copy_from_user+0xfb/0x1b0
[ 1665.743901]  __x64_sys_mount+0x282/0x300
[ 1665.744423]  ? copy_mnt_ns+0xa00/0xa00
[ 1665.744920]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1665.745587]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1665.746228]  do_syscall_64+0x33/0x40
[ 1665.746688]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1665.747336] RIP: 0033:0x7f543d208b19
[ 1665.747854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1665.750132] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1665.751070] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1665.751977] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1665.752875] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1665.753762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1665.754658] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:10:56 executing program 1:
r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_mount_image$msdos(&(0x7f0000001080), &(0x7f00000010c0)='./file0\x00', 0x2, 0x7, &(0x7f0000001680)=[{&(0x7f0000001e00)="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", 0x1000, 0x9}, {&(0x7f0000001100)="162365795dd0403aa4522975e26812cd38ddd21e43f88df7b73d6b2ed2a61da8735433f7a0f81f094ebf073b352af8c5962538d3df5187c557b66f99be981490c599d9fea9e294c455c47fdfb551bc439a54b88a32167b10", 0x58, 0xfffffffeffffffff}, {&(0x7f0000001180)="72729aebdd956870893fd2d43870c33bdd426eef473d00d4aa0a8cf7523d4d4b70ab3fc065a81d1fb6d1c2d29316c412706ae0946da260a3f5e6bbe30bb92f1fa135a4aef7d8374117b28b7c6aec69e7c18ef3388fa3bc0e91694c5974afd99224736061c24a137d07e7a31fc6a74b7956c43950f5c4c4b6852b4ff8decb413e1aeb160f16a06f04c0cb3c070d76c43f3955959a0d", 0x95, 0x5}, {&(0x7f0000001240)="301c3a64bc6d020e76b15b0dfb3fc887d480330f3211e69f3dfe3ca48c5b71070adabfe8db3713d2f213ba8e7abaf99998e4b50957e69d32de286b6a2e58798505c32e653309255171082d360558d482f1098081e11d6eba435f1d7c8934a61b458318076ee3da9818d6a77f3d0a7ee9f2a2eb09f149fca492b38dd61c590694206c930656c00a85dbb7f9e1870eadde2b463a8d0430e5d17fe57fb14dda24be1d121d43f23de8e65d94ea317c9050d55ccae39fdcddf7ea6b9db46ce892ae4bab4a68e203380fcfd34471627d11f82abcde17e68d32c1b00ba259415f7e", 0xde, 0x5f}, {&(0x7f0000001340)="f7546b182257eb07252f84b8e8916d55d4aad5469b9c78dec964482e5437c4f74b642018cbe70b96d10b6b68ee84d021c1c7d57a625656f8a1947ac5ce1a57fb7ac9fc48891bb41442086ccf2bf8c9e6ceb5e93af6ce2c9e116651c070da5cc2bfb9140ccc0bca4ae3aa212d8cae615015ba87b417fadfd5da072ce6fa3eedaff4e8b147f16b9db8e87e60eb26b1dc688fd01313ae10b19c9165f61f0091411cade17294115283fe59b791cbd93612914a", 0xb1, 0x5}, {&(0x7f0000001480)="6ff0df138cad137996d5a9fe90022ce102b766d5ce245464f7a6a834c2c85ca618d660551276c9d580d30e3dacba67e6bb6f8646257227560dd4191c6d0a084b6709298892ccf2275828c110132250b3e33bf5a854ac19ef5457f760fedd3af6c1544f25ed8c3f652e0cebedf82619e3cb334c0abd4870549b0772b28117418045ab9e8fdb4fe5926cd444dc6105751d9fec0ed08a076b4dbf3f7f8273d91493e0834787ba4208df873ebaa90633d63915d5a68a1505746ad15df5f5334deafb67", 0xc1, 0x8}, {&(0x7f0000001580)="0271c882f3e081b4550d165ff7e1de2aad308d3ea26373a793a7673b223a84ce7b495e8ecda7aa4a80476e4d069ec42044184ba0ed8ad888c2871cc4d4ff88839a786973c150c798caf072c031fa6756d8b3513333371d72641bbfd5b8a8bd6d3a9e25e63e41b14e4804e0519e0e1b5c880da92b97b24f87524e75dc062ff7020e07b6a02b1ae83491a1972db9779e720dd8d90eeb37e16dc5007fe7e63d9276843e8874f14eb296c1a4f42b03e577ab02e278d380a771c52d33154f42cc1743990c69f0c37941fd5e5d912bc29dfff135c516a45a82d3", 0xd7, 0x7d68}], 0x800, &(0x7f0000001900)=ANY=[@ANYBLOB='dmask=00000000000000000000011,nodots,nfs=nostale_ro,nodots,nodots,dots,uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c6e6f646f74732c731ab1a83ee31a4e1319c1426d61636b01736465663d002c00175a0077b5b0ff769334ec2152846584545cfa46bbac00e7f0dd0000000000000000000000a2a0f7d66cfe1faa5b3f8afb439ed0f606f0c506e58794104c"])
ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f00000017c0)=<r4=>0x0)
ioctl$BTRFS_IOC_WAIT_SYNC(r3, 0x40089416, &(0x7f0000001800)=r4)
r5 = dup2(r1, r2)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, 0x8010, r1, 0x8000000)
syz_io_uring_submit(r7, 0x0, &(0x7f0000001040)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x8, &(0x7f0000001000)={0x77359400}, 0x1, 0x0, 0x1}, 0x6)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r6, 0x941c, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x11, r5, 0x0)
ioctl(r2, 0x400, &(0x7f0000000000)="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")

[ 1665.759431] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s
[ 1665.760635] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 1665.761532] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 1665.762342] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 08 00
[ 1665.763263] print_req_error: 290 callbacks suppressed
[ 1665.763274] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 0
[ 1665.765417] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 1665.766116] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1665.767342] buffer_io_error: 294 callbacks suppressed
[ 1665.767349] Buffer I/O error on dev sr0, logical block 0, async page read
[ 1665.768939] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 1665.769603] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1665.770825] Buffer I/O error on dev sr0, logical block 1, async page read
[ 1665.771734] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 1665.772422] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1665.773626] Buffer I/O error on dev sr0, logical block 2, async page read
[ 1665.774565] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 1665.775243] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1665.776455] Buffer I/O error on dev sr0, logical block 3, async page read
[ 1665.795588] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s
[ 1665.796778] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 1665.797717] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 1665.798507] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 01 00 00 01 00
[ 1665.799416] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 0
[ 1665.800618] Buffer I/O error on dev sr0, logical block 4, async page read
[ 1665.801467] Buffer I/O error on dev sr0, logical block 5, async page read
[ 1665.802319] Buffer I/O error on dev sr0, logical block 6, async page read
[ 1665.803167] Buffer I/O error on dev sr0, logical block 7, async page read
00:10:56 executing program 5:
fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f0000000100)=0x3)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[], 0xfdef)
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0)
fallocate(r1, 0x10, 0x2103, 0x20fdef)
writev(r0, &(0x7f0000000340)=[{&(0x7f00000000c0)='b', 0x1}], 0x1)
syz_io_uring_setup(0x3, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000540)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x6003, @fd_index=0x4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd_index=0x1, 0x0, 0x0, 0x8, 0x8, 0x1, {0x0, 0x0, r0}}, 0x4)
fallocate(r0, 0x8, 0x0, 0x8000)

00:10:56 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x80800, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000300)={0x26, 0x35, 0xc, 0xa, 0x5, 0x33, 0x5, 0xd1, 0x1})
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000100))
ioctl$RTC_EPOCH_SET(r2, 0x4008700e, 0x401)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:10:56 executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
listen(r0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0xffff8001, 0x4, 0x5b8e, 0x85, 0x65a3f682})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
accept4(r0, &(0x7f0000000240)=@vsock={0x28, 0x0, 0x0, @my}, 0x0, 0x0)

[ 1665.855936] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s
[ 1665.858269] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 1665.859738] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 1665.861165] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 08 00
[ 1665.862790] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 0
00:10:56 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 17)

00:10:56 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
openat(r0, &(0x7f0000000040)='./file0\x00', 0x359082, 0x105)
execveat(r0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000380)=[&(0x7f0000000140)=']\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='security.capability\x00'], 0x0, 0x1000)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000440), 0x4)
fallocate(0xffffffffffffffff, 0x40, 0x80000000, 0x200)
ftruncate(r0, 0x1000003)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, &(0x7f00000001c0)=0x2, 0x4)
fcntl$dupfd(0xffffffffffffffff, 0x0, r2)
openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x80000000)
r3 = perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x3, 0x0, 0x8000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_FSSETXATTR(r3, 0x40086602, &(0x7f0000000000)={0x2, 0x7, 0x3, 0x1004, 0x81})
pipe2(&(0x7f0000000340)={<r4=>0xffffffffffffffff}, 0x4000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0xed14, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[@ANYRES64], 0xfdef)
ioctl$sock_SIOCADDDLCI(r4, 0x8980, &(0x7f0000000100)={'vlan1\x00', 0x8})
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000200)="5bbaa5ea75d0360e40eea549742b2edc50a653be34d8ac85574832c1c5c92d3856205f10ec078a7cd392d949ac6bcebd1318d6a17f6df82a989d6fcd36b717b1a3b5327f52b954a9f9f309f91b41", 0x4e}, {&(0x7f0000000080)="e3d65be569ade0eabb839ca1af983361287adfafa280796949746a2f97c6dcdc0db32a0b1a666dcffbf7bfcfa73078a1f69992093f42", 0x36}], 0x2)

00:10:56 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
openat$incfs(r1, &(0x7f0000000000)='.pending_reads\x00', 0x400000, 0xc1)
write$binfmt_elf64(r1, &(0x7f0000000280)=ANY=[], 0xfdef)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x660c)
write$binfmt_elf64(r1, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/757], 0x2e5)
clone3(&(0x7f00000005c0)={0x1001000, &(0x7f0000000380), &(0x7f00000003c0), &(0x7f0000000400), {0x40}, &(0x7f0000000440)=""/205, 0xcd, &(0x7f0000000540)=""/8, &(0x7f0000000580)=[0xffffffffffffffff, 0x0], 0x2, {r1}}, 0x58)

[ 1666.007641] FAULT_INJECTION: forcing a failure.
[ 1666.007641] name failslab, interval 1, probability 0, space 0, times 0
[ 1666.010392] CPU: 0 PID: 11633 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1666.011861] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1666.013642] Call Trace:
[ 1666.014208]  dump_stack+0x107/0x167
[ 1666.015001]  should_fail.cold+0x5/0xa
[ 1666.015863]  ? create_object.isra.0+0x3a/0xa20
[ 1666.016847]  should_failslab+0x5/0x20
[ 1666.017662]  kmem_cache_alloc+0x5b/0x310
[ 1666.018527]  create_object.isra.0+0x3a/0xa20
[ 1666.019464]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1666.020555]  __kmalloc_track_caller+0x177/0x370
[ 1666.021544]  ? v9fs_session_init+0xa7/0x1680
[ 1666.022486]  ? kernel_text_address+0xf2/0x120
[ 1666.023449]  kstrdup+0x36/0x70
[ 1666.024139]  v9fs_session_init+0xa7/0x1680
[ 1666.025038]  ? lock_release+0x680/0x680
[ 1666.025881]  ? find_held_lock+0x2c/0x110
[ 1666.026760]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1666.027777]  ? v9fs_show_options+0x690/0x690
[ 1666.028777]  ? trace_hardirqs_on+0x5b/0x180
[ 1666.029801]  ? kasan_unpoison_shadow+0x33/0x50
[ 1666.030768]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1666.031844]  v9fs_mount+0x79/0x8f0
[ 1666.032619]  ? v9fs_write_inode+0x60/0x60
[ 1666.033505]  legacy_get_tree+0x105/0x220
[ 1666.034365]  vfs_get_tree+0x8e/0x300
[ 1666.035124]  path_mount+0x1429/0x2120
[ 1666.035946]  ? strncpy_from_user+0x9e/0x470
[ 1666.036869]  ? finish_automount+0xa90/0xa90
[ 1666.037792]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1666.038776]  ? _copy_from_user+0xfb/0x1b0
[ 1666.039655]  __x64_sys_mount+0x282/0x300
[ 1666.040528]  ? copy_mnt_ns+0xa00/0xa00
[ 1666.041366]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1666.042480]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1666.043801]  do_syscall_64+0x33/0x40
[ 1666.044602]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1666.045689] RIP: 0033:0x7f543d208b19
[ 1666.046479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1666.050410] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1666.052026] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1666.053544] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1666.055046] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1666.056576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1666.058078] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:10:56 executing program 5:
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'interleave', '=static', @void}}}, {@mpol={'mpol', 0x3d, {'default', '=static', @val={0x3a, [0x3a, 0x3a, 0x2c, 0x0]}}}}]})
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x40, 0x0)

00:10:56 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
ioctl$RTC_UIE_ON(r1, 0x7003)

[ 1666.085014] tmpfs: Bad value for 'mpol'
[ 1666.092518] tmpfs: Bad value for 'mpol'
00:11:11 executing program 1:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = creat(&(0x7f0000000000)='./file2\x00', 0x0)
preadv2(r0, &(0x7f0000000540)=[{&(0x7f0000000180)=""/68, 0x44}, {&(0x7f0000000200)=""/120, 0x78}, {&(0x7f00000002c0)=""/21, 0x15}, {&(0x7f0000000300)=""/35, 0x23}, {&(0x7f0000000440)=""/211, 0xd3}], 0x5, 0x5, 0x0, 0x1)
fcntl$setlease(r1, 0x400, 0x1)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
r3 = creat(&(0x7f0000000080)='./file2\x00', 0x3e)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18}, './file0\x00'})
pwrite64(0xffffffffffffffff, &(0x7f0000000100)="82a62d5676cd292aab242487dbbc189abfc878851c", 0x15, 0x0)
r4 = io_uring_setup(0x62c, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x190, 0x0, r3})
io_uring_register$IORING_REGISTER_FILES(r4, 0x9, &(0x7f0000000d00), 0x0)
lremovexattr(&(0x7f00000000c0)='./file2\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="73656375726974792e00231a2038bf08eb85bfd6456c4489492e34f8e6392b6b6f2e52d3ddaabcdcd41f1f521230a18a98a6dc556f972cc9d8d1f980a7f0804ee1bb6fcdc538cff01af8c282ef4d372517f2930ed00179386f0ae0c19344519574646719e064f0c2e2db2ec6c3e487cd3d2f67844210d9e8ee9f96ac8fb33b684a8ebaba482cd524923f8b1588a90c35d9d89d99faac6d04c402c618e403a223e8244052696db39f4073000000000000"])
ioctl$TUNSETQUEUE(r2, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r5 = fork()
r6 = gettid()
kcmp$KCMP_EPOLL_TFD(r6, r6, 0x7, 0xffffffffffffffff, 0x0)
ptrace$getregset(0x4204, r6, 0x0, 0x0)
ptrace(0x4207, r6)
ptrace(0x10, r5)
ptrace$peeksig(0x4209, r5, &(0x7f0000000040), &(0x7f0000000180))

00:11:11 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
readahead(0xffffffffffffffff, 0x0, 0x6)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x8000)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/94, 0x5e}], 0x1, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/fscreate\x00', 0x2, 0x0)
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)="ee", 0x1}], 0x100000000000037f)
openat$incfs(0xffffffffffffffff, 0x0, 0x10d080, 0x23)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/slabinfo\x00', 0x0, 0x0)
fork()

00:11:11 executing program 3:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
flock(r0, 0x8)
ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7002)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x20c00, 0x105)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4307, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000040)={0x4, 0xc1, 0xb4700000, 0x3ff, 0x73cf})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd=r1, 0x3, {0x0, r1}, 0x2, 0x4, 0x0, {0x0, 0x0, r3}}, 0xffffffff)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r2, 0x40042409, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000200)=ANY=[@ANYBLOB="dc6000"/12, @ANYRES32=r2, @ANYBLOB='\t\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
ioctl$BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, &(0x7f00000004c0)={{}, "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"})
r4 = socket$inet(0x2, 0x2, 0x0)
openat$hpet(0xffffffffffffff9c, &(0x7f0000000280), 0x20040, 0x0)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000001780)={{0x2, 0x0, @remote}, {0x308}, 0xac1414fb, {0x2, 0x0, @broadcast}})
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
lseek(0xffffffffffffffff, 0x7, 0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000000180)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@noacl}]})
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0x9, 0xaec3, {}, 0x81, 0x8, 0xe476e2f6038c1d95}, 0xffffffb2)

00:11:11 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:11:11 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 18)

00:11:11 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x6, 0x12418, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
recvmmsg$unix(r0, &(0x7f0000000f40)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)=""/144, 0x90}, {&(0x7f0000000400)=""/8, 0x8}, {&(0x7f0000000500)=""/247, 0xf7}], 0x3, &(0x7f0000001040)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="00834308e30b4aae2b00000001000000cb0a2af7fdc6c238f2ea1a986401000000b939a895ed62ba25aa72767f98d5ef52ff8fcb73b8ec919ca62c5d613ab617b2a12dc75e7fdc5af4f4e86c873dcb5960616728b59e55cab3552d9bc2b3b315f2c75bc689fa7894604e5bc8a7408114e8d91c488aae94da40e84733648c43d38ef99fa5d0c213aa41f62b8731cb13266767fc1cb15a2dbed588dd579f9b6ac9bef0f08c1bcec6ea00cb16b41dd3ea18a8181103e697d5543ff75b0a271631cb29cc7f1a7051f61113b6738db667ce6ecfa10bd9bfed39", @ANYRES32, @ANYRES32, @ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=<r2=>0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x118}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000740)=""/206, 0xce}, {&(0x7f0000000840)=""/54, 0x36}, {&(0x7f0000000880)}, {&(0x7f00000008c0)=""/33, 0x21}, {&(0x7f0000000900)=""/152, 0x98}, {&(0x7f00000009c0)=""/131, 0x83}, {&(0x7f0000000a80)=""/179, 0xb3}], 0x7, &(0x7f0000001240)=ANY=[@ANYBLOB="28000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESOCT, @ANYRES32=<r3=>0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002800000000000000000080760000000000d075fdc5e1490b0000a80f9eb06a9b313cfaeaa23bf9ee849e0d7018dc9ab35238194606a41960b0d1fc544f6f3616e133647c5ccc744944d76727065d61328f91f4358c69171279b627201443ad543e84e0148f7a3430f01100c71308b8d52c0dc374d074515789cbd302edc5fdb7e0975795b19832c9f474a83ffdec50e44c52d13b9766dd5eb17ac52af0a49c", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000004000000100002e66f8a0c8", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xf0}}, {{&(0x7f0000000cc0)=@abs, 0x6e, &(0x7f0000000f00)=[{&(0x7f0000000d40)=""/201, 0xc9}, {&(0x7f0000000e40)=""/184, 0xb8}], 0x2}}], 0x3, 0x10000, &(0x7f0000001000)={0x0, 0x989680})
perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x3f, 0x8a, 0xd5, 0x7, 0x0, 0x8001, 0x85004, 0xe, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0xffffffc1, 0x1, @perf_bp={&(0x7f0000000040), 0x8}, 0x8000, 0x8, 0x8001, 0x2, 0x100, 0x5, 0x3, 0x0, 0x1b, 0x0, 0xb7}, r3, 0xd, 0xffffffffffffffff, 0x0)
r4 = memfd_create(0x0, 0x0)
lseek(r4, 0x0, 0x0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x4, 0x13, r1, 0x0)
r5 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000300), 0x40, 0x0)
mmap(&(0x7f0000146000/0x6000)=nil, 0x6000, 0x1000002, 0x13, r5, 0x4d40c000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
mmap(&(0x7f00005a1000/0x3000)=nil, 0x3000, 0x2000003, 0x100010, r2, 0x0)
syz_io_uring_setup(0x8003a75, &(0x7f0000000080)={0x0, 0xa91f, 0x10, 0x0, 0x3be}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000002c0)=<r6=>0x0, &(0x7f0000000100)=<r7=>0x0)
ioctl$sock_inet_SIOCGIFBRDADDR(0xffffffffffffffff, 0x8919, &(0x7f0000000880)={'veth0_to_bond\x00', {0x2, 0x0, @loopback}})
syz_io_uring_submit(r6, r7, 0x0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001600), 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0)
ioctl$HIDIOCSFEATURE(r0, 0xc0404806, &(0x7f0000000200)="b3586d1d8ae577e38371f23faaea8f0f57cc5008585b1806884ea690f50fb61df7a086416e8c5113818b0ffc41ea995ae67521b829603244d2e9b5e800b5882a61072dc96781d6b6750cd75475a23d6df9b61779387256f4ed6767bcef98fc66ca50c0820c1d6d3b96a5f691e87b1ad5ee7900c69cf7aea8fe367d4aca0a55f596429e6f6e20b9d6fc")
lseek(0xffffffffffffffff, 0x6, 0x3)
socket$inet_icmp(0x2, 0x2, 0x1)

00:11:11 executing program 5:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[])
openat(r0, 0x0, 0x206000, 0x18)
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0)
r2 = accept4$unix(r1, &(0x7f0000000200), &(0x7f0000000300)=0x6e, 0x80000)
ftruncate(r2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
utimes(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={{0x0, 0x2710}, {0x77359400}})
write$P9_RREADLINK(r1, &(0x7f0000000100)=ANY=[], 0x10)
r4 = creat(&(0x7f00000001c0)='./file1\x00', 0x62)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x4042, 0x15)
mkdirat(r5, &(0x7f00000003c0)='./file1\x00', 0x0)
write$binfmt_elf64(r4, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r3, 0x0, 0x100000001)

00:11:11 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0xa, 0x10015, 0x0, 0x7ff})
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000000)={0x8, 0x30, 0x4, 0x14, 0x4, 0x2, 0x2, 0x6b, 0x1})

[ 1680.319506] audit: type=1326 audit(1747095071.097:666): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11653 comm="syz-executor.6" exe="/syz-executor.6" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x0
[ 1680.322363] SELinux:  Context î is not valid (left unmapped).
00:11:11 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f00000000c0))
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

[ 1680.387540] FAULT_INJECTION: forcing a failure.
[ 1680.387540] name failslab, interval 1, probability 0, space 0, times 0
[ 1680.388979] CPU: 0 PID: 11667 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1680.389772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1680.390846] Call Trace:
[ 1680.391194]  dump_stack+0x107/0x167
[ 1680.391659]  should_fail.cold+0x5/0xa
[ 1680.392164]  should_failslab+0x5/0x20
[ 1680.392628]  __kmalloc_track_caller+0x79/0x370
[ 1680.393203]  ? v9fs_session_init+0xe9/0x1680
[ 1680.393756]  ? kernel_text_address+0xf2/0x120
[ 1680.394309]  kstrdup+0x36/0x70
[ 1680.394701]  v9fs_session_init+0xe9/0x1680
[ 1680.395226]  ? lock_release+0x680/0x680
[ 1680.395704]  ? find_held_lock+0x2c/0x110
[ 1680.396257]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1680.396835]  ? v9fs_show_options+0x690/0x690
[ 1680.397385]  ? trace_hardirqs_on+0x5b/0x180
[ 1680.397903]  ? kasan_unpoison_shadow+0x33/0x50
[ 1680.398447]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1680.399061]  v9fs_mount+0x79/0x8f0
[ 1680.399495]  ? v9fs_write_inode+0x60/0x60
[ 1680.400003]  legacy_get_tree+0x105/0x220
[ 1680.400505]  vfs_get_tree+0x8e/0x300
[ 1680.400961]  path_mount+0x1429/0x2120
[ 1680.401426]  ? strncpy_from_user+0x9e/0x470
[ 1680.401948]  ? finish_automount+0xa90/0xa90
[ 1680.402472]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1680.403043]  ? _copy_from_user+0xfb/0x1b0
[ 1680.403547]  __x64_sys_mount+0x282/0x300
[ 1680.404013]  ? copy_mnt_ns+0xa00/0xa00
[ 1680.404475]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1680.405118]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1680.405745]  do_syscall_64+0x33/0x40
[ 1680.406199]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1680.406819] RIP: 0033:0x7f543d208b19
[ 1680.407254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1680.409438] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1680.410365] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1680.411233] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1680.412085] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1680.412924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1680.413754] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:11:11 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000000)={0x24, 0x3a, 0xc, 0x1e, 0x8, 0x4, 0x0, 0xc})
ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
dup2(r1, r0)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f00000000c0)={0x3, 0x1e, 0x17, 0xd, 0x4, 0x80000001, 0x5, 0x14a, 0xffffffffffffffff})

00:11:11 executing program 3:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setpriority(0x2, 0x0, 0x5)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x30}}, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000140))
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x82280, 0x0)
syz_open_dev$vcsa(&(0x7f0000000100), 0x0, 0x401)
bind(0xffffffffffffffff, &(0x7f0000000180)=@llc={0x1a, 0x10e, 0x5, 0x7, 0x1, 0x40, @multicast}, 0x80)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x240e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, @perf_config_ext, 0x90200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
flock(r2, 0x6)
mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x810, r2, 0x6)
getdents64(r1, &(0x7f00000007c0)=""/180, 0x200007d8)
getdents64(r1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00'})
lseek(0xffffffffffffffff, 0x1, 0x4)
unshare(0x48020200)

00:11:11 executing program 1:
mlock2(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0)
sigaltstack(&(0x7f0000ffc000/0x1000)=nil, &(0x7f00000000c0))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x400000000000000, 0x2000000000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sigaltstack(&(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000000))
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x0, 0x3)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00')
readv(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f0000000100))
openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0xe8b82, 0x0)
epoll_create(0x1)
socket$nl_xfrm(0x10, 0x3, 0x6)

00:11:11 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x34, r1, 0x5, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r2}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1464}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}]]}, 0x34}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x13, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}, 0x0, 0x0, 0x7, 0x0, 0xfffffffffffffffc}, 0x0, 0x2, 0xffffffffffffffff, 0x1)

[ 1680.528433] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11682 comm=syz-executor.3
00:11:11 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 19)

[ 1680.623699] FAULT_INJECTION: forcing a failure.
[ 1680.623699] name failslab, interval 1, probability 0, space 0, times 0
[ 1680.626601] CPU: 1 PID: 11692 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1680.628306] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1680.630297] Call Trace:
[ 1680.630860]  dump_stack+0x107/0x167
[ 1680.631694]  should_fail.cold+0x5/0xa
[ 1680.632810]  ? create_object.isra.0+0x3a/0xa20
[ 1680.633810]  should_failslab+0x5/0x20
[ 1680.634812]  kmem_cache_alloc+0x5b/0x310
[ 1680.635899]  create_object.isra.0+0x3a/0xa20
[ 1680.636833]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1680.637913]  __kmalloc_track_caller+0x177/0x370
[ 1680.638896]  ? v9fs_session_init+0xe9/0x1680
[ 1680.639940]  ? kernel_text_address+0xf2/0x120
[ 1680.640901]  kstrdup+0x36/0x70
[ 1680.641581]  v9fs_session_init+0xe9/0x1680
[ 1680.642484]  ? lock_release+0x680/0x680
[ 1680.643334]  ? find_held_lock+0x2c/0x110
[ 1680.644352]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1680.645662]  ? v9fs_show_options+0x690/0x690
[ 1680.646722]  ? trace_hardirqs_on+0x5b/0x180
[ 1680.647692]  ? kasan_unpoison_shadow+0x33/0x50
[ 1680.648910]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1680.650119]  v9fs_mount+0x79/0x8f0
[ 1680.650976]  ? v9fs_write_inode+0x60/0x60
[ 1680.651862]  legacy_get_tree+0x105/0x220
[ 1680.652737]  vfs_get_tree+0x8e/0x300
[ 1680.653530]  path_mount+0x1429/0x2120
[ 1680.654448]  ? strncpy_from_user+0x9e/0x470
[ 1680.655611]  ? finish_automount+0xa90/0xa90
[ 1680.656658]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1680.657645]  ? _copy_from_user+0xfb/0x1b0
[ 1680.658532]  __x64_sys_mount+0x282/0x300
[ 1680.659395]  ? copy_mnt_ns+0xa00/0xa00
[ 1680.660427]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1680.661796]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1680.662924]  do_syscall_64+0x33/0x40
[ 1680.663895]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1680.665005] RIP: 0033:0x7f543d208b19
[ 1680.665792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
00:11:11 executing program 0:
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, 0x0, 0x24040101)
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040), 0xc, 0x0}, 0x40000)
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$security_capability(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000200), &(0x7f0000000240)=@v2={0x2000000, [{0x363e, 0x5}, {0x26b, 0xbcd3}]}, 0x14, 0x2)
mount$9p_tcp(0x0, &(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="7472616e733d7463f02c706f3ed6a5a794ad95842bb71e4b31d06f0698dd491f4823e273ea145b785e7268bc3030303071a66ac288af69da2c4853e15349805af3865947d4b81c814aba6d7a81dc94bae4d8432be1169063b169bd6e133949784495c04a2703c162b824bd428211ee9c3d7061e3542fb334b646c4f70b6481208bfb4387e073945adea61c3d90d8030d31cee2403c58fd0c0e568bf5dfbb1e5b6f73ebfb62720afca79969194de393aae8a3f1aa981cf3e3af667b49ad7eb002"])
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x11, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2, 0x0, 0x0, 0x0, &(0x7f0000000400), 0x1, 0x1, 0xa405c299ccaf4274, {0x0, r3}}, 0x6)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x6000, @fd=r2, 0xfffffffffffffffa, &(0x7f0000000100)=[{&(0x7f0000000180)=""/74, 0x4a}], 0x1, 0x12, 0x0, {0x0, r3}}, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_FSYNC={0x3, 0x0, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r3}}, 0x2)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x26}}, 0x10)
writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000340)="ab26d3ed171a05e98380186629b3d2", 0xf}, {&(0x7f0000000380)="bf220e2bb2fc755bde3af86feeb2c38311bc2ec446fc7fe871a85e09725b52c154cec1b9bea22ff9d1a5172371bca4876c73f20fc7b9", 0x36}], 0x2)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000000c0)={{{@in6=@remote, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@empty, 0x0, 0x33}, 0x0, @in=@local, 0x0, 0x1, 0x0, 0x6}}, 0xe8)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0)
sendfile(r1, r4, 0x0, 0xffe3)

[ 1680.669735] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1680.671699] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1680.673225] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1680.674732] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1680.676248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1680.677767] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:11:11 executing program 1:
syz_open_dev$vcsa(0x0, 0x0, 0x0)
r0 = fork()
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}, r0, 0xfffffffffffffffb, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r1, 0x0, 0x0, 0x1000002)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0xa3)
writev(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000180)='net/ip_tables_matches\x00')
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r3)
bind(0xffffffffffffffff, &(0x7f00000002c0)=@nfc, 0x80)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r4, 0x0, 0x100000001)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1/file0\x00', 0x0, 0x89)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0)

[ 1680.733408] 9pnet: Could not find request transport: tcð
00:11:11 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0x8})
r2 = epoll_create1(0x80000)
ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, &(0x7f0000000100)={0x3, 0x1000000006, 0x4, 0xcf92, 0x2, [0x1, 0x7fffffff, 0x81, 0x70]})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000400)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
close(r1)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0xfffffffe, 0x0, 0x0, 0x10011, 0x8, 0x7ff})
dup2(r0, r0)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000100)=<r5=>0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000340)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x3938700}, 0x1, 0x1, 0x0, {0x0, r7}}, 0x5c514a0f)
syz_io_uring_submit(0x0, r5, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x4000, @fd_index, 0x4, 0x8001, 0xfffff800, 0xc, 0x1, {0x2, r6}}, 0x1)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r9 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r9, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r9}, './file0\x00'})
syz_io_uring_submit(0x0, r5, &(0x7f00000003c0)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r1, &(0x7f0000000380)={0x50002001}, r9}, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, r3, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)=@pppol2tp={0x18, 0x1, {0x0, r8, {0x2, 0x4e20, @loopback}, 0x3, 0x4, 0x4, 0x3}}, 0x80, &(0x7f0000000280)=[{&(0x7f00000001c0)="49dcc15ddee00724b7c4f1678c87f80c7d6fceaa1f0967b0c1e2381bb3a67eea4ddfb19d4165cd9855418fe4d1f60c980db1f3fad108136000035d34a1bfa0d9e4a87043a4d725fd25e5a108d4e0d5b18a709ce5101af0f09c273137a27c6828fbd969052edaf07c03a6e8f921989deaf1c65650ff017a64a0468105748817482662fe426ca72cc949a76c10", 0x8c}], 0x1, &(0x7f0000002e40)=ANY=[@ANYBLOB="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"], 0x15c8}, 0x0, 0x20000004, 0x0, {0x0, r6}}, 0x5)

00:11:11 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
readahead(0xffffffffffffffff, 0x0, 0x6)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x8000)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/94, 0x5e}], 0x1, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/fscreate\x00', 0x2, 0x0)
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)="ee", 0x1}], 0x100000000000037f)
openat$incfs(0xffffffffffffffff, 0x0, 0x10d080, 0x23)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/slabinfo\x00', 0x0, 0x0)
fork()

[ 1680.844935] 9pnet: Could not find request transport: tcð
00:11:25 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0xebc081, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x8, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_UIE_ON(r0, 0x7003)

00:11:25 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0}, 0x0)
sendmsg$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
r1 = syz_io_uring_setup(0x3a7c, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x3, 0x37c}, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000240)=<r3=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @multicast1}})
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
ioctl$SNAPSHOT_PLATFORM_SUPPORT(r4, 0x330f, 0x3)
r5 = socket$netlink(0x10, 0x3, 0x0)
dup2(r5, r4)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r5, 0x8983, &(0x7f0000000080))
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x1, @empty, 0x5b}, 0x1c)
syz_io_uring_submit(r2, r3, 0x0, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x5548, &(0x7f00000002c0)={0x0, 0xf22b, 0x2, 0x1, 0x3cc}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000340), &(0x7f0000000400))
openat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0, 0x76)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x242e2, 0x0)
clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

00:11:25 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:11:25 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
write$binfmt_script(r0, &(0x7f00000001c0)=ANY=[], 0xee)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$inet6_mreq(r1, 0x29, 0x7, 0x0, &(0x7f0000000100))
bind$packet(r0, &(0x7f0000000040)={0x11, 0x5, 0x0, 0x1, 0x7f, 0x6, @broadcast}, 0x14)

00:11:25 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_INFO(0xffffffffffffffff, 0x80e85411, &(0x7f00000001c0)=""/252)
r0 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1, r0}}, 0x10001)
r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x80, 0x1, 0x0, 0x0, 0x8, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0xd7f}, 0x0, 0x200, 0xfffffffe, 0x0, 0x0, 0x0, 0x6, 0x0, 0x2}, 0x0, 0x1000000000, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f00000000c0)='comm\x00')
r2 = getpgid(0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x6, 0x2, 0x3f, 0x6, 0x0, 0x4, 0x11000, 0x7, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x5f8a8eec, 0x4, @perf_bp={&(0x7f0000000100)}, 0x10540, 0x1, 0xff, 0x4, 0x1000, 0xffffffc1, 0x1, 0x0, 0x3, 0x0, 0xf8}, r2, 0xb, 0xffffffffffffffff, 0xb)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0)
fremovexattr(0xffffffffffffffff, &(0x7f0000000500)=ANY=[@ANYRES64, @ANYRESDEC, @ANYRES16])
preadv(0xffffffffffffffff, &(0x7f0000002780)=[{&(0x7f0000000580)=""/24, 0x18}, {&(0x7f00000005c0)=""/4096, 0x1000}, {&(0x7f00000015c0)=""/118, 0x76}, {&(0x7f0000001640)=""/42, 0x2a}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f0000002680)=""/195, 0xc3}], 0x6, 0x4f, 0x10001)
writev(0xffffffffffffffff, &(0x7f0000000440), 0x0)
sendfile(r3, r5, 0x0, 0xffff)
fallocate(r4, 0x32, 0xce35, 0x8000)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4)
bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x4000}, 0x1c)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)

00:11:25 executing program 1:
ioctl$DVD_READ_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f0000000000)=@copyright={0x1, 0x3, 0x7c, 0x1f})
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1, {0x0, r4}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(r5, 0x0, 0x0)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000)
syz_io_uring_submit(r6, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x5, 0x4007, @fd, 0x4, &(0x7f0000001d00)=""/204, 0xcc, 0xd, 0x1}, 0x80000001)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)
ioctl$CDROMGETSPINDOWN(0xffffffffffffffff, 0x531d, 0x0)
ioctl$CDROMVOLREAD(0xffffffffffffffff, 0x5313, 0x0)
ioctl$CDROMREADMODE2(0xffffffffffffffff, 0x530c, &(0x7f0000000900)={0x79, 0x3f, 0xff, 0x0, 0x0, 0x9})
ioctl$DVD_WRITE_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f00000013c0)=@copyright={0x1, 0x3, 0x5, 0x9})
ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f00000026c0), 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000002780)={0x0, 0x0, "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", "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"})
syz_genetlink_get_family_id$mptcp(&(0x7f0000003780), 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000840)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="06001300000000002e2f66696c653000"])

00:11:25 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
fallocate(r0, 0x4c, 0xfb, 0x975)
ioctl$HIDIOCINITREPORT(r1, 0x550c, 0x20000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd_index=0x3, 0xffffffffffffffff}, 0x9)
r2 = mq_open(&(0x7f0000000100)='wfdno', 0x801, 0x83, &(0x7f0000000200)={0x6, 0x4, 0xb0, 0x7})
write$binfmt_elf64(r2, &(0x7f00000003c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x4, 0x0, 0x1, 0xc000000000000000, 0x3, 0x3, 0x18c, 0x109, 0x40, 0x3a7, 0x8000, 0x4, 0x38, 0x2, 0x7, 0x101, 0x5}, [{0x70000000, 0x0, 0x8, 0x9, 0x1, 0x1, 0x3d, 0x9}, {0x6474e551, 0x1, 0x4, 0x0, 0x0, 0x3, 0x1, 0x6}], "4f96338ba86e5cdfe44ee0f43ab046f63282228a899c796de403b7cdc51e00bd5222da942c52349e338c9f38cf00864cec4c272653ef65cfc48b4a049be7f0e33406e7c056006b104e6bd0d9b03d1734627bcf5e67a9bbda831e1dd7d8ae93c8038162605cd2ad2e5d9e7bc449c8b941d8f05aa7544be2f4c333ce52065cc196dffa62f6265d5d8cda213114f428de04e2404de639d40ea3a405b71b4aaf5f52c8152fb492d4f94fd9027300d931185efd044aee2b9937b6cf911e1fd0a2b3f1761c2274e0899b33cde9a27706f7a33304ac5188604c684acdc763a8795c537bef3a5ee28d49bd280b", ['\x00']}, 0x299)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r1, 0x0)
r3 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0)
pipe(&(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r6=>r3, {0xffffffffffffffff, 0xee01}}, './file0\x00'})
ioctl$EXT4_IOC_GROUP_EXTEND(r6, 0x40086607, &(0x7f0000000080)=0xc0)
r7 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$HIDIOCINITREPORT(r7, 0x550c, 0x20000000)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e21, 0x6, @local, 0x9}, 0x1c)
r8 = openat(r3, &(0x7f0000000140)='./file0/../file0\x00', 0x1000, 0x151)
dup2(r8, r3)
ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40082404, &(0x7f0000000000))
mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}})

00:11:25 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 20)

[ 1694.956308] audit: type=1326 audit(1747095085.734:667): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11728 comm="syz-executor.6" exe="/syz-executor.6" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x0
00:11:25 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x21, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
ioctl$SNAPSHOT_PLATFORM_SUPPORT(r2, 0x330f, 0x3)
r3 = socket$netlink(0x10, 0x3, 0x0)
dup2(r3, r2)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', <r4=>0x0})
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000040)=0x3f, 0x4)
bind$packet(r1, &(0x7f0000000240)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14)
sendfile(r1, r0, 0x0, 0x500000001)

[ 1695.005793] FAULT_INJECTION: forcing a failure.
[ 1695.005793] name failslab, interval 1, probability 0, space 0, times 0
[ 1695.008503] CPU: 0 PID: 11738 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1695.009979] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1695.011763] Call Trace:
[ 1695.012393]  dump_stack+0x107/0x167
[ 1695.013179]  should_fail.cold+0x5/0xa
[ 1695.013994]  ? create_object.isra.0+0x3a/0xa20
[ 1695.014974]  should_failslab+0x5/0x20
[ 1695.015784]  kmem_cache_alloc+0x5b/0x310
[ 1695.016661]  create_object.isra.0+0x3a/0xa20
[ 1695.017594]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1695.018682]  __kmalloc_track_caller+0x177/0x370
[ 1695.019673]  ? v9fs_session_init+0xe9/0x1680
[ 1695.020617]  ? kernel_text_address+0xf2/0x120
00:11:25 executing program 0:
syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0xfffffffffffffffd}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x104dc2, 0x1a4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[], 0xfdef)
r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0, 0x0)
sendfile(r3, r4, 0x0, 0x100000001)
sendfile(r0, r1, 0x0, 0x100000001)

[ 1695.021577]  kstrdup+0x36/0x70
[ 1695.022417]  v9fs_session_init+0xe9/0x1680
[ 1695.023325]  ? lock_release+0x680/0x680
[ 1695.024171]  ? find_held_lock+0x2c/0x110
[ 1695.025058]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1695.026091]  ? v9fs_show_options+0x690/0x690
[ 1695.027034]  ? trace_hardirqs_on+0x5b/0x180
[ 1695.027959]  ? kasan_unpoison_shadow+0x33/0x50
[ 1695.028940]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1695.030015]  v9fs_mount+0x79/0x8f0
[ 1695.030770]  ? v9fs_write_inode+0x60/0x60
[ 1695.031659]  legacy_get_tree+0x105/0x220
[ 1695.032540]  vfs_get_tree+0x8e/0x300
[ 1695.032566]  path_mount+0x1429/0x2120
[ 1695.032590]  ? strncpy_from_user+0x9e/0x470
[ 1695.033985]  ? finish_automount+0xa90/0xa90
[ 1695.034006]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1695.034027]  ? _copy_from_user+0xfb/0x1b0
[ 1695.035471]  __x64_sys_mount+0x282/0x300
[ 1695.035492]  ? copy_mnt_ns+0xa00/0xa00
[ 1695.038589]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1695.039704]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1695.040819]  do_syscall_64+0x33/0x40
[ 1695.041611]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1695.042697] RIP: 0033:0x7f543d208b19
[ 1695.043497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1695.047421] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1695.049055] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1695.049066] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1695.049086] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1695.049097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1695.054612] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1695.079971] loop0: detected capacity change from 0 to 41948160
[ 1695.099708] FAT-fs (loop0): bogus number of reserved sectors
00:11:25 executing program 4:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xc)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x442e00, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r2 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x101000, 0x82)
ioctl$RTC_AIE_ON(r2, 0x7001)

[ 1695.101104] FAT-fs (loop0): Can't find a valid FAT filesystem
[ 1695.152155] loop0: detected capacity change from 0 to 41948160
[ 1695.163017] FAT-fs (loop0): bogus number of reserved sectors
[ 1695.164411] FAT-fs (loop0): Can't find a valid FAT filesystem
00:11:25 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x1, 0x40, 0x1a, 0x0, 0x5})
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000000)=0x9)

00:11:26 executing program 0:
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='uid_map\x00')
sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x40000)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
ftruncate(0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x0, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000240001000000000000000000000000000600040000000000c1f8631c94f0b7bcefd65d1496e20988062b3aca25806113c79bbf7c82d5bdb95898f9131955c41c829e3ec011e03602888f1001a703443dd2c50cdeb6a190f864bbedd89913ffed09aacc6d6a543e3b9a52f26185037f42d6c51a3c22790af812c7fff2bbed34d1155dfd8db7f30cc13c2260d2ce5cececde2c6df11a2bd179d04d0aa7b5af62a834ca19bdd9956aee12342f6fbf93c4413977a3a7d405fb32874a456edc792f226e60af79e4bb00f457d3e021e702b0206162"], 0x1c}}, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x2c4800, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
fstat(r1, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
sendfile(r1, r3, 0x0, 0x100000021)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0)

00:11:26 executing program 5:
r0 = perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r1 = dup2(r0, r0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0), 0x4)
perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x3f, 0x7f, 0x8, 0x81, 0x0, 0x5, 0x2014, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000000), 0x5}, 0x404, 0x7, 0x1, 0x5, 0x9, 0x807, 0x1, 0x0, 0x5, 0x0, 0x7}, 0xffffffffffffffff, 0x9, r0, 0x2)

00:11:26 executing program 3:
perf_event_open(&(0x7f0000000440)={0x5, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
kcmp(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r0, 0x3305)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000000)={@remote, @empty, @broadcast}, 0xc)
openat(r0, &(0x7f0000000040)='./file0\x00', 0x145800, 0x100)
sync()

00:11:26 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 21)

[ 1695.321031] FAULT_INJECTION: forcing a failure.
[ 1695.321031] name failslab, interval 1, probability 0, space 0, times 0
[ 1695.322442] CPU: 1 PID: 11769 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1695.323226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1695.324179] Call Trace:
[ 1695.324635]  dump_stack+0x107/0x167
[ 1695.325160]  should_fail.cold+0x5/0xa
[ 1695.325707]  ? p9_client_create+0xaf/0x1230
[ 1695.326205]  should_failslab+0x5/0x20
[ 1695.326641]  kmem_cache_alloc_trace+0x55/0x320
[ 1695.327302]  ? find_held_lock+0x2c/0x110
[ 1695.327849]  p9_client_create+0xaf/0x1230
[ 1695.328368]  ? lock_downgrade+0x6d0/0x6d0
[ 1695.328888]  ? p9_client_flush+0x430/0x430
[ 1695.329499]  ? trace_hardirqs_on+0x5b/0x180
[ 1695.330116]  ? lockdep_init_map_type+0x2c7/0x780
[ 1695.330665]  ? __raw_spin_lock_init+0x36/0x110
[ 1695.331320]  v9fs_session_init+0x1dd/0x1680
[ 1695.331846]  ? lock_release+0x680/0x680
[ 1695.332409]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1695.332960]  ? v9fs_show_options+0x690/0x690
[ 1695.333558]  ? trace_hardirqs_on+0x5b/0x180
[ 1695.334118]  ? kasan_unpoison_shadow+0x33/0x50
[ 1695.334716]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1695.335302]  v9fs_mount+0x79/0x8f0
[ 1695.335800]  ? v9fs_write_inode+0x60/0x60
[ 1695.336377]  legacy_get_tree+0x105/0x220
[ 1695.336957]  vfs_get_tree+0x8e/0x300
[ 1695.337381]  path_mount+0x1429/0x2120
[ 1695.337873]  ? strncpy_from_user+0x9e/0x470
[ 1695.338446]  ? finish_automount+0xa90/0xa90
[ 1695.339051]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1695.339584]  ? _copy_from_user+0xfb/0x1b0
[ 1695.340138]  __x64_sys_mount+0x282/0x300
[ 1695.340703]  ? copy_mnt_ns+0xa00/0xa00
[ 1695.341155]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1695.341890]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1695.342486]  do_syscall_64+0x33/0x40
[ 1695.342916]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1695.343503] RIP: 0033:0x7f543d208b19
[ 1695.343930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1695.346007] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1695.346934] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1695.347755] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1695.348722] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1695.349648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1695.350520] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:11:39 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000000c0))

00:11:39 executing program 4:
lstat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0})
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000100)='system.posix_acl_default\x00', &(0x7f00000003c0)={{}, {0x1, 0x7}, [], {0x4, 0x7}, [{0x8, 0x1, 0xffffffffffffffff}, {0x8, 0x0, r0}, {0x8, 0x3}], {0x10, 0x7}, {0x20, 0x2}}, 0x3c, 0x2)
capset(&(0x7f0000000000)={0x20071026}, &(0x7f00000000c0)={0x9, 0xfffff58a, 0x10001, 0x6, 0x9a, 0x7})
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x0, 0x22, 0x0, 0x10015, 0x0, 0x7ff})
fsetxattr$security_ima(r1, &(0x7f0000000400), &(0x7f0000000440)=@sha1={0x1, "c96e32479de4864ca72ddbe7e3f2f6fa7d1e92a3"}, 0x15, 0x1)
timer_create(0x7, &(0x7f00000001c0)={0x0, 0x29, 0x2, @thr={&(0x7f0000000180)="756b5c1996260a024678c2174c5b24bee4ca74e0b220f54a8927c96da735059c212d", &(0x7f0000000240)="4440a8117a1b16a891c5677bdf11741cdb015ac3cd1138110102d404d63371e9c65cbef929e5b6c723328582a97886a20f11af7e4ab57e34259ea5ea1949ce0f5bbd50880a8d504cbaee542b16970092b3ee7ec4c2c5d4aa10905543a95800000000dfffffff00009d09c9b7b65458e94135c6423a5ec8daf5bf14a40a64642c59bb032484e256bf3d47b9ba7330e6aa6a8326c56f49939844dae89e61ffbeb83ebb8ceb133bb43ca4b11bf8f6697c2a1e70886d94bcf36f725b2a0783ad0a6381dbac492fc7ac990ec67b55e73710ae6319fe78ea41e5d31041030b74de54885a"}}, &(0x7f0000000140))

[ 1708.555425] audit: type=1326 audit(1747095099.333:668): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11783 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1708.562903] audit: type=1326 audit(1747095099.333:669): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11783 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1708.576738] FAULT_INJECTION: forcing a failure.
[ 1708.576738] name failslab, interval 1, probability 0, space 0, times 0
[ 1708.578083] CPU: 0 PID: 11793 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1708.578893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1708.579841] Call Trace:
[ 1708.580159]  dump_stack+0x107/0x167
[ 1708.580594]  should_fail.cold+0x5/0xa
[ 1708.581047]  should_failslab+0x5/0x20
[ 1708.581500]  __kmalloc_track_caller+0x79/0x370
[ 1708.582034]  ? p9_client_create+0x41d/0x1230
[ 1708.582549]  kstrdup+0x36/0x70
[ 1708.582929]  p9_client_create+0x41d/0x1230
[ 1708.583425]  ? lock_downgrade+0x6d0/0x6d0
[ 1708.583900]  ? p9_client_flush+0x430/0x430
[ 1708.584406]  ? trace_hardirqs_on+0x5b/0x180
[ 1708.584930]  ? lockdep_init_map_type+0x2c7/0x780
[ 1708.585485]  ? __raw_spin_lock_init+0x36/0x110
[ 1708.586024]  v9fs_session_init+0x1dd/0x1680
[ 1708.586529]  ? lock_release+0x680/0x680
[ 1708.586994]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1708.587568]  ? v9fs_show_options+0x690/0x690
[ 1708.588088]  ? trace_hardirqs_on+0x5b/0x180
[ 1708.588590]  ? kasan_unpoison_shadow+0x33/0x50
[ 1708.589135]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1708.589718]  v9fs_mount+0x79/0x8f0
[ 1708.590140]  ? v9fs_write_inode+0x60/0x60
[ 1708.590620]  legacy_get_tree+0x105/0x220
[ 1708.591102]  vfs_get_tree+0x8e/0x300
[ 1708.591527]  path_mount+0x1429/0x2120
[ 1708.591981]  ? strncpy_from_user+0x9e/0x470
[ 1708.592493]  ? finish_automount+0xa90/0xa90
[ 1708.593015]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1708.593564]  ? _copy_from_user+0xfb/0x1b0
[ 1708.594052]  __x64_sys_mount+0x282/0x300
[ 1708.594532]  ? copy_mnt_ns+0xa00/0xa00
[ 1708.594990]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1708.595605]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1708.596267]  do_syscall_64+0x33/0x40
[ 1708.596710]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1708.597316] RIP: 0033:0x7f543d208b19
[ 1708.597742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1708.599926] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1708.600833] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1708.601645] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1708.602491] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1708.603302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1708.604153] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1708.615022] audit: type=1326 audit(1747095099.333:670): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11783 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:11:39 executing program 0:
creat(&(0x7f00000010c0)='./file0\x00', 0x59)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000000000)={{0x0, 0x3, 0xf7a8, 0x100000001, 0x5, 0x100000000, 0x6, 0x80, 0x8, 0x8f, 0x0, 0xffffffffffffffff, 0x5, 0x7, 0x5}})
perf_event_open(&(0x7f0000001680)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = open_tree(0xffffffffffffffff, &(0x7f0000001080)='./file0\x00', 0xc0001)
perf_event_open(&(0x7f0000001000)={0x58d1ea1ec0c45170, 0x80, 0x20, 0x20, 0x75, 0x9, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0x8, 0x3f}, 0x8900, 0x1, 0x7, 0x9, 0x0, 0x101, 0x1, 0x0, 0x0, 0x0, 0x80000001}, 0xffffffffffffffff, 0xa, r0, 0xb)

00:11:39 executing program 7:
r0 = perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10442, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x4, @perf_config_ext={0x5}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)={0x0, <r1=>0x0})
r2 = syz_open_procfs(r1, &(0x7f0000000000)='mounts\x00')
readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1)
r3 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00')
ioctl$FIONREAD(r3, 0x6801, 0x0)
ioctl$FIONREAD(r0, 0x541b, &(0x7f0000001980))
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x53000, 0x0)
mkdirat(r2, &(0x7f0000000300)='./file0\x00', 0x40)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$KDGETKEYCODE(0xffffffffffffffff, 0x4b4c, &(0x7f0000000080)={0x3ff, 0xffff5cd2})
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000040))
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x400cc0, 0xa6)
r4 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x80, 0x0)
lseek(0xffffffffffffffff, 0x100000000, 0x4)
preadv(r4, 0x0, 0x0, 0x401, 0x0)
stat(0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0xffffffffffffffff, r5, 0x0)

00:11:39 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
ftruncate(r0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r2 = creat(&(0x7f0000000080)='./file0\x00', 0x104)
lseek(r2, 0xfc6a, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000001d00210c01000000000010c50af235eb0000040002000800090000000000a2820252b2b531c2965668c8d7be3433d80f941e0a4688642fd74234b7867f1c771b1ccceaa7dcc45462ab3f937eb37e39cde58beaa6fe5d5e"], 0x1c}}, 0x0)
write$binfmt_aout(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b010520b602000092030000050000002d0100000001000000000000000000003ba85978c36073b949b985bc13486b99ba55421ad12756352434d69ebdde9301003b98"], 0x43)
fallocate(r1, 0x0, 0x0, 0x7e)
sendfile(r3, r1, &(0x7f0000000140), 0x800)
sendfile(r2, r1, 0x0, 0xffffffff000)
r4 = creat(0x0, 0x0)
fcntl$setlease(r4, 0x400, 0x2)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)=ANY=[@ANYRES64, @ANYRES32=r2, @ANYRES16=r4])

00:11:39 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 22)

00:11:39 executing program 1:
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x801, 0x0)
sendmsg$AUDIT_USER_AVC(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x10, 0x453, 0x20, 0x70bd2a, 0x25dfdbfd, "", ["", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
ioctl$RTC_VL_READ(0xffffffffffffffff, 0x80047013, &(0x7f0000000040))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
utime(&(0x7f0000000200)='./file0\x00', 0x0)

00:11:39 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, @out_args}, './file0\x00'})
dup2(r0, r0)
getsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0x4, 0x0, &(0x7f0000000040)=0x3358868318432953)

00:11:39 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYRES16], 0x28}}, 0x2004c090)

[ 1708.633989] audit: type=1326 audit(1747095099.405:671): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11797 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
00:11:39 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000000c0))

00:11:39 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
ioctl$RTC_AIE_ON(r1, 0x7001)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:11:39 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000440)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000180)='./file0\x00')
r0 = syz_mount_image$iso9660(&(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0xffff, 0x1, &(0x7f0000000580)=[{&(0x7f00000005c0)="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", 0x120, 0x4}], 0x20001, &(0x7f0000000700)=ANY=[@ANYBLOB="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", @ANYRESHEX=0xee00, @ANYBLOB="2c756e686964652c7375626a5f726f6c653d1b5e2f253a2d2e262a5c812d2de1762c00"])
r1 = openat(r0, &(0x7f00000002c0)='./file0\x00', 0x145140, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x100000001)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
sendfile(r1, r3, 0x0, 0x80000001)

[ 1708.661149] audit: type=1326 audit(1747095099.405:672): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11797 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 1708.676017] loop0: detected capacity change from 0 to 33559552
[ 1708.684934] audit: type=1326 audit(1747095099.406:673): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11797 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f6540005c27 code=0x7ffc0000
00:11:39 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000000c0))

00:11:39 executing program 3:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="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"], 0x98}}, 0x0)
close_range(r1, r0, 0x0)
fcntl$addseals(r1, 0x409, 0x8)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000440)=0x7, 0x4)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x2, 0x0, @fd_index=0x3, 0x8, &(0x7f0000000140)="ef3003e7d4d5730dd9bc0d2116cbd2ec2d4cef0397c67262d0882d05da47c1147ab3a8e1b3dfac797791d00529f0be39c7c3024d4751fcbfb4d3ec4b7b6dc1", 0x3f, 0xc, 0x1}, 0x9)
add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0)
add_key$keyring(&(0x7f0000000480), 0x0, 0x0, 0x0, 0x0)
add_key$keyring(&(0x7f0000000000), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, r2)
r3 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc)
request_key(&(0x7f00000002c0)='id_legacy\x00', &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380)='\x00', r2)
futimesat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={{0x77359400}, {0x0, 0x2710}})
r4 = add_key(&(0x7f0000000200)='keyring\x00', &(0x7f00000004c0)={'syz', 0x1}, &(0x7f0000000540)="18726d0eed55eaa57fc580dc3a0b12e0a5ee08da294ac8119c4c73f93694f2a935d17a81959d084839f846dca8739131e4a9c45c6509af44529537eae3b5a4793a9a0aacfd7a75f2b566b874939829b82a35d20d1985a92c5d7ba971251e89286f64438db33a7f05fb0d1707fd3fa27a56032a79c1d09558fbbfcb2e5f36d3e7e1c749ad35c2064fa087cf6359507a36eb69853e0cdd920cbb7586aedf5a2e5a9a1a6b8d11c08a14918b01d07c92179dfae1ef58835b5fa4be28fbd3b3eac1c9f3cf74fbe25748c55d23902439133eecfafb2e0f", 0xd4, 0xfffffffffffffffa)
add_key(0x0, 0x0, 0x0, 0x0, r4)
add_key$keyring(&(0x7f0000000100), &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, r3)
syz_open_procfs(0xffffffffffffffff, 0x0)
unshare(0x48020200)

[ 1708.725779] audit: type=1326 audit(1747095099.407:674): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11797 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 1708.729724] audit: type=1326 audit(1747095099.407:675): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11797 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 1708.733808] audit: type=1326 audit(1747095099.408:676): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11797 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 1708.737501] audit: type=1326 audit(1747095099.408:677): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11797 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
00:11:39 executing program 1:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x3}, 0x4f6cebf7b460b165, 0x5, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x5, 0x0, 0x0, 0x0, 0x4, 0x2, 0x4020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, @perf_config_ext={0x10001, 0x400}, 0x800, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2c, 0x0, 0x3f}, 0x0, 0x0, 0xffffffffffffffff, 0x9)
clone3(0x0, 0x0)
sendfile(r1, r0, &(0x7f00000001c0)=0x9d, 0x10001)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff)
connect$inet6(0xffffffffffffffff, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x10}}, 0x1c)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x8000}, 0x4)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext, 0x10000, 0xffffffffffffffff, 0x0, 0x0, 0x168}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_ifreq(r3, 0x8928, &(0x7f0000000240)={'bridge_slave_1\x00', @ifru_mtu})
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r6=>0x0})
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, &(0x7f00000002c0))
write$P9_RLINK(r3, &(0x7f0000000340)={0x7, 0x47, 0x2}, 0x7)
sendmmsg$inet(r4, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000000400)=ANY=[@ANYBLOB="140000000000000000000020070000000800de00000000001c000000000000000000000008000000f90521c9f7fe23d7d878b160fdc7615b771ebd5a794047c53a5c20524c1aeffc7bc836f27ec170ea06616ef03f56050ad4ddd708c87a5c666b1fbb2fe770cea31877feb56f5e7c38698710cb6dbd4e758a49a7c2be8b6ed16c0bc99689bb7dbbf55a26b2d1a6c273be1cc1", @ANYRES32=r6], 0x38}}], 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_buf(r5, 0x1, 0x1c, &(0x7f0000000000)=""/90, &(0x7f0000000180)=0x5a)

00:11:39 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 23)

[ 1708.848867] perf: interrupt took too long (19266 > 19240), lowering kernel.perf_event_max_sample_rate to 10000
[ 1708.869111] FAULT_INJECTION: forcing a failure.
[ 1708.869111] name failslab, interval 1, probability 0, space 0, times 0
[ 1708.871591] CPU: 1 PID: 11830 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1708.873106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1708.874914] Call Trace:
[ 1708.875496]  dump_stack+0x107/0x167
[ 1708.876291]  should_fail.cold+0x5/0xa
[ 1708.877132]  ? create_object.isra.0+0x3a/0xa20
[ 1708.878127]  should_failslab+0x5/0x20
[ 1708.878952]  kmem_cache_alloc+0x5b/0x310
[ 1708.879834]  ? lock_downgrade+0x6d0/0x6d0
[ 1708.880739]  create_object.isra.0+0x3a/0xa20
[ 1708.881690]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1708.882790]  __kmalloc_track_caller+0x177/0x370
[ 1708.883797]  ? p9_client_create+0x41d/0x1230
[ 1708.884760]  kstrdup+0x36/0x70
[ 1708.885462]  p9_client_create+0x41d/0x1230
[ 1708.886375]  ? lock_downgrade+0x6d0/0x6d0
[ 1708.887277]  ? p9_client_flush+0x430/0x430
[ 1708.888197]  ? trace_hardirqs_on+0x5b/0x180
[ 1708.889139]  ? lockdep_init_map_type+0x2c7/0x780
[ 1708.890162]  ? __raw_spin_lock_init+0x36/0x110
[ 1708.891154]  v9fs_session_init+0x1dd/0x1680
[ 1708.892085]  ? lock_release+0x680/0x680
[ 1708.892961]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1708.893999]  ? v9fs_show_options+0x690/0x690
[ 1708.894956]  ? trace_hardirqs_on+0x5b/0x180
[ 1708.895963]  ? kasan_unpoison_shadow+0x33/0x50
[ 1708.896960]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1708.898057]  v9fs_mount+0x79/0x8f0
[ 1708.898824]  ? v9fs_write_inode+0x60/0x60
[ 1708.899720]  legacy_get_tree+0x105/0x220
[ 1708.900613]  vfs_get_tree+0x8e/0x300
[ 1708.901415]  path_mount+0x1429/0x2120
[ 1708.902244]  ? strncpy_from_user+0x9e/0x470
[ 1708.903172]  ? finish_automount+0xa90/0xa90
[ 1708.904102]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1708.905116]  ? _copy_from_user+0xfb/0x1b0
[ 1708.906016]  __x64_sys_mount+0x282/0x300
[ 1708.906890]  ? copy_mnt_ns+0xa00/0xa00
[ 1708.907732]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1708.908870]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1708.909985]  do_syscall_64+0x33/0x40
[ 1708.910788]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1708.911895] RIP: 0033:0x7f543d208b19
[ 1708.912707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1708.916702] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1708.918342] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1708.919880] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1708.921426] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1708.922965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1708.924502] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:11:52 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 24)

00:11:52 executing program 0:
r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
dup(r0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r2, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)
ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f0000000040)={0x0, {}, 0x0, {}, 0x7, 0x12, 0x19, 0x5, "5e659bf7c0eb4ee73e14548d4a52a11173a3076cc36ad3c5b144e674b13ac28121f858f0ee8b265e3ffda4823e44f74729e3ed4dc10adefa81d275ffe3d3aa1d", "8c7d4d7b3547c96db439817c1d4d07fe1b128d2e1463445cb705e8c1e7b5646c", [0x101, 0x8]})
ioctl$CDROMPLAYTRKIND(r1, 0x5304, &(0x7f0000000380)={0x80})

00:11:52 executing program 7:
r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x4000000000003, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000740)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f00082c002001007800000000000000000000003d63b0df00ff0200000000000000000000000000018f00907800f89b1e3c0c94f18d000000a9d3b75e15ed901f3c82a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516dab98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b42803010000009b542364a5abcb411444f636259dd752ed823a3b6cb04eeae71035a8446ef221d39d3504136905c2a58700000000000020ae67b64fea2e305f45ed9c0102c04c8552bf719cb84ff6184a3628d3f783650e140ce6b1c3d2a80c0a55f178d30fd2907bf084450fa095880685bf93df3cea89f2ac68928693f1d597d3bad7e3e7f9e9d04e26142f498f4a50432589d64a7d3f318803ff52a9e773108dd5be442c19d3c7e0646cc7ce996925b1dcc0e24d8fc083249b043a267def8eaabf216566fdbc3d1b15f87ee05584e5d2955910ceaf2483c2ba6c149b4f58e4a2a0283f749aa9be02026f3fbebe3bb7c805ca57fd7dc5a5ec6b8fbfba4398c281f31b824088ea7d698850ebbe90f2026222b002511904cf296c7efdcf688f4f45590aae6fe6e5bfa50179befc1d2eacbb2d3a60e921b6230de94dfcfb51753b15e94b9e968ec67ede765ec866ee31bcb257a57fbc5666447414f9751d7851c5a69f364005783ddb0a6e1bab577541d96bb986b7df55b1319ab327f4104dbe021134000290f46bb7d54594d9932a80a748ea532b3b140000000000"], 0x0)
r1 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000640), 0x2, 0x0)
sendfile(r0, r1, &(0x7f0000000680)=0x7ff, 0x9)
r2 = fork()
ptrace$setopts(0x4206, r2, 0x10001, 0x3d)
r3 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace$setopts(0x4206, r3, 0x10001, 0x0)
ptrace(0x10, r3)
r4 = gettid()
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, 0xffffffffffffffff, 0x0)
ptrace$getregset(0x4204, r4, 0x0, 0x0)
wait4(r4, 0x0, 0x40000000, &(0x7f0000000000))
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
syz_emit_ethernet(0x3ca, &(0x7f0000000980)={@multicast, @remote, @void, {@mpls_mc={0x8848, {[{0x5}, {0x6, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x1000, 0x0, 0x1}, {0xff, 0x0, 0x1}], @ipv6=@udp={0x8, 0x6, "f95265", 0x380, 0x11, 0xff, @mcast2, @mcast1, {[@routing={0x11, 0x2, 0x0, 0x20, 0x0, [@local]}, @routing={0x2c, 0x6, 0x2, 0x0, 0x0, [@remote, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast1]}, @hopopts={0x2b, 0x18, '\x00', [@jumbo={0xc2, 0x4, 0x401}, @generic={0x1f, 0x9e, "257fd8509eebbc61c8ee10bc7da0940fdd1928da23f6a4e92d8dc74f71ba71f2acf851034f3a823957b365e03a5763404148b42fd4fd881fe8617defd8db07d38eb3cc9ea53dc23f26939485f278c97be1f7ca961b8108180813ca0563df86d38c0e440f94725d29e4323fb7ecc687e5946e3b2d67b1f9c66d44efc18afd3fc6b57597736427792a557166ef2056c56274119b9278a91f2b163c31dda72a"}, @padn={0x1, 0x2, [0x0, 0x0]}, @ra={0x5, 0x2, 0x8}, @enc_lim={0x4, 0x1, 0x1f}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @enc_lim={0x4, 0x1, 0x9}]}, @dstopts={0x33, 0x10, '\x00', [@generic={0x1, 0x80, "6d11dacfa0d9497c4a6d84eb60978cca9f847606938089fd8db0bf6caa46ae5f1abf29ccd7cdb19af7594cc1071c730429c4622e8c7f535f713a8f8c7203d131479b11b3de99e7bceb46c758cb7f37d6b221a28944c2c63f2373319af8a235d4083696e8711b26832a1470744322f756625d0891412e442a9310b6dac1cb2db5"}, @pad1]}, @routing={0x2c, 0x14, 0x0, 0x8, 0x0, [@local, @mcast2, @rand_addr=' \x01\x00', @local, @loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @dev={0xfe, 0x80, '\x00', 0xf}, @mcast1, @private0={0xfc, 0x0, '\x00', 0x1}]}, @routing={0x1d, 0x6, 0x2, 0x7, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @fragment={0x1, 0x0, 0x55, 0x1, 0x0, 0x7, 0x8000}], {0x4e21, 0x4e22, 0xe8, 0x0, @gue={{0x2, 0x1, 0x3, 0x8, 0x0, @val=0x80}, "f2e3ce6e1385d1b9e7b8fe99c1864b11d13f4514be028c758f733f02f20d58526128b1958fa989aa5fc38e66eb40fdcabb5b5a8e90df9c5f9c3affef3572da5ec889c74fae9e09eeb2bf4e4620fbb66016415b3aae7e321f64376f3a0115c2bcb780e642639ce14cddfce11e97dd6308f5e6a7191cc79107e50b1bcdfc1a01b49e39e636bf3cd31c6d280f138a8ca6fa915bd08c801521d3afc3841e94b8ce4fcb4dfa00a39e2e4a0f91501606f98c251dce6cd5522f5e9cef1bdbc76b2b25d8e149cd01ba3332819353fe41ab7064e2d79b1bf49f68f932"}}}}}}}}, 0x0)

00:11:52 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)

00:11:52 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x37, 0x26, 0x11, 0x10, 0x2, 0x100, 0x1, 0xe3})

00:11:52 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats_percpu\x00')
close_range(r0, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f00000005c0)='net\x00')
r1 = syz_mount_image$nfs4(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x7ff, 0x1, &(0x7f0000000140)=[{&(0x7f00000000c0)="93d7ac2a50c9fbd582bd4918d6bdaa312375e7e4b60aa60aac46ed53cf98c36f004a0bad1600117ea9dedae7a9ac99abd4f89b8045a351cf311204b5fb3445f4cbcc7ca1", 0x44, 0x100}], 0x800000, &(0x7f0000000180)={[{'net/ip_vs_stats_percpu\x00'}, {'net\x00'}, {'%(&[]\''}, {':3$\x96)'}, {'.({)-,+'}, {'(}){,@'}, {}], [{@fowner_lt={'fowner<', 0xee00}}, {@fsuuid={'fsuuid', 0x3d, {[0x37, 0x36, 0x37, 0x61, 0x33, 0x38, 0x38, 0x32], 0x2d, [0x35, 0x38, 0x34, 0x31], 0x2d, [0x36, 0x38, 0x32, 0x39], 0x2d, [0x35, 0x38, 0x65, 0x64], 0x2d, [0x30, 0x37, 0x39, 0x37, 0x37, 0x34, 0x66]}}}, {@fsname={'fsname', 0x3d, 'net/ip_vs_stats_percpu\x00'}}, {@pcr={'pcr', 0x3d, 0x24}}, {@permit_directio}]})
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r1, 0x40089413, &(0x7f0000000280)=0x5)

00:11:52 executing program 3:
mlockall(0x0)
mlockall(0x5)
mlockall(0x3)
mlockall(0x4)
shmat(0x0, &(0x7f0000ffb000/0x2000)=nil, 0x0)
mlockall(0x8)
r0 = shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000001300)=""/239)
shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000000100)=""/182)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x0)
shmctl$SHM_LOCK(0x0, 0xb)
shmat(0xffffffffffffffff, &(0x7f0000ffb000/0x3000)=nil, 0x1000)
mlockall(0x2)
shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x6000)
shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)

00:11:52 executing program 1:
r0 = syz_io_uring_setup(0x1841, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(r3)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(r6, 0x0, 0x0, 0x8000)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x0, 0x0, 0x800000000})
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index}, 0x0)
r7 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r7, 0xc0189375, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r8=>r3, @ANYBLOB="000000004a0000042e2f66586c653000"])
sendmsg$DCCPDIAG_GETSOCK(r8, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000001c0)={&(0x7f0000000480)={0x114, 0x13, 0x400, 0x70bd25, 0x25dfdbfc, {0x6, 0x0, 0x0, 0x20, {0x4e22, 0x4e22, [0x1, 0xf4c1, 0x8, 0x6], [0x5, 0x7fffffff, 0x9, 0x2a4a], 0x0, [0x80000001, 0x482]}, 0x9, 0x8001}, [@INET_DIAG_REQ_BYTECODE={0xc8, 0x1, "b68b799f03390eaed577c58f964c75cd00066d6149ddc800ace547ca357e3f5e843b24577f4a1a942d198c06801e97d71c9fbabbb8113a94a057cfc7ac0fab9be1cdbe79906567fecfb01510418b7544516460c8a774728d43f40b64de13667deea90252c3fc2162cceb47522cefc4d7671bd4b14f23d479523b0f2732767710d1bcfce337e0e9aa13bf59f5636b7f7039c65fe461e79e8589fc9009561ad57571f9fbe9750b75c6263a0aaee27e9861a7d46b3eb75fb925eac09665c91d20c5776fcdff"}]}, 0x114}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280), 0x1)
r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)
sendmsg$IPVS_CMD_DEL_DEST(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="3689d160000000", @ANYRES16=0x0, @ANYBLOB="04002bbd7000fddbdf2507000000080006000300000008000500040000000c00018008000500000033149ed2591bbedf8f36aa5ff697400751cfcc0b27978b9fad00003800028008000600f7ffffff0800060007000000140001eeff000000000000000000000000000001080009000700000006"], 0x70}}, 0x400c0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(r9, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)

[ 1721.906354] kauditd_printk_skb: 13 callbacks suppressed
[ 1721.906372] audit: type=1326 audit(1747095112.684:691): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11842 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1721.921020] audit: type=1326 audit(1747095112.691:692): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11842 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1721.943578] audit: type=1326 audit(1747095112.692:693): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11842 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1721.959515] FAULT_INJECTION: forcing a failure.
[ 1721.959515] name failslab, interval 1, probability 0, space 0, times 0
[ 1721.962108] CPU: 0 PID: 11841 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1721.963598] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1721.965390] Call Trace:
[ 1721.965971]  dump_stack+0x107/0x167
[ 1721.966762]  should_fail.cold+0x5/0xa
[ 1721.967596]  should_failslab+0x5/0x20
[ 1721.968419]  __kmalloc_track_caller+0x79/0x370
[ 1721.969415]  ? p9_client_create+0x51e/0x1230
[ 1721.970374]  kmemdup_nul+0x2d/0xa0
[ 1721.971131]  p9_client_create+0x51e/0x1230
[ 1721.972041]  ? p9_client_flush+0x430/0x430
[ 1721.972942]  ? trace_hardirqs_on+0x5b/0x180
[ 1721.973859]  ? lockdep_init_map_type+0x2c7/0x780
[ 1721.974865]  ? __raw_spin_lock_init+0x36/0x110
[ 1721.975849]  v9fs_session_init+0x1dd/0x1680
[ 1721.976775]  ? lock_release+0x680/0x680
[ 1721.977628]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1721.978683]  ? v9fs_show_options+0x690/0x690
[ 1721.979624]  ? trace_hardirqs_on+0x5b/0x180
[ 1721.980541]  ? kasan_unpoison_shadow+0x33/0x50
[ 1721.981517]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1721.982595]  v9fs_mount+0x79/0x8f0
[ 1721.983354]  ? v9fs_write_inode+0x60/0x60
[ 1721.984241]  legacy_get_tree+0x105/0x220
[ 1721.985119]  vfs_get_tree+0x8e/0x300
[ 1721.985905]  path_mount+0x1429/0x2120
[ 1721.986714]  ? strncpy_from_user+0x9e/0x470
[ 1721.987631]  ? finish_automount+0xa90/0xa90
[ 1721.988543]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1721.989534]  ? _copy_from_user+0xfb/0x1b0
[ 1721.990414]  __x64_sys_mount+0x282/0x300
[ 1721.991274]  ? copy_mnt_ns+0xa00/0xa00
[ 1721.992107]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1721.993222]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1721.994323]  do_syscall_64+0x33/0x40
[ 1721.995109]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1721.996191] RIP: 0033:0x7f543d208b19
[ 1721.996981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1722.000894] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1722.002513] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1722.004024] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1722.005539] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1722.007049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1722.008568] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:11:52 executing program 4:
r0 = open(&(0x7f0000000000)='./file0\x00', 0x149000, 0x80)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r0, 0x6628)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

[ 1722.026308] audit: type=1326 audit(1747095112.692:694): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11842 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:11:52 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)

00:11:52 executing program 5:
ftruncate(0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000001440)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES64])
writev(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000000240)="af59c39a861d566b2c9721ffcf8f5c4afe5a6cb7d86c55c8556220ce2b69e28edc77b4bb9ab3ccaecc95119e3ad3e33070114f8918a13ca2c27bd0b356b443c8c14ed5b8606c0ae06f4c98af106b0b9eb46ffcd46d68db50b7b05ad761d926e237973dfbb37f18948bde469f5d122b50b54894bf1d9d6e9e3568bc40807eff4f80869e55f14fe2a66056f90181812bd8765b89ec27849cf0c7657c13cbb5191c7c", 0xa1}, {&(0x7f0000000300)="9cf2b10b16624280941b0a5f9320e3a605d7577df3594b234814a4cf321aeea6b026ec99c06c73b414fb9f54fa939d", 0x2f}], 0x2)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0x3, &(0x7f0000000000)=<r1=>0x0)
r2 = inotify_init1(0x80000)
inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0x0)
io_cancel(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180))
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000440), 0x9a59aeffb595af79, 0x0)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f00000007c0)={0x1f, 0x6, 0x3, 0x6, 0x400})
io_submit(r1, 0x2, &(0x7f0000000380)=[&(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0xfffd, r0, 0x0, 0x0, 0xffffffffffffffff}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}])
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e24, 0x6, @loopback, 0x400}, 0x1c)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000200), 0xffffffffffffffff)

00:11:52 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 25)

[ 1722.100923] audit: type=1326 audit(1747095112.878:695): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11870 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1722.109296] audit: type=1326 audit(1747095112.886:696): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11870 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:11:52 executing program 0:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d4, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xb23}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r1, 0x0)
syz_io_uring_setup(0x3656, &(0x7f00000002c0)={0x0, 0x57de, 0x2, 0x3, 0x2ce}, &(0x7f00001a4000/0xe000)=nil, &(0x7f0000a0f000/0x1000)=nil, &(0x7f0000000080)=<r2=>0x0, &(0x7f0000000200))
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000500)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r3}}, 0x3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE, 0x0)
getsockopt$IP_VS_SO_GET_SERVICE(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000340), &(0x7f0000000240)=0x68)
syz_io_uring_setup(0x5358, &(0x7f00000000c0)={0x0, 0x6385, 0x8, 0x1, 0x2ff, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f000047f000/0x2000)=nil, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r4, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x5, 0x4000, @fd_index=0x6, 0x7, &(0x7f00000003c0)=""/179, 0xb3, 0xa, 0x1}, 0x3)
r5 = syz_io_uring_setup(0x2a7b, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0)

[ 1722.140940] audit: type=1326 audit(1747095112.886:697): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11870 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:11:52 executing program 7:
r0 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x4000000000003, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x0)
r1 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000640), 0x2, 0x0)
sendfile(r0, r1, &(0x7f0000000680)=0x7ff, 0x9)
r2 = fork()
ptrace$setopts(0x4206, r2, 0x10001, 0x3d)
r3 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace$setopts(0x4206, r3, 0x10001, 0x0)
ptrace(0x10, r3)
r4 = gettid()
kcmp$KCMP_EPOLL_TFD(r4, r4, 0x7, 0xffffffffffffffff, 0x0)
ptrace$getregset(0x4204, r4, 0x0, 0x0)
wait4(r4, 0x0, 0x40000000, &(0x7f0000000000))
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
syz_emit_ethernet(0x3ca, &(0x7f0000000980)={@multicast, @remote, @void, {@mpls_mc={0x8848, {[{0x5}, {0x6, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x1000, 0x0, 0x1}, {0xff, 0x0, 0x1}], @ipv6=@udp={0x8, 0x6, "f95265", 0x380, 0x11, 0xff, @mcast2, @mcast1, {[@routing={0x11, 0x2, 0x0, 0x20, 0x0, [@local]}, @routing={0x2c, 0x6, 0x2, 0x0, 0x0, [@remote, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast1]}, @hopopts={0x2b, 0x18, '\x00', [@jumbo={0xc2, 0x4, 0x401}, @generic={0x1f, 0x9e, "257fd8509eebbc61c8ee10bc7da0940fdd1928da23f6a4e92d8dc74f71ba71f2acf851034f3a823957b365e03a5763404148b42fd4fd881fe8617defd8db07d38eb3cc9ea53dc23f26939485f278c97be1f7ca961b8108180813ca0563df86d38c0e440f94725d29e4323fb7ecc687e5946e3b2d67b1f9c66d44efc18afd3fc6b57597736427792a557166ef2056c56274119b9278a91f2b163c31dda72a"}, @padn={0x1, 0x2, [0x0, 0x0]}, @ra={0x5, 0x2, 0x8}, @enc_lim={0x4, 0x1, 0x1f}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @enc_lim={0x4, 0x1, 0x9}]}, @dstopts={0x33, 0x10, '\x00', [@generic={0x1, 0x80, "6d11dacfa0d9497c4a6d84eb60978cca9f847606938089fd8db0bf6caa46ae5f1abf29ccd7cdb19af7594cc1071c730429c4622e8c7f535f713a8f8c7203d131479b11b3de99e7bceb46c758cb7f37d6b221a28944c2c63f2373319af8a235d4083696e8711b26832a1470744322f756625d0891412e442a9310b6dac1cb2db5"}, @pad1]}, @routing={0x2c, 0x14, 0x0, 0x8, 0x0, [@local, @mcast2, @rand_addr=' \x01\x00', @local, @loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @dev={0xfe, 0x80, '\x00', 0xf}, @mcast1, @private0={0xfc, 0x0, '\x00', 0x1}]}, @routing={0x1d, 0x6, 0x2, 0x7, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}, @fragment={0x1, 0x0, 0x55, 0x1, 0x0, 0x7, 0x8000}], {0x4e21, 0x4e22, 0xe8, 0x0, @gue={{0x2, 0x1, 0x3, 0x8, 0x0, @val=0x80}, "f2e3ce6e1385d1b9e7b8fe99c1864b11d13f4514be028c758f733f02f20d58526128b1958fa989aa5fc38e66eb40fdcabb5b5a8e90df9c5f9c3affef3572da5ec889c74fae9e09eeb2bf4e4620fbb66016415b3aae7e321f64376f3a0115c2bcb780e642639ce14cddfce11e97dd6308f5e6a7191cc79107e50b1bcdfc1a01b49e39e636bf3cd31c6d280f138a8ca6fa915bd08c801521d3afc3841e94b8ce4fcb4dfa00a39e2e4a0f91501606f98c251dce6cd5522f5e9cef1bdbc76b2b25d8e149cd01ba3332819353fe41ab7064e2d79b1bf49f68f932"}}}}}}}}, 0x0)

00:11:52 executing program 1:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
pwrite64(r1, &(0x7f0000000140)="afc9", 0x2, 0xffffff)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {<r2=>0x0}}}], 0x20}, 0x1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0xe}}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
syz_open_dev$vcsu(&(0x7f00000001c0), 0x0, 0x111000)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$IOC_PR_PREEMPT_ABORT(r3, 0x401870cc, &(0x7f00000000c0)={0x0, 0x4, 0x31a9, 0x9})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10008}, 0xc, &(0x7f0000000100)={&(0x7f0000000580)=ANY=[@ANYBLOB="c0010000190008002cbd7000fddbdf25020000004a73e41cf73025201f3f7a257d5decc57959f20e7f1092a31ad85de9583be0838c4ab800bad4a6ee41ee6cdbec7fdeda0b96f14008defe15aede0ddc3fda7a7e23a9de923f88e8bc4f58f4d5ce8b401165e87e8294c121791db6fdeac1e3eabbdcb69e8dcd83fa90afb9e9179ac48df9e53843370d1d2f073b76f2d8876f3103b1deaf866c831af88500884163598e3e1e54cb988b7e747377cf28dd28ed8c8721c7628eddd32bb6418120f683280f6e07596a08002f00", @ANYRES32, @ANYBLOB="96554e5f7154eef98d2cb87f81008aa8d4e20c933366d1ccc9c5a2e5a1d0eedf76b9dd3300709dff81f4f3b284799701489e5fbf190dfac9eed672bfc7443ce24a0b5d86eadf2ad023da947bf2ddd5adf2b9fb81b5427393607b30c86349e4f6a03ab993500000000000000000000000000000000000dded6bacaa0cb48b9a7b7a5dbaa0b7826f8e884da7bf6ae2e72ba18f602230963cef944929730e237f4b45b6c3eb3fd02e53b996c382f2687a7aa83dc2f29ff098b367bee04d15821b5b0f41e07e7e41da4c11e21b6ca7470b4e3236578771b12e6136e71b52379387c3f4b2a312ac61d894b9d36806f7c50f8b9ae6ad696ad94f6d09b23497e21f20801f3a298a2a97f6721903c57eb7def61627150a9f1950cea20c7bc5bf", @ANYRES32=r2, @ANYBLOB="ea13a6ae7973ec526d0404fa41ca060626f4ef43b02bdd6cec4389b20f3930409eb2e6ae6448d77cf6b2ee9f69feb0a053fa53d3df57f18d4ac70d9e08003d00", @ANYRES32=r2, @ANYBLOB="70780e9ba1f9b5979b9c2c5df17dffff0000000000004a0faa426cbf35eb691395feab2659699131c41ae31f1d65c8e5380000"], 0x1c0}, 0x1, 0x0, 0x0, 0x20}, 0x4000008)
r4 = syz_open_dev$sg(&(0x7f0000000200), 0x400, 0x4b5055df24c3a93e)
ioctl$BTRFS_IOC_TREE_SEARCH(r4, 0xd0009411, &(0x7f0000001e00)={{0x0, 0x80000001, 0x0, 0x7fffffff, 0x3, 0x10000, 0xff6, 0x9996, 0x1, 0x8, 0x6, 0xffffffffffff5962, 0x1, 0x5}})
fallocate(r0, 0x8, 0x0, 0x8000)

[ 1722.183098] FAULT_INJECTION: forcing a failure.
[ 1722.183098] name failslab, interval 1, probability 0, space 0, times 0
[ 1722.185693] CPU: 1 PID: 11877 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1722.187155] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1722.188928] Call Trace:
[ 1722.189486]  dump_stack+0x107/0x167
[ 1722.190248]  should_fail.cold+0x5/0xa
[ 1722.191049]  ? create_object.isra.0+0x3a/0xa20
[ 1722.192015]  should_failslab+0x5/0x20
[ 1722.192821]  kmem_cache_alloc+0x5b/0x310
[ 1722.193677]  create_object.isra.0+0x3a/0xa20
[ 1722.194596]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1722.195667]  __kmalloc_track_caller+0x177/0x370
[ 1722.196652]  ? p9_client_create+0x51e/0x1230
[ 1722.197632]  kmemdup_nul+0x2d/0xa0
[ 1722.198382]  p9_client_create+0x51e/0x1230
[ 1722.199366]  ? p9_client_flush+0x430/0x430
[ 1722.200264]  ? trace_hardirqs_on+0x5b/0x180
[ 1722.201190]  ? lockdep_init_map_type+0x2c7/0x780
[ 1722.202189]  ? __raw_spin_lock_init+0x36/0x110
[ 1722.203155]  v9fs_session_init+0x1dd/0x1680
[ 1722.204064]  ? lock_release+0x680/0x680
[ 1722.204953]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1722.205962]  ? v9fs_show_options+0x690/0x690
[ 1722.206902]  ? trace_hardirqs_on+0x5b/0x180
[ 1722.207810]  ? kasan_unpoison_shadow+0x33/0x50
[ 1722.208771]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1722.209850]  v9fs_mount+0x79/0x8f0
[ 1722.210594]  ? v9fs_write_inode+0x60/0x60
[ 1722.211469]  legacy_get_tree+0x105/0x220
[ 1722.212328]  vfs_get_tree+0x8e/0x300
[ 1722.213151]  path_mount+0x1429/0x2120
[ 1722.213955]  ? strncpy_from_user+0x9e/0x470
[ 1722.214863]  ? finish_automount+0xa90/0xa90
[ 1722.215769]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1722.216749]  ? _copy_from_user+0xfb/0x1b0
[ 1722.217709]  __x64_sys_mount+0x282/0x300
[ 1722.218547]  ? copy_mnt_ns+0xa00/0xa00
[ 1722.219373]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1722.220465]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1722.221572]  do_syscall_64+0x33/0x40
[ 1722.222356]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1722.223426] RIP: 0033:0x7f543d208b19
[ 1722.224201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1722.228035] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1722.229649] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1722.231136] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1722.232627] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1722.234124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1722.235584] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:11:53 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0)

00:11:53 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x9a, 0x1f, 0x13, 0x7, 0x6, 0x2, 0x5, 0x16a, 0xffffffffffffffff})
r1 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1, 0x10)
ioctl$RTC_AIE_ON(r1, 0x7001)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, <r5=>r4}, './file0\x00'})
dup2(r2, r4)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r6=>r5}, './file0\x00'})
ioctl$RTC_ALM_SET(r6, 0x40247007, &(0x7f0000000340)={0x7, 0xc, 0xf, 0x1c, 0x0, 0x20, 0x3, 0x132, 0x1})

00:11:53 executing program 1:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r5=>0x0})
sendmsg$ETHTOOL_MSG_EEE_SET(r2, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)={0x20, r3, 0x1, 0x0, 0x0, {0x6}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x0)
sendmmsg$inet6(r0, &(0x7f00000024c0)=[{{&(0x7f0000000300)={0xa, 0x4e23, 0x9, @private0, 0x5}, 0x1c, &(0x7f0000001680)=[{&(0x7f0000000340)="cabb972973013424cc737bda5e757e0054d067c2cacd8ad216a4d92bb9d38c8781db549e09ae99fba997c2daf906e79efd7efe4c2fa558baf95a48a9b6ef5cdb9c278b4530d3e16c36c08f90bb17e2f69855416b2fe0f01523205c1498254a80dcd2587e70c7c6d6a65369c9cec38602a2391bee1a5f7a8b17041582cdf4662f9bf4d6dd80293efa963f609d721ea7a49cadc1a06f217b9e0139c6eb7752c553a4f681a7c4b6c59e705b9dd1299e903a2c77721b949d472a49b9980ce1c1", 0xbe}, {&(0x7f0000000400)="6f81e9f3d7e5d153237371bc3dbe525b1367377a837abeb3523fd7c7873ce1db27517d5eb311a991b1b068ce90bbbc5b8714a14fd6d2a5c8e83eae6a1b8dea233a05f6d09a24a0c36629971337dfa2e333d96add13d572572b2e884d0ccc93f471c424d67b28ef370e90870c49b245a5218e8c8a1832b9d8666e09d4516a733661b6780c103789d8c62bd200498a349e72e189bffeb355ce7ed20ce1930f", 0x9e}, {&(0x7f00000004c0)="01eb77e36b8b909e7e17b550a7b90f6420003ddba9ad0147e3c9ebff5ac3f2378345612982fad75dbbd86d0cc59582548a9a607391b9753f7d228f110f4057036ba2ee84a496fa107ba76af5939f9fb5d89d146bfed1eca291f4599b50be9c625e8d6ecc31cfee3d6b3b1f8e22a0435742eaf0eb9df55ded0921da26170dbf64c59bcf5da29a3fd38d6861f21e3354f42b16fb169207bfb9c7bb08e8e0895f6802da61db8f0b2ecbfa3ece07d44c6a1df06f41a61c03f2ddccfcdf7d9098af76bbc5e1581bcc49a3728a2d018cf987852c954a81a9a26001bb15b0731c80b1c3e1357f8e29cea11a6694cd91bb65efadc274aca3f5c414ce62d9f08a0855ef369b548af3237fc94a593181609463904bc7ccb902b681306ac937eb41d82895630329afd6d65345c422ddcfd39e5842f183b2eabae37c541f0671c7cae861bd0d9abb6d41e0c87904cf383a7208a795996e9b82df9ac7b6572513ccb4767072f8334965da42a525566c60b7e09ef3f8b85079ece85749d303c0383086bdbd941a35c2132ee53335bd8a7b3f82cbb3ba810534bc4bfca3d406bf05bb2645c32ad69cefcdc1b402625c8af15a98220c01d1839777a806d8c4c6d8dcff95b572bbeb06e34727786f26654e883a9dcfebab16ad35485b17cf1f897a3a126ae26821d8028a485c2a3a54116989a56c307707c664310b5134f1b7e0c8d1b05a7cdf9ff4a3930ed044b92a3e657511d02ceb89c9a1786860667babf7d3a63d4ef388d555709d47e1f1ee90c1f1d6809d877d4a24ef8d42e18fafbab3cef62f3a46d4b9f86990c32244bc427ff107bb52fe86d39e9759b92097ae464b11b0cc4931ecac9785e57fee6a2a65356fda64746e86d593f871240f8843ec091f585f11a3912a7bfdb1a36fe22fa68edb2e45f51b40121fb49636a4e85b73b2df1a8d4ec222b72624f3b960e1f6b44fad29fb4ec6e5780274b15bcb93a1a5f450e48dab57be6f605ef163a977f4163002f76a2235f9cafed5f7cfe41dd55d308629af52ab8f5070b27d93eaf557a3acf1dc2c319d365c4ceefea1db63eaf31bcc717186f68fdf0aa0c60c9b5d62bdb11e96d884a6e6fc9063e5392bd33697f63b44f2a268dc61448e82d1842db01e1d8200a7ca477a0e02eaba1ef08451ef4bd6a2499c1d38412b596f1b6cb031ca21489b87eb9f36827c6d1634b8e6598aa559e291c4a7eebd6ef3224cdca060f9a07d931061adc23873633ee735709a942f6c5a1b3d9d03e9d8bca748fb63ce080ee7ef2bfd69e582ae2de86c86eb374ead00a3f82d56d84eacdb21d7166c616042eb1a8c95f658bc25c1a7d25328984ed9637ade71bf39ddac4cd98b9d70b8f7125408c42b9e4f76bfd94bd9bbf24bf7d668327e28dfca13ffc1e925b5185293e8acc6ab7b05651156a56fc88f8ec95d62b1ac0372f4c70df93cbcbf55ddc6467e0d260a9493f76063a1176e12732229968e1e2c8ef662d20374ab0db29bfa9be57f75e2c28e13f30f7ad7dde9534c399858946b8a326952108d3316492ad96259d57b0e7a1424fea55c65c1505d681293f3f8f503ca3f2a260f7be678711097ef1a6bb2beaf30b75ee75b82b3574c57cc46bae103ea8317a810aa1fd823005c8605edf7a2bae727d965ff89d8aa1d82d605162972d223deec3ff00ab0432eb63fb4bcf5f7b42a77e50595416ec5b3ad71f3b863be82a2ef410b40953d7e8dcdbdb3c7ef4cf894ccd61d70e814e15dc2176bb41a68bdc9cb74717dbbbcea98dad204ae289968f2eac796f78d0e108b05730239146d9dbd8c354a5ecfaa8642190b8cacfbc9586dca81aa978753f783bb97629ad162530258bf5405c1e6078a522b8ef8406287c060a8fa438f2b87f82a220f2fc78d51de84a68d0dc2d340f6f92a7584c608c18fb6410e2e0e7a331df52fcb47020509f32e9e6b69001eb31a1a3029cc7c9ceac7cf8e0c49a6b9af0807d2340d0d1b9b117446e0b9e0af64766adacded84297ef88501622f9aa42a134b32284f8914dafb138148816b3a0a743fca718d01c8a955a04c0273a9f109cdd3102246809de571986a075272e2cebe532a0404191180ba15537ff27605d812bd3a18cf048c50e16c897e666c4be2e96ca90696b1834e3f77f85cde04a7f33946da76fddb7f72b69fc5e86d0dfa7071cef08d8ecf0bc559e24edc1db2f843d41c7c856a1eba033619165a3635f80cee950f9f27c670b2c9c2320b2ec1b332fe61bb5e0c21202d9bc0219120f9a87e1ae0d6e8baaacdf362352a15559c509d9d59abd778f7bad0ce88f2fdce83eb417a9c0255d6db95fc6a56d0b6da7c7340dcb1a84f565a73febccb443a19fb41b34bee874817cf9c2f8e21ee1dbea233fc9d0fc26f3878b692d00812347978c57d8c6d20ae37ca9e39d9a16fe60ad1c9a31c0732c36790cc08d37bafc7e8eb1a01a0bdee7cd50430cd9dcf80c58a06ca2e268b99e5e5080494976226fe9fcb9a053499c2270f71bf7378bbd188073e166864c071bf2f0984a72d2cb7e9678e47d5aa79fa976cf490a9e99ca45a2adbd3ad1ee2c1a8f14d51adb59aed8e715a30851192cf4474b7164ecf0c3787424a1655ce0500c3b99083397d3e33afc6ebac4c0cd1666986a58912176256191f2e0933838de310fd28488a7f977f89e5ff2293b6a9e558d3424f289a4f338a85217b6ffc12fe9c27382e975429abd677c183fe93083fa18fb8e2335f64c587c944833ade6dfdb610a4217ab334aefbdf92e22af5c88446354139464812174042f4ace372bb3868b03cd39168770dd9e62884e4bd4d31fe40037b94d86287f96ea29b230973f2fc8af09f4242e4b039a5396a40980159876a0e86fc1a99c5559943f5ad5167c212b1244cbb86f90453f442488ba82f32fec1f8b2d947792e2a92589814a8bb9b411809d9024253a3f7cc0daa910149e7c6c202cd0bc3091ae004763243434bab9e480107f8bb588a9df38d2d00c1770c97753ddec3b1769b11b36edee592e7486345051840b1dd4bc426199f7b02731a72df08eea26dcd749c3bdd43f7af332e50768d458542b1a969c07d2d69050cb2266397eaf8598634da972bf4825f4f664bc2afe67df481f5e68071c39d1bb556b861de9883afdd4a049830308084a0a0fc3ef01107ce3b10e6c42e36277f74110e4345393de8392de8555a696195669c8859b301375f1c9ca0f4b056e61291bb09cb261f2e6331026edbd935074f5b70910021a157052ccd3fce5ec1821a7115f9dc4f5e265cf6df0e24bde56593daf2998f8e018654f7401716ad5a38d29737704548d777d1c2192dfd963bd11d9b2ecccec697656de907b9ab9f7c67dc0572ba10087480b48de192db0af691c133373ca1f9e50cf0685f03a0fa43895e8d7fb457d5af02dc563776a0f9c7bd5dc31c0cbf31b6a33c5b5ce5f66b63548a7f77a3088ddc14927939ebb4d7d2fc6f06d06cb6e7d067378d35fbc543770053c5b8edf14cc2fde04b9a14158aa5462bfec553e0a969181b2f662f04bbc3e62969f8733e8d18ac5602c695073f9e32397e11384672dd8e67940fa5aad958fd69d4072b413be7619b25a466e578ea35541048ccadeda1d363122de201be042bd0d3a2a5d33967ea6a1d6d10337a41333e53dac636b0e1c79d6acfc537a9a1a2b2c5d9329c0a22d9e9dcf0afbab1d164acc493c160e58a1a5b82fbbf6768d7d4d2762398db54c3b1fe333ea0fda14ccdce9e1823df5dc3fb79b9e0d5d424969ec0f332f83453d32c851e92f25b380fec44f9ce97be31d8f155804e04834a8bc806448adf0e8d3c79ad573b615c29afa69f351ec0a41086986d1d172d79e1d794737b9d45a995aa81ddd29fe96aa4280ae89b28fef3098c74da2c0fc12eb405a7ba4670a55cce4bd6e58fcba20c47b2731a58ba6f0183135a5e006b861235a9a33feba474cf316b37149c6ea6d09e5bb74cd020c9db27b9dbe2910b25d8a81506eaaac8a9aa467051b0ad16c512313f88cb70d0e095e54035257a03313f69a2c1a850611d0c6feeca00cb52251fa10a36084e4d32e59e4181f5867ce55f1197e3f567cd5fe88014ee4b5ef1d7999d70262f420823ba7cacc8decc720cffbf24673fe398f5733e8320f159c70593b9892979b38cc18735da2823c636a8a0b671e1837c6a14df96a9aab36fae4c9bbf1ca964351158a5a6f2aa62b411e700d9908cac12f02fc819903b254eaff2376f7298c8abb83f3f8ea19aea3dd53fe3ae2d8798675080d4a20c69ca12a2afbbf571636bd65230d6127288314275c20e709b3cf291fcc2fdde98a6d498ec1f5de53219a90f575b5ba098a2c54a9734ea489eaf7d04be11169d259a267da620af7eef4105affea852135e8c8017dd1b80d61869f2c4e30e6eae919737eb100b71dd9cdb3fba88a890e9fd555e0f70fdff789e740b0f7a8e6ecdffdda699ed625d4a46ebf43d337b4c895377017840f2959dc840fad1e8db5c216616e54bdda68741f262ba19aacea65405218ac11fffae355c3bee52e529cca90fc3041376f15a711a1da5173dcbfa6ab1052caf2e15b47293ef1f87ceedad6958f1dda0550f884da65e2ac536d08c8b140af405248417ce0e338cfaa4ec9313bb27b97d2f3178f39a728167fe0fb2ac9461ea181725fa47be78a8f5b561bd138c1fdf6ca4d2ecbd173b721051a1d3837605c3ebc56501357aa595475501f006227675643402d91352874ba603b11ba21100c6363fd4d5b525a98876555b769ee9441b4cbaea62334932c1ac33e4928209f098a37223411b80dcc7e42f58d9fb2112f1cdb6409b5b30ea452bd955b628a8e26eb1bec50b73503096bce6dec1bdda0425183e5223d52593b0cab27ec09d578c90e97d1c0f29029bb21c37b63e941f06ecdde73ea0b96b658a3c85cbc70e2a044a81f9d502f1550f857376264b0e58fc631d87c8b22499c33227ab8869593137be50ad54ceacb5e542c3baa90e10ac0663bc0bb73ea0f787e618bc2b226d3bdeeef025cfe7e9d41eeeeb7bdea55b5648d19865b3e416f022adb94e5b08b0bdeed4f153a5ab7c49c34d623f1abb63be9b5373defdd574ce42514d86959092a10cb34aa417b0069aebee9c27d754270cdc1369e5fbca47199180dba62b6ee9261b86910ec85afd6f3cc4be6f30c22a28de8884c3cf0873342aec1e3f8bf8729ee65d8902a188390badef033ceff3dbc3cf6015d26e44fab456e0946439f11f495b1c0233be283c3e185794d9202d52358f78a0f4effaac0542553bc4c7a03cea7e155ddae6b73f2d777505cbf398c7ecd19e37e3562049dd494db9eec2af9f855a75a3101d657b6493951a0207a9d07017839bf63595c10f6fffec9260fe143137c782bbb9ec9adce6dacc4188d431313ff264e2804102077a362cb77548566082f700ae192678050faa7ba7fbc461a19b8f2900dcf252db74888332cca5cf6db3a178f8f6cbe4a75a3cf53a19a84bba5a89e37b1c0b4b791b52edabd983e989f6f52a8edf4288bfc187353c643efa0806882b63fa867139e24c156042b43930ecca4ee9c4058318ca7141202f911ae8134a918bdbb4dbc15653f3b5589204db8a069fe9a8246aa43dcc35efdbd8db6365a7d6ed95f1726e00c58b796ba23743cd32eac3350a7b89cc2684939dc3c14edc4bcc9e7542e72972a24e5b811c41a95b835cfdefc9717973063497b0808aa3ab72b4f533f28b0f155e4799c3a5005d000001b8065e985cc28b36a2d1f51e1a1e14aec15b7258ff67235f970997ff367bc0eb3a", 0x1000}, {&(0x7f00000014c0)="118dedac520284a153c4a07fc8613dbf3c373755031155f69860eb3d7dcf89a8381d38432d41dc52d5d16fac2f3696c36c8e73f8205c87e42aa84bafb36306df696707cecb5135d9315a8f5ade73f632ab6c7bd5914514fce9dcf8dcd00f77d03586448c2f1ba673d48360a84bbf38d3c56a17f8d7b0c232269c5defa93ce24ec6b0f37aca0a7f9fe1eef3eb9ab3ef3dfb241872615ec4", 0x97}, {&(0x7f0000001580)="f6b69f479361ae32be35bb3b96ca15cb51f6bacca83fa575eb650f8c0f61a8ac664e6d27af4d941976df3e4e5ddf110a7056cb41ea7ec75a086a6e89cfc9e5bfaea5731e6f30a466aa3768c615db90d5a1f4f0b2b364dab1fe50fe420ddf9c307cef95789aa0d0746cee5330d083d0d4b2a4425a2d4fe05f46dc6f02a10afbc967b09c2edca253d1523a5dade1c50e1bfbe27213909917370acaa42c550e899d542a661cd173aa465bb481f58eb8231d0d2d2ff4650e5a9f94be4314a7965c295b3d7304ecfb4256e822d056a6b6987806f8b8c3625344be0a7759d5ea142676fb589e17a3e02d015f51", 0xea}], 0x5, &(0x7f0000001700)=[@hopopts={{0x30, 0x29, 0x36, {0x6c, 0x2, '\x00', [@enc_lim={0x4, 0x1, 0x7}, @hao={0xc9, 0x10, @empty}]}}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x2c, 0x2, 0x2, 0x1, 0x0, [@rand_addr=' \x01\x00']}}}, @flowinfo={{0x14, 0x29, 0xb, 0xabe}}, @tclass={{0x14, 0x29, 0x43, 0x5}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x62, 0x0, '\x00', [@pad1]}}}, @rthdr={{0x28, 0x29, 0x39, {0x88, 0x2, 0x2, 0x2, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x8000}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xffffffff}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast2, r5}}}], 0x128}}, {{&(0x7f0000001840)={0xa, 0x4e21, 0x7, @loopback, 0x9}, 0x1c, &(0x7f0000001ac0)=[{&(0x7f0000001880)="d28556c418ed64f48b1646a713e055d51256405fa131b099516beb2be12026b7a62cad2922f345ca5c1a55bbbe168bd4d4178a46beb0fafcc2ade4a24f2454b765858b27a9", 0x45}, {&(0x7f0000001900)="b4d66490b8c49f0cba35df430fafb8758341f0024491016a6fa1e3b81c0ccb30fe7a96ec4a0b80b291c9e7d0fffb62b3693b093e366d8347042818111859e5bd7af77f53eece83b9634dd8e6647b637b370cd25dc92619adc02b949f3703b021fb4244da61dfbd141be502aa86265f2d13a4e564bd31df4b58dd6002fd3d54687a26072ab18abbb445bbeeccacbaa2659fb3c3b8369a257045c87c6b9f207d73e5f7d7b11d594efe5db88d0103ec7be1d61bbf62a85de7c80c296ebc8b6b14add367e77a861453bf95ba2322c1934d488a5ec16e9ee0683100111f2ae6f223776e5aba1387373f13a88924cf4cd7edbff9", 0xf1}, {&(0x7f0000001a00)="93142bf785a7425757172445ae3d5c93a7d1cceefa99b0a7fd8ffb57fab779e96e2229c14d1b78812bc3ea9cef439483ef358764dd63c0f1c50d17549c75ce968978f6638e7ce2b4605af2a6294a30e64073e66d962043ab192c36e68005209d85b8944224c6547bf622a09f8469afacebbbd865b620f9b3c88157e40e77d7c40e60b402304e964623d8bbc1ae8c2386f4", 0x91}], 0x3, &(0x7f0000001b00)=[@dstopts_2292={{0x20, 0x29, 0x4, {0x89, 0x0, '\x00', [@ra={0x5, 0x2, 0xa96}]}}}, @dstopts_2292={{0x40, 0x29, 0x4, {0x3a, 0x4, '\x00', [@enc_lim, @jumbo={0xc2, 0x4, 0x1ff}, @calipso={0x7, 0x18, {0x0, 0x4, 0x2, 0x124, [0x3e, 0x3]}}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x4}}], 0x78}}, {{&(0x7f0000001b80)={0xa, 0x4e21, 0x4, @loopback, 0xe9d}, 0x1c, &(0x7f0000002180)=[{&(0x7f0000001bc0)="7b4c626b7bf1c721183a45c3f6021c7cb367aa4f5d00315075fa6e78f253", 0x1e}, {&(0x7f0000001c00)="d57e2ed7d05d9249afb845d6a7fc08e6d77e169f73515ec8956284866d415f8dcac4f83b188d7b1ab2db5d3c08da6e76a315ec2d908b8de3e40bd8736ff1318cad144dca7a18c3a1655a57b5540eed7f0b942a4bf22248ecb5f21eebbce596d86124c44f78040a642bae9824e0756cf33ded2547079ad816c094b1565fa56422cf8f1346cb181f9542858c24fdb8cb5af4784cd51cebaae036ffa229930476b52f39d1", 0xa3}, {&(0x7f0000001cc0)="c740c99632aecda57d8d3a5feeae81188bac0a80828ca04c3968a848972ab0ed257e3a", 0x23}, {&(0x7f0000001e00)="0d5040f8272198ab13711cf19b8557c8045170ebaf895091c95f140c13e45ec7b1de48541672d2b1436d32c139b8b8a9edd9cd990cb6a9ad158d335462764f4f0d12f8c600bc463a013f191eb4c466183d8e768ffb2a3eac5997731f5ce2ab0ee52faffe6d32f6f84c37b7610cd553cc96c2edf6aee32994b7b45ad9bad1cad1ebb282c4a1d90cd272bd701ab889a005f2b0a19450d88325e5a2ca467cb04918a236ce05fa8be6116af0853628154b876775f85c29c55103abc78c9e23d8e84dcb2d3ced9ac6f3a1c3aecd7ff0352cb56e2e9f0bcddae5e3f65f97c40d6ce5232fb3a2fc6dc37bf624c59fbd636a", 0xee}, {&(0x7f0000001d00)="7c52684812c4a5ce7bcc542d62659004771047c95d4ac879", 0x18}, {&(0x7f0000001f00)="56f666077b31d635fdf9156c44db4d36d64a20dcebcab22603a9ac9a72a5ad47c28aa432e775f28d9504c8569cb8750222c915c008f4a2581c1b8093280da1787f3ce0ba2b48083a", 0x48}, {&(0x7f0000001f80)="5754f59d4b0e02a2b05f77b3442a4738aef4b8f0b51883e0c59d03abfb60d9aee7c06e50f2a6d0cc55e8137554a1fd4029c6082a554832c41d670a555843cfb1dd2f040620d3fe604702fb9778136777f677436b5fa80037b75902c398c9f2c6fe9fe60b381186515361d6eb9b7215f2e18e38ab70a9fb4c573ffdb9ea02e8906dba864f32da47ea80c35badaaa0f826d8053f4c4cb62b57a108c58b03203113f4fa2f29ca6bfb8e162c857090556e5acc3fa7918de8dfb9c436689ae0d7dca316e098dc77cee21b64c0468bcaad4acf3258eebc83357973b4e1627fe15fd4071dbd39e576def43971d864022ded83b34a", 0xf1}, {&(0x7f0000002080)="8083a456b50c415d4aa1b34630814d8cdc1dd82bed0a6c40305badfe04c870e639d066caa602cf6262cd7ad9020e08c50399774b91a4e558c16e338af155f32f89aa5f79ba2fb5ac820b4aab56b7fa5d8ccb9881d13060d15614890ab21c4923bbe53917", 0x64}, {&(0x7f0000002100)="8a92a35114d18eeb63c741530e1ce6090131cbbfeb13365747170e6552e8164fcc997e9baaaa96e912654274cd380ac2c15ac30eba032b2aa107bc7b4ddd3164f0fe83231d0b7bd085c8fd0044fad8d6ca868e06437ee4806551e0b683f58b24e19955a7720693cb45b465d12d85f2725535a6ca7d67c5ae17", 0x79}], 0x9, &(0x7f0000001d40)=[@flowinfo={{0x14, 0x29, 0xb, 0x7}}], 0x18}}, {{&(0x7f0000002240)={0xa, 0x4e21, 0xcb, @private0={0xfc, 0x0, '\x00', 0x1}, 0x3ad4}, 0x1c, &(0x7f0000002380)=[{&(0x7f0000002280)="2882c53a7d92e2e8355b2d1d8926a7ec7cbf77b696e3d384e0a61fe0a13d2a701942e016a7bd83f143b670b4f5650b7a144ba8bb4f878d3eaa32069773edc6368927aacaf65153c02081aed10ec99d8bded3635872ddc9ab52ac19399ae5a906e15ea8ba9531bd87ea761489bdb4dadb00088a7ea07c4b2219ac209105610a79a6ab828649eee8daba3afb8ca46e97bfc571b3c13f5a98069134425f1a042974ecea08314b74061cc350d9c8dd0365fa1a95", 0xb2}, {&(0x7f0000002340)="2dc835b79dfd9b6f93785505e264efb876d7310ae5cb77bf54af4889003e3e3cefb0b1296c82ac5c581d373837ed14", 0x2f}], 0x2, &(0x7f00000023c0)=[@hoplimit_2292={{0x14}}, @rthdr={{0xa8, 0x29, 0x39, {0x32, 0x12, 0x0, 0x40, 0x0, [@mcast1, @local, @private2={0xfc, 0x2, '\x00', 0x1}, @private2, @remote, @dev={0xfe, 0x80, '\x00', 0x42}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private2={0xfc, 0x2, '\x00', 0x1}, @loopback]}}}, @tclass={{0x14, 0x29, 0x43, 0x5}}, @hopopts_2292={{0x28, 0x29, 0x36, {0x87, 0x1, '\x00', [@padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}], 0x100}}], 0x4, 0x20000800)
r6 = syz_io_uring_setup(0x24, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r7=>0x0, &(0x7f0000002a40)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x6, 0x0, @fd=r6, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT, 0x1)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000025c0)=0x1)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000200)={0x77359400}}, 0xffff9fec)
syz_io_uring_setup(0xcec, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000240), &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r7, r9, &(0x7f0000000280)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0x2)
io_uring_enter(r6, 0x76d3, 0x0, 0x0, 0x0, 0x0)

00:11:53 executing program 5:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, &(0x7f0000000000)={0x2, 0x80000001, 0x20, 0x4}, 0x10)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001b80)=ANY=[@ANYBLOB="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"/4469, @ANYRES32=0x0, @ANYBLOB="e14863c2eb8ec108ccaf0a5373fae7260e1e128dcf9d17093feaeccfcba24a570e9a465743e563c5a6e87747f0136c737356e26b21bea3e222d18be4321ab9fcfef25cece8af8813f3dd275ae048751b8546eb72b30f440865b4321526704d03d38f9e900a28970eb7f1975b696feb864c498e054c01295fa0ddc83650d876e199e2c0f5001b0002"], 0x1214}}, 0x0)

[ 1722.388304] audit: type=1326 audit(1747095113.165:698): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11891 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:11:53 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r1 = dup3(r0, r0, 0x0)
clock_gettime(0x0, &(0x7f0000007440)={<r2=>0x0, <r3=>0x0})
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$RTC_ALM_SET(r4, 0x40247007, &(0x7f0000002d80)={0x37, 0x7, 0x9, 0x5, 0x3, 0x1, 0x0, 0x142, 0x1})
recvmmsg$unix(r1, &(0x7f0000007240)=[{{&(0x7f00000000c0), 0x6e, &(0x7f0000000340)=[{&(0x7f0000000140)=""/40, 0x28}, {&(0x7f0000000180)=""/43, 0x2b}, {&(0x7f00000001c0)=""/21, 0x15}, {&(0x7f0000000200)=""/27, 0x1b}, {&(0x7f0000000240)=""/248, 0xf8}], 0x5, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}}, {{&(0x7f0000000400)=@abs, 0x6e, &(0x7f0000000b40)=[{&(0x7f0000000480)=""/109, 0x6d}, {&(0x7f0000000500)=""/58, 0x3a}, {&(0x7f0000000540)=""/136, 0x88}, {&(0x7f0000000600)=""/139, 0x8b}, {&(0x7f00000006c0)=""/240, 0xf0}, {&(0x7f00000007c0)=""/214, 0xd6}, {&(0x7f00000008c0)=""/125, 0x7d}, {&(0x7f0000000940)=""/51, 0x33}, {&(0x7f0000000980)=""/188, 0xbc}, {&(0x7f0000000a40)=""/253, 0xfd}], 0xa, &(0x7f0000000c00)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xb0}}, {{&(0x7f0000000cc0), 0x6e, &(0x7f0000002d40)=[{&(0x7f0000000d40)=""/4096, 0x1000}, {&(0x7f0000001d40)=""/4096, 0x1000}], 0x2, &(0x7f0000002d80)}}, {{&(0x7f0000002dc0), 0x6e, &(0x7f00000030c0)=[{&(0x7f0000002e40)=""/161, 0xa1}, {&(0x7f0000002f00)=""/158, 0x9e}, {&(0x7f0000002fc0)=""/84, 0x54}, {&(0x7f0000003040)=""/67, 0x43}], 0x4, &(0x7f0000007500)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0062285751ac673060bd94bd9b9836e8c44e885b0bd60000002800", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="30000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0x78}}, {{&(0x7f0000003180)=@abs, 0x6e, &(0x7f00000032c0)=[{&(0x7f0000003200)=""/114, 0x72}, {&(0x7f0000003280)=""/39, 0x27}], 0x2, &(0x7f0000003300)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000003340)=@abs, 0x6e, &(0x7f0000004700)=[{&(0x7f00000033c0)=""/136, 0x88}, {&(0x7f0000003480)=""/95, 0x5f}, {&(0x7f0000003500)=""/156, 0x9c}, {&(0x7f00000035c0)=""/4096, 0x1000}, {&(0x7f00000045c0)=""/151, 0x97}, {&(0x7f0000004680)=""/124, 0x7c}], 0x6}}, {{&(0x7f0000004780)=@abs, 0x6e, &(0x7f0000006b40)=[{&(0x7f0000004800)=""/72, 0x48}, {&(0x7f0000004880)=""/167, 0xa7}, {&(0x7f0000004940)=""/42, 0x2a}, {&(0x7f0000004980)=""/4096, 0x1000}, {&(0x7f0000005980)=""/202, 0xca}, {&(0x7f0000005a80)=""/191, 0xbf}, {&(0x7f0000005b40)=""/4096, 0x1000}], 0x7, &(0x7f0000006bc0)=[@rights={{0x28, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{&(0x7f0000006c80), 0x6e, &(0x7f0000007100)=[{&(0x7f0000006d00)=""/134, 0x86}, {&(0x7f0000006dc0)=""/89, 0x59}, {&(0x7f0000006e40)}, {&(0x7f0000006e80)=""/193, 0xc1}, {&(0x7f0000006f80)=""/145, 0x91}, {&(0x7f0000007040)=""/10, 0xa}, {&(0x7f0000007080)=""/71, 0x47}], 0x7, &(0x7f0000007180)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa0}}], 0x8, 0x40, &(0x7f0000007480)={r2, r3+60000000})
ioctl$RTC_ALM_SET(r5, 0x40247007, &(0x7f00000074c0)={0x1b, 0x2f, 0x11, 0x1d, 0xa, 0xffffffff, 0x6, 0xab, 0xffffffffffffffff})
socket$packet(0x11, 0x0, 0x300)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r6, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r6, 0x3305)
ioctl$RTC_AIE_ON(r6, 0x7001)

[ 1722.399463] audit: type=1326 audit(1747095113.166:699): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11891 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1722.445495] netlink: 'syz-executor.5': attribute type 1 has an invalid length.
[ 1722.447184] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1722.486197] netlink: 'syz-executor.5': attribute type 1 has an invalid length.
[ 1722.487836] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.5'.
00:11:53 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)) (fail_nth: 1)

00:11:53 executing program 7:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8a07}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000005c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1722.531734] audit: type=1326 audit(1747095113.309:700): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11912 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:12:09 executing program 1:
r0 = syz_io_uring_setup(0x4d4f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r3}, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x300000e, 0x13, r0, 0x0)
sendfile(r0, r0, 0x0, 0x7)
syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x8001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x5, 0x12, r0, 0x0)

00:12:09 executing program 0:
pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/4088, 0xff8, 0x0)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
syz_open_pts(0xffffffffffffffff, 0x10683)
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000600)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00032dbd7000fedbdf25150000003c00018008000300010000000800030003000000080003000200000008000300020000000800030000000000080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="255b322a99db6da6ab7e9d2a1bde0050387397c1443ab0de5140f3c5df76075b6f026d45995ee1f3d7eeba11e78ef948d766174c6cdf27c93085291a4b8f60aabaf71a3360c2f82dbdc64401583ba21a8e569f90598b3a73c7bec04bcb8e0f4e9f87ddba1e05d3ab4ba010c9a53421bdb10453cbb3f16eb5b8a80ed58e1e34d7c0df34e8938501edd7f9a39ebb05d52dd84bae68cc6e4f923e8b1f59a65c6d57006f764e961395"], 0x50}, 0x1, 0x0, 0x0, 0x4048010}, 0x4000000)
fcntl$getflags(r0, 0x401)
r2 = eventfd2(0xff, 0x800)
open_by_handle_at(r2, &(0x7f0000000380)=@ceph_nfs_snapfh={0x1c, 0x4e, {0x3, 0x1, 0x3, 0x2}}, 0x200000)
r3 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe)
keyctl$revoke(0x3, r3)
add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe)
add_key$keyring(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffc)
r4 = add_key$keyring(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_MOVE(0x1e, 0x0, 0x0, 0x0, 0x0)
request_key(0x0, 0x0, 0x0, 0x0)
add_key(&(0x7f00000003c0)='pkcs7_test\x00', &(0x7f0000000400)={'syz', 0x0}, &(0x7f0000000700)="8c9f1d27cd6ce642d08cdf0c24c7cb675abe280cd4e0f1d56799151ee3dd9574030049cbb3eb3c06217b28ebf8ec1277dbb41308d757845269d47b1e66c2cc98ad057fa4f319eec881a7cb060a6d78f85a1ec5e041c4f3bc0c37afa287d67dead1b19baf931ff4bc264bb7a3a7e4cbe353a069c453f213c1d04ad88adec3abe6751e5ffc7c9d7bc13e22c9750eaa862666bf722eb4af26de989c7a97759e361e73386bb052b6fb3fe77d68727956ca8576eb94020669d7411a5066379cf347d695606deeb0b531921f9b99e863ed77d17f9248688650deef0d645bfbae13736b3d040c9bfb", 0xe5, 0xfffffffffffffffa)
add_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000340)="a432c3efc1edfab7037255db440500824001767ee5522ccc6b4a4c358e2f414cae835269010f99ea715885731fa8ad0600", 0x31, r4)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000300)='ceph\x00', 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="280000001d00210c000000000000000004000a0014001180809801a7b0c7dba09475f251c743092f"], 0x28}}, 0x0)

00:12:09 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_AIE_ON(r0, 0x7001)

00:12:09 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x8, @loopback, 0xffe00000}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000280)=0x1, 0x4)
sendmsg$inet6(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0xa, 0x0, 0x0, @loopback={0x0, 0x7ffff000}}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000000c0)='\x00', 0x1}], 0x1}, 0x20000040)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000002c0)={@in6={{0xa, 0x4e24, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8001}}, 0x0, 0x0, 0x2c, 0x0, "f1216fc2cb91cb09d62a803db6e66ba3568b1a17e27eb3cc63c51ec32b828c5ee3f8475104ad3505a127035c2d29c18b7cb74e64a1a0cd157566a7688983979608525f0697b05efe0a6b1f843899e01e"}, 0xd8)

00:12:09 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:12:09 executing program 3:
mlockall(0x0)
mlockall(0x5)
mlockall(0x3)
mlockall(0x4)
shmat(0x0, &(0x7f0000ffb000/0x2000)=nil, 0x0)
mlockall(0x8)
r0 = shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000001300)=""/239)
shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000000100)=""/182)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x0)
shmctl$SHM_LOCK(0x0, 0xb)
shmat(0xffffffffffffffff, &(0x7f0000ffb000/0x3000)=nil, 0x1000)
mlockall(0x2)
shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x6000)
shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)

00:12:09 executing program 7:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x24, 0x12, 0x101, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @ipv4=@private}, @nested={0x8, 0x0, 0x0, 0x1, [@typed={0x4, 0x12, 0x0, 0x0, @binary}]}]}, 0x24}}, 0x0)
getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f0000000000), &(0x7f0000000080)=0x8)

00:12:09 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 26)

[ 1738.761340] FAULT_INJECTION: forcing a failure.
[ 1738.761340] name failslab, interval 1, probability 0, space 0, times 0
[ 1738.763384] CPU: 0 PID: 11929 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1738.764563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1738.766001] Call Trace:
[ 1738.766455]  dump_stack+0x107/0x167
[ 1738.767081]  should_fail.cold+0x5/0xa
[ 1738.767777]  should_failslab+0x5/0x20
[ 1738.768428]  __kmalloc_track_caller+0x79/0x370
[ 1738.769223]  ? parse_opts.part.0+0x8e/0x340
[ 1738.769962]  kstrdup+0x36/0x70
[ 1738.770506]  parse_opts.part.0+0x8e/0x340
[ 1738.771208]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1738.771973]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1738.772853]  ? quarantine_put+0x8b/0x1a0
[ 1738.773568]  ? trace_hardirqs_on+0x5b/0x180
[ 1738.774300]  ? kfree+0xd7/0x340
[ 1738.774864]  p9_fd_create+0x98/0x4a0
[ 1738.775496]  ? p9_conn_create+0x510/0x510
[ 1738.776196]  ? p9_client_create+0x798/0x1230
[ 1738.776949]  ? kfree+0xd7/0x340
[ 1738.777517]  ? do_raw_spin_unlock+0x4f/0x220
[ 1738.778263]  p9_client_create+0x7ff/0x1230
[ 1738.778987]  ? p9_client_flush+0x430/0x430
[ 1738.779695]  ? trace_hardirqs_on+0x5b/0x180
[ 1738.780432]  ? lockdep_init_map_type+0x2c7/0x780
[ 1738.781260]  ? __raw_spin_lock_init+0x36/0x110
[ 1738.782040]  v9fs_session_init+0x1dd/0x1680
[ 1738.782765]  ? lock_release+0x680/0x680
[ 1738.783444]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1738.784273]  ? v9fs_show_options+0x690/0x690
[ 1738.785042]  ? trace_hardirqs_on+0x5b/0x180
[ 1738.785776]  ? kasan_unpoison_shadow+0x33/0x50
[ 1738.786546]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1738.787391]  v9fs_mount+0x79/0x8f0
[ 1738.788007]  ? v9fs_write_inode+0x60/0x60
[ 1738.788712]  legacy_get_tree+0x105/0x220
[ 1738.789423]  vfs_get_tree+0x8e/0x300
[ 1738.790055]  path_mount+0x1429/0x2120
[ 1738.790701]  ? strncpy_from_user+0x9e/0x470
[ 1738.791426]  ? finish_automount+0xa90/0xa90
[ 1738.792159]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1738.792966]  ? _copy_from_user+0xfb/0x1b0
[ 1738.793685]  __x64_sys_mount+0x282/0x300
[ 1738.794365]  ? copy_mnt_ns+0xa00/0xa00
[ 1738.795032]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1738.795915]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1738.796785]  do_syscall_64+0x33/0x40
[ 1738.797437]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1738.798307] RIP: 0033:0x7f543d208b19
[ 1738.798941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1738.802086] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1738.803367] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1738.804605] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1738.805824] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1738.807017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1738.808220] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1738.809522] 9pnet: Insufficient options for proto=fd
[ 1738.821977] kauditd_printk_skb: 5 callbacks suppressed
[ 1738.821990] audit: type=1326 audit(1747095129.599:706): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11932 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1738.827557] audit: type=1326 audit(1747095129.605:707): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11932 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:12:09 executing program 1:
mlockall(0x0)
mlockall(0x5)
mlockall(0x3)
mlockall(0x4)
shmat(0x0, &(0x7f0000ffb000/0x2000)=nil, 0x0)
mlockall(0x8)
r0 = shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000001300)=""/239)
shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000000100)=""/182)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x0)
shmctl$SHM_LOCK(0x0, 0xb)
shmat(0xffffffffffffffff, &(0x7f0000ffb000/0x3000)=nil, 0x1000)
mlockall(0x2)
shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x6000)
shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)

[ 1738.879664] debugfs: Directory '€˜
§°ÇÛ ”uòQÇC	!' with parent 'ieee80211' already present!
00:12:09 executing program 5:
r0 = socket$unix(0x1, 0x0, 0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f00000009c0)={0x0, <r1=>0x0})
setpgid(0x0, r1)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYRES16], 0xfdef)
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@private0={0xfc, 0x0, '\x00', 0x1}})
timer_create(0x5, &(0x7f0000000040)={0x0, 0x27, 0x0, @thr={&(0x7f0000000300)="467771e6eac15101ba5a64094a415bfdde73de2e03c732fa76d1f78fd19884f5664127cd5a5ab606f9ceb48bc60145a2f2a9e7d2d4573dcf9fcfb86257caa7c62bd934c18d1bbd9208d29458154c78abcf33f5bfebdbdc0f5a313310bd25601d2253ab1b4434d3d237503e7bca320cb8aaac3f95378685d69f6df574cd739747324f274482ad2e7b3751420bf979a9f1af944af78350d585c627b7e6cca08f8ab6b1ca3ca134bce2", &(0x7f00000003c0)="f3e737c81a24eb28fade961d78982578b45c8aadb8df71332d85824367fdad365ff1551d98f6b2b1048d45ce8df515a1a546d938d4f7adb8cad2bf2a47aac1efe9d57ce90aab1c4e4dd683624843ae3624921c7f6fd2f98ac57409d2d3e8921b88160303e231879e1ab0c744066c7e933d15c1c574871d07f2489b0976a721297d8771e45b66a056354b830da08b0a8989a9030838dcb55149aa26"}}, &(0x7f00000000c0))
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x9, 0x2, 0x1, 0x8, 0x6, 0x7}, 0x20)
bind$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, &(0x7f0000000100)={0x8, 0x2, 0x2, 0x1, 0x0, [0x9, 0x1000, 0x4, 0xfffeffff]})
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fsetxattr$security_selinux(r3, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f00000004c0)={'\x00', 0x1f, 0xbf, 0x2, 0x5, 0xffffffffffffff7f, r1})
memfd_create(&(0x7f00000002c0)='sessionid\x00', 0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x1d, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000240)=<r4=>0x0)
timer_settime(r4, 0x0, &(0x7f0000000480)={{}, {0x0, 0x3938700}}, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r5, 0x6, 0x1d, &(0x7f0000000540), &(0x7f0000000580)=0x14)

00:12:09 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 27)

[ 1738.982655] FAULT_INJECTION: forcing a failure.
[ 1738.982655] name failslab, interval 1, probability 0, space 0, times 0
[ 1738.984461] CPU: 0 PID: 11955 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1738.985525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1738.986813] Call Trace:
[ 1738.987223]  dump_stack+0x107/0x167
[ 1738.987850]  should_fail.cold+0x5/0xa
[ 1738.988446]  ? create_object.isra.0+0x3a/0xa20
[ 1738.989214]  should_failslab+0x5/0x20
[ 1738.989796]  kmem_cache_alloc+0x5b/0x310
[ 1738.990413]  ? legacy_get_tree+0x105/0x220
[ 1738.991044]  ? vfs_get_tree+0x8e/0x300
[ 1738.991625]  create_object.isra.0+0x3a/0xa20
[ 1738.992294]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1738.993080]  __kmalloc_track_caller+0x177/0x370
[ 1738.993774]  ? parse_opts.part.0+0x8e/0x340
[ 1738.994444]  kstrdup+0x36/0x70
[ 1738.994925]  parse_opts.part.0+0x8e/0x340
[ 1738.995543]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1738.996218]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1738.997012]  ? quarantine_put+0x8b/0x1a0
[ 1738.997615]  ? trace_hardirqs_on+0x5b/0x180
[ 1738.998261]  ? kfree+0xd7/0x340
[ 1738.998754]  p9_fd_create+0x98/0x4a0
[ 1738.999320]  ? p9_conn_create+0x510/0x510
[ 1738.999939]  ? p9_client_create+0x798/0x1230
[ 1739.000592]  ? kfree+0xd7/0x340
[ 1739.001114]  ? do_raw_spin_unlock+0x4f/0x220
[ 1739.001773]  p9_client_create+0x7ff/0x1230
[ 1739.002409]  ? p9_client_flush+0x430/0x430
[ 1739.003042]  ? trace_hardirqs_on+0x5b/0x180
[ 1739.003686]  ? lockdep_init_map_type+0x2c7/0x780
[ 1739.004390]  ? __raw_spin_lock_init+0x36/0x110
[ 1739.005099]  v9fs_session_init+0x1dd/0x1680
[ 1739.005743]  ? lock_release+0x680/0x680
[ 1739.006341]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1739.007060]  ? v9fs_show_options+0x690/0x690
[ 1739.007722]  ? trace_hardirqs_on+0x5b/0x180
[ 1739.008387]  ? kasan_unpoison_shadow+0x33/0x50
[ 1739.009085]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1739.009834]  v9fs_mount+0x79/0x8f0
[ 1739.010359]  ? v9fs_write_inode+0x60/0x60
[ 1739.010971]  legacy_get_tree+0x105/0x220
[ 1739.011569]  vfs_get_tree+0x8e/0x300
[ 1739.012128]  path_mount+0x1429/0x2120
[ 1739.012696]  ? strncpy_from_user+0x9e/0x470
[ 1739.013352]  ? finish_automount+0xa90/0xa90
[ 1739.013990]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1739.014676]  ? _copy_from_user+0xfb/0x1b0
[ 1739.015294]  __x64_sys_mount+0x282/0x300
[ 1739.015892]  ? copy_mnt_ns+0xa00/0xa00
[ 1739.016470]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1739.017263]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1739.018026]  do_syscall_64+0x33/0x40
[ 1739.018590]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1739.019349] RIP: 0033:0x7f543d208b19
[ 1739.019913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1739.022639] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1739.023773] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1739.024823] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1739.025889] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1739.026933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1739.027974] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1739.029184] hpet: Lost 2 RTC interrupts
00:12:09 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r2}, './file0\x00'})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000001440)=ANY=[@ANYBLOB='@n\x00\x00', @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)=ANY=[@ANYRESHEX=r0, @ANYRES32=<r4=>r3, @ANYRESHEX=r2])
ioctl$RTC_AIE_ON(r4, 0x7001)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r5, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r5, 0x3305)
ioctl$RTC_SET_TIME(r5, 0x4024700a, &(0x7f00000000c0)={0x2b, 0x1b, 0xb, 0xf, 0xa, 0x80000000, 0x5, 0x47})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x13, 0x0, 0x0, 0x7, 0xb, 0x7ff, 0x4, 0x20e1})

00:12:09 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x1000)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
preadv(r2, &(0x7f0000000440)=[{&(0x7f0000000040)=""/89, 0x59}, {&(0x7f0000000140)=""/66, 0x42}, {&(0x7f00000001c0)=""/168, 0xa8}, {&(0x7f00000002c0)=""/163, 0xa3}, {&(0x7f0000000380)=""/153, 0x99}], 0x5, 0x8000, 0x10000)
sendfile(r1, r2, 0x0, 0x100000001)
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
inotify_add_watch(r3, &(0x7f00000000c0)='./file1\x00', 0x46000000)
rename(&(0x7f00000004c0)='./file1\x00', &(0x7f0000000500)='./file1\x00')

00:12:09 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x1934c1, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:12:09 executing program 7:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000300)={&(0x7f00000003c0), 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xf4, 0x0, 0x1, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x1, 0x2d}}}}, [@mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "66e6446e291f7c6388e687c760f91a2b83fbea78ef4b1d4e"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x1c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "78055af3fe76e1380a302b32d73de77583bb1651ec830d65"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}], @NL80211_ATTR_MESH_ID={0xa}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}], @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x1}]}, 0xf4}, 0x1, 0x0, 0x0, 0x884}, 0x40011)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)={0x28, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000440)={&(0x7f0000000780)=ANY=[@ANYBLOB="10010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x110}, 0x1, 0x0, 0x0, 0x85}, 0x2000850)
ioctl$SNAPSHOT_PLATFORM_SUPPORT(r4, 0x330f, 0x3)
r7 = socket$netlink(0x10, 0x3, 0x0)
dup2(r7, r4)
ioctl$sock_inet_SIOCGIFPFLAGS(r7, 0x8935, &(0x7f0000000380)={'veth1_to_bridge\x00'})
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="8b910000", @ANYRES16=r2, @ANYBLOB="0100ac863bf70060c133761782e42051b8a802348b75cfa4ed48335e0006000802110000010000fafa3840092167adb5ebeb1bc1e333ba1d4a0a88cf79018de01675ebb87c7fb9902ee611145e7ee1472ea6973278b255c17b7f93edadf5ff31e4cb8241471cc0db161893f383559239d6cb326004"], 0x20}}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="34008020", @ANYRES16=r2, @ANYBLOB="10002abd7000fddbdf25120000000c00990008293773700000000a000600ffffffffffff00000500c20009000000"], 0x34}, 0x1, 0x0, 0x0, 0x91}, 0x10)
fcntl$dupfd(r0, 0x0, r0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000180)=0x4, 0x4)

00:12:09 executing program 0:
r0 = socket$inet(0x2, 0x3, 0xff)
socket$inet(0x2, 0x6, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x10)
sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x2, 0x0, @empty}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000000)="b683ae40f3fdac402b01fa055e4299bd37dddcc878d124b8", 0x18}, {&(0x7f0000000440)="aaf84e9bce5aea66", 0x8}], 0x2}, 0x0)

[ 1739.160421] audit: type=1400 audit(1747095129.938:708): avc:  denied  { create } for  pid=11973 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
00:12:09 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
write$binfmt_script(r1, &(0x7f0000000240)={'#! ', './file1'}, 0xb)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r1}, './file1\x00'})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3, {0xee00, 0xffffffffffffffff}}, './file2\x00'})
ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
syz_open_dev$loop(&(0x7f0000000000), 0x819, 0x400)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x3, 0x0, 0x4307, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x521, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r5}, './file0\x00'})
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r5)
pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r6, 0xc020662a, &(0x7f00000002c0)={0x735c, 0x10000, 0x3, 0x80, 0x3, [{0xffff, 0x60, 0x5, '\x00', 0x1809}, {0x9, 0x9, 0x8a9a, '\x00', 0x2000}, {0x800, 0x3, 0x100, '\x00', 0x802}]})
close(r1)
execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0)

00:12:10 executing program 4:
mount$bind(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x1000000, 0x0)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x2, 0x7ff, 0x0, 0x5e})

00:12:10 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x2}, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x5, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
sendfile(r1, r0, &(0x7f00000001c0)=0x9d, 0x10001)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff)
openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r4=>0x0})
r5 = gettid()
kcmp$KCMP_EPOLL_TFD(r5, r5, 0x7, 0xffffffffffffffff, 0x0)
ptrace$getregset(0x4204, r5, 0x0, 0x0)
r6 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r6, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x2, 0x80, 0x20, 0x1, 0x0, 0x628, 0x20000, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x80, 0x1, @perf_config_ext={0x1f, 0x4}, 0x2, 0x800, 0xc245, 0x4, 0x2eb, 0xb182, 0x81, 0x0, 0x8000, 0x0, 0x5}, r5, 0x8, r6, 0x9)
sendmmsg$inet(r2, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r4], 0x38}}], 0x1, 0x0)

00:12:10 executing program 7:
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x62, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x0, 0x0, 0x401, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
shmctl$SHM_LOCK(0xffffffffffffffff, 0xb)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x1ff)
io_uring_enter(0xffffffffffffffff, 0x1e32, 0x302f, 0x0, &(0x7f0000000100)={[0x5]}, 0x8)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001300)='./cgroup.net/syz1\x00', 0x200002, 0x0)
shmctl$SHM_INFO(0x0, 0xe, &(0x7f00000001c0)=""/224)
shmctl$IPC_RMID(0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000012c0)='./cgroup.cpu/syz1\x00', 0x1ff)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = shmget$private(0x0, 0x2000, 0x78000000, &(0x7f0000ffe000/0x2000)=nil)
shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000)
r1 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil)
shmat(r1, &(0x7f0000ffb000/0x1000)=nil, 0x4000)
shmget(0x1, 0x3000, 0x1, &(0x7f0000ffa000/0x3000)=nil)
shmctl$SHM_INFO(r0, 0xe, &(0x7f00000002c0)=""/4096)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(0x0, 0xe, &(0x7f0000001340)=""/172)
shmctl$SHM_STAT(0xffffffffffffffff, 0xd, &(0x7f00000000c0)=""/22)

00:12:10 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 28)

[ 1739.350999] FAULT_INJECTION: forcing a failure.
[ 1739.350999] name failslab, interval 1, probability 0, space 0, times 0
[ 1739.352483] CPU: 0 PID: 11994 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1739.353340] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1739.354361] Call Trace:
[ 1739.354689]  dump_stack+0x107/0x167
[ 1739.355132]  should_fail.cold+0x5/0xa
[ 1739.355604]  should_failslab+0x5/0x20
[ 1739.356070]  __kmalloc_track_caller+0x79/0x370
[ 1739.356624]  ? match_number+0xaf/0x1d0
[ 1739.357123]  kmemdup_nul+0x2d/0xa0
[ 1739.357555]  match_number+0xaf/0x1d0
[ 1739.358056]  ? match_u64+0x190/0x190
[ 1739.358512]  ? __kmalloc_track_caller+0x2c6/0x370
[ 1739.359099]  ? memcpy+0x39/0x60
[ 1739.359497]  parse_opts.part.0+0x1f3/0x340
[ 1739.360011]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1739.360561]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1739.361222]  ? trace_hardirqs_on+0x5b/0x180
[ 1739.361744]  ? kfree+0xd7/0x340
[ 1739.362145]  p9_fd_create+0x98/0x4a0
[ 1739.362594]  ? p9_conn_create+0x510/0x510
[ 1739.363101]  ? p9_client_create+0x798/0x1230
[ 1739.363636]  ? kfree+0xd7/0x340
[ 1739.364034]  ? do_raw_spin_unlock+0x4f/0x220
[ 1739.364572]  p9_client_create+0x7ff/0x1230
[ 1739.365106]  ? p9_client_flush+0x430/0x430
[ 1739.365621]  ? trace_hardirqs_on+0x5b/0x180
[ 1739.366174]  ? lockdep_init_map_type+0x2c7/0x780
[ 1739.366746]  ? __raw_spin_lock_init+0x36/0x110
[ 1739.367293]  v9fs_session_init+0x1dd/0x1680
[ 1739.367810]  ? lock_release+0x680/0x680
[ 1739.368294]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1739.368878]  ? v9fs_show_options+0x690/0x690
[ 1739.369423]  ? trace_hardirqs_on+0x5b/0x180
[ 1739.369944]  ? kasan_unpoison_shadow+0x33/0x50
[ 1739.370490]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1739.371096]  v9fs_mount+0x79/0x8f0
[ 1739.371530]  ? v9fs_write_inode+0x60/0x60
[ 1739.372032]  legacy_get_tree+0x105/0x220
[ 1739.372530]  vfs_get_tree+0x8e/0x300
[ 1739.372993]  path_mount+0x1429/0x2120
[ 1739.373460]  ? strncpy_from_user+0x9e/0x470
[ 1739.373981]  ? finish_automount+0xa90/0xa90
[ 1739.374503]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1739.375060]  ? _copy_from_user+0xfb/0x1b0
[ 1739.375559]  __x64_sys_mount+0x282/0x300
[ 1739.376046]  ? copy_mnt_ns+0xa00/0xa00
[ 1739.376520]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1739.377169]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1739.377787]  do_syscall_64+0x33/0x40
[ 1739.378235]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1739.378847] RIP: 0033:0x7f543d208b19
[ 1739.379291] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1739.381497] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1739.382408] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1739.383258] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1739.384106] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1739.384979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1739.385864] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1739.386812] hpet: Lost 1 RTC interrupts
[ 1739.450134] 9pnet: Insufficient options for proto=fd
00:12:25 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2, &(0x7f00000000c0))

00:12:25 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
lseek(r0, 0x5, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x1, 0x0, 0x3, 0x10015, 0x0, 0x7ff})
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x983e}}, './file0\x00'})

00:12:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)
r1 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r1}], 0x1, 0x5)
clock_gettime(0x0, &(0x7f0000000180)={<r2=>0x0, <r3=>0x0})
mq_timedsend(r1, &(0x7f00000004c0)="940b6913d12dc1ec80253de23fa32b77533af64172e670bce2", 0x19, 0x3, &(0x7f00000001c0)={r2, r3+60000000})
mq_timedsend(0xffffffffffffffff, &(0x7f0000000300)="25c7a1b65d76c9479fd9986057d09474ec75fd2375439e74eb3db3733a1f46c58035b5db59ea7bc0201a1835e013848fc02d1b21c06ba4cb6785ac2be1b325c098d9e8eca98f7da63f6fb2a199c24705a8b99ab32b70ea3455b07bae84a53e0f7c6c198e40f74f6873551439ab26e7bc3579d4f4b13f2f9e", 0x78, 0x80000001, &(0x7f00000003c0))

00:12:25 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 29)

00:12:25 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0)
fallocate(r0, 0x0, 0x0, 0x1000002)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x100000001)
r3 = creat(&(0x7f0000000040)='./file1\x00', 0x4)
setns(r3, 0x40000000)

00:12:25 executing program 7:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000440)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000240)="af", 0x1}], 0x1)
r2 = socket$inet(0x2, 0x3, 0x8)
lseek(r2, 0xfd8, 0x2)
r3 = openat(r0, &(0x7f0000003240)='./file1\x00', 0x2, 0x0)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000240)="af", 0x1}], 0x1)

00:12:25 executing program 3:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', 0x0)

00:12:25 executing program 1:
mlockall(0x0)
mlockall(0x5)
mlockall(0x3)
mlockall(0x4)
shmat(0x0, &(0x7f0000ffb000/0x2000)=nil, 0x0)
mlockall(0x8)
r0 = shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000001300)=""/239)
shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000000100)=""/182)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x0)
shmctl$SHM_LOCK(0x0, 0xb)
shmat(0xffffffffffffffff, &(0x7f0000ffb000/0x3000)=nil, 0x1000)
mlockall(0x2)
shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x6000)
shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)

[ 1754.491606] FAULT_INJECTION: forcing a failure.
[ 1754.491606] name failslab, interval 1, probability 0, space 0, times 0
[ 1754.493176] CPU: 1 PID: 12007 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1754.494103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1754.495192] Call Trace:
[ 1754.495544]  dump_stack+0x107/0x167
[ 1754.496036]  should_fail.cold+0x5/0xa
[ 1754.496548]  ? create_object.isra.0+0x3a/0xa20
[ 1754.497171]  should_failslab+0x5/0x20
[ 1754.497682]  kmem_cache_alloc+0x5b/0x310
[ 1754.498234]  create_object.isra.0+0x3a/0xa20
[ 1754.498823]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1754.499505]  __kmalloc_track_caller+0x177/0x370
[ 1754.500139]  ? match_number+0xaf/0x1d0
[ 1754.500677]  kmemdup_nul+0x2d/0xa0
[ 1754.501160]  match_number+0xaf/0x1d0
[ 1754.501658]  ? match_u64+0x190/0x190
[ 1754.502164]  ? __kmalloc_track_caller+0x2c6/0x370
[ 1754.502824]  ? memcpy+0x39/0x60
[ 1754.503277]  parse_opts.part.0+0x1f3/0x340
[ 1754.503850]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1754.504467]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1754.505175]  ? trace_hardirqs_on+0x5b/0x180
[ 1754.505758]  ? kfree+0xd7/0x340
[ 1754.506212]  p9_fd_create+0x98/0x4a0
[ 1754.506814]  ? p9_conn_create+0x510/0x510
[ 1754.507376]  ? p9_client_create+0x798/0x1230
[ 1754.507959]  ? kfree+0xd7/0x340
[ 1754.508394]  ? do_raw_spin_unlock+0x4f/0x220
[ 1754.508974]  p9_client_create+0x7ff/0x1230
[ 1754.509565]  ? p9_client_flush+0x430/0x430
[ 1754.510131]  ? trace_hardirqs_on+0x5b/0x180
[ 1754.510722]  ? lockdep_init_map_type+0x2c7/0x780
[ 1754.511351]  ? __raw_spin_lock_init+0x36/0x110
[ 1754.511959]  v9fs_session_init+0x1dd/0x1680
[ 1754.512523]  ? lock_release+0x680/0x680
[ 1754.513060]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1754.513719]  ? v9fs_show_options+0x690/0x690
[ 1754.514308]  ? trace_hardirqs_on+0x5b/0x180
[ 1754.514876]  ? kasan_unpoison_shadow+0x33/0x50
[ 1754.515490]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1754.516162]  v9fs_mount+0x79/0x8f0
[ 1754.516638]  ? v9fs_write_inode+0x60/0x60
[ 1754.517221]  legacy_get_tree+0x105/0x220
[ 1754.517776]  vfs_get_tree+0x8e/0x300
[ 1754.518312]  path_mount+0x1429/0x2120
[ 1754.518817]  ? strncpy_from_user+0x9e/0x470
[ 1754.519390]  ? finish_automount+0xa90/0xa90
[ 1754.519959]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1754.520564]  ? _copy_from_user+0xfb/0x1b0
[ 1754.521138]  __x64_sys_mount+0x282/0x300
[ 1754.521691]  ? copy_mnt_ns+0xa00/0xa00
[ 1754.522322]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1754.523040]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1754.523723]  do_syscall_64+0x33/0x40
[ 1754.524218]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1754.524905] RIP: 0033:0x7f543d208b19
[ 1754.525423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1754.527950] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1754.528975] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1754.529931] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1754.530886] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1754.531830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1754.532791] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1754.534060] loop0: detected capacity change from 0 to 262144
[ 1754.537698] audit: type=1326 audit(1747095145.315:709): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12011 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1754.543271] audit: type=1326 audit(1747095145.315:710): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12011 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1754.545012] loop7: detected capacity change from 0 to 41948160
[ 1754.567571] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1754.593407] audit: type=1326 audit(1747095145.321:711): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12011 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1754.598570] audit: type=1326 audit(1747095145.321:712): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12011 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1754.603967] audit: type=1326 audit(1747095145.321:713): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12011 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1754.609183] audit: type=1326 audit(1747095145.327:714): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12011 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1754.613950] audit: type=1326 audit(1747095145.328:715): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12011 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:12:25 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x4b47, &(0x7f00000000c0))

[ 1754.624155] audit: type=1326 audit(1747095145.328:716): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12011 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1754.630424] audit: type=1326 audit(1747095145.329:717): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12011 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1754.647309] audit: type=1326 audit(1747095145.425:718): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12032 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:12:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)
r1 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r1}], 0x1, 0x5)
clock_gettime(0x0, &(0x7f0000000180)={<r2=>0x0, <r3=>0x0})
mq_timedsend(r1, &(0x7f00000004c0)="940b6913d12dc1ec80253de23fa32b77533af64172e670bce2", 0x19, 0x3, &(0x7f00000001c0)={r2, r3+60000000})
mq_timedsend(0xffffffffffffffff, &(0x7f0000000300)="25c7a1b65d76c9479fd9986057d09474ec75fd2375439e74eb3db3733a1f46c58035b5db59ea7bc0201a1835e013848fc02d1b21c06ba4cb6785ac2be1b325c098d9e8eca98f7da63f6fb2a199c24705a8b99ab32b70ea3455b07bae84a53e0f7c6c198e40f74f6873551439ab26e7bc3579d4f4b13f2f9e", 0x78, 0x80000001, &(0x7f00000003c0))

[ 1754.713553] loop0: detected capacity change from 0 to 262144
[ 1754.723758] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
00:12:41 executing program 1:
mlockall(0x0)
mlockall(0x5)
mlockall(0x3)
mlockall(0x4)
shmat(0x0, &(0x7f0000ffb000/0x2000)=nil, 0x0)
mlockall(0x8)
r0 = shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000001300)=""/239)
shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_UNLOCK(r0, 0xc)
shmctl$SHM_INFO(r0, 0xe, &(0x7f0000000100)=""/182)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x0)
shmctl$SHM_LOCK(0x0, 0xb)
shmat(0xffffffffffffffff, &(0x7f0000ffb000/0x3000)=nil, 0x1000)
mlockall(0x2)
shmat(0x0, &(0x7f0000ffb000/0x4000)=nil, 0x6000)
shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffd000/0x1000)=nil)

00:12:41 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)
r1 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r1}], 0x1, 0x5)
clock_gettime(0x0, &(0x7f0000000180)={<r2=>0x0, <r3=>0x0})
mq_timedsend(r1, &(0x7f00000004c0)="940b6913d12dc1ec80253de23fa32b77533af64172e670bce2", 0x19, 0x3, &(0x7f00000001c0)={r2, r3+60000000})
mq_timedsend(0xffffffffffffffff, &(0x7f0000000300)="25c7a1b65d76c9479fd9986057d09474ec75fd2375439e74eb3db3733a1f46c58035b5db59ea7bc0201a1835e013848fc02d1b21c06ba4cb6785ac2be1b325c098d9e8eca98f7da63f6fb2a199c24705a8b99ab32b70ea3455b07bae84a53e0f7c6c198e40f74f6873551439ab26e7bc3579d4f4b13f2f9e", 0x78, 0x80000001, &(0x7f00000003c0))

00:12:41 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000004)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66696c6530002c87af821976945ffe872c042e6395824e3ee4907d440cc408b12d5237e05634de93ac3f8819dedb65c8fa8891ef2e1462c2cfba9e02ef30e546553ce5"])
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
close(r0)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000100)=[r0, 0xffffffffffffffff], 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0)
openat$hpet(0xffffffffffffff9c, 0x0, 0x2002, 0x0)
r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f00000002c0)={{0x0, 0x8000, 0x7, 0xe23, 0xcf, 0x4, 0x6f, 0x4, 0x6, 0x8, 0xb59, 0x56890600, 0x7ff, 0x9, 0x2}, 0x18, [0x0, 0x0, 0x0]})
close(r2)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x1c, 0x1e, 0xc21, 0x0, 0x0, {0x7}, [@typed={0x8, 0x0, 0x0, 0x0, @u32=0x10000}]}, 0x1c}}, 0x0)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, 0xffffffffffffffff)
r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_script(r3, &(0x7f0000000500)={'#! ', './file2', [], 0xa, "223abaa5ac8d216824d4d19dd38ab20e3f0df7e9fc6e8b38115c9593898615aa362a9f779e75e4982d737caa6841eb1a2fb9ae4f13a1ece25ba8647f01843dfd52e4669763b3ed20875e636ab877cc0d1f5cce01a84423c1e9aaf2edff23fc6afde68872b640a0d23ee19eb6c9083be8c2f28a62a2a0"}, 0x81)
lseek(r1, 0x0, 0x2)
r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x128)
copy_file_range(r4, 0x0, r1, 0x0, 0x200f5ef, 0x0)

00:12:41 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
r2 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r3 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
bind$bt_l2cap(r4, &(0x7f00000001c0)={0x1f, 0x5, @none, 0x56f7, 0x2}, 0xe)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0xd, @any, 0xfffc}, 0xe)
openat(r4, &(0x7f0000000280)='./file0\x00', 0x101, 0x0)
close(r1)

00:12:41 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000180))
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)={0x108, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_CQM={0x84, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x20, 0x1, [0x9, 0x101, 0x9, 0xf2c, 0xace6, 0x40, 0xa5]}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x10000}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x9}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x4}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0xb3}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x28, 0x1, [0x6, 0x1, 0x9, 0x8001, 0x7, 0x4, 0x7, 0x4, 0x6]}, @NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0x5]}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x7}]}, @NL80211_ATTR_CQM={0x4}, @NL80211_ATTR_CQM={0x2c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x8, 0x1, [0x3ff]}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x1}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x2}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x100}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0xe}]}, @NL80211_ATTR_CQM={0x2c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x401}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x1d9600}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x7fff}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0xdc}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x5ea}]}, @NL80211_ATTR_CQM={0x14, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x100}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x3}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x20000000}, 0x40400c0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x6}, 0xe)
sendfile(r2, r1, &(0x7f0000000340), 0xc)

00:12:41 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x4b49, &(0x7f00000000c0))

00:12:41 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 30)

00:12:41 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f00000000c0)={0x4015, 0xa, 0x14, 0x10015, 0x0, 0x7ff, 0x23})
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$RTC_UIE_ON(r1, 0x7003)

[ 1770.599672] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12050 comm=syz-executor.5
[ 1770.605387] kauditd_printk_skb: 6 callbacks suppressed
[ 1770.605407] audit: type=1326 audit(1747095161.383:725): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12048 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1770.611567] loop0: detected capacity change from 0 to 262144
[ 1770.622729] audit: type=1326 audit(1747095161.400:726): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12048 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1770.628807] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12061 comm=syz-executor.5
00:12:41 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
dup2(0xffffffffffffffff, r1)
r2 = open_tree(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x80000)
ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000000)={0x23, 0xd, 0xc, 0x8, 0x6, 0xfcd1, 0x20002, 0x19})
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f00000000c0)={0x20, 0x27, 0x5, 0x16, 0x7, 0x3, 0x6, 0x103, 0x1})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x10015, 0x0, 0x7ff})

[ 1770.661008] audit: type=1326 audit(1747095161.400:727): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12048 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1770.681214] FAULT_INJECTION: forcing a failure.
[ 1770.681214] name failslab, interval 1, probability 0, space 0, times 0
[ 1770.683607] CPU: 1 PID: 12059 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1770.685073] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1770.686836] Call Trace:
[ 1770.687398]  dump_stack+0x107/0x167
[ 1770.688237]  should_fail.cold+0x5/0xa
[ 1770.689046]  should_failslab+0x5/0x20
[ 1770.689863]  __kmalloc_track_caller+0x79/0x370
[ 1770.690827]  ? match_number+0xaf/0x1d0
[ 1770.691644]  ? kfree+0xd7/0x340
[ 1770.692343]  kmemdup_nul+0x2d/0xa0
[ 1770.693092]  match_number+0xaf/0x1d0
[ 1770.693895]  ? match_u64+0x190/0x190
[ 1770.694832]  ? __kmalloc_track_caller+0x2c6/0x370
[ 1770.695858]  ? memcpy+0x39/0x60
[ 1770.696562]  parse_opts.part.0+0x1f3/0x340
[ 1770.697457]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1770.698400]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1770.699500]  ? trace_hardirqs_on+0x5b/0x180
[ 1770.700411]  ? kfree+0xd7/0x340
[ 1770.701113]  p9_fd_create+0x98/0x4a0
[ 1770.701899]  ? p9_conn_create+0x510/0x510
[ 1770.702767]  ? p9_client_create+0x798/0x1230
[ 1770.703687]  ? kfree+0xd7/0x340
[ 1770.704379]  ? do_raw_spin_unlock+0x4f/0x220
[ 1770.705318]  p9_client_create+0x7ff/0x1230
[ 1770.706213]  ? p9_client_flush+0x430/0x430
[ 1770.707106]  ? trace_hardirqs_on+0x5b/0x180
[ 1770.708012]  ? lockdep_init_map_type+0x2c7/0x780
[ 1770.709002]  ? __raw_spin_lock_init+0x36/0x110
[ 1770.710049]  v9fs_session_init+0x1dd/0x1680
[ 1770.710952]  ? lock_release+0x680/0x680
[ 1770.711795]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1770.712792]  ? v9fs_show_options+0x690/0x690
[ 1770.713720]  ? trace_hardirqs_on+0x5b/0x180
[ 1770.714618]  ? kasan_unpoison_shadow+0x33/0x50
[ 1770.715556]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1770.716597]  v9fs_mount+0x79/0x8f0
[ 1770.717344]  ? v9fs_write_inode+0x60/0x60
[ 1770.718213]  legacy_get_tree+0x105/0x220
[ 1770.719063]  vfs_get_tree+0x8e/0x300
[ 1770.719833]  path_mount+0x1429/0x2120
[ 1770.720628]  ? strncpy_from_user+0x9e/0x470
[ 1770.721539]  ? finish_automount+0xa90/0xa90
[ 1770.722425]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1770.723378]  ? _copy_from_user+0xfb/0x1b0
[ 1770.724237]  __x64_sys_mount+0x282/0x300
[ 1770.725073]  ? copy_mnt_ns+0xa00/0xa00
[ 1770.725974]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1770.727052]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1770.728105]  do_syscall_64+0x33/0x40
[ 1770.728868]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1770.729967] RIP: 0033:0x7f543d208b19
[ 1770.730738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1770.734515] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1770.736067] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1770.737544] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1770.738995] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1770.740481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1770.742068] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1770.743804] 9pnet: Insufficient options for proto=fd
00:12:41 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x541b, &(0x7f00000000c0))

[ 1770.763662] audit: type=1326 audit(1747095161.413:728): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12048 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1770.788438] audit: type=1326 audit(1747095161.413:729): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12048 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1770.795200] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
00:12:41 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000000340)={0x8, [], 0x5, "b53acec1810ff0"})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
r3 = syz_open_dev$vcsu(&(0x7f0000000140), 0x8, 0x140)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3, {0x1, 0x8}}, './file0\x00'})
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f00000000c0)={0x0, 0x4, 0x101, 0x8001, 0xfffffbff})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r4, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg$inet(r4, &(0x7f0000000300)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}, 0xe00}], 0x40001a9, 0x0)

00:12:41 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x4, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x3}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x8)
r1 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
write$binfmt_script(r1, &(0x7f0000000140)=ANY=[@ANYBLOB="cc"], 0x1020)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0)

[ 1770.940015] audit: type=1326 audit(1747095161.714:730): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12069 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1770.946315] audit: type=1326 audit(1747095161.714:731): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12069 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1770.975715] audit: type=1326 audit(1747095161.715:732): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12069 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1771.002362] audit: type=1326 audit(1747095161.716:733): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12069 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:12:56 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000000)={0x2c, 0x1d, 0x9, 0x16, 0x5, 0x2, 0x1, 0xd9})
ioctl$RTC_AIE_ON(r0, 0x7001)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:12:56 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 31)

00:12:56 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
r2 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r3 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
bind$bt_l2cap(r4, &(0x7f00000001c0)={0x1f, 0x5, @none, 0x56f7, 0x2}, 0xe)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0xd, @any, 0xfffc}, 0xe)
openat(r4, &(0x7f0000000280)='./file0\x00', 0x101, 0x0)
close(r1)

00:12:56 executing program 1:
r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x4, 0x3, &(0x7f0000000300)=[{0x0, 0x0, 0x7fff}, {&(0x7f00000000c0)="c38cf7bc4643814e0c3c102f3b75e3c485e1953666867ff0b760954b5332fb483e5202228f1d3639fb7e217fc1641ed544264d6d64acb87d45fd283a67394a4e2e2701aa50bb03876578363361aeef9122b3f11fc180a7a88078783617379e9d50a70aaa5a7cb9416764cc79f78aaa19e3233560c4a9b6170a115d98d65791cb814e7913658915c75934144bdfad8f323895925d58061f0cfee517911f", 0x9d}, {&(0x7f0000000180)="5bffa097ec44ff12ea1e69793d84533c7cb8a98876a1d69640b9350e43bd6dbde6d292e3ec889a2f997ed8ca47e1ce40613b86425c9456f874799fb3e850dbcfeb73af445005e7561b8047b6d9437d7a6c73b62e7124fb2699949fe472ecbf145e1c365cd2287639641d1a0c04144114d1bc776d64b3bf20c3e73b4249f23d53201bfb8491e7b24e3c110cf6fa7d1d67d5ee06beeb1646190fdbb6bc2b1b44a917d0612a21f3a5a8a4911756e842a9b14ac53892cdeca6ea25b9228b5bc75aed64cee705e38f18640770a2a4d5d901853a031c6cc4cddff8c22897481b3c52649adbfe44f9e62e445b1bbfc9af83", 0xee, 0x7}])
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=<r1=>0x0)
readv(r0, &(0x7f0000000400)=[{0x0}, {&(0x7f0000001500)=""/4092, 0xffc}, {&(0x7f0000000380)=""/68, 0x44}], 0x3)
perf_event_open(&(0x7f0000000040)={0x1, 0xfffffffffffffe68, 0x9b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0xffff}, r1, 0x3, 0xffffffffffffffff, 0xf2bbbeefa2dc2e6f)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x40, 0x0, 0x5e, 0x54104, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x82614, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000480)='./file1\x00', 0x5, 0x5, &(0x7f0000000680)=[{&(0x7f00000004c0)="c0d63e8d156fd7e7038aa639693941957c317816856137b445c05d0719c864b6fcb9f710ca2ba012336f0c2d389e219fdd19fca42b80b3c70b6f1fda5e5e787c003f0451e2b5bf3460e4668af7d4980ca877dc3b3105407a2f7bd7134228199ead6453031398fc4632cda12d622b04a34a4c32c39cf9a33216b7d30815979bb93cba979467aceaebc0764d7657da3e9fa13bddf70643fe86c960d70f789ec9ba5405651aa91ebc15c6940462", 0xac, 0x1f0e}, {&(0x7f0000002500)="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", 0x1000, 0x6}, {&(0x7f0000000580)="1c24d3", 0x3, 0x3fc0000}, {&(0x7f00000005c0)="1c5f9a3e56727b1ae442e637f0025bfeea885d0df3a1d7676466", 0x1a, 0xa374}, {&(0x7f0000000600)="5160973d626eabaea68c0e7bc0e0c5fda08cf31bea76895985f68809b3c9699082af99fe2eac1c57c67905a79435511d7ba560bc7117f1135d3b19ad5881136e9ba1bd9f22794083e636fe69e94ef211ce91c579ca5dd7dbb36fac3f0ca8776bd35b1629e6cac88ca89563", 0x6b, 0x8}], 0x20000, &(0x7f0000000700)={[{@fat=@nfs}, {@fat=@flush}, {@utf8}, {@shortname_mixed}, {@numtail}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'cp863'}}], [{@dont_hash}, {@dont_hash}, {@appraise}, {@measure}, {@context={'context', 0x3d, 'staff_u'}}, {@dont_appraise}]})
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x48000, 0x20)
openat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x20000, 0x80)

00:12:56 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x5421, &(0x7f00000000c0))

00:12:56 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x3)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(0xffffffffffffffff, 0x3312, 0x8)
r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x81403, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xb594, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RELOAD_REGDB(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r4, 0x1}, 0x14}}, 0x0)
sendfile(r3, r2, &(0x7f0000000440)=0x7, 0x6ee7)
sendfile(0xffffffffffffffff, r3, &(0x7f0000000200)=0x800, 0x3)
write$binfmt_elf64(r1, &(0x7f00000008c0)=ANY=[], 0x629)
r5 = creat(&(0x7f0000000100)='./file0\x00', 0x180)
pwrite64(r5, &(0x7f00000000c0)="04", 0x1, 0x3ff03)
r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe, 0xffffffffffffffff}, 0x1000, 0x7f, 0x0, 0x8, 0x0, 0xfffffffa, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101040, 0x0)
ioctl$LOOP_SET_STATUS(r7, 0x4c00, 0x0)
ioctl$LOOP_SET_STATUS(r7, 0x4c02, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r7, 0xc018937b, &(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES32=r6, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="4ec066696c653010"])
ioctl$LOOP_SET_STATUS(r7, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xff, 0x3, 0x12, 0x14, "89f5e098115db60136d1d378e45f29636f0a74d7fd2b954ac53340fa745e40721eec0c08b7d035177b2bf6830e4e381a21ec2040793bae1a3f3ff60b4feb9ee1", "bf1047a99b9c26db92c45dc422ff6a112317d290329812cbd09ae21835b7290d", [0x3, 0x8]})
sendmsg$IPCTNL_MSG_CT_DELETE(r7, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"/276], 0x70}, 0x1, 0x0, 0x0, 0x40045}, 0x0)
sendfile(r1, r0, 0x0, 0xffffffff000)

00:12:56 executing program 5:
r0 = syz_io_uring_setup(0x0, &(0x7f0000000240), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0xfffffffffffffffc, 0x0)
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8, 0x110, r0, 0x8000000)
syz_io_uring_setup(0x3, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000540)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x6003, @fd_index=0x4, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x4000, @fd_index, 0x4, 0x8001, 0xfffff800, 0xc, 0x1, {0x2, r5}}, 0x1)
syz_io_uring_submit(r1, r3, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x3, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r5}}, 0xc8eb)

00:12:56 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)
r1 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r1}], 0x1, 0x5)
clock_gettime(0x0, &(0x7f0000000180)={<r2=>0x0, <r3=>0x0})
mq_timedsend(r1, &(0x7f00000004c0)="940b6913d12dc1ec80253de23fa32b77533af64172e670bce2", 0x19, 0x3, &(0x7f00000001c0)={r2, r3+60000000})
mq_timedsend(0xffffffffffffffff, &(0x7f0000000300)="25c7a1b65d76c9479fd9986057d09474ec75fd2375439e74eb3db3733a1f46c58035b5db59ea7bc0201a1835e013848fc02d1b21c06ba4cb6785ac2be1b325c098d9e8eca98f7da63f6fb2a199c24705a8b99ab32b70ea3455b07bae84a53e0f7c6c198e40f74f6873551439ab26e7bc3579d4f4b13f2f9e", 0x78, 0x80000001, &(0x7f00000003c0))

[ 1785.439144] audit: type=1326 audit(1747095176.216:734): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12086 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1785.441665] audit: type=1326 audit(1747095176.216:735): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12086 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1785.459146] audit: type=1326 audit(1747095176.233:736): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12086 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1785.463978] audit: type=1326 audit(1747095176.233:737): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12086 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1785.472872] audit: type=1326 audit(1747095176.233:738): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12086 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1785.477281] audit: type=1326 audit(1747095176.234:739): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12086 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:12:56 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x5450, &(0x7f00000000c0))

[ 1785.483600] loop0: detected capacity change from 0 to 262144
[ 1785.487697] audit: type=1326 audit(1747095176.234:740): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12086 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1785.493848] audit: type=1326 audit(1747095176.234:741): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12086 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1785.503075] audit: type=1326 audit(1747095176.280:742): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12104 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1785.507025] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 1785.508576] audit: type=1326 audit(1747095176.280:743): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12104 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1785.517646] FAULT_INJECTION: forcing a failure.
[ 1785.517646] name failslab, interval 1, probability 0, space 0, times 0
[ 1785.520205] CPU: 0 PID: 12093 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1785.521716] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1785.523518] Call Trace:
[ 1785.524113]  dump_stack+0x107/0x167
[ 1785.524922]  should_fail.cold+0x5/0xa
[ 1785.525788]  ? create_object.isra.0+0x3a/0xa20
[ 1785.526824]  should_failslab+0x5/0x20
[ 1785.527671]  kmem_cache_alloc+0x5b/0x310
[ 1785.528580]  create_object.isra.0+0x3a/0xa20
[ 1785.529567]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1785.530706]  __kmalloc_track_caller+0x177/0x370
[ 1785.531731]  ? match_number+0xaf/0x1d0
[ 1785.532587]  kmemdup_nul+0x2d/0xa0
[ 1785.533362]  match_number+0xaf/0x1d0
[ 1785.534206]  ? match_u64+0x190/0x190
[ 1785.535018]  ? __kmalloc_track_caller+0x2c6/0x370
[ 1785.536053]  ? memcpy+0x39/0x60
[ 1785.536833]  parse_opts.part.0+0x1f3/0x340
[ 1785.537766]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1785.538742]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1785.539863]  ? trace_hardirqs_on+0x5b/0x180
[ 1785.540787]  ? kfree+0xd7/0x340
[ 1785.541514]  p9_fd_create+0x98/0x4a0
[ 1785.542327]  ? p9_conn_create+0x510/0x510
[ 1785.543213]  ? p9_client_create+0x798/0x1230
[ 1785.544161]  ? kfree+0xd7/0x340
[ 1785.544876]  ? do_raw_spin_unlock+0x4f/0x220
[ 1785.545846]  p9_client_create+0x7ff/0x1230
[ 1785.546765]  ? p9_client_flush+0x430/0x430
[ 1785.547680]  ? trace_hardirqs_on+0x5b/0x180
[ 1785.548614]  ? lockdep_init_map_type+0x2c7/0x780
[ 1785.549651]  ? __raw_spin_lock_init+0x36/0x110
[ 1785.550647]  v9fs_session_init+0x1dd/0x1680
[ 1785.551578]  ? lock_release+0x680/0x680
[ 1785.552460]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1785.553502]  ? v9fs_show_options+0x690/0x690
[ 1785.554477]  ? trace_hardirqs_on+0x5b/0x180
[ 1785.555413]  ? kasan_unpoison_shadow+0x33/0x50
[ 1785.556407]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1785.557509]  v9fs_mount+0x79/0x8f0
[ 1785.558288]  ? v9fs_write_inode+0x60/0x60
[ 1785.559213]  legacy_get_tree+0x105/0x220
[ 1785.560079]  vfs_get_tree+0x8e/0x300
[ 1785.560859]  path_mount+0x1429/0x2120
[ 1785.561676]  ? strncpy_from_user+0x9e/0x470
[ 1785.562580]  ? finish_automount+0xa90/0xa90
[ 1785.563482]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1785.564502]  ? _copy_from_user+0xfb/0x1b0
[ 1785.565391]  __x64_sys_mount+0x282/0x300
[ 1785.566259]  ? copy_mnt_ns+0xa00/0xa00
[ 1785.567078]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1785.568183]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1785.569279]  do_syscall_64+0x33/0x40
[ 1785.570077]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1785.571160] RIP: 0033:0x7f543d208b19
[ 1785.571955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1785.575855] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1785.577462] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1785.578969] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1785.580465] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1785.581980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1785.583491] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:12:56 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x5451, &(0x7f00000000c0))

00:12:56 executing program 4:
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1c, 0x0, 0x7ff})

00:12:56 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000006c0)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xe4, 0x840, 0x12345}, 0x8)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x8, 0x0)
lsetxattr$security_selinux(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280), &(0x7f0000000340)='system_u:object_r:dlm_control_device_t:s0\x00', 0x2a, 0x0)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x32)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/nf_conntrack_expect\x00')
ioctl$NS_GET_OWNER_UID(r0, 0xb704, &(0x7f00000000c0)=<r4=>0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000200)=ANY=[@ANYBLOB="f891fac9ad9cc1dff2d04c214fe17265a09b32ffb5c05f471eb91fa7aaac6b1b978983b1e61e120a1b5309e18bd9bdce021990254efdd133c2bcc82fd49052b072e1902aee7f4a687dc91116a9cad3e9ada3", @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=0x0, @ANYBLOB="2e2f66696c651b2f66696c653000"])
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000000)={0x10001, 0xb5e, 0xfffffffa, 0x0, 0x3})

00:12:56 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(0xffffffffffffffff, 0x3312, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x81403, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x4, 0x3, 0xfffffffc, 0x2, 0x3, 0x400, 0xfffe, 0x0, 0xfffffffc, 0x0, 0x8}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000280), 0x2c4100, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r4, {0x4}}, './file0\x00'})
sendfile(r2, 0xffffffffffffffff, &(0x7f0000000440)=0x7, 0x6ee7)
sendfile(0xffffffffffffffff, r2, 0x0, 0x3)
r5 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
pwrite64(r5, &(0x7f00000000c0)="04", 0x1, 0x3ff03)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r6, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
fsetxattr$security_ima(r6, &(0x7f0000000300), &(0x7f0000000340)=@v2={0x3, 0x6, 0x7, 0x1}, 0x9, 0x1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000600)={0x0, <r7=>0x0})
r8 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x43000, 0x3, 0x0, 0x4, 0x0, 0x4}, r7, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES32=r8, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="4ec066696c6530105336954469db231bf1a7c73921847aeaa9"])
sendfile(r1, r0, 0x0, 0xffffffff000)

[ 1785.644564] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
00:12:56 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 32)

[ 1785.694705] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
00:12:56 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)
r1 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r1}], 0x1, 0x5)
clock_gettime(0x0, &(0x7f0000000180)={<r2=>0x0, <r3=>0x0})
mq_timedsend(r1, &(0x7f00000004c0)="940b6913d12dc1ec80253de23fa32b77533af64172e670bce2", 0x19, 0x3, &(0x7f00000001c0)={r2, r3+60000000})

[ 1785.750192] FAULT_INJECTION: forcing a failure.
[ 1785.750192] name failslab, interval 1, probability 0, space 0, times 0
[ 1785.751534] CPU: 1 PID: 12125 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1785.752337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1785.753273] Call Trace:
[ 1785.753620]  dump_stack+0x107/0x167
[ 1785.754042]  should_fail.cold+0x5/0xa
[ 1785.754489]  ? p9_fd_create+0x161/0x4a0
[ 1785.754962]  should_failslab+0x5/0x20
[ 1785.755405]  kmem_cache_alloc_trace+0x55/0x320
[ 1785.755946]  p9_fd_create+0x161/0x4a0
[ 1785.756385]  ? p9_conn_create+0x510/0x510
[ 1785.756863]  ? p9_client_create+0x798/0x1230
[ 1785.757370]  ? kfree+0xd7/0x340
[ 1785.757756]  ? do_raw_spin_unlock+0x4f/0x220
[ 1785.758272]  p9_client_create+0x7ff/0x1230
[ 1785.758772]  ? p9_client_flush+0x430/0x430
[ 1785.759269]  ? trace_hardirqs_on+0x5b/0x180
[ 1785.759775]  ? lockdep_init_map_type+0x2c7/0x780
[ 1785.760326]  ? __raw_spin_lock_init+0x36/0x110
[ 1785.760871]  v9fs_session_init+0x1dd/0x1680
[ 1785.761439]  ? lock_release+0x680/0x680
[ 1785.761926]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1785.762489]  ? v9fs_show_options+0x690/0x690
[ 1785.763007]  ? trace_hardirqs_on+0x5b/0x180
[ 1785.763508]  ? kasan_unpoison_shadow+0x33/0x50
[ 1785.764045]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1785.764633]  v9fs_mount+0x79/0x8f0
[ 1785.765048]  ? v9fs_write_inode+0x60/0x60
[ 1785.765541]  legacy_get_tree+0x105/0x220
[ 1785.766003]  vfs_get_tree+0x8e/0x300
[ 1785.766433]  path_mount+0x1429/0x2120
[ 1785.766869]  ? strncpy_from_user+0x9e/0x470
[ 1785.767362]  ? finish_automount+0xa90/0xa90
[ 1785.767867]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1785.768413]  ? _copy_from_user+0xfb/0x1b0
[ 1785.768895]  __x64_sys_mount+0x282/0x300
[ 1785.769366]  ? copy_mnt_ns+0xa00/0xa00
[ 1785.769848]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1785.770462]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1785.771072]  do_syscall_64+0x33/0x40
[ 1785.771510]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1785.772108] RIP: 0033:0x7f543d208b19
[ 1785.772545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1785.774696] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1785.775584] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1785.776414] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1785.777364] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1785.778215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1785.779045] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1800.493072] kauditd_printk_skb: 15 callbacks suppressed
[ 1800.493091] audit: type=1326 audit(1747095191.271:758): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12145 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:13:11 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
r2 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r3 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
bind$bt_l2cap(r4, &(0x7f00000001c0)={0x1f, 0x5, @none, 0x56f7, 0x2}, 0xe)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0xd, @any, 0xfffc}, 0xe)
openat(r4, &(0x7f0000000280)='./file0\x00', 0x101, 0x0)
close(r1)

00:13:11 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$nl_generic(r1, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="740100004200000227bd708ab159ad000008007d0000c0ff020c003600000000000000000008008a000000000000000000", @ANYRES32=r2, @ANYBLOB="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"], 0x174}, 0x1, 0x0, 0x0, 0x4000000}, 0x2004c0a0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
tee(0xffffffffffffffff, r3, 0x7, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:13:11 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)
r1 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r1}], 0x1, 0x5)
clock_gettime(0x0, &(0x7f0000000180)={<r2=>0x0, <r3=>0x0})
mq_timedsend(r1, &(0x7f00000004c0)="940b6913d12dc1ec80253de23fa32b77533af64172e670bce2", 0x19, 0x3, &(0x7f00000001c0)={r2, r3+60000000})

00:13:11 executing program 5:
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x800, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x24000002)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x48, 0x1, 0x8, 0x201, 0x0, 0x0, {0x0, 0x0, 0x2}, [@CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_TIMEOUT_UDP_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x80f3}]}, 0x48}}, 0x5ba62ccafc015e89)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x7c08}}, './file0\x00'})
sendmsg$NL80211_CMD_GET_MESH_CONFIG(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x28, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x10000000, 0x52}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x400c004)
r1 = openat$cgroup_ro(r0, &(0x7f0000000380)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000400), r0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x34, r2, 0x8, 0x70bd27, 0x25dfdbff, {{}, {}, {0x18, 0x17, {0xd, 0x5, @l2={'ib', 0x3a, 'macvlan0\x00'}}}}, [""]}, 0x34}, 0x1, 0x0, 0x0, 0x20014000}, 0x8000)
r3 = getpid()
sendmsg$nl_generic(r1, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x70, 0x33, 0x400, 0x70bd2a, 0x25dfdbfd, {0x1c}, [@nested={0x5a, 0x1c, 0x0, 0x1, [@generic="c6f3d17d888ada9b8e6fab90e0b154e3a6cfe2d9c3596d62010cb460ae08e56d0649bc930667888e262c5ed981754e02b08736540c0aea292073d2a84daf733ac17ef00ec34c8518667c91224329", @typed={0x8, 0x8f, 0x0, 0x0, @pid=r3}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x50}, 0x0)
fcntl$getown(r0, 0x9)
setsockopt(r0, 0xe84d, 0x400, &(0x7f0000000640)="e6b4785599c73c3944b40a93a9ba91fd4e912ab81840844323786f45bfee8906f6fb8fd5b73486737b4f171575551858f3a319c04dd3bb89b593e658c07cd1ab8662b497ceb6bd90318e43bf36f632753d736996154b7b7eeeb5ddd1329709c147dd9bfd36e147365a5d51bc011718ddbd3b942a3fa559571ff89f2195287a3156c9604c192b355ee375fc62fc0be57278865009ec", 0x95)
r4 = socket$inet(0x2, 0x5, 0xfa1)
ioctl$sock_inet_SIOCSIFDSTADDR(r4, 0x8918, &(0x7f0000000700)={'syz_tun\x00', {0x2, 0x0, @multicast1}})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000740)={0x0, <r5=>0x0})
getpgid(r5)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f0000000ac0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000800)={0x244, 0x0, 0x800, 0x70bd26, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_BEACON_TAIL={0x50, 0xf, [@tim={0x5, 0x4a, {0x0, 0x8e, 0x7f, "fdd0f76824d40ff4c1303e4da95a867398ad4bce35c5cd1a416be5765295e923e4a3f2ae5923713c926196e05602408b416eba51b2d20708b679b7fcb1aadf861398393f5a945f"}}]}, @NL80211_ATTR_PROBE_RESP={0x1df, 0x91, "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"}]}, 0x244}, 0x1, 0x0, 0x0, 0x20000041}, 0x20004040)
r6 = creat(&(0x7f0000000b00)='./file0\x00', 0x21)
sendmsg$TIPC_NL_BEARER_ENABLE(r6, &(0x7f0000000d40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000b80)={0x14c, 0x0, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x4c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x42, 0x4, {'gcm(aes)\x00', 0x1a, "d41c2eb8f5ffc4c58d9c6ef5b1e6f711a3a2202b379385f92fe0"}}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xfffffffa}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_BEARER={0x9c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x200}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x15}}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @remote}}, {0x14, 0x2, @in={0x2, 0x8000, @remote}}}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1510}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_NAME={0x14, 0x1, @l2={'ib', 0x3a, 'bond_slave_1\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}]}, @TIPC_NLA_NET={0x28, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xed4}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x200}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x4880}, 0x4040000)
r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000000d80), 0x6440, 0x0)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r7, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x34, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x3}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x800}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000)

00:13:11 executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0xa0)
syz_mount_image$vfat(0x0, 0x0, 0x9, 0x0, 0x0, 0x8c, &(0x7f0000000340)={[], [{@euid_lt={'euid<', 0xee01}}, {@smackfsfloor={'smackfsfloor', 0x3d, '\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x2}}, {@measure}, {@seclabel}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
syz_io_uring_setup(0x631c, &(0x7f0000000180)={0x0, 0xf474, 0x4eae4e72e1fc3006, 0x2, 0x2d7, 0x0, r0}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000080), 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/block/sr0', 0x200000, 0x0)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="041f0000000000000502ff"], 0x108)
setsockopt$inet6_opts(r2, 0x29, 0x36, 0x0, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000180)=ANY=[], 0x108)
setsockopt$inet6_opts(r3, 0x29, 0x36, 0x0, 0x0)
dup2(r2, r3)
pipe(&(0x7f00000000c0))
openat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
poll(&(0x7f0000000000)=[{r4, 0x80a0}, {r1, 0x8040}], 0x2, 0x2)

00:13:11 executing program 3:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x30c202c, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000001880)=""/4109, 0x100d)

00:13:11 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 33)

00:13:11 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x5452, &(0x7f00000000c0))

[ 1800.505000] FAULT_INJECTION: forcing a failure.
[ 1800.505000] name failslab, interval 1, probability 0, space 0, times 0
[ 1800.506461] CPU: 0 PID: 12141 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1800.507272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1800.508240] Call Trace:
[ 1800.508580]  dump_stack+0x107/0x167
[ 1800.509040]  should_fail.cold+0x5/0xa
[ 1800.509510]  ? create_object.isra.0+0x3a/0xa20
[ 1800.510083]  should_failslab+0x5/0x20
[ 1800.510550]  kmem_cache_alloc+0x5b/0x310
[ 1800.511082]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1800.511199] audit: type=1326 audit(1747095191.271:759): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12145 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1800.511647]  create_object.isra.0+0x3a/0xa20
[ 1800.516513]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1800.517141]  kmem_cache_alloc_trace+0x151/0x320
[ 1800.517711]  p9_fd_create+0x161/0x4a0
[ 1800.518183]  ? p9_conn_create+0x510/0x510
[ 1800.518689]  ? p9_client_create+0x798/0x1230
[ 1800.519235]  ? kfree+0xd7/0x340
[ 1800.519646]  ? do_raw_spin_unlock+0x4f/0x220
[ 1800.520198]  p9_client_create+0x7ff/0x1230
[ 1800.520729]  ? p9_client_flush+0x430/0x430
[ 1800.521250]  ? trace_hardirqs_on+0x5b/0x180
[ 1800.521783]  ? lockdep_init_map_type+0x2c7/0x780
[ 1800.522363]  ? __raw_spin_lock_init+0x36/0x110
[ 1800.522927]  v9fs_session_init+0x1dd/0x1680
[ 1800.523463]  ? lock_release+0x680/0x680
[ 1800.523953]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1800.524541]  ? v9fs_show_options+0x690/0x690
[ 1800.525091]  ? trace_hardirqs_on+0x5b/0x180
[ 1800.525626]  ? kasan_unpoison_shadow+0x33/0x50
[ 1800.526207]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1800.526848]  v9fs_mount+0x79/0x8f0
[ 1800.527291]  ? v9fs_write_inode+0x60/0x60
[ 1800.527777]  legacy_get_tree+0x105/0x220
[ 1800.527979] audit: type=1326 audit(1747095191.271:760): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12145 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1800.528283]  vfs_get_tree+0x8e/0x300
[ 1800.533050]  path_mount+0x1429/0x2120
[ 1800.533516]  ? strncpy_from_user+0x9e/0x470
[ 1800.534046]  ? finish_automount+0xa90/0xa90
[ 1800.534572]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1800.535146]  ? _copy_from_user+0xfb/0x1b0
[ 1800.535657]  __x64_sys_mount+0x282/0x300
[ 1800.536159]  ? copy_mnt_ns+0xa00/0xa00
[ 1800.536645]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1800.537290]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1800.537920]  do_syscall_64+0x33/0x40
[ 1800.538372]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1800.538994] RIP: 0033:0x7f543d208b19
[ 1800.539448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1800.541700] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1800.542634] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1800.543503] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1800.543745] audit: type=1326 audit(1747095191.273:761): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12145 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1800.544371] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1800.544378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1800.544385] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1800.544511] hpet: Lost 2 RTC interrupts
[ 1800.562343] loop0: detected capacity change from 0 to 262144
[ 1800.576233] audit: type=1326 audit(1747095191.331:762): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12145 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1800.596476] audit: type=1326 audit(1747095191.331:763): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12145 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:13:11 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x5460, &(0x7f00000000c0))

00:13:11 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff, 0x0, 0x3})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x29, 0x29, 0x10, 0x8, 0x1, 0x0, 0x2, 0x68})

00:13:11 executing program 1:
futimesat(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000000)={[{@sbsector={'sbsector', 0x3d, 0x6}}, {@unhide}, {@dmode={'dmode', 0x3d, 0x9}}]})
execveat(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000005c0), 0x0)

[ 1800.619464] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1800.637047] audit: type=1326 audit(1747095191.333:764): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12145 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1800.668013] audit: type=1326 audit(1747095191.408:765): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12161 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:13:11 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 34)

00:13:11 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000140)={0x35, 0x22, 0x7, 0xf, 0xa, 0x80000000, 0x0, 0x16c, 0x1})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0xfffffffd, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x3a5202, 0x0)
syz_io_uring_setup(0x3, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000540)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x6003, @fd_index=0x4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000100)=@IORING_OP_OPENAT={0x12, 0x5, 0x0, r1, 0x0, &(0x7f00000000c0)='./file0\x00', 0x6, 0x165401, 0x12345}, 0x81)
ioctl$RTC_AIE_ON(r1, 0x7001)

[ 1800.703339] FAULT_INJECTION: forcing a failure.
[ 1800.703339] name failslab, interval 1, probability 0, space 0, times 0
[ 1800.704702] CPU: 0 PID: 12169 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1800.705457] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1800.706327] audit: type=1326 audit(1747095191.421:766): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12161 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1800.706356] Call Trace:
[ 1800.706380]  dump_stack+0x107/0x167
[ 1800.711507]  should_fail.cold+0x5/0xa
[ 1800.711924]  ? p9_client_prepare_req.part.0+0x3a/0xac0
[ 1800.712496]  should_failslab+0x5/0x20
[ 1800.712909]  kmem_cache_alloc+0x5b/0x310
[ 1800.713384]  p9_client_prepare_req.part.0+0x3a/0xac0
[ 1800.713951]  p9_client_rpc+0x220/0x1370
[ 1800.714410]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1800.714982]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1800.715562]  ? pipe_poll+0x21b/0x800
[ 1800.715963]  ? p9_fd_close+0x4a0/0x4a0
[ 1800.716391]  ? wait_for_partner+0x3c0/0x3c0
[ 1800.716865]  ? p9_fd_poll+0x1e0/0x2c0
[ 1800.717308]  ? p9_fd_create+0x357/0x4a0
[ 1800.717748]  ? p9_conn_create+0x510/0x510
[ 1800.718231]  ? p9_client_create+0x798/0x1230
[ 1800.718706]  ? kfree+0xd7/0x340
[ 1800.719086]  ? do_raw_spin_unlock+0x4f/0x220
[ 1800.719569]  p9_client_create+0xa76/0x1230
[ 1800.720066]  ? p9_client_flush+0x430/0x430
[ 1800.720574]  ? trace_hardirqs_on+0x5b/0x180
[ 1800.721045]  ? lockdep_init_map_type+0x2c7/0x780
[ 1800.721557]  ? __raw_spin_lock_init+0x36/0x110
[ 1800.722094]  v9fs_session_init+0x1dd/0x1680
[ 1800.722562]  ? lock_release+0x680/0x680
[ 1800.723026]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1800.723546]  ? v9fs_show_options+0x690/0x690
[ 1800.724059]  ? trace_hardirqs_on+0x5b/0x180
[ 1800.724528]  ? kasan_unpoison_shadow+0x33/0x50
[ 1800.725050]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1800.725631]  v9fs_mount+0x79/0x8f0
[ 1800.726046]  ? v9fs_write_inode+0x60/0x60
[ 1800.726524]  legacy_get_tree+0x105/0x220
[ 1800.726992]  vfs_get_tree+0x8e/0x300
[ 1800.727421]  path_mount+0x1429/0x2120
[ 1800.727885]  ? strncpy_from_user+0x9e/0x470
[ 1800.728384]  ? finish_automount+0xa90/0xa90
[ 1800.728878]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1800.729415]  ? _copy_from_user+0xfb/0x1b0
[ 1800.729876]  __x64_sys_mount+0x282/0x300
[ 1800.730345]  ? copy_mnt_ns+0xa00/0xa00
[ 1800.730795]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1800.731396]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1800.731993]  do_syscall_64+0x33/0x40
[ 1800.732422]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1800.733010] RIP: 0033:0x7f543d208b19
[ 1800.733438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1800.735427] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1800.736302] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1800.737121] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1800.737951] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1800.738771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1800.739598] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:13:11 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2, 0x3}, 0x1c)
lseek(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x1a, 0x0, &(0x7f0000000180))
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f00000000c0)=0x100000000087)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x240200, 0x12345}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x6, 0x0, @fd, 0x0, 0x0, 0x0, {0x20}, 0x0, {0x0, r2}}, 0x100)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x2, 0x0, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
lseek(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'sit0\x00', &(0x7f0000000200)={'syztnl2\x00', 0x0, 0x2f, 0x9, 0x1, 0x1, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, 0x7800, 0x1, 0x8001, 0x7}})
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x1100, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0)

00:13:11 executing program 1:
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00032cbd7000fddbdf253100000008000200", @ANYRES32=0x0, @ANYBLOB="05003400050033008600001f"], 0x2c}, 0x1, 0x0, 0x0, 0x1}, 0x4000051)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000640)={0x40, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFTYPE={0x8}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan3\x00'}, @NL802154_ATTR_EXTENDED_ADDR={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x40}}, 0x0)

00:13:11 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x40049409, &(0x7f00000000c0))

00:13:27 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
r2 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r3 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
bind$bt_l2cap(r4, &(0x7f00000001c0)={0x1f, 0x5, @none, 0x56f7, 0x2}, 0xe)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0xd, @any, 0xfffc}, 0xe)
openat(r4, &(0x7f0000000280)='./file0\x00', 0x101, 0x0)
close(r1)

00:13:27 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
ioctl$FS_IOC_ENABLE_VERITY(r1, 0x40806685, &(0x7f0000000140)={0x1, 0x2, 0x1000, 0x0, &(0x7f0000000000), 0x6e, 0x0, &(0x7f00000000c0)="f03d2b55d94d42fb8794b3c5f753fb7ef0cde51ee57e7cf64d5c1ed8a45b869a22303622376c1acbaa5e12dd2827b4d5b8ba4db76616d66586eae1987c3ef9e896c45e4fd9554c091a24a71618439758e4c301e81616d5db3aacf63bb7a1e1d3c88c8c051d45384291660be8d225"})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:13:27 executing program 5:
sendmsg$inet(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f0000000000)={0x2, 0x4e22, @rand_addr=0x64010101}, 0x10, &(0x7f0000001440)=[{&(0x7f00000015c0)="05000000000000000a899d3c7f5f35ef6696b57825631b6d02bacfe2de7f346bbda81912a626b7845248411c9dfe4eae1f13072a5e8ea5286e032644f8a1fa86ce51454d1b65e7c0aa210524dfd174e80c327dc19dc31fa0e9f80c1b92f651356cadddd891d3fbfb7e4f66129474b9ff390e9b855c71db6653d33dddffc76b26ad2cfd252d90f32f92dc044fdcea250064ca06d83e483f2306e6657a7ce44968f037e50aa3ac2a7002e35a81ff022035ca049febbd3695c533d354ca17dc728b91de6873e12d67d7d983586298a040513d0462230cdc98974b57b566b501", 0xde}, {&(0x7f0000000080)="6c038fb857a25617fa33c5cf15208336ccda6c53cdcc095ea70a579063d1b8a5be134e756ac3dec3792ab9e0c8112b3bd1588ff41eb9de75de61e429988d084902cf4defdaecbe3914a1f9daf5cb", 0x4e}, {&(0x7f0000000100)="e2dc7539416854c906a929e9772ddf9184f03ae080fbbe317f073d3e11d7c48e193d5e267c65fb9a0e8b89090afbc23e445bb0c25dc75e8fa8c9c0072e53080ce711c924e852ca2a6d174b4644ea5c1a86fedbadc275a8bde1733d68da5e7acd6950297e26d3f9c00015b624bb5ac70a177d5439d6271daa1bc00e1d8efdd193bd97c1b0d3fbf1dd5eec9f5d6f09bf7e78f26e4f93853045012e1825f1b6f8c67988f8ea3612a352e9af97969c2e", 0xae}, {&(0x7f00000001c0)="eef847ef8bed28060998e43896e60b07bf3ab84068f4932557e1977420766d4bc7c743226f35cedf58f0", 0x2a}, {&(0x7f0000000200)="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", 0x1000}, {&(0x7f0000001200)="d6048be5d91fcf2791a8d571e64e194b4563d0f6f5bc54e022a098393c8da00593a03144257c6d998fa2c7b7522f9a2d5b4cf102f72201617cad4d1a9abcbf18e9a4997d830e6d3c4786c39ba0741362045903f62cac3b0171772dc4265a2e19f39dc919c18ef6f7438f54dc33bd9f22769b9cf3d78a4ec8a0bc87038869c9f92d1dd904a838e8e94c640f7664c791d469ceb859fc426118a3b663a0a5f0dc9f1ad2a663f44b54bda1b83389bb2cf5a0f985ea67b29a39b894d776ac2410d3d27999ea5bdc1923e9c7868b7bea91f18a32b94bfc48c5f61e659d", 0xda}, {&(0x7f0000001300)="eeed9ab95aa41a6beeda2e4cc43210c8dc4c18368774101f5034222ef0e6b67d146e52650f5ba1604cc3", 0x2a}, {&(0x7f0000001340)="d948f45cfe3bbc35e4302ca3b234c74111d40303ea9c3aaec4af581680f605f8db2745468e346adeee8151aa2c67acc1a0284d504c567fd708caec3f2b5308723d35a877713c91b8252edff7815f55eda7570f22bdc37402ab3e31ee2ea4b4e1295a1fa48e65f29bacf77a72a2dafae671ef06bb9dbf2990fe2f340a30308a77393f3c6665c17817f1ab92fdc715c1c0d06752f0cee3d9099abfeaabbb85f8686a980078e86685c328978e6c86778461158184e36fc9dd890dbe19279728829f24c0a608b53da7fa59e84de0b83bdb46d1ce330778307a7a5788b5c3cfd52e3ec282058d4d053320641743e29f98097aa7f716", 0xf3}], 0x8}, 0x4)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000001500)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001540), 0x80240, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000001580)={r1, 0x2, 0x2, 0x5})

00:13:27 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)
r1 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r1}], 0x1, 0x5)
clock_gettime(0x0, &(0x7f0000000180))

00:13:27 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x40082102, &(0x7f00000000c0))

[ 1816.693432] loop0: detected capacity change from 0 to 262144
00:13:27 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 35)

00:13:27 executing program 1:
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000040)='syz0\x00', 0x200002, 0x0)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r0, 0x8008f512, &(0x7f0000000480))
r1 = syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./file0\x00', 0x80, 0xffffffffffffff61, 0x0, 0x30e8004, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0)
mknod$loop(&(0x7f0000000100)='./file2\x00', 0x40, 0x1)
r2 = inotify_init1(0x0)
unlinkat(r1, &(0x7f0000000080)='./file1\x00', 0x200)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r2, 0x8008f513, &(0x7f0000000380))
signalfd4(0xffffffffffffffff, &(0x7f0000000400)={[0x20]}, 0x8, 0x80000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r3, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r3, 0x3305)
inotify_add_watch(r3, &(0x7f0000000440)='./file2\x00', 0x320002cb)
clock_gettime(0x0, &(0x7f0000000500)={<r4=>0x0, <r5=>0x0})
futimesat(r1, &(0x7f0000000540)='mnt/encrypted_dir\x00', &(0x7f00000003c0)={{}, {r4, r5/1000+10000}})
rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f0000000640)='./file0\x00')
ioctl$AUTOFS_IOC_READY(r2, 0x9360, 0x740b9bde)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000008c0)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000880)={&(0x7f00000001c0)=@rc, 0x80, &(0x7f0000000800)=[{&(0x7f0000000680)=""/218, 0xda}, {&(0x7f0000000580)=""/73, 0x49}, {&(0x7f0000000600)=""/49, 0x31}, {&(0x7f0000000780)=""/118, 0x76}], 0x4, &(0x7f0000000840)}, 0x0, 0x1, 0x1}, 0x3)
chmod(&(0x7f0000000000)='./file0\x00', 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000340)=[{{&(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000140)=[{&(0x7f00000002c0)="aa7d2005e1053ce72d25d800703370cca52d5e93c416b1161738350354424ac33e4249a07ff87cbd50c5ff291fbe3b7f4ff7a09614609f843bd7f3a99949cd8c0a4b0ae52e1d092c3fae2def25f742f9f5a7a6734abd3c3759cf51f93b5ffbe394c6", 0x62}], 0x1}}], 0x1, 0xc000)

00:13:27 executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f0000003c80)={&(0x7f0000003bc0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000003c40)={&(0x7f0000003c00)={0x14, 0xa, 0x6, 0x201}, 0x14}}, 0x80)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), r2)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000240)={'wpan1\x00', <r4=>0x0})
sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r2, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x3c, r3, 0x300, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_MAX_BE={0x5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x3c}}, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan4\x00', <r5=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan0\x00'})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x80, r1, 0x4, 0x70bd2c, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x80}, 0x1, 0x0, 0x0, 0x44804}, 0x4000010)
recvmsg$unix(0xffffffffffffffff, 0x0, 0x0)

[ 1816.713764] kauditd_printk_skb: 9 callbacks suppressed
[ 1816.713777] audit: type=1326 audit(1747095207.491:775): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12189 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1816.720566] audit: type=1326 audit(1747095207.495:776): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12189 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1816.723395] audit: type=1326 audit(1747095207.495:777): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12189 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1816.731054] FAULT_INJECTION: forcing a failure.
[ 1816.731054] name failslab, interval 1, probability 0, space 0, times 0
[ 1816.732458] CPU: 1 PID: 12201 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1816.733288] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1816.734285] Call Trace:
[ 1816.734607]  dump_stack+0x107/0x167
[ 1816.735044]  should_fail.cold+0x5/0xa
[ 1816.735503]  ? create_object.isra.0+0x3a/0xa20
[ 1816.736052]  should_failslab+0x5/0x20
[ 1816.736514]  kmem_cache_alloc+0x5b/0x310
[ 1816.737049]  create_object.isra.0+0x3a/0xa20
[ 1816.737581]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1816.738201]  kmem_cache_alloc+0x159/0x310
[ 1816.738706]  p9_client_prepare_req.part.0+0x3a/0xac0
[ 1816.739325]  p9_client_rpc+0x220/0x1370
[ 1816.739809]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1816.740471]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1816.741114]  ? pipe_poll+0x21b/0x800
[ 1816.741557]  ? p9_fd_close+0x4a0/0x4a0
[ 1816.742037]  ? wait_for_partner+0x3c0/0x3c0
[ 1816.742556]  ? p9_fd_poll+0x1e0/0x2c0
[ 1816.743017]  ? p9_fd_create+0x357/0x4a0
[ 1816.743491]  ? p9_conn_create+0x510/0x510
[ 1816.743987]  ? p9_client_create+0x798/0x1230
[ 1816.744517]  ? kfree+0xd7/0x340
[ 1816.744917]  ? do_raw_spin_unlock+0x4f/0x220
[ 1816.745452]  p9_client_create+0xa76/0x1230
[ 1816.746083]  ? p9_client_flush+0x430/0x430
[ 1816.746599]  ? trace_hardirqs_on+0x5b/0x180
[ 1816.747118]  ? lockdep_init_map_type+0x2c7/0x780
[ 1816.747689]  ? __raw_spin_lock_init+0x36/0x110
[ 1816.748241]  v9fs_session_init+0x1dd/0x1680
[ 1816.748763]  ? lock_release+0x680/0x680
[ 1816.749250]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1816.749828]  ? v9fs_show_options+0x690/0x690
[ 1816.750373]  ? trace_hardirqs_on+0x5b/0x180
[ 1816.750919]  ? kasan_unpoison_shadow+0x33/0x50
[ 1816.751466]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1816.752076]  v9fs_mount+0x79/0x8f0
[ 1816.752502]  ? v9fs_write_inode+0x60/0x60
[ 1816.752998]  legacy_get_tree+0x105/0x220
[ 1816.753482]  vfs_get_tree+0x8e/0x300
[ 1816.753932]  path_mount+0x1429/0x2120
[ 1816.754394]  ? strncpy_from_user+0x9e/0x470
[ 1816.754910]  ? finish_automount+0xa90/0xa90
[ 1816.755424]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1816.756009]  ? _copy_from_user+0xfb/0x1b0
[ 1816.756510]  __x64_sys_mount+0x282/0x300
[ 1816.756993]  ? copy_mnt_ns+0xa00/0xa00
[ 1816.757456]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1816.758090]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1816.758703]  do_syscall_64+0x33/0x40
[ 1816.759149]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1816.759756] RIP: 0033:0x7f543d208b19
[ 1816.760202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1816.762472] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1816.763402] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1816.764253] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1816.765100] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1816.765953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1816.766799] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1816.777008] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1816.793228] audit: type=1326 audit(1747095207.496:778): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12189 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1816.796020] audit: type=1326 audit(1747095207.497:779): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12189 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:13:27 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x4, 0x32, 0x17, 0x18, 0xa, 0x9, 0x4, 0x133, 0xffffffffffffffff})

[ 1816.820230] audit: type=1326 audit(1747095207.497:780): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12189 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1816.855932] audit: type=1326 audit(1747095207.498:781): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12189 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1816.858515] audit: type=1326 audit(1747095207.498:782): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12189 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1816.873095] audit: type=1326 audit(1747095207.647:783): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12221 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1816.921182] audit: type=1326 audit(1747095207.647:784): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12221 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1816.965559] loop0: detected capacity change from 0 to 262144
00:13:27 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x40086602, &(0x7f00000000c0))

00:13:27 executing program 5:
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/timers\x00', 0x0, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r2}, './file0\x00'})
r3 = fcntl$dupfd(r1, 0x406, r0)
r4 = syz_io_uring_setup(0x56de, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000240)=<r5=>0x0, &(0x7f0000000100)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00')
setresuid(0xffffffffffffffff, r7, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0)
socket$unix(0x1, 0x5, 0x0)
r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000)
syz_io_uring_submit(r8, r6, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001)
io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0)

00:13:27 executing program 3:
perf_event_open(&(0x7f0000000480)={0x1, 0x92, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180)={0x0, 0x4ac1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @ipv4, 0xffffffff}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a64485f108d23b76be1cc06a8682449c18157c739b4f25f709", 0x19}, {0x0}, {0x0}], 0x3}, 0x0, 0x40448c0}, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
[ 1816.983609] netlink: 'syz-executor.1': attribute type 7 has an invalid length.
pwritev2(0xffffffffffffffff, &(0x7f0000000780)=[{&(0x7f0000000940)="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", 0x1000}, {&(0x7f0000000040)="c3442580cc299af4d88d06ef6b113d788bffc654fc5944a0ca7d7087ea428e5566cf6334af", 0x25}, {&(0x7f0000001940)="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", 0xc00}, {&(0x7f0000000340)="8661651f42a63adff786fea1c356e92f7de93d9c832526692db81cdf22d5bb29ebd58ac240cb216da42145fab5fd716b36cef0628f91d2a5846edaffd5734320ee014550e5a68a1449ae31db992d354ca004eb9853777f8bc775d7f64f490656bfb35f4c2fe29dbb2d2bf8cda388311ec106593afd63c487a8732f951eecbbed504ebe514a1b16ebe401b76972e1eba83cf1a91bed56dea35a509fecf5cd12ea9d2e74eb279a9a9583b1", 0xaa}, {&(0x7f0000000080)="e5f934e937c08d966ed5ab47814aca1da1b0b299fada7b94f79c724cf7a7795e4f94551fd92fafe3710af7", 0x2b}, {&(0x7f0000000500)="1e259ffa62ea41bf7ebbaf219cda5c82ac6f60cc86781e162dfde77637ca7a2788c9dabb9a5acd83d8fcdab5a9f7951e9d6ea016e5d7e24a024ea17da55a7537c92065c789368713d587a923adff96ed47920d61f92a520b4de846aaabaad11a75061c1054c5f7a26420e32711e05f77a7656923a34908e84b5ee8d8b5ad5774d82152f409cb7ba95c3482ac6a917c3324bddada1483453f11264215e8004fb3b2dbc71ba875", 0xa6}, {&(0x7f00000005c0)="06729268a23b1d8d4fa3d2fa1ad85d65f0ae110a59b63ad3fc1cea1e01385d870239157f4463aded9338e228dc927634d1e9491607a722ebcc0a1e4bef0eaac7c85444e7d72531458e0aa2c3aefc18a00314b84edaaacfad8469434642150745fbb9a3d3fb39475f74d06bc03dbea40e9e8634f172a1d4b51272d451c04f5faf2e9fed1e42973677fe2b5af562a2f5f15d610c57fecc42ff205e51a44ac22160cfa773", 0xa3}, {&(0x7f0000000680)="be6f74153fb57fcd47a383525a20ddfac5b71b19cdc12dcaf34cc5aa7e762c5358b005b6db993779cff10778f3787f3d44ad4c229f7c75b8e7fc664cf0980a50d91015ef87291f77c3d9003d89f580ef9e28e9dfffe5ac3ea91eb97dc3ad5cabd61417fb09c1e2546403a1a835e852d1b907caec26f82183051681cfd0e7c582a20f5dbf5db53f6edd7fccfcef13f1af9a7bddf5c873fb8117e40fd0bebd5a279624301df0c4d6035758f9a4ee711c23c63531265d1a4239c38d78fa6301543069820dd09926e3fd43323dc85c2b0419fa4eb9aecdcf85c567173d34a420ad60f12273633f9ab43534616798", 0xec}, {&(0x7f00000000c0)="ebd328211a19b0d406fc", 0xa}, {&(0x7f0000000400)="56da6ae86a71740b86ec3fdf46d2f5b55900b3260ae30e6e772af73f4c0353a5ee347c60a63417e7a045e043f8f1343ce249f153dc218bc0513566ba51cbcbbd22eb0e9edab34d630776", 0x4a}], 0xa, 0x81, 0x8, 0x1e)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000880)={'filter\x00', 0x0, 0x0, 0x0, [0x15d53543, 0x20, 0x0, 0x2f0, 0xf5, 0x1]}, &(0x7f0000000280)=0x78)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

00:13:27 executing program 1:
io_submit(0x0, 0x2, &(0x7f0000001680)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
close(r0)
r1 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffe, 0x6, 0x0, @buffer={0x300, 0xae, &(0x7f0000000580)=""/174}, &(0x7f0000000040)="4feb7dc9066b", 0x0, 0x0, 0x0, 0x4, 0x0})
syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140))
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = fcntl$dupfd(r3, 0x0, r3)
sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x30, 0x1e, 0xc21, 0x0, 0x0, {0x7}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x14, 0x7, 0x0, 0x0, @ipv6=@private2}]}, 0x30}}, 0x0)
open_tree(r1, &(0x7f0000000000)='./file0\x00', 0x1001)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000180), 0x602000, 0x0)

00:13:27 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)
r1 = mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)
poll(&(0x7f0000000040)=[{r1}], 0x1, 0x5)

00:13:27 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x38, 0x25, 0x7, 0xb, 0x2, 0x1, 0x4, 0xed, 0xffffffffffffffff})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f00000000c0)={0x0, 0x3b, 0xb, 0x10015, 0x0, 0x7ff})

00:13:27 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 36)

[ 1817.005614] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1817.012183] netlink: 'syz-executor.1': attribute type 7 has an invalid length.
[ 1817.053396] FAULT_INJECTION: forcing a failure.
[ 1817.053396] name failslab, interval 1, probability 0, space 0, times 0
[ 1817.056710] CPU: 0 PID: 12241 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1817.058289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1817.060106] Call Trace:
[ 1817.060692]  dump_stack+0x107/0x167
[ 1817.061502]  should_fail.cold+0x5/0xa
[ 1817.062358]  ? p9_fcall_init+0x97/0x290
[ 1817.063231]  should_failslab+0x5/0x20
[ 1817.064067]  __kmalloc+0x72/0x390
[ 1817.064827]  p9_fcall_init+0x97/0x290
[ 1817.065655]  p9_client_prepare_req.part.0+0x8c/0xac0
[ 1817.066770]  p9_client_rpc+0x220/0x1370
[ 1817.067638]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1817.068780]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1817.069947]  ? pipe_poll+0x21b/0x800
[ 1817.070754]  ? p9_fd_close+0x4a0/0x4a0
[ 1817.071593]  ? wait_for_partner+0x3c0/0x3c0
[ 1817.072520]  ? p9_fd_poll+0x1e0/0x2c0
[ 1817.073346]  ? p9_fd_create+0x357/0x4a0
[ 1817.074205]  ? p9_conn_create+0x510/0x510
[ 1817.075101]  ? p9_client_create+0x798/0x1230
[ 1817.076052]  ? kfree+0xd7/0x340
[ 1817.076756]  ? do_raw_spin_unlock+0x4f/0x220
[ 1817.077712]  p9_client_create+0xa76/0x1230
[ 1817.078649]  ? p9_client_flush+0x430/0x430
[ 1817.079565]  ? trace_hardirqs_on+0x5b/0x180
[ 1817.080490]  ? lockdep_init_map_type+0x2c7/0x780
[ 1817.081515]  ? __raw_spin_lock_init+0x36/0x110
[ 1817.082519]  v9fs_session_init+0x1dd/0x1680
[ 1817.083446]  ? lock_release+0x680/0x680
[ 1817.084381]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1817.085425]  ? v9fs_show_options+0x690/0x690
[ 1817.086394]  ? trace_hardirqs_on+0x5b/0x180
[ 1817.087324]  ? kasan_unpoison_shadow+0x33/0x50
[ 1817.088303]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1817.089397]  v9fs_mount+0x79/0x8f0
[ 1817.090173]  ? v9fs_write_inode+0x60/0x60
[ 1817.091075]  legacy_get_tree+0x105/0x220
[ 1817.091952]  vfs_get_tree+0x8e/0x300
[ 1817.092758]  path_mount+0x1429/0x2120
[ 1817.093585]  ? strncpy_from_user+0x9e/0x470
[ 1817.094527]  ? finish_automount+0xa90/0xa90
[ 1817.095454]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1817.096455]  ? _copy_from_user+0xfb/0x1b0
[ 1817.097366]  __x64_sys_mount+0x282/0x300
[ 1817.098248]  ? copy_mnt_ns+0xa00/0xa00
[ 1817.099093]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1817.100235]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1817.101353]  do_syscall_64+0x33/0x40
[ 1817.102162]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1817.103266] RIP: 0033:0x7f543d208b19
[ 1817.104073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1817.108056] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1817.109708] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1817.111252] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1817.112789] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1817.114330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1817.115863] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:13:40 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
r2 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r3 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
bind$bt_l2cap(r4, &(0x7f00000001c0)={0x1f, 0x5, @none, 0x56f7, 0x2}, 0xe)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0xd, @any, 0xfffc}, 0xe)
openat(r4, &(0x7f0000000280)='./file0\x00', 0x101, 0x0)

00:13:40 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xa82c2, 0x68)
r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x12418, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={&(0x7f0000000140)}, 0x0, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
r2 = memfd_create(&(0x7f0000000000)='\x00', 0x0)
lseek(0xffffffffffffffff, 0x0, 0x3)
fallocate(r2, 0x5a, 0x689, 0x80000000)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000080), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_int(r3, 0x29, 0x0, &(0x7f0000000b00)=0x7, 0x4)
preadv(0xffffffffffffffff, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000040)={r1, 0xf7c, 0xad})
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2, 0x4000010, r3, 0x3ed2000)
r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r4, 0x0)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0)

00:13:40 executing program 5:
ioctl$F2FS_IOC_GARBAGE_COLLECT(0xffffffffffffffff, 0x4004f506, &(0x7f0000000000))
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_mtu(0xffffffffffffffff, 0x0, 0xa, &(0x7f0000000040)=0x4, 0x4)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000000), 0x400000d, 0x0)

00:13:40 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x40087602, &(0x7f00000000c0))

00:13:40 executing program 4:
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000004c0)={&(0x7f0000001480)={0x23c, r0, 0x2, 0x70bd2a, 0x25dfdbfe, {}, [@ETHTOOL_A_DEBUG_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x78, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffffffff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x401}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '{\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '/dev/vcsa\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'obj_type'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '{\x00'}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x1}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x8}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x18, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x40}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x168, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xbc, 0x3, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7f}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '!,/)'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x10, 0x2, '^\'/(-.m\'{)&\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffc00}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '@+}*$$@^\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80bd}, @ETHTOOL_A_BITSET_BIT_NAME={0xe, 0x2, '/dev/rtc0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'nfs4\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xe4}]}, {0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_VALUE={0x41, 0x4, "e5464ba5c072cb942f8175c01d93d8deb1beaef2481d7b68b42ed49afdb7532d3b8f6d7468e899735865d9d44de7b9e402f1ed5cd72f1a35ce72386f35"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7}, @ETHTOOL_A_BITSET_BITS={0x2c, 0x3, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'audit'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x12de0d23}, @ETHTOOL_A_BITSET_MASK={0x1f, 0x5, "504e89d2dd2142ec3d9852e185526a23fb1b97552694a76ccda151"}]}]}, 0x23c}, 0x1, 0x0, 0x0, 0x20004090}, 0x20084044)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x3, 0x4, &(0x7f0000000440)=[{&(0x7f0000000100)="6d85df96cea73529cf485fe200b9b38d5ee84cebc6f9f6a57b2471ee6b2a44c72b612ba70fb7fa67565a1d9d57e3751d391013e64f73a88a805677baf477ffe1d9c8b199def076a818827b6ee814f9466db3a38761606c8b2620b95386cba21541a641593c3e097c8a", 0x69, 0x2}, {&(0x7f0000000180)="29016d9d3d", 0x5, 0x5a8}, {&(0x7f00000001c0)="d1a9baeed2f0737939708e67b8da61706f7d4acaf6ce5a086e564cecdc096e3827cacc8db43648", 0x27, 0x6}, {&(0x7f0000000200)="9520a16c1e8aa66f878a6ca195e57a6c6b393f441729a22b469042cd5e3e0b77cdc2e8bde027068b55ca2a0f77cdcff9bd5a9162b5138f41e27942205cf85aa0c813e868fff519cf4ad8631a5b5ee39590ea227a548760163a3069b85d99326a3cebcf43bbc8da1e635bfb212344ded2cd9fd273dc6443382218ce49d6aa0c109c6167ff977bf7516dc9", 0x8a, 0x11d4}], 0x2400c0, &(0x7f00000002c0)={[{'/dev/rtc0\x00'}], [{@obj_type={'obj_type', 0x3d, '/dev/rtc0\x00'}}, {@audit}, {@measure}]})
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000003c0), 0x1a400, 0x0)
r4 = inotify_init1(0x80000)
r5 = socket$inet6_icmp(0xa, 0x2, 0x3a)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r6, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r6, {0xfffffde7, 0x28fa}}, './file0\x00'})
r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r7, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r7}, './file0\x00'})
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000400)=[r1, r2, r3, r1, r1, r4, r5, r1, r6, r7], 0xa)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r8, 0xc0189377, &(0x7f0000001440)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r8, @ANYBLOB="00ac8b7ff70000002e2f66696c6530f5"])
fcntl$notify(r8, 0x402, 0x33)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:13:40 executing program 1:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0xc)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendmmsg$inet(r0, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xffe7}], 0x1, &(0x7f0000001640)=ANY=[@ANYBLOB="14000000000000000000000007000000c4048f01000000001c000000000000000000000008000000", @ANYRES32=r2], 0x38}}], 0x1, 0x0)

00:13:40 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)
mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0)

00:13:40 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 37)

[ 1830.154178] kauditd_printk_skb: 8 callbacks suppressed
[ 1830.154202] audit: type=1326 audit(1747095220.931:792): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12247 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1830.168348] audit: type=1326 audit(1747095220.932:793): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12247 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1830.200459] hpet: Lost 1 RTC interrupts
[ 1830.201354] loop0: detected capacity change from 0 to 262144
[ 1830.207119] audit: type=1326 audit(1747095220.932:794): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12247 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1830.208704] loop4: detected capacity change from 0 to 8704
00:13:40 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x800, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000000040)='.\x00', 0x2000003)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000002c0)=ANY=[@ANYRES32=r1, @ANYBLOB, @ANYRES64, @ANYRES32=0x0, @ANYRES32, @ANYRES16=r1, @ANYBLOB="833c678370f3c0192ac188feb41b83ac313c590a167c26366de7f6e94cb8219a7507ba522321e981b5233ef8032e49e3be17be074a55cfd8e89533042142096aa61f2bc5a8f908ac9cc3843f027c01f2334ad2e79d3f2c82c80a5bc908d669104ff40372b598db400aae9e28aad05434b34918ae7976083b1db3b6a5ed213190bdad88f424f57630900046a0c23f37a33f7399fc671d5de6029a42bdef9e111621241fda4ceb28f36de06b384da28824010b5e607a5add8d5b4849"], 0x54, 0x3)
sendfile(r0, r1, 0x0, 0x100000001)
creat(&(0x7f00000000c0)='./file1\x00', 0x0)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0xfc, 0xff, 0x6, 0x81, 0x0, 0x1, 0x100, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0xd23e, 0xfffffffffffffffc}, 0x1040c, 0xf20, 0x2, 0x0, 0x8, 0x100, 0x5, 0x0, 0x400007, 0x0, 0xab50}, 0x0, 0x7, 0xffffffffffffffff, 0x0)

00:13:40 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x4020940d, &(0x7f00000000c0))

[ 1830.216954] audit: type=1326 audit(1747095220.932:795): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12247 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1830.228986] FAULT_INJECTION: forcing a failure.
[ 1830.228986] name failslab, interval 1, probability 0, space 0, times 0
00:13:40 executing program 1:
readv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)=""/199, 0xc7}, {&(0x7f0000000100)=""/189, 0xbd}, {&(0x7f00000001c0)=""/124, 0x7c}], 0x3)
ioctl$HIDIOCSFEATURE(0xffffffffffffffff, 0xc0404806, &(0x7f0000000280)="a50250ffce4083ef6522fe2c98cd5036169480d6f75e11da8aa2e67d4363339f2ffb9c0964ad5e708178c33c81aa")
ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611)
ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0)
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f00000002c0), &(0x7f0000000300), 0x2, 0x1)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000340)=0xffff)
recvmmsg(0xffffffffffffffff, &(0x7f0000004600)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000380)=""/111, 0x6f}], 0x1}, 0xffffffff}, {{&(0x7f0000000440)=@un=@abs, 0x80, &(0x7f0000001840)=[{&(0x7f00000004c0)=""/115, 0x73}, {&(0x7f0000000540)=""/148, 0x94}, {&(0x7f0000000600)=""/219, 0xdb}, {&(0x7f0000000700)=""/137, 0x89}, {&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/12, 0xc}, {&(0x7f0000001800)=""/64, 0x40}], 0x7, &(0x7f00000018c0)=""/149, 0x95}, 0x9}, {{&(0x7f0000001980)=@nfc, 0x80, &(0x7f0000003d80)=[{&(0x7f0000001a00)=""/77, 0x4d}, {&(0x7f0000001a80)=""/60, 0x3c}, {&(0x7f0000001ac0)=""/172, 0xac}, {&(0x7f0000001b80)=""/118, 0x76}, {&(0x7f0000001c00)=""/4096, 0x1000}, {0xfffffffffffffffc}, {&(0x7f0000002c00)=""/4096, 0x1000}, {&(0x7f0000003c00)=""/207, 0xcf}, {&(0x7f0000003d00)=""/100, 0x64}], 0x9, &(0x7f0000003e40)=""/148, 0x94}, 0x1}, {{&(0x7f0000003f00)=@alg, 0x80, &(0x7f0000004280)=[{&(0x7f0000003f80)=""/207, 0xcf}, {&(0x7f0000004080)=""/98, 0x62}, {&(0x7f0000004100)=""/40, 0x28}, {&(0x7f0000004140)=""/123, 0x7b}, {&(0x7f00000041c0)=""/166, 0xa6}], 0x5, &(0x7f0000004300)=""/171, 0xab}, 0x4}, {{&(0x7f00000043c0)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f00000045c0)=[{&(0x7f0000004440)=""/27, 0x1b}, {&(0x7f0000004480)=""/223, 0xdf}, {&(0x7f0000004580)=""/17, 0x11}], 0x3}, 0x5}], 0x5, 0x2142, &(0x7f0000004740)={0x77359400})
ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f00000047c0)={0x68f, 0x8, '\x00', 0x0, &(0x7f0000004780)=[0x0]})
r0 = syz_io_uring_setup(0x1435, &(0x7f0000004800)={0x0, 0xfae3, 0x20, 0x1, 0x287}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000004880)=<r1=>0x0, &(0x7f00000048c0)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000004900)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x2004, @fd_index=0xa, 0x4, 0x5, 0x4, 0x0, 0x0, {0x3, r3}}, 0x1)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000004940)='cpuacct.usage_percpu\x00', 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000004980)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x3, 0x0, r4, 0x0, r0, 0x2, 0x0, 0x1, {0x0, r3}}, 0x6)
socket$inet_icmp(0x2, 0x2, 0x1)
setsockopt$inet_mreqsrc(r4, 0x0, 0x28, &(0x7f00000049c0)={@multicast2, @broadcast, @rand_addr=0x64010101}, 0xc)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000004a00)=@IORING_OP_READ_FIXED={0x4, 0x3, 0x4007, @fd_index=0x2, 0x4, 0x1, 0x7ff, 0x0, 0x0, {0x0, r5}}, 0x0)
r6 = syz_io_uring_complete(r1)
setsockopt$inet_mreqsrc(r6, 0x0, 0x28, &(0x7f0000004a40)={@rand_addr=0x64010101, @multicast1, @broadcast}, 0xc)
ioctl$BTRFS_IOC_BALANCE_CTL(0xffffffffffffffff, 0x40049421, 0x3)

[ 1830.230418] CPU: 1 PID: 12263 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1830.231358] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1830.232107] audit: type=1326 audit(1747095220.935:796): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12247 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1830.232348] Call Trace:
[ 1830.232374]  dump_stack+0x107/0x167
[ 1830.238529]  should_fail.cold+0x5/0xa
[ 1830.238966]  ? create_object.isra.0+0x3a/0xa20
[ 1830.239491]  should_failslab+0x5/0x20
[ 1830.239922]  kmem_cache_alloc+0x5b/0x310
[ 1830.240315] audit: type=1326 audit(1747095221.003:797): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12267 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1830.240434]  create_object.isra.0+0x3a/0xa20
[ 1830.246402]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1830.246981]  __kmalloc+0x16e/0x390
[ 1830.247388]  p9_fcall_init+0x97/0x290
[ 1830.247819]  p9_client_prepare_req.part.0+0x8c/0xac0
[ 1830.248396]  p9_client_rpc+0x220/0x1370
[ 1830.248850]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1830.249447]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1830.250052]  ? pipe_poll+0x21b/0x800
[ 1830.250477]  ? p9_fd_close+0x4a0/0x4a0
[ 1830.250919]  ? wait_for_partner+0x3c0/0x3c0
[ 1830.251406]  ? p9_fd_poll+0x1e0/0x2c0
[ 1830.251843]  ? p9_fd_create+0x357/0x4a0
[ 1830.252290]  ? p9_conn_create+0x510/0x510
[ 1830.252757]  ? p9_client_create+0x798/0x1230
[ 1830.253252]  ? kfree+0xd7/0x340
[ 1830.253623]  ? do_raw_spin_unlock+0x4f/0x220
[ 1830.254131]  p9_client_create+0xa76/0x1230
[ 1830.254615]  ? p9_client_flush+0x430/0x430
[ 1830.255094]  ? trace_hardirqs_on+0x5b/0x180
[ 1830.255580]  ? lockdep_init_map_type+0x2c7/0x780
[ 1830.256116]  ? __raw_spin_lock_init+0x36/0x110
[ 1830.256639]  v9fs_session_init+0x1dd/0x1680
[ 1830.257126]  ? lock_release+0x680/0x680
[ 1830.257581]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1830.258126]  ? v9fs_show_options+0x690/0x690
[ 1830.258627]  ? trace_hardirqs_on+0x5b/0x180
[ 1830.259112]  ? kasan_unpoison_shadow+0x33/0x50
[ 1830.259625]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1830.260198]  v9fs_mount+0x79/0x8f0
[ 1830.260600]  ? v9fs_write_inode+0x60/0x60
[ 1830.261068]  legacy_get_tree+0x105/0x220
[ 1830.261597]  vfs_get_tree+0x8e/0x300
[ 1830.262028]  path_mount+0x1429/0x2120
[ 1830.262465]  ? strncpy_from_user+0x9e/0x470
[ 1830.262951]  ? finish_automount+0xa90/0xa90
[ 1830.263435]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1830.263956]  ? _copy_from_user+0xfb/0x1b0
[ 1830.264430]  __x64_sys_mount+0x282/0x300
[ 1830.264887]  ? copy_mnt_ns+0xa00/0xa00
[ 1830.265329]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1830.265924]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1830.266511]  do_syscall_64+0x33/0x40
[ 1830.266932]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1830.267510] RIP: 0033:0x7f543d208b19
[ 1830.267935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1830.270017] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1830.270885] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1830.271692] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1830.272494] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1830.273298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1830.274105] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1830.309322] loop4: detected capacity change from 0 to 8704
[ 1830.329033] audit: type=1326 audit(1747095221.003:798): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12267 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1830.344878] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1830.354029] audit: type=1326 audit(1747095221.003:799): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12267 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:13:41 executing program 4:
sendmsg$SEG6_CMD_DUMPHMAC(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, 0x0, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [@SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xffffffff}, @SEG6_ATTR_SECRET={0x8, 0x4, [0x0]}, @SEG6_ATTR_SECRET={0x18, 0x4, [0x9, 0x7, 0xff, 0xa, 0x401]}, @SEG6_ATTR_SECRET={0x4}]}, 0x40}}, 0x4000)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:13:41 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x80082102, &(0x7f00000000c0))

00:13:41 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)

00:13:41 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 38)

[ 1830.391176] audit: type=1326 audit(1747095221.006:800): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12267 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:13:41 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x59, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000000c0)=0x7)
ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000004c0))

[ 1830.410685] FAULT_INJECTION: forcing a failure.
[ 1830.410685] name failslab, interval 1, probability 0, space 0, times 0
[ 1830.412000] CPU: 1 PID: 12288 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1830.412782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1830.413732] Call Trace:
[ 1830.414046]  dump_stack+0x107/0x167
[ 1830.414482]  should_fail.cold+0x5/0xa
[ 1830.414923]  ? p9_fcall_init+0x97/0x290
[ 1830.415381]  should_failslab+0x5/0x20
[ 1830.415824]  __kmalloc+0x72/0x390
[ 1830.416223]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1830.416807]  p9_fcall_init+0x97/0x290
[ 1830.417265]  p9_client_prepare_req.part.0+0xf4/0xac0
[ 1830.417949]  p9_client_rpc+0x220/0x1370
[ 1830.418420]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1830.419030]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1830.419665]  ? pipe_poll+0x21b/0x800
[ 1830.420089]  ? p9_fd_close+0x4a0/0x4a0
[ 1830.420533]  ? wait_for_partner+0x3c0/0x3c0
[ 1830.421036]  ? p9_fd_poll+0x1e0/0x2c0
[ 1830.421475]  ? p9_fd_create+0x357/0x4a0
[ 1830.421934]  ? p9_conn_create+0x510/0x510
[ 1830.422421]  ? p9_client_create+0x798/0x1230
[ 1830.422922]  ? kfree+0xd7/0x340
[ 1830.423300]  ? do_raw_spin_unlock+0x4f/0x220
[ 1830.423808]  p9_client_create+0xa76/0x1230
[ 1830.424314]  ? p9_client_flush+0x430/0x430
[ 1830.424807]  ? trace_hardirqs_on+0x5b/0x180
[ 1830.425305]  ? lockdep_init_map_type+0x2c7/0x780
[ 1830.425850]  ? __raw_spin_lock_init+0x36/0x110
[ 1830.426393]  v9fs_session_init+0x1dd/0x1680
[ 1830.426894]  ? lock_release+0x680/0x680
[ 1830.427360]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1830.427920]  ? v9fs_show_options+0x690/0x690
[ 1830.428431]  ? trace_hardirqs_on+0x5b/0x180
[ 1830.428928]  ? kasan_unpoison_shadow+0x33/0x50
[ 1830.429461]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1830.430043]  v9fs_mount+0x79/0x8f0
[ 1830.430460]  ? v9fs_write_inode+0x60/0x60
[ 1830.430944]  legacy_get_tree+0x105/0x220
[ 1830.431424]  vfs_get_tree+0x8e/0x300
[ 1830.431855]  path_mount+0x1429/0x2120
[ 1830.432301]  ? strncpy_from_user+0x9e/0x470
[ 1830.432803]  ? finish_automount+0xa90/0xa90
[ 1830.433308]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1830.433966]  ? _copy_from_user+0xfb/0x1b0
[ 1830.434453]  __x64_sys_mount+0x282/0x300
[ 1830.434924]  ? copy_mnt_ns+0xa00/0xa00
[ 1830.435392]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1830.436007]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1830.436608]  do_syscall_64+0x33/0x40
[ 1830.437044]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1830.437634] RIP: 0033:0x7f543d208b19
[ 1830.438063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1830.440194] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1830.441084] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1830.441916] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1830.442747] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1830.443571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1830.444393] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:13:56 executing program 1:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x5, 0x0, 0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2c}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(0x0, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000100), 0xffffffffffffffff)
connect$inet6(0xffffffffffffffff, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x10}}, 0x1c)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x8000}, 0x4)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r2=>0x0})
sendmmsg$inet(r1, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0xfffffe68}], 0x1, &(0x7f0000001640)=ANY=[@ANYRES32, @ANYRES32=r2], 0x38}}], 0x1, 0x400040d1)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_buf(r1, 0x1, 0x1c, &(0x7f0000000000)=""/90, &(0x7f0000000180)=0x5a)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001380), 0x0, 0x4000000}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000001c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="00000000000000e32d2f66696c653000"])
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x5}, 0x10040, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYRESHEX, @ANYRESDEC, @ANYBLOB="110d0000000000000000700000000ca85873922b64ba470086d6995a47285b02048ee9bc0bcb14cdeabd4374c71e749f2f17"], 0x20}, 0x1, 0x0, 0x0, 0xc801}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

00:13:56 executing program 5:
syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f0000000300)=<r0=>0x0)
r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4a5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)=ANY=[@ANYBLOB="01210a000000001000000001", @ANYRES32=<r2=>0xffffffffffffffff, @ANYRES32=0xee00, @ANYRES32=0xee00, @ANYBLOB='./file0\x00'])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000780)=ANY=[@ANYBLOB="df29a100d888c5329ec248d42fc6a2f54219d9c4161744d7c9f1eb4757eb185ee591f6d9d3ab6287bebf8f5e422ffcbdbd69a14ecb51588a4b18b5e902afc0772dc32b903908c33d241d7f71bbe067a6667b09d49dae0e391d764736db944da85e2ea09438e94f30c72562152fefa25d93738bc51b2a9f38d6047a62a80ec55965c38251187eb8033a075adac70dae2a14923f96f469f720423aac8675c2b311f29f64870224e55c73e971c42e6d1263ef197b159099392721f827b1a1aed8f5c24cb1ddf61e79f968bf", @ANYRES32, @ANYRES32, @ANYBLOB="2e2f66696c652fe1451d4e7b754bc7f05f0ff404807bf64d176a29993195992c14f39ee8328796f81d1886f6cb48f1ed71a941835b5840190114208ef9dda4756eab00fcd38d0a302906ffc3e8f25260ef7b4e28db855ed9e895bd4b0fbdedef955ad6d54b0934c59ddf4161dc9347ef97623a3ebf9ca8933a81653dd955d769a9be40fbed0519a0fe8fb2bb1420fa5a24997c0cf4682c742e0569d44c267b10cfd7565652376257be8c2ef9d94e9ad1d44011543b4d0e0a77577a1157a58a7edab4a0981d3549776f00"/216])
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="24000000100001000000000000ce00000000000000000500008048000000000000000000"], 0x24}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000100)={0x3000000a})
r4 = dup(0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00'})
remap_file_pages(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000008, 0x6, 0x2000)
fsconfig$FSCONFIG_SET_FD(r4, 0x5, &(0x7f00000005c0)='!\x00', 0x0, 0xffffffffffffffff)
preadv(r4, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4)
recvfrom(0xffffffffffffffff, &(0x7f0000000280)=""/24, 0x18, 0x40002160, &(0x7f0000000400)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80)
socket$inet_udplite(0x2, 0x2, 0x88)
openat(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x4200, 0x0)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)
r5 = timerfd_create(0x9, 0x80000)
getresuid(&(0x7f0000000240), &(0x7f00000002c0), &(0x7f0000000340)=<r6=>0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000980)=ANY=[@ANYBLOB="0100000001edf0e98e000000cfb1463de9e2ed0feddd72478877ee7f60d4ee89d63779ac8abbb29ce67c460778a59d3d50ca6670b7a1c7b392360315cbf5c15c55460569575fb813f0d542931eea9c6c1ced87ede833f81af88f4e250ed5e6b0e2207e465694be1ab731408eeaf4e0cc4627d8218a56", @ANYRES32=r5, @ANYRES32=r6, @ANYRES32, @ANYBLOB="2e0200000015bc51b16671ec00000040"])
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_MADVISE={0x19, 0x1, 0x0, 0x0, 0x0, &(0x7f0000ff2000/0x6000)=nil, 0x6000, 0x64}, 0x7fffffff)

00:13:56 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 39)

00:13:56 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x80086601, &(0x7f00000000c0))

00:13:56 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000a00)='./file0\x00', 0x101100, 0x1)

00:13:56 executing program 3:
ioctl$BTRFS_IOC_QGROUP_ASSIGN(0xffffffffffffffff, 0x40189429, &(0x7f0000000000)={0x1, 0x6bf, 0x8})
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./mnt\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000434b0a223f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[])
openat2(0xffffffffffffffff, &(0x7f0000000040)='./mnt\x00', &(0x7f0000000100)={0x458080, 0x109, 0x2}, 0x18)

00:13:56 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
r2 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r3 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
bind$bt_l2cap(r4, &(0x7f00000001c0)={0x1f, 0x5, @none, 0x56f7, 0x2}, 0xe)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
bind$bt_l2cap(r4, &(0x7f0000000040)={0x1f, 0xd, @any, 0xfffc}, 0xe)

00:13:56 executing program 4:
r0 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000080)='cpu.pressure\x00', 0x2, 0x0)
ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f00000000c0)=0x9)
syz_io_uring_setup(0x5, &(0x7f0000000080)={0x0, 0x1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280), &(0x7f0000000540)=<r1=>0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000240), 0x2, 0x0)
ioctl$SNAPSHOT_PLATFORM_SUPPORT(r2, 0x330f, 0x3)
r3 = socket$netlink(0x10, 0x3, 0x0)
dup2(r3, r2)
syz_io_uring_submit(0x0, r1, &(0x7f0000000200)=@IORING_OP_SEND={0x1a, 0x3, 0x0, r3, 0x0, &(0x7f0000000100)="2ac1ff500f6fc3887983cf1f6093870c471d0e61f396402ae3cb725343dae906d6f4f636cc652224567ccb566eff9f417c64d7500d40c30aed4b892bb5e1101ccf74d3f5b678f554c9b1f67dfaa3aa579faa84ee74dadcfb7c6b666da08251509f6ab74e238b5aa741f73d177bb9d81c49fb57b881df5766d7c15f580ba2ea3163f2771b2c8e9f496e125623ff306f75a73d1b4df3eb0c025f9d882ffde2227411ae402bb3b048484d2354f6249480edac9d6a77b935f8a09d69aaf6d6afd16d7d8a0c0759784e23fecec387b9ba79", 0xcf, 0x4800}, 0x4)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r4, 0x4024700a, &(0x7f0000000000)={0x11, 0x15, 0x0, 0x10015, 0xfffffffc, 0x7ff, 0x4, 0x0, 0xffffffffffffffff})

[ 1845.399513] kauditd_printk_skb: 5 callbacks suppressed
[ 1845.399525] audit: type=1326 audit(1747095236.177:806): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12314 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1845.405371] audit: type=1326 audit(1747095236.181:807): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12314 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1845.411470] audit: type=1326 audit(1747095236.181:808): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12314 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1845.420975] audit: type=1326 audit(1747095236.181:809): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12314 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1845.421204] loop0: detected capacity change from 0 to 262144
[ 1845.430639] audit: type=1326 audit(1747095236.182:810): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12314 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1845.432328] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
00:13:56 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x80087601, &(0x7f00000000c0))

[ 1845.462037] FAULT_INJECTION: forcing a failure.
[ 1845.462037] name failslab, interval 1, probability 0, space 0, times 0
00:13:56 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$RTC_UIE_ON(r1, 0x7003)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

[ 1845.464390] CPU: 1 PID: 12321 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1845.466088] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1845.467831] Call Trace:
[ 1845.468392]  dump_stack+0x107/0x167
[ 1845.469154]  should_fail.cold+0x5/0xa
[ 1845.469956]  ? create_object.isra.0+0x3a/0xa20
[ 1845.470923]  should_failslab+0x5/0x20
[ 1845.471719]  kmem_cache_alloc+0x5b/0x310
[ 1845.472587]  create_object.isra.0+0x3a/0xa20
[ 1845.473502]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1845.474561]  __kmalloc+0x16e/0x390
[ 1845.475323]  p9_fcall_init+0x97/0x290
[ 1845.476140]  p9_client_prepare_req.part.0+0xf4/0xac0
[ 1845.477217]  p9_client_rpc+0x220/0x1370
[ 1845.478050]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1845.479166]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1845.480284]  ? pipe_poll+0x21b/0x800
[ 1845.481155]  ? p9_fd_close+0x4a0/0x4a0
[ 1845.481977]  ? wait_for_partner+0x3c0/0x3c0
[ 1845.482889]  ? p9_fd_poll+0x1e0/0x2c0
[ 1845.483702]  ? p9_fd_create+0x357/0x4a0
[ 1845.484539]  ? p9_conn_create+0x510/0x510
[ 1845.485404]  ? p9_client_create+0x798/0x1230
[ 1845.486319]  ? kfree+0xd7/0x340
[ 1845.487003]  ? do_raw_spin_unlock+0x4f/0x220
[ 1845.487926]  p9_client_create+0xa76/0x1230
[ 1845.488811]  ? p9_client_flush+0x430/0x430
[ 1845.489703]  ? trace_hardirqs_on+0x5b/0x180
[ 1845.490627]  ? lockdep_init_map_type+0x2c7/0x780
[ 1845.491615]  ? __raw_spin_lock_init+0x36/0x110
[ 1845.492570]  v9fs_session_init+0x1dd/0x1680
[ 1845.493477]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1845.494485]  ? v9fs_show_options+0x690/0x690
[ 1845.495396]  ? trace_hardirqs_on+0x5b/0x180
[ 1845.496361]  ? kasan_unpoison_shadow+0x33/0x50
[ 1845.497310]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1845.498386]  v9fs_mount+0x79/0x8f0
[ 1845.499128]  ? v9fs_write_inode+0x60/0x60
[ 1845.499995]  legacy_get_tree+0x105/0x220
[ 1845.500855]  vfs_get_tree+0x8e/0x300
[ 1845.501624]  path_mount+0x1429/0x2120
[ 1845.502428]  ? strncpy_from_user+0x9e/0x470
[ 1845.503327]  ? finish_automount+0xa90/0xa90
[ 1845.504236]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1845.505208]  ? _copy_from_user+0xfb/0x1b0
[ 1845.506072]  __x64_sys_mount+0x282/0x300
[ 1845.506833] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1845.506923]  ? copy_mnt_ns+0xa00/0xa00
[ 1845.507818] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1845.508593]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1845.509573] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1845.510448]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1845.510473]  do_syscall_64+0x33/0x40
[ 1845.513146]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1845.514219] RIP: 0033:0x7f543d208b19
[ 1845.515010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1845.518844] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1845.520430] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1845.521916] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1845.523395] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1845.524880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1845.526366] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1845.540188] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'.
00:13:56 executing program 3:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x2}, 0x0, 0x0, 0x0, 0x0, 0x7, 0x3}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000180)=0x9b5)
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000040)={0x83, 0x4, 0x81})
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r2, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x6}, 0xe)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0x1, 0x4, 0x1, 0x80}, {0x612, 0x0, 0x8, 0x3}, {0x8000, 0xd5, 0x80, 0x800}, {0xfff, 0x6, 0x80, 0x1000}, {0x2, 0x3, 0x7, 0x1}, {0x0, 0x8, 0x5, 0xed}, {0x5, 0x1f, 0x7f, 0x4}]})
fcntl$setlease(r3, 0x400, 0x1)
sendfile(r2, r1, &(0x7f0000000340), 0xc)
fcntl$notify(r0, 0x402, 0x80000001)

[ 1845.566710] audit: type=1326 audit(1747095236.344:811): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1845.571137] audit: type=1326 audit(1747095236.349:812): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1845.573839] audit: type=1326 audit(1747095236.349:813): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1845.581765] audit: type=1326 audit(1747095236.352:814): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1845.587710] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1845.590078] audit: type=1326 audit(1747095236.359:815): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12325 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:13:56 executing program 5:
r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e24, @loopback}, 0x10)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syncfs(r1)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000000100)=0xe8)
connect$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)

00:13:56 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)=ANY=[])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000800)=ANY=[])
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000018000000001000000960000090005000000000000000500008048000000"], 0x24}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000b40)=ANY=[@ANYBLOB="95b50000018fd33a76f1d2328800000018000000", @ANYRES32=<r2=>r0])
r3 = syz_io_uring_setup(0x7e0, &(0x7f00000002c0)={0x0, 0xe590, 0x2, 0x1, 0x2a1}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000340), 0x0)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0)
openat(r4, &(0x7f0000000400)='./file1\x00', 0x0, 0x4)
faccessat(r1, &(0x7f0000000000)='./file1\x00', 0xb0)
read(r2, &(0x7f00000006c0)=""/135, 0x87)
r5 = perf_event_open(&(0x7f0000000480)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r6, 0x40086607, &(0x7f0000000280)=0x1)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
preadv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0x0, 0x4)
ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r5)
io_uring_enter(r3, 0x29fb, 0x4eed, 0x0, &(0x7f0000000100)={[0x1f]}, 0x8)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

00:13:56 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0045878, &(0x7f00000000c0))

00:13:56 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x7, 0x4, &(0x7f0000001280)=[{&(0x7f00000001c0)="ae57b33af2d29f3496d78917e9c918", 0xf, 0x7}, {&(0x7f0000000200), 0x0, 0x3}, {&(0x7f0000000240)="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", 0x1000, 0xffff}, {&(0x7f0000001240)="a7815c111e31a4030235b7ea19bbb2bc725544fccd9987719322aad703ff276a", 0x20, 0x4}], 0x40002, &(0x7f0000001300)=ANY=[@ANYBLOB="736839352c707072616973652c61707072616973655f747970653d936d617369672c0000"])
preadv(r1, &(0x7f0000001400)=[{&(0x7f0000001340)=""/29, 0x1d}, {&(0x7f0000001380)=""/107, 0x6b}], 0x2, 0x8, 0x20)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r2 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)={0x840, 0x4, 0x16}, 0x18)
ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000100)={0x14, 0x25, 0xe, 0x16, 0x1, 0x200, 0x2, 0xf6, 0xffffffffffffffff})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
ioctl$BTRFS_IOC_QGROUP_LIMIT(r3, 0x8030942b, &(0x7f0000000200)={0x8001, {0x18, 0x23, 0x6, 0x10000}})

00:13:56 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)

[ 1845.711110] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
00:13:56 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r1 = syz_io_uring_setup(0x149e, &(0x7f0000000180)={0x0, 0xa9eb, 0x0, 0xfffffffd, 0x3af, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_NOP={0x0, 0x1}, 0x6)
r4 = socket$inet(0x2, 0xa, 0x1)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e22, @loopback}}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a63a85f508c53b74be1cc06a8682449c18237d779b4f25", 0x17}, {0x0}, {0x0}], 0x3}, 0x0, 0x4000000, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80101)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
syz_open_dev$rtc(&(0x7f0000000240), 0x130, 0x1)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ftruncate(r6, 0x1000003)
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000005, 0x10, 0xffffffffffffffff, 0x10000000)
ioctl$FS_IOC_FSSETXATTR(r5, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7fff, 0xae0})
read(0xffffffffffffffff, &(0x7f0000000000), 0x1b4000)
write$binfmt_elf64(r6, &(0x7f00000001c0)=ANY=[], 0xfdef)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x80)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000)

[ 1845.750908] loop4: detected capacity change from 0 to 130560
[ 1845.790024] loop0: detected capacity change from 0 to 262144
[ 1845.830075] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1845.834573] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1845.836176] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1845.838692] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
00:13:56 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0045878, &(0x7f00000000c0))

[ 1845.891047] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1845.955246] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1845.956953] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1845.958661] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
00:14:11 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
r2 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r3 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
bind$bt_l2cap(r4, &(0x7f00000001c0)={0x1f, 0x5, @none, 0x56f7, 0x2}, 0xe)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)

00:14:11 executing program 5:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f00000000c0)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000700)='./file1\x00', 0x145641, 0x11c)
r3 = syz_io_uring_setup(0x1841, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r4=>0x0, &(0x7f0000000140))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/61, 0x3d}, {&(0x7f0000000040), 0x40000000}, {&(0x7f0000000340)=""/164, 0xa4}], 0x3)
ftruncate(r1, 0xffff)
pwrite64(r3, &(0x7f0000000300)="02f1fc9a3858e8df81c649c440eb08101c05bb79e3abfc019d47701eed90611d071f8b64d5c56ae8c197ade6c3bd3e5fa4308da33e39e3710d91c2a091210cfb1155017bccd685bd0b838236ca857a8c63d930b9855bb01f9aef0b74fdfc07f458881d42e62373", 0x67, 0x6)
flock(r2, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r1, r5, 0x0, 0x100000001)
bind(0xffffffffffffffff, &(0x7f0000000180)=@pptp={0x18, 0x2, {0x2, @loopback}}, 0x80)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000006c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x7, 0x3, &(0x7f0000000540)="cacca20bf0833bb406dd8f1ba51fc771cfb04d3d744a7790c52ca7a8b14ea07b50da29a15defe0a540439e04af515149b468d5ea52abd4b07412ae969ce40e06435039c221dfc5ba7127c187dd730201c11dfa8275c1888d41f26ca9f880f15ad0aca4e559c8cbd2a2fff089f8001ddf3039e37c9c6065858ef257d328365b39cc0deb5c7259ba905ccc0beb1c6d8865d7af27d18b6779352876548c321711d4e9a79d3a0465725be7df7f60805f503c516ca874d29f9e4d6df8b785e803eb29097953f748a24fca07e8065e0ce16d8396fa9a1fe6a09025db74d0ddba45d993aa92b2677c66387a9e6a316408ba049018b83be4aac54f930c385b0655d205", 0x401, 0x0, 0x1, {0x2}}, 0xfff)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40004, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x2acb, &(0x7f0000000400)={0x0, 0x8e76, 0x4, 0x0, 0x337, 0x0, r6}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000240)=<r7=>0x0)
syz_io_uring_submit(r4, r7, &(0x7f0000000500)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r6, 0x80, &(0x7f0000000480)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}}, 0xcdd7)
r8 = openat$cgroup_ro(r5, &(0x7f0000000640)='cpuacct.stat\x00', 0x0, 0x0)
sendfile(r0, r8, &(0x7f0000000680)=0x800, 0x100000001)
sendfile(r1, r6, 0x0, 0x80000001)

00:14:11 executing program 3:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
openat$tcp_mem(0xffffffffffffff9c, 0x0, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e24, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x1c)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4)
mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000240)={0xa, 0x4e20, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001)

00:14:11 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 40)

00:14:11 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)
write(r0, &(0x7f0000000240)="01", 0x1)

00:14:11 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
syncfs(r1)

00:14:11 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:14:11 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
r1 = syz_io_uring_setup(0x149e, &(0x7f0000000180)={0x0, 0xa9eb, 0x0, 0xfffffffd, 0x3af, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_NOP={0x0, 0x1}, 0x6)
r4 = socket$inet(0x2, 0xa, 0x1)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000200)={&(0x7f0000000400)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e22, @loopback}}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a63a85f508c53b74be1cc06a8682449c18237d779b4f25", 0x17}, {0x0}, {0x0}], 0x3}, 0x0, 0x4000000, 0x1}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80101)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
syz_open_dev$rtc(&(0x7f0000000240), 0x130, 0x1)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ftruncate(r6, 0x1000003)
mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000005, 0x10, 0xffffffffffffffff, 0x10000000)
ioctl$FS_IOC_FSSETXATTR(r5, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7fff, 0xae0})
read(0xffffffffffffffff, &(0x7f0000000000), 0x1b4000)
write$binfmt_elf64(r6, &(0x7f00000001c0)=ANY=[], 0xfdef)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000100)='./file0\x00', 0x80)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000)

[ 1860.500138] loop0: detected capacity change from 0 to 262144
[ 1860.507320] kauditd_printk_skb: 14 callbacks suppressed
[ 1860.507338] audit: type=1326 audit(1747095251.285:830): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12385 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1860.519644] FAULT_INJECTION: forcing a failure.
[ 1860.519644] name failslab, interval 1, probability 0, space 0, times 0
[ 1860.522528] CPU: 0 PID: 12373 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1860.524002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1860.525773] Call Trace:
[ 1860.526341]  dump_stack+0x107/0x167
00:14:11 executing program 4:
openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000100)={0x1f, 0x39, 0x10, 0x14, 0x5, 0x4, 0x2, 0x1ff, 0xffffffffffffffff})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x2000, 0x8, 0x0, 0x10015, 0x0, 0x7ff})
r2 = syz_open_dev$mouse(&(0x7f00000000c0), 0x2, 0x400000)
ioctl$RTC_AIE_ON(r2, 0x7001)

[ 1860.527128]  should_fail.cold+0x5/0xa
[ 1860.528111]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1860.529341]  should_failslab+0x5/0x20
[ 1860.530154]  kmem_cache_alloc+0x5b/0x310
[ 1860.531043]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1860.532241]  idr_get_free+0x4b5/0x8f0
[ 1860.533070]  idr_alloc_u32+0x170/0x2d0
[ 1860.533910]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1860.534951]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1860.536091]  ? lock_release+0x680/0x680
[ 1860.536946]  idr_alloc+0xc2/0x130
[ 1860.537683]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1860.538556]  ? rwlock_bug.part.0+0x90/0x90
[ 1860.539469]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1860.540577]  p9_client_rpc+0x220/0x1370
[ 1860.541426]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1860.542561]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1860.543698]  ? pipe_poll+0x21b/0x800
[ 1860.544491]  ? p9_fd_close+0x4a0/0x4a0
[ 1860.545323]  ? wait_for_partner+0x3c0/0x3c0
[ 1860.546240]  ? p9_fd_poll+0x1e0/0x2c0
[ 1860.547060]  ? p9_fd_create+0x357/0x4a0
[ 1860.547912]  ? p9_conn_create+0x510/0x510
[ 1860.548789]  ? p9_client_create+0x798/0x1230
[ 1860.549722]  ? kfree+0xd7/0x340
[ 1860.550424]  ? do_raw_spin_unlock+0x4f/0x220
[ 1860.551380]  p9_client_create+0xa76/0x1230
[ 1860.552291]  ? p9_client_flush+0x430/0x430
[ 1860.553193]  ? trace_hardirqs_on+0x5b/0x180
[ 1860.554117]  ? lockdep_init_map_type+0x2c7/0x780
[ 1860.555142]  ? __raw_spin_lock_init+0x36/0x110
[ 1860.556122]  v9fs_session_init+0x1dd/0x1680
[ 1860.557039]  ? lock_release+0x680/0x680
[ 1860.557902]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1860.558928]  ? v9fs_show_options+0x690/0x690
[ 1860.559872]  ? trace_hardirqs_on+0x5b/0x180
[ 1860.560785]  ? kasan_unpoison_shadow+0x33/0x50
[ 1860.561762]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1860.562848]  v9fs_mount+0x79/0x8f0
[ 1860.563606]  ? v9fs_write_inode+0x60/0x60
[ 1860.564493]  legacy_get_tree+0x105/0x220
[ 1860.565361]  vfs_get_tree+0x8e/0x300
[ 1860.566156]  path_mount+0x1429/0x2120
[ 1860.566984]  ? strncpy_from_user+0x9e/0x470
[ 1860.567910]  ? finish_automount+0xa90/0xa90
[ 1860.568842]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1860.569836]  ? _copy_from_user+0xfb/0x1b0
[ 1860.570739]  __x64_sys_mount+0x282/0x300
[ 1860.571606]  ? copy_mnt_ns+0xa00/0xa00
[ 1860.572443]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1860.573569]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1860.574687]  do_syscall_64+0x33/0x40
[ 1860.575488]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1860.576585] RIP: 0033:0x7f543d208b19
[ 1860.577378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1860.581319] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1860.582952] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1860.584480] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1860.586014] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1860.587548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1860.589072] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1860.591155] hpet: Lost 4 RTC interrupts
[ 1860.593396] audit: type=1326 audit(1747095251.348:831): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12385 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1860.596529] audit: type=1326 audit(1747095251.348:832): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12385 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1860.606997] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1860.610710] audit: type=1326 audit(1747095251.348:833): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12385 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1860.616854] audit: type=1326 audit(1747095251.353:834): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12385 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1860.620822] audit: type=1326 audit(1747095251.385:835): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12385 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1860.624397] audit: type=1326 audit(1747095251.386:836): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12385 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1860.627270] audit: type=1326 audit(1747095251.397:837): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12385 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:14:11 executing program 3:
listen(0xffffffffffffffff, 0x0)
sendmsg$TIPC_NL_KEY_FLUSH(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x0)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000200), 0x0, 0x0)
r0 = syz_io_uring_setup(0x3875, &(0x7f0000000080), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r3, 0x0}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
r4 = dup2(r0, r3)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000140)={'veth0\x00', &(0x7f0000000040)=@ethtool_modinfo={0x42, 0x4, 0x8}})
r5 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r6, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f0000000440)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00#\x00'/16])
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r7=>r0}, './file0\x00'})
sendfile(r7, r5, &(0x7f0000000240)=0x6d4, 0x9)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r9=>r8, {0xfd}}, './file0\x00'})
statx(r9, &(0x7f00000001c0)='./file0\x00', 0x100, 0x100, &(0x7f00000002c0))
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000003c0)=ANY=[@ANYBLOB="480000001d00210c000000000000000004000200c3762a3cf2d34cb9001485030714001180809801a7b0c7dba09475f251c743092f2000008008000000", @ANYRES32=r8, @ANYBLOB="14000000fe8000"/18], 0x48}}, 0x0)

00:14:11 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0189436, &(0x7f00000000c0))

00:14:11 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)

00:14:11 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = gettid()
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000001440)=ANY=[@ANYBLOB="010000", @ANYRES32=<r3=>r2, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f00000000c0))
kcmp$KCMP_EPOLL_TFD(r1, r1, 0x7, 0xffffffffffffffff, 0x0)
r4 = syz_open_dev$vcsn(&(0x7f0000000300), 0x7ff, 0x200)
r5 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000480)={0x58, 0x0, &(0x7f0000000400)=[@increfs={0x40046304, 0x3}, @transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000340)={@fd={0x66642a85, 0x0, r5}, @fda={0x66646185, 0x7, 0x0, 0x22}, @fda={0x66646185, 0x6, 0x0, 0x33}}, &(0x7f00000003c0)={0x0, 0x18, 0x38}}}, @exit_looper], 0xc3, 0x0, &(0x7f0000000580)="e7d2a674a75a42d38643bb58270d231e1fbb6cadf2dc8419de3179ad15bdee774739818fff7fc3e71cdc1379459ba2309a52caf8edf8210e46ccf2de2279c8f0673d1f1c8b19f2cabaa644f236f59efc3c14de4f500836d0b967c2b025c633bef80d42923658adf07811e6fc5f384bb1ec0892e2c32e3b8be6d1b0d612511879ad9484dffed4f7a9108a2c1fdcd5c310d47a4b90d43defd57610a8c4fe478c84befefc9b194211b5fc446128b1f5d00edf26675ba298f94b9d3a5eeab578a1ab342559"})
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r6=>r0, {<r7=>r3}}, './file0\x00'})
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r8, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r8}, './file0\x00'})
copy_file_range(r7, &(0x7f0000000140)=0x7, r8, &(0x7f0000000180)=0x7f, 0x6, 0x0)
ptrace$getregset(0x4204, r1, 0x0, 0x0)
syz_open_procfs(r1, &(0x7f0000000000)='attr/prev\x00')
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x4, 0x2000, 0x10015, 0x0, 0x7ff, 0x4})
r9 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000002, 0x2010, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x403, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xd6}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000004c0)=<r10=>0x0, &(0x7f0000000540)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x6003, @fd_index=0x4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r9, r11, &(0x7f00000002c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x1, 0x0, r6, 0x0, &(0x7f00000001c0)="ef261d209fc58f98c07105c8a9cbe44daec824bc9bdfe776a1cd0656a4e4f154565ed40434a81d80222f5a755fd61b0cb5ad7ff316e6b0ad81cc6568fb4e330e4253d53170320bc44316a9413ef902f2ff1c3f6178d63ec5a5240074c5e345fb45d80969939cf90a20b4a98769b614f8acf8a2dc485adcae3f6bc609509381d8cf883bfa02ed3e9517d52b2225f1fb7e2e5c5053f58882e473d55ab7b32bd2c279f131063fdf35a30ebb0e2062275d8e16b7c47f17d2b7581748a18a32f025078bd26407f1b13ea0582f8b0c379feac6cf76", 0xd2, 0x1}, 0x1)

[ 1860.748524] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.3'.
00:14:11 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1860.761887] audit: type=1326 audit(1747095251.539:838): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12406 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:14:11 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc020660b, &(0x7f00000000c0))

00:14:11 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setpriority(0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x30, 0x10, 0x1, 0xa, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0x11, 0x3ffc, 0x0, 0x1, [@generic="487fec864b245e0f3f9be149f8"]}]}, 0x30}}, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000140))
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x0, 0x401)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
getdents64(r2, &(0x7f00000007c0)=""/180, 0x200007d8)
getdents64(r2, 0x0, 0x0)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x0, 0x1, 0x78bd27, 0x25dfdbfd, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, [""]}, 0x30}}, 0x1)
r3 = syz_genetlink_get_family_id$ipvs(0x0, r2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00'})
lseek(r0, 0x1, 0x4)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x5d, @multicast}, 0x7)
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f00000000c0)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x2f})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000300)=ANY=[@ANYBLOB="2fdb37649ce6de56f1a66de348a417046c0069ae0ef3465fb297298b035b3be1c5d095708560c432cbd0a799a9c94aa07ca0242933c3799d374b17d979131fb67add1380b3ff0deb06bf947f3d81039dbe009d98baeb6089e9cae74920699e14aad9f26f83f4d50ecc11c480d59a5477b8cca73a83e4e16e8f7d3472208b8e76a96eea28f6131945d1ffe37875bac36e6b62abc4704f", @ANYRES32])
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000700)=ANY=[@ANYRESOCT, @ANYRES16=r3, @ANYBLOB], 0x100}, 0x1, 0x0, 0x0, 0x4804}, 0x0)
unshare(0x48020200)

[ 1860.814690] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'.
00:14:26 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
r2 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r3 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r3, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
bind$bt_l2cap(r4, &(0x7f00000001c0)={0x1f, 0x5, @none, 0x56f7, 0x2}, 0xe)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x660c)

00:14:26 executing program 3:
r0 = openat2(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280)={0x101400, 0x40, 0xe}, 0x18)
ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f00000002c0)=0x5bc0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_dev$sg(0x0, 0xfffffffffffffffe, 0x0)
ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7002)
socket$inet(0x2, 0x2, 0x0)
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0)
ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2288, &(0x7f00000000c0))
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
execveat(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001540)=[0x0, 0x0], 0x800)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4005e, 0x48522, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600), 0x0, 0x2100}], 0x0, &(0x7f0000000140)={[{@noacl}]})
ioctl$sock_inet_SIOCSARP(r2, 0x8955, &(0x7f0000000180)={{0x2, 0x4e22, @multicast2}, {0x0, @remote}, 0x10, {0x2, 0x4e21, @broadcast}, 'xfrm0\x00'})

00:14:26 executing program 4:
wait4(0xffffffffffffffff, &(0x7f0000000000), 0x40000000, 0x0)
r0 = gettid()
kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, 0xffffffffffffffff, 0x0)
ptrace$getregset(0x4204, r0, 0x0, 0x0)
syz_open_procfs(r0, &(0x7f00000000c0)='net/icmp\x00')
ioperm(0x2000000000, 0x8001, 0x8)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:14:26 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0)

00:14:26 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:14:26 executing program 5:
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0x20000000)
mq_timedsend(0xffffffffffffffff, &(0x7f0000000180)="542ee3a777e60aea0ac5a6e2afc50adcb834c5578a1abc4bd12eb7d4c7e680596cb97e68512540e34c97e5e99841d06024ee89aa770820182e9f3722d5e06aa95d20d76707d4f28159e560bf75fe77d6fc9d8e130c53df7dacca7c034e80025b", 0x60, 0x374fc000000000, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x2a40, 0x0)
recvmmsg$unix(r0, &(0x7f0000001380)=[{{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000001340)=[@cred={{0x1c}}], 0x20}}], 0x1, 0x40002162, 0x0)
clock_gettime(0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
write$binfmt_elf64(r3, &(0x7f00000013c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x6, 0x2, 0x20, 0x8000, 0x3, 0x3e, 0xe39, 0x2fe, 0x40, 0x182, 0x10000, 0xb8f2, 0x38, 0x2, 0xdb26, 0x4539}, [{0x1, 0x1, 0x8292, 0x0, 0x9, 0xea9, 0x9, 0x8}, {0x1, 0x4, 0x4, 0x7, 0x1, 0x401, 0x1, 0x2}], "a431f557a92d731c9425d379777308a1fc7d6c2a2a372ce29b716592de45fca8bef77edafdba7cf337bd7d3dad941b3cd07e0b1a63990bf0cc4db24e0fd073062f20fa305645422865e60f2e418c2809c3e8cc92d974fe8ac0c9fc9ce6275d4feeeb2e68a7aadc25d3e946e9508c02a9b5adedf885bea1daedd2439903deae2d3755e89da82c8ba5fbbf7fc5f98513ecb7d5a7c606e8388e5dbb861645bde53613131bfcd981d1d6e422e274a1b7897059f15b2ba65c5bf488606dad37c0", ['\x00']}, 0x26e)
futex(&(0x7f0000000000)=0x2, 0x80, 0x1, &(0x7f0000000080)={r1, r2+60000000}, &(0x7f00000000c0)=0x1, 0x2)

00:14:26 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502102, &(0x7f00000000c0))

00:14:26 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 41)

[ 1875.619126] FAULT_INJECTION: forcing a failure.
[ 1875.619126] name failslab, interval 1, probability 0, space 0, times 0
[ 1875.620765] CPU: 1 PID: 12427 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1875.621890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1875.623039] Call Trace:
[ 1875.623414]  dump_stack+0x107/0x167
[ 1875.623918]  should_fail.cold+0x5/0xa
[ 1875.624447]  ? create_object.isra.0+0x3a/0xa20
[ 1875.625077]  should_failslab+0x5/0x20
[ 1875.625601]  kmem_cache_alloc+0x5b/0x310
[ 1875.626169]  create_object.isra.0+0x3a/0xa20
[ 1875.626813]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1875.627567]  kmem_cache_alloc+0x159/0x310
[ 1875.628176]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1875.628991]  idr_get_free+0x4b5/0x8f0
[ 1875.629557]  idr_alloc_u32+0x170/0x2d0
[ 1875.630141]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1875.630876]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1875.631672]  ? lock_release+0x680/0x680
[ 1875.632263]  idr_alloc+0xc2/0x130
[ 1875.632765]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1875.633335]  ? rwlock_bug.part.0+0x90/0x90
[ 1875.633936]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1875.634660]  p9_client_rpc+0x220/0x1370
[ 1875.635217]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1875.635976]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1875.636725]  ? pipe_poll+0x21b/0x800
[ 1875.637358]  ? p9_fd_close+0x4a0/0x4a0
[ 1875.637897]  ? wait_for_partner+0x3c0/0x3c0
[ 1875.638525]  ? p9_fd_poll+0x1e0/0x2c0
[ 1875.639064]  ? p9_fd_create+0x357/0x4a0
[ 1875.639643]  ? p9_conn_create+0x510/0x510
[ 1875.640217]  ? p9_client_create+0x798/0x1230
[ 1875.640817]  ? kfree+0xd7/0x340
[ 1875.641311]  ? do_raw_spin_unlock+0x4f/0x220
[ 1875.641920]  p9_client_create+0xa76/0x1230
[ 1875.642506]  ? p9_client_flush+0x430/0x430
[ 1875.643154]  ? trace_hardirqs_on+0x5b/0x180
[ 1875.643748]  ? lockdep_init_map_type+0x2c7/0x780
[ 1875.644466]  ? __raw_spin_lock_init+0x36/0x110
[ 1875.645134]  v9fs_session_init+0x1dd/0x1680
[ 1875.645754]  ? lock_release+0x680/0x680
[ 1875.646330]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1875.647030]  ? v9fs_show_options+0x690/0x690
[ 1875.647684]  ? trace_hardirqs_on+0x5b/0x180
[ 1875.648328]  ? kasan_unpoison_shadow+0x33/0x50
[ 1875.648993]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1875.649735]  v9fs_mount+0x79/0x8f0
[ 1875.650244]  ? v9fs_write_inode+0x60/0x60
[ 1875.650850]  legacy_get_tree+0x105/0x220
[ 1875.651432]  vfs_get_tree+0x8e/0x300
[ 1875.651965]  path_mount+0x1429/0x2120
[ 1875.652495]  ? strncpy_from_user+0x9e/0x470
[ 1875.653226]  ? finish_automount+0xa90/0xa90
[ 1875.653846]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1875.654495]  ? _copy_from_user+0xfb/0x1b0
[ 1875.655109]  __x64_sys_mount+0x282/0x300
[ 1875.655667]  ? copy_mnt_ns+0xa00/0xa00
[ 1875.656218]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1875.656939]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1875.657693]  do_syscall_64+0x33/0x40
[ 1875.658210]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1875.658956] RIP: 0033:0x7f543d208b19
[ 1875.659492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1875.662021] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1875.663116] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1875.664143] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1875.665211] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1875.666262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1875.667326] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1875.675365] kauditd_printk_skb: 16 callbacks suppressed
[ 1875.675379] audit: type=1326 audit(1747095266.447:855): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12434 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 1875.682877] audit: type=1326 audit(1747095266.460:857): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12435 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1875.703881] audit: type=1326 audit(1747095266.460:858): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12435 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1875.707207] loop0: detected capacity change from 0 to 262144
[ 1875.727912] audit: type=1326 audit(1747095266.460:859): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12435 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:14:26 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f00000000c0)={0x26, 0x1b, 0x6, 0x5, 0x5, 0x8, 0x0, 0x70})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

[ 1875.745379] audit: type=1326 audit(1747095266.465:860): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12435 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1875.754741] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
00:14:26 executing program 5:
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0x20000000)
mq_timedsend(0xffffffffffffffff, &(0x7f0000000180)="542ee3a777e60aea0ac5a6e2afc50adcb834c5578a1abc4bd12eb7d4c7e680596cb97e68512540e34c97e5e99841d06024ee89aa770820182e9f3722d5e06aa95d20d76707d4f28159e560bf75fe77d6fc9d8e130c53df7dacca7c034e80025b", 0x60, 0x374fc000000000, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x2a40, 0x0)
recvmmsg$unix(r0, &(0x7f0000001380)=[{{0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000001340)=[@cred={{0x1c}}], 0x20}}], 0x1, 0x40002162, 0x0)
clock_gettime(0x0, &(0x7f0000000040)={<r1=>0x0, <r2=>0x0})
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
write$binfmt_elf64(r3, &(0x7f00000013c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x6, 0x2, 0x20, 0x8000, 0x3, 0x3e, 0xe39, 0x2fe, 0x40, 0x182, 0x10000, 0xb8f2, 0x38, 0x2, 0xdb26, 0x4539}, [{0x1, 0x1, 0x8292, 0x0, 0x9, 0xea9, 0x9, 0x8}, {0x1, 0x4, 0x4, 0x7, 0x1, 0x401, 0x1, 0x2}], "a431f557a92d731c9425d379777308a1fc7d6c2a2a372ce29b716592de45fca8bef77edafdba7cf337bd7d3dad941b3cd07e0b1a63990bf0cc4db24e0fd073062f20fa305645422865e60f2e418c2809c3e8cc92d974fe8ac0c9fc9ce6275d4feeeb2e68a7aadc25d3e946e9508c02a9b5adedf885bea1daedd2439903deae2d3755e89da82c8ba5fbbf7fc5f98513ecb7d5a7c606e8388e5dbb861645bde53613131bfcd981d1d6e422e274a1b7897059f15b2ba65c5bf488606dad37c0", ['\x00']}, 0x26e)
futex(&(0x7f0000000000)=0x2, 0x80, 0x1, &(0x7f0000000080)={r1, r2+60000000}, &(0x7f00000000c0)=0x1, 0x2)

00:14:26 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1875.764671] audit: type=1326 audit(1747095266.458:856): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12434 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
00:14:26 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502103, &(0x7f00000000c0))

00:14:26 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)

00:14:26 executing program 3:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x7}, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x7, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/syz0\x00', 0x200002, 0x0)
read(r0, &(0x7f0000000480)=""/108, 0x6c)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
getpgrp(0x0)
fcntl$lock(0xffffffffffffffff, 0x5, 0x0)
ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x0, 0x0, '\x00', [{}, {0x800, 0x0, 0x400040000000000}]})
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001dee8fc131fc92b570000000100008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe726d5ec494d8000000000000b7382cb035aee7d07675"]})
sendmsg$nl_generic(r1, &(0x7f0000000400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="d400000014000268e872002a96c18c2516000000309195bcedd4a355ffd0b57d36c80aa3cd5c00a209ab410588e2acf39f612a058aca019d424c1cfefa9bd84118e7b9a3dc7b648488e3b314280151f16e53c3b34d356001432e0e37dbfac2e264d49dde22ffb05d71782e4588a22964e120c9b3e8ac10a180903c642a26553943488705f8f9389f0dc82f10989f62b3874701ee49da692b47f3a2374ddcf5407ac1d8d6ece93e8156a83bca75748906b35121f4bfbcd532464798ecfcbf0151eccc1703000000e09aefabad56510f51901f721fb776488673f91400"/230], 0xd4}, 0x1, 0x0, 0x0, 0x8010}, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x82000, 0x0)
ioctl$TUNSETPERSIST(0xffffffffffffffff, 0x400454cb, 0x1)
r3 = signalfd4(r2, &(0x7f0000000180)={[0x9]}, 0x8, 0x80000)
ioctl$TUNATTACHFILTER(r3, 0x401054d5, &(0x7f0000000340)={0x1, &(0x7f0000000300)=[{0x9, 0x81, 0x0, 0x1ff}]})
dup(0xffffffffffffffff)
r4 = gettid()
prlimit64(r4, 0x6, &(0x7f0000000440)={0x4, 0x1}, &(0x7f0000000600))
openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/consoles\x00', 0x0, 0x0)
unshare(0x48020200)

[ 1875.818648] audit: type=1326 audit(1747095266.474:861): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12434 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 1875.836655] audit: type=1326 audit(1747095266.474:862): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12434 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 1875.851681] audit: type=1326 audit(1747095266.474:863): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12434 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
00:14:26 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f0000000180)={0xf, 0x1b, 0x3, 0x17, 0x8, 0x74cc, 0x6, 0x31, 0xffffffffffffffff})
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000001c0)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f00000002c0)=0xe8)
r3 = syz_open_dev$rtc(&(0x7f0000000100), 0x6, 0x80000)
ioctl$RTC_ALM_READ(r3, 0x80247008, &(0x7f0000000140))
ioctl$RTC_AIE_ON(r2, 0x7001)
ioctl$RTC_ALM_SET(r2, 0x40247007, &(0x7f0000000000)={0x9, 0x37, 0x14, 0x19, 0xa, 0x2a61, 0x6, 0x1e, 0xffffffffffffffff})

[ 1875.865885] audit: type=1326 audit(1747095266.476:864): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12435 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:14:41 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r2 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
bind$bt_l2cap(r3, &(0x7f00000001c0)={0x1f, 0x5, @none, 0x56f7, 0x2}, 0xe)

00:14:41 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = gettid()
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x1, 0x40, 0x80, 0x35, 0x0, 0x1, 0xc0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000200)}, 0x104, 0x6, 0x9, 0x8, 0x1, 0x956d, 0x9, 0x0, 0x3, 0x0, 0x68}, r3, 0x10, 0xffffffffffffffff, 0x8)
bind$packet(r2, 0x0, 0x0)
write$binfmt_elf64(r1, &(0x7f0000000140)=ANY=[], 0xfdef)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
mount$9p_fd(0x0, &(0x7f0000002900)='./file1\x00', &(0x7f0000002c40), 0x0, &(0x7f0000002c80)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}})
write$binfmt_elf32(r4, &(0x7f0000000600)=ANY=[@ANYBLOB="7f454c46000000000000000000000000000000000000000000000000380000000000000000000000000020000000000046f6a15108353d8900000000000000000000000000cec75600000000000000614aaa468aabcb2c66e50000"], 0x58)
sendmsg$nl_generic(r4, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001f00010026bd7000fbdbdf251e000000800f2600029cde4737a0b89b66b513566dc6f2ebc1c2b10b17e6d93b27f808a3f7280b9d8eb6791f778cea77c8"], 0x14}, 0x1, 0x0, 0x0, 0x8804}, 0x4004001)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f00000001c0)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x6003, @fd_index=0x4, 0x0, 0x0}, 0x0)
r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x110, r1, 0x10000000)
syz_io_uring_submit(0x0, r6, &(0x7f0000000080)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0x4)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)

00:14:41 executing program 5:
r0 = fork()
r1 = fork()
ptrace$peek(0x2, r1, &(0x7f0000000000))
tkill(r0, 0x26)
waitid(0x0, r0, &(0x7f0000000100), 0x4, &(0x7f0000000040))
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x20)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
r3 = gettid()
kcmp$KCMP_EPOLL_TFD(r3, r3, 0x7, 0xffffffffffffffff, 0x0)
ptrace$getregset(0x4204, r3, 0x0, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000340)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0x7, 0x0, 0xff, 0x3, 0x0, 0x8, 0x10220, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000180), 0x6}, 0x42, 0xc19d, 0xa22, 0x8, 0x100, 0x0, 0x4, 0x0, 0x1, 0x0, 0x8}, 0x0, 0x8, r2, 0x4)

00:14:41 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x1)

[ 1890.887870] kauditd_printk_skb: 13 callbacks suppressed
[ 1890.887881] audit: type=1326 audit(1747095281.665:878): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12480 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1890.892587] audit: type=1326 audit(1747095281.670:879): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12480 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1890.897001] audit: type=1326 audit(1747095281.674:880): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12480 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:14:41 executing program 1:
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0182101, &(0x7f00000000c0))

00:14:41 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502104, &(0x7f00000000c0))

00:14:41 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_AIE_ON(r0, 0x7001)
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000000)={0x8, 0x2e, 0x4, 0x12, 0x2, 0x1000, 0x5, 0x53, 0xffffffffffffffff})
ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000100)={0x5, 0x7, 0x1, 0x1, 0x5, 0x40, 0x1, 0x22, 0x1})
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, &(0x7f00000000c0)={0xc, 0x25, 0x6, 0x1e, 0x4, 0x8, 0x0, 0x3d, 0xffffffffffffffff})

00:14:41 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 42)

[ 1890.900990] audit: type=1326 audit(1747095281.674:881): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12480 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1890.911064] FAULT_INJECTION: forcing a failure.
[ 1890.911064] name failslab, interval 1, probability 0, space 0, times 0
[ 1890.912329] CPU: 1 PID: 12484 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1890.913121] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1890.914074] Call Trace:
[ 1890.914389]  dump_stack+0x107/0x167
[ 1890.914813]  should_fail.cold+0x5/0xa
[ 1890.915268]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1890.915933]  should_failslab+0x5/0x20
[ 1890.916374]  kmem_cache_alloc+0x5b/0x310
[ 1890.916849]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1890.917496]  idr_get_free+0x4b5/0x8f0
[ 1890.917952]  idr_alloc_u32+0x170/0x2d0
[ 1890.918410]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1890.919076]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1890.919700]  ? lock_release+0x680/0x680
[ 1890.920163]  idr_alloc+0xc2/0x130
[ 1890.920562]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1890.921032]  ? rwlock_bug.part.0+0x90/0x90
[ 1890.921536]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1890.922146]  p9_client_rpc+0x220/0x1370
[ 1890.922609]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1890.923233]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1890.923855]  ? pipe_poll+0x21b/0x800
[ 1890.924289]  ? p9_fd_close+0x4a0/0x4a0
[ 1890.924737]  ? wait_for_partner+0x3c0/0x3c0
[ 1890.925238]  ? p9_fd_poll+0x1e0/0x2c0
[ 1890.925683]  ? p9_fd_create+0x357/0x4a0
[ 1890.926142]  ? p9_conn_create+0x510/0x510
[ 1890.926623]  ? p9_client_create+0x798/0x1230
[ 1890.927143]  ? kfree+0xd7/0x340
[ 1890.927519]  ? do_raw_spin_unlock+0x4f/0x220
[ 1890.928026]  p9_client_create+0xa76/0x1230
[ 1890.928517]  ? p9_client_flush+0x430/0x430
[ 1890.929006]  ? trace_hardirqs_on+0x5b/0x180
[ 1890.929500]  ? lockdep_init_map_type+0x2c7/0x780
[ 1890.930051]  ? __raw_spin_lock_init+0x36/0x110
[ 1890.930209] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=11376 comm=kworker/0:1
[ 1890.930589]  v9fs_session_init+0x1dd/0x1680
[ 1890.930781]  ? lock_release+0x680/0x680
[ 1890.930797]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1890.930808]  ? v9fs_show_options+0x690/0x690
[ 1890.935792]  ? trace_hardirqs_on+0x5b/0x180
[ 1890.936306]  ? kasan_unpoison_shadow+0x33/0x50
[ 1890.936897]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1890.937545]  v9fs_mount+0x79/0x8f0
[ 1890.937956]  ? v9fs_write_inode+0x60/0x60
[ 1890.938489]  legacy_get_tree+0x105/0x220
[ 1890.939086]  vfs_get_tree+0x8e/0x300
[ 1890.939527]  path_mount+0x1429/0x2120
[ 1890.939965]  ? strncpy_from_user+0x9e/0x470
[ 1890.940466]  ? finish_automount+0xa90/0xa90
[ 1890.940969]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1890.941504]  ? _copy_from_user+0xfb/0x1b0
[ 1890.941988]  __x64_sys_mount+0x282/0x300
[ 1890.942457]  ? copy_mnt_ns+0xa00/0xa00
[ 1890.942921]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1890.943526]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1890.944119]  do_syscall_64+0x33/0x40
[ 1890.944552]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1890.945142] RIP: 0033:0x7f543d208b19
[ 1890.945568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1890.947682] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1890.948547] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1890.949356] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1890.950387] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1890.951288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1890.952096] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1890.956043] loop0: detected capacity change from 0 to 262144
[ 1890.969423] audit: type=1326 audit(1747095281.675:882): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12480 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1890.980078] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=11376 comm=kworker/0:1
[ 1890.980399] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
00:14:41 executing program 1:
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0182101, &(0x7f00000000c0))

00:14:41 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502105, &(0x7f00000000c0))

00:14:41 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x3a, 0x3, 0x6, 0xe, 0x8, 0x4, 0x5, 0xd2, 0xffffffffffffffff})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_AIE_ON(r0, 0x7001)

[ 1891.024584] audit: type=1326 audit(1747095281.802:883): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12496 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1891.027186] audit: type=1326 audit(1747095281.803:884): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12496 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1891.031979] audit: type=1326 audit(1747095281.803:885): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12496 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1891.036452] audit: type=1326 audit(1747095281.809:886): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12496 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1891.055379] audit: type=1326 audit(1747095281.833:887): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12496 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:14:59 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r2 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})

00:14:59 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, @in_args={0x1}}, './file0\x00'})
readv(r1, &(0x7f0000000000), 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:14:59 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setpriority(0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x30, 0x10, 0x1, 0xa, 0x0, {0xe}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0x11, 0x3ffc, 0x0, 0x1, [@generic="487fec864b245e0f3f9be149f8"]}]}, 0x30}}, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000140))
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
getdents64(r1, &(0x7f00000007c0)=""/180, 0x200007d8)
getdents64(r1, 0x0, 0x0)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000040)={0x28, 0x0, 0x20, 0x70bd27, 0x25dfdbff, {{}, {}, {0xc, 0x14, 'syz0\x00'}}, [""]}, 0x28}}, 0x1)
syz_genetlink_get_family_id$ipvs(0x0, r1)
lseek(r0, 0x1, 0x4)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000080)={0x403f})
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f00000005c0)={0x1, 0x1, 0x1000, 0x14d, &(0x7f0000000640)="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", 0x53, 0x0, &(0x7f0000000500)="3a54f46a74a03e2e67982124846bb1ef39b246cdec1c7b3c3ff7b1615a39a9951c5f3264e29d75c7d7f670f965f19001bc0d6d2e313d388e956fbe83d726fdccd9e81da2eab9fd94f8b134ea60e80f39d97fb5"})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @local}, 0x10)
unshare(0x48020200)

00:14:59 executing program 1:
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0182101, &(0x7f00000000c0))

00:14:59 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502104, &(0x7f00000000c0))

00:14:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

00:14:59 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502106, &(0x7f00000000c0))

00:14:59 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 43)

[ 1908.548710] audit: type=1326 audit(1747095299.326:888): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12516 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2694f40b19 code=0x7ffc0000
[ 1908.549224] FAULT_INJECTION: forcing a failure.
[ 1908.549224] name failslab, interval 1, probability 0, space 0, times 0
[ 1908.554915] CPU: 0 PID: 12518 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1908.555724] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1908.556702] Call Trace:
[ 1908.557019]  dump_stack+0x107/0x167
[ 1908.557451]  should_fail.cold+0x5/0xa
[ 1908.557899]  ? create_object.isra.0+0x3a/0xa20
[ 1908.558436]  should_failslab+0x5/0x20
[ 1908.558882]  kmem_cache_alloc+0x5b/0x310
[ 1908.559365]  create_object.isra.0+0x3a/0xa20
[ 1908.559873]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1908.560465]  kmem_cache_alloc+0x159/0x310
[ 1908.560952]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1908.561605]  idr_get_free+0x4b5/0x8f0
[ 1908.562051]  idr_alloc_u32+0x170/0x2d0
[ 1908.562540]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1908.563108]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1908.563740]  ? lock_release+0x680/0x680
[ 1908.564202]  idr_alloc+0xc2/0x130
[ 1908.564604]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1908.564951] audit: type=1326 audit(1747095299.326:889): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12516 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2694f40b19 code=0x7ffc0000
[ 1908.565066]  ? rwlock_bug.part.0+0x90/0x90
[ 1908.565084]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1908.571018]  p9_client_rpc+0x220/0x1370
[ 1908.571488]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1908.572093]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1908.572710]  ? pipe_poll+0x21b/0x800
[ 1908.573134]  ? p9_fd_close+0x4a0/0x4a0
[ 1908.573587]  ? wait_for_partner+0x3c0/0x3c0
[ 1908.574088]  ? p9_fd_poll+0x1e0/0x2c0
[ 1908.574535]  ? p9_fd_create+0x357/0x4a0
[ 1908.574992]  ? p9_conn_create+0x510/0x510
[ 1908.575483]  ? p9_client_create+0x798/0x1230
[ 1908.575992]  ? kfree+0xd7/0x340
[ 1908.576371]  ? do_raw_spin_unlock+0x4f/0x220
[ 1908.576881]  p9_client_create+0xa76/0x1230
[ 1908.577369]  ? p9_client_flush+0x430/0x430
[ 1908.577852]  ? trace_hardirqs_on+0x5b/0x180
[ 1908.578345]  ? lockdep_init_map_type+0x2c7/0x780
[ 1908.578894]  ? __raw_spin_lock_init+0x36/0x110
[ 1908.579432]  v9fs_session_init+0x1dd/0x1680
[ 1908.579926]  ? lock_release+0x680/0x680
[ 1908.580389]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1908.580943]  ? v9fs_show_options+0x690/0x690
[ 1908.581454]  ? trace_hardirqs_on+0x5b/0x180
[ 1908.581949]  ? kasan_unpoison_shadow+0x33/0x50
[ 1908.582471]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1908.583054]  v9fs_mount+0x79/0x8f0
[ 1908.583469]  ? v9fs_write_inode+0x60/0x60
[ 1908.583945]  legacy_get_tree+0x105/0x220
[ 1908.584408]  vfs_get_tree+0x8e/0x300
[ 1908.584838]  path_mount+0x1429/0x2120
[ 1908.585287]  ? strncpy_from_user+0x9e/0x470
[ 1908.585779]  ? finish_automount+0xa90/0xa90
[ 1908.586276]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1908.586812]  ? _copy_from_user+0xfb/0x1b0
[ 1908.587307]  __x64_sys_mount+0x282/0x300
[ 1908.587777]  ? copy_mnt_ns+0xa00/0xa00
[ 1908.588225]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1908.588830]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1908.589420]  do_syscall_64+0x33/0x40
[ 1908.589850]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1908.590442] RIP: 0033:0x7f543d208b19
[ 1908.590865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1908.592991] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1908.593870] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1908.594687] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1908.595507] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1908.596326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1908.597140] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1908.598134] hpet: Lost 2 RTC interrupts
[ 1908.604960] audit: type=1326 audit(1747095299.379:890): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12516 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f2694f40b19 code=0x7ffc0000
[ 1908.615516] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 1908.617653] loop0: detected capacity change from 0 to 262144
00:14:59 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:14:59 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc02c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1831c1, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000200)="af", 0x1}, {&(0x7f00000004c0)="1296ca6b2afc3278755b7cdfd45d8a59295daccda003be4aa322e04b03eb93b79518fc6ddc4a2c882d4cd9e332e158e7c6b37c", 0x33}, {&(0x7f0000000340)}, {&(0x7f0000000540)="021d4747028b47c14b5e1b661173253d1f3becb69e674943f82f6f535f425b165476b035d2ce9eda801c14d4e45721d17f56c5934bfd13dc76901ebed1a1183e507adbd279b8c00f7dbef739702be0c4b7b4ce2622cfef50026b5127918d1ddc96db6944d2d13e2ba79b13afba4d575fd8593e7c195343e3d3661a6adbe66f54310e81", 0x83}], 0x4)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
fallocate(0xffffffffffffffff, 0x43, 0x6a08, 0x8)
r3 = accept$inet6(r2, &(0x7f0000000980)={0xa, 0x0, 0x0, @private1}, &(0x7f00000009c0)=0x1c)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000054a80)={0x100, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r4=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r5=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r6=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r7=>0x0}], 0x0, "0401ffffff070b"})
lseek(r3, 0x6, 0x0)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/stat\x00')
openat$incfs(r8, &(0x7f0000000fc0)='.pending_reads\x00', 0x0, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f0000000380), r0)
sendmsg$GTP_CMD_DELPDP(r8, &(0x7f0000000080)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000400)={&(0x7f0000000600)=ANY=[@ANYRESDEC=r4, @ANYBLOB="939d007ad3da47b768319216904c0182c86843c09863f36339d98261566665b576e26f165e191aaf1d9ee451dcfa504e06f03a9f11b55ce42bead2a44a18f34dce65103f5649dce903a0fc", @ANYRES16=r5, @ANYRESOCT=r6, @ANYRESDEC=r7], 0x24}, 0x1, 0x0, 0x0, 0x4008421}, 0x4002)
fallocate(r2, 0x0, 0x0, 0x8000)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x4)
lseek(0xffffffffffffffff, 0x6, 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x1c, 0x0, 0x10, 0x70bd26, 0x65dfdbfd, {{}, {}, {0x8, 0x11, 0x78}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x2000801}, 0x8004)
ioctl$FS_IOC_RESVSP(r9, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
r10 = perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x4000, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2})
ioctl$BTRFS_IOC_SUBVOL_CREATE(r10, 0x5000940e, &(0x7f0000001000)={{}, "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"})

[ 1908.649864] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1908.652211] audit: type=1326 audit(1747095299.379:891): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12516 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2694f40b19 code=0x7ffc0000
00:14:59 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff, 0x0, 0x168})

00:14:59 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1908.704415] audit: type=1326 audit(1747095299.379:892): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12516 comm="syz-executor.3" exe="/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2694f40b19 code=0x7ffc0000
[ 1908.722859] audit: type=1326 audit(1747095299.419:893): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12532 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
00:14:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0)

00:14:59 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502107, &(0x7f00000000c0))

[ 1908.767220] audit: type=1326 audit(1747095299.419:894): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12532 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 1908.792978] audit: type=1326 audit(1747095299.419:895): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12532 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 1908.802388] loop0: detected capacity change from 0 to 262144
00:14:59 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 44)

[ 1908.819059] audit: type=1326 audit(1747095299.448:896): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12523 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1908.848350] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
00:14:59 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1908.906670] FAULT_INJECTION: forcing a failure.
[ 1908.906670] name failslab, interval 1, probability 0, space 0, times 0
[ 1908.909091] CPU: 0 PID: 12551 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1908.910570] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1908.912355] Call Trace:
[ 1908.912919]  dump_stack+0x107/0x167
[ 1908.913703]  should_fail.cold+0x5/0xa
[ 1908.914526]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1908.915769]  should_failslab+0x5/0x20
[ 1908.916598]  kmem_cache_alloc+0x5b/0x310
[ 1908.917483]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1908.918674]  idr_get_free+0x4b5/0x8f0
[ 1908.919504]  idr_alloc_u32+0x170/0x2d0
[ 1908.920340]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1908.921367]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1908.922546]  ? lock_release+0x680/0x680
[ 1908.923410]  idr_alloc+0xc2/0x130
[ 1908.924145]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1908.925019]  ? rwlock_bug.part.0+0x90/0x90
[ 1908.925930]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1908.927040]  p9_client_rpc+0x220/0x1370
[ 1908.927899]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1908.929032]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1908.930169]  ? pipe_poll+0x21b/0x800
[ 1908.930962]  ? p9_fd_close+0x4a0/0x4a0
[ 1908.931807]  ? wait_for_partner+0x3c0/0x3c0
[ 1908.932722]  ? p9_fd_poll+0x1e0/0x2c0
[ 1908.933538]  ? p9_fd_create+0x357/0x4a0
[ 1908.934389]  ? p9_conn_create+0x510/0x510
[ 1908.935278]  ? p9_client_create+0x798/0x1230
[ 1908.936221]  ? kfree+0xd7/0x340
[ 1908.936926]  ? do_raw_spin_unlock+0x4f/0x220
[ 1908.937871]  p9_client_create+0xa76/0x1230
[ 1908.938786]  ? p9_client_flush+0x430/0x430
[ 1908.939707]  ? trace_hardirqs_on+0x5b/0x180
[ 1908.940629]  ? lockdep_init_map_type+0x2c7/0x780
[ 1908.941654]  ? __raw_spin_lock_init+0x36/0x110
[ 1908.942633]  v9fs_session_init+0x1dd/0x1680
[ 1908.943554]  ? lock_release+0x680/0x680
[ 1908.944428]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1908.945451]  ? v9fs_show_options+0x690/0x690
[ 1908.946400]  ? trace_hardirqs_on+0x5b/0x180
[ 1908.947337]  ? kasan_unpoison_shadow+0x33/0x50
[ 1908.948317]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1908.949398]  v9fs_mount+0x79/0x8f0
[ 1908.950169]  ? v9fs_write_inode+0x60/0x60
[ 1908.951055]  legacy_get_tree+0x105/0x220
[ 1908.951934]  vfs_get_tree+0x8e/0x300
[ 1908.952730]  path_mount+0x1429/0x2120
[ 1908.953557]  ? strncpy_from_user+0x9e/0x470
[ 1908.954477]  ? finish_automount+0xa90/0xa90
[ 1908.955400]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1908.956405]  ? _copy_from_user+0xfb/0x1b0
[ 1908.957315]  __x64_sys_mount+0x282/0x300
[ 1908.958172]  ? copy_mnt_ns+0xa00/0xa00
[ 1908.959007]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1908.960144]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1908.961252]  do_syscall_64+0x33/0x40
[ 1908.962051]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1908.963145] RIP: 0033:0x7f543d208b19
[ 1908.963942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1908.967860] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1908.969488] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1908.971006] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1908.972562] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1908.974090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1908.975625] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:15:15 executing program 4:
openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

00:15:15 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1925.225592] kauditd_printk_skb: 18 callbacks suppressed
[ 1925.225611] audit: type=1326 audit(1747095316.003:914): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12564 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1925.229880] loop0: detected capacity change from 0 to 262144
[ 1925.243534] audit: type=1326 audit(1747095316.017:915): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12564 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:15:15 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc050210a, &(0x7f00000000c0))

00:15:15 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)=ANY=[])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000800)=ANY=[])
r1 = socket$netlink(0x10, 0x3, 0x0)
fallocate(r0, 0x30, 0xffffffffffffff75, 0x10001)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="240000001000010000000000000000ae0000090005000000000000000500008048000000e94de183e4dbfe4f0340089d65da11b960d59ed32500896cf8f2b91b39024be746a168294158926485c975e9b83f3dfc8d650636dbead6c174bef68363a5d102d65d4da78e218bdc9479d069333a2a714cdb1cab6d6b8fb6b89b6f880f95c14a168f3da6b6f92cd05ffdc1c5866d4c18f5576296b032b81d3a1f00d8c29bf6056ba42cc7a2c97ca96d830d3fc80246db0025e619e13c41c08dc96d536ffffffffffffffff27f9e720b52dc82c724f6e899"], 0x24}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000400)=ANY=[@ANYBLOB="95b50000018fd33a76603d5fd29603293e000000", @ANYRES32=<r2=>r0, @ANYBLOB="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"])
openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0)
faccessat(r1, &(0x7f0000000000)='./file1\x00', 0xb0)
read(r2, &(0x7f00000006c0)=""/135, 0x87)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a})
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x0, 0x10, 0x70bd2c, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x44000000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
preadv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4)
accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80800)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46800)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

00:15:15 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)

00:15:15 executing program 5:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000380)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ff1000/0xe000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff7000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000300)="5c5ccfcc7d7c24b3445999ee7870ccd92d8347b0622414ef1c248f3f324b713140117a40553b3baf0e462e7aa9053892f4fec855d7c109633b03d1584ff5c6ea99", 0x41, r0}, 0x68)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x2c00, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000001440)=ANY=[@ANYBLOB="01000000010000001800004e", @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
dup2(r3, r0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000740)=ANY=[@ANYBLOB="4c010000", @ANYRES16=r4, @ANYBLOB="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"], 0x14c}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000001480)="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")
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080), 0x10)
open(&(0x7f0000000400)='./file0\x00', 0x392445e23a056e54, 0xc2)

00:15:15 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r2 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})
creat(&(0x7f00000000c0)='./file0\x00', 0x0)

00:15:15 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 45)

[ 1925.270511] audit: type=1326 audit(1747095316.017:916): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12564 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1925.272906] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
00:15:16 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502148, &(0x7f00000000c0))

[ 1925.300252] audit: type=1326 audit(1747095316.018:917): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12564 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:15:16 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1925.307602] audit: type=1326 audit(1747095316.018:918): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12564 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1925.311057] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1925.324039] FAULT_INJECTION: forcing a failure.
[ 1925.324039] name failslab, interval 1, probability 0, space 0, times 0
[ 1925.326390] CPU: 0 PID: 12578 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1925.327884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1925.329677] Call Trace:
[ 1925.330261]  dump_stack+0x107/0x167
[ 1925.331052]  should_fail.cold+0x5/0xa
[ 1925.331881]  ? ___slab_alloc+0x155/0x700
[ 1925.332759]  ? create_object.isra.0+0x3a/0xa20
[ 1925.333740]  should_failslab+0x5/0x20
[ 1925.334553]  kmem_cache_alloc+0x5b/0x310
[ 1925.335437]  create_object.isra.0+0x3a/0xa20
[ 1925.336375]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1925.337463]  kmem_cache_alloc+0x159/0x310
[ 1925.338362]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1925.339566]  idr_get_free+0x4b5/0x8f0
[ 1925.340396]  idr_alloc_u32+0x170/0x2d0
[ 1925.341235]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1925.342268]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1925.343423]  ? lock_release+0x680/0x680
[ 1925.344276]  idr_alloc+0xc2/0x130
[ 1925.345022]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1925.345884]  ? rwlock_bug.part.0+0x90/0x90
[ 1925.346805]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1925.347930]  p9_client_rpc+0x220/0x1370
[ 1925.348778]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1925.349900]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1925.351047]  ? pipe_poll+0x21b/0x800
[ 1925.351849]  ? p9_fd_close+0x4a0/0x4a0
[ 1925.352680]  ? wait_for_partner+0x3c0/0x3c0
[ 1925.353600]  ? p9_fd_poll+0x1e0/0x2c0
[ 1925.354428]  ? p9_fd_create+0x357/0x4a0
[ 1925.355269]  ? p9_conn_create+0x510/0x510
[ 1925.356163]  ? p9_client_create+0x798/0x1230
[ 1925.357101]  ? kfree+0xd7/0x340
[ 1925.357796]  ? do_raw_spin_unlock+0x4f/0x220
[ 1925.358744]  p9_client_create+0xa76/0x1230
[ 1925.359669]  ? p9_client_flush+0x430/0x430
[ 1925.360568]  ? trace_hardirqs_on+0x5b/0x180
[ 1925.361488]  ? lockdep_init_map_type+0x2c7/0x780
[ 1925.362491]  ? __raw_spin_lock_init+0x36/0x110
[ 1925.363485]  v9fs_session_init+0x1dd/0x1680
[ 1925.364407]  ? lock_release+0x680/0x680
[ 1925.365267]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1925.366293]  ? v9fs_show_options+0x690/0x690
[ 1925.367241]  ? trace_hardirqs_on+0x5b/0x180
[ 1925.368177]  ? kasan_unpoison_shadow+0x33/0x50
[ 1925.369146]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1925.370227]  v9fs_mount+0x79/0x8f0
[ 1925.370988]  ? v9fs_write_inode+0x60/0x60
[ 1925.371886]  legacy_get_tree+0x105/0x220
[ 1925.372752]  vfs_get_tree+0x8e/0x300
[ 1925.373541]  path_mount+0x1429/0x2120
[ 1925.374358]  ? strncpy_from_user+0x9e/0x470
[ 1925.375268]  ? finish_automount+0xa90/0xa90
[ 1925.376201]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1925.377187]  ? _copy_from_user+0xfb/0x1b0
[ 1925.378078]  __x64_sys_mount+0x282/0x300
[ 1925.378937]  ? copy_mnt_ns+0xa00/0xa00
[ 1925.379783]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1925.380891]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1925.381988]  do_syscall_64+0x33/0x40
[ 1925.382780]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1925.383905] RIP: 0033:0x7f543d208b19
[ 1925.384683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1925.388491] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1925.390067] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1925.391542] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1925.393015] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1925.394516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1925.396016] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1925.397837] hpet: Lost 4 RTC interrupts
[ 1925.406437] audit: type=1326 audit(1747095316.183:919): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12586 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1925.414301] audit: type=1326 audit(1747095316.183:920): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12586 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1925.426066] audit: type=1326 audit(1747095316.203:921): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12586 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1925.436986] audit: type=1326 audit(1747095316.204:922): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12586 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1925.451092] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1925.452734] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1925.455403] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
00:15:16 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:15:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')

00:15:16 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:15:16 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc050214c, &(0x7f00000000c0))

00:15:16 executing program 3:
r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)=ANY=[])
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000800)=ANY=[])
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="004046bd7000fedbdf250200000008000200000000000800030007000000"], 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x40091)
fallocate(r0, 0x30, 0xffffffffffffff75, 0x10001)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000940)=ANY=[@ANYBLOB="95b50000018fd33a0000000000000000180000", @ANYRES32=<r2=>r0, @ANYBLOB="04a500006ccf5e00a30878ffff75db00808ebf8b85b5363cdf1595a0bee6cc6ec57b594af05d2bcaace304ab11b2f0de03bff4371a9012ef1c32b4b5c6366f172a140b3c90f6de5877ef5a6a3a26844c4bc8c82413041c010b22156a4c9a107723a5f2df0884ac7b2d8cf48af5dc01fc3d1d08a58cc865e3f2f712e1a4eabdc0986bd04ce4c790d9de030b3ca0239c52c979afa3e6e8c80f01000eba254f7d13aa0b68306d66d92477fe946e898db0c1"])
r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0)
preadv(r0, &(0x7f0000000bc0)=[{&(0x7f00000005c0)=""/196, 0xc4}, {&(0x7f0000000300)=""/21, 0x15}, {&(0x7f0000000340)=""/29, 0x1d}, {&(0x7f0000000780)=""/180, 0xb4}, {&(0x7f0000000840)=""/167, 0xa7}, {&(0x7f0000000500)=""/93, 0x5d}, {&(0x7f0000000a40)=""/244, 0xf4}, {&(0x7f0000000b40)=""/110, 0x6e}, {&(0x7f0000000900)=""/17, 0x11}], 0x9, 0x6a, 0x4850)
openat(r3, &(0x7f0000000400)='./file1\x00', 0x0, 0x114)
faccessat(r1, &(0x7f0000000000)='./file1\x00', 0xb0)
read(r2, &(0x7f00000006c0)=""/135, 0x87)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000100)={0x3000000a})
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x8e1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x90}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
preadv(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000240)=0xb81, 0x9)
syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0)

00:15:16 executing program 5:
perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
syz_io_uring_setup(0x3, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280)=<r2=>0x0, &(0x7f0000000540)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x6003, @fd_index=0x4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000140)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x2007, @fd=r1, 0xfffffffffffffffd, 0x5, 0x0, 0x46cce5c807ed9347, 0x0, {0x1}}, 0x5)
sendfile(r0, r1, 0x0, 0x100000001)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x5, 0x7, 0x2, 0x22, 0x0, 0x2, 0x208, 0x9, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x1, @perf_bp, 0x2000, 0xffffffffffffffe1, 0xffffffc0, 0x7, 0x4, 0xffff0000, 0x1, 0x0, 0x5, 0x0, 0x100}, 0x0, 0xc, r4, 0x8)
socket$inet_icmp_raw(0x2, 0x3, 0x1)

00:15:16 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_UIE_ON(r0, 0x7003)

00:15:16 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 46)

00:15:16 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')

[ 1925.668719] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
00:15:16 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, 0x0})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1925.732429] FAULT_INJECTION: forcing a failure.
[ 1925.732429] name failslab, interval 1, probability 0, space 0, times 0
[ 1925.734886] CPU: 1 PID: 12610 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1925.736367] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1925.738133] Call Trace:
[ 1925.738699]  dump_stack+0x107/0x167
[ 1925.739476]  should_fail.cold+0x5/0xa
[ 1925.740280]  ? p9pdu_readf+0xadb/0x1d40
[ 1925.741124]  should_failslab+0x5/0x20
[ 1925.741927]  __kmalloc+0x72/0x390
[ 1925.742664]  p9pdu_readf+0xadb/0x1d40
[ 1925.743480]  ? pipe_poll+0x21b/0x800
[ 1925.744265]  ? p9pdu_writef+0x100/0x100
[ 1925.745098]  ? p9_fd_poll+0x1e0/0x2c0
[ 1925.745907]  ? p9_fd_create+0x357/0x4a0
[ 1925.746872]  ? p9_conn_create+0x510/0x510
[ 1925.747774]  ? p9_client_create+0x798/0x1230
[ 1925.748704]  ? kfree+0xd7/0x340
[ 1925.749403]  ? do_raw_spin_unlock+0x4f/0x220
[ 1925.750340]  p9_client_create+0xaee/0x1230
[ 1925.751245]  ? p9_client_flush+0x430/0x430
[ 1925.752146]  ? trace_hardirqs_on+0x5b/0x180
[ 1925.753074]  ? lockdep_init_map_type+0x2c7/0x780
[ 1925.754083]  ? __raw_spin_lock_init+0x36/0x110
[ 1925.755057]  v9fs_session_init+0x1dd/0x1680
[ 1925.755989]  ? lock_release+0x680/0x680
[ 1925.756843]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1925.757876]  ? v9fs_show_options+0x690/0x690
[ 1925.758835]  ? trace_hardirqs_on+0x5b/0x180
[ 1925.759766]  ? kasan_unpoison_shadow+0x33/0x50
[ 1925.760736]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1925.761817]  v9fs_mount+0x79/0x8f0
[ 1925.762674]  ? v9fs_write_inode+0x60/0x60
[ 1925.763568]  legacy_get_tree+0x105/0x220
[ 1925.764440]  vfs_get_tree+0x8e/0x300
[ 1925.765230]  path_mount+0x1429/0x2120
[ 1925.766044]  ? strncpy_from_user+0x9e/0x470
[ 1925.766958]  ? finish_automount+0xa90/0xa90
[ 1925.767889]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1925.768887]  ? _copy_from_user+0xfb/0x1b0
[ 1925.769782]  __x64_sys_mount+0x282/0x300
[ 1925.770642]  ? copy_mnt_ns+0xa00/0xa00
[ 1925.771485]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1925.772607]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1925.773707]  do_syscall_64+0x33/0x40
[ 1925.774498]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1925.775591] RIP: 0033:0x7f543d208b19
[ 1925.776383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1925.780398] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1925.782023] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1925.783556] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1925.785068] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1925.786583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1925.788107] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:15:16 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502168, &(0x7f00000000c0))

[ 1925.829630] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1925.831391] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1925.833158] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1925.859260] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 1925.879439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1925.881033] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1925.882779] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
00:15:37 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, 0x0})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:15:37 executing program 5:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000080)=@fragment={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x65}, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_EEE_SET(r1, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)={0x20, r2, 0x1, 0x0, 0x0, {0x6}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x20}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000340)={0x28, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x28}}, 0x0)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r1, &(0x7f0000000200)={&(0x7f00000000c0), 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x80, r6, 0x10, 0x70bd29, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x2a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x12}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x16}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x17}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xb}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x38}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x51}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2e}]}, 0x80}, 0x1, 0x0, 0x0, 0x4}, 0x8000010)
ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000000)={@loopback, 0x18, r4})
sendmmsg$inet6(r0, &(0x7f0000004d00), 0x400000000000070, 0x0)

00:15:37 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
r2 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))
ioctl$sock_SIOCSIFBR(r2, 0x8941, &(0x7f0000000240)=@generic={0x1, 0x1f, 0xac})

00:15:37 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x46e2, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, 0x0)
mq_timedsend(0xffffffffffffffff, &(0x7f0000000600)="8994608f6102ea066f641411aef3746fecd9ecd7c1286c3a07cddd13fba802f3597a539ac9c713938e30fb7e165f1f8e4dae31b4ba230173195ac196e82eabea310b3a93db185f2570d4ff09a389bba2ce966e652a9cbed53d91cad626d27a900a30fff76b35a2ae4a5eae517d5fb7d102094ae65afe8d5e22615290e6374f2db8ab27e91b3fe0a582c6720a362c5e", 0x8f, 0x0, &(0x7f0000000440)={0x0, 0x3938700})
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x1a0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c0000002e00210c000008400000007b76ffffff3800008008000e00", @ANYRES32=r0, @ANYBLOB="04000b2f6e65742f697076342f7463705f776d656d00aefc2500"/39, @ANYRES32, @ANYRESDEC=r1], 0x4c}, 0x1, 0x0, 0x0, 0x20048007}, 0x0)
open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4, @perf_config_ext={0x0, 0xffffffffffff0bde}, 0x0, 0x53f, 0x10000000, 0x0, 0x0, 0xfffffff3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000000, 0x4000010, r2, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
ioctl$SNAPSHOT_PLATFORM_SUPPORT(r4, 0x330f, 0x3)
r5 = socket$netlink(0x10, 0x3, 0x0)
dup2(r5, r4)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r5, 0x0, &(0x7f0000000300)="1a78f2fcda09e346346e785b0138da3b929d02d63ad0a6291e86e5caed2c650aae794012fe3510fb765d77a64f391633b7f50678a032b43af495a1d54aa4582a1a204411f7d61a25f77dc71ad0af9649a151881aaaa1ef24966c24a472e148cec4c6bcb544cd49b4a80fffff0d8d9cbf3f85c6d7104210008b2ba570d74c5fd7b8d00a7d56444cc2846a6cc66c490f47b7b48f9b45f09114414fbc8875c4a1d8c486a921bec699e2603d91e93491d1a498e398e7e0d059f6b9aaec60187c09c255055df0d977dcde57", 0xc9, 0x1}, 0xfffffffc)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="770000003d17f22702000000a82470d0b0ec3f34a652b2be30bdfdb367f65ba45b10a21724c3b27ee0915466e62b8a47650ff20c05ab3f1c22f48b0a365a8e8087d95d9538c9dfc97da183913a53dc36c5d59aa98ae34fe542e6f372f4f16ecc2c70bf09ef84eef66ab53bce129d1603d548a4ec4755e09ad65ea3b9316980e99ddb407313a2957db1acbbee5dd666ac5c862f4e1eb01e05"])

00:15:37 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc050216c, &(0x7f00000000c0))

00:15:37 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 47)

00:15:37 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = accept$inet6(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0x1c)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000380)={0x11, 0x34, 0x8, 0x1a, 0x1, 0x9c, 0x2, 0xcf, 0x1})
r3 = perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x6, 0x9, 0x6, 0xa0, 0x0, 0x80, 0x8901, 0x9, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000240), 0x7}, 0x209, 0x400, 0xffff, 0x2, 0x2, 0x1, 0x100, 0x0, 0x5, 0x0, 0x1}, 0x0, 0x3, 0xffffffffffffffff, 0x8)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000340), 0x28a382, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000300)={{0x1, 0x1, 0x18, r3, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r2}, './file0\x00'})
r4 = syz_open_pts(0xffffffffffffffff, 0x290400)
ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f0000000180)={0xffffffffffffd9a6, 0x0, 0x4, 0x0, 0x0, [{{r0}, 0x7}, {{r4}, 0xffff}, {{r1}, 0x1c00000}, {{r2}, 0x101}]})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x2004, 0x0, 0x0, 0x10015, 0xb, 0x7ff, 0x1, 0xfffffffd})
r5 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x240, 0x0)
r6 = openat$incfs(0xffffffffffffffff, &(0x7f00000003c0)='.log\x00', 0x20000, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r10=>0x0})
sendmsg$ETHTOOL_MSG_EEE_SET(r7, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000940)={0x20, r8, 0x1, 0x0, 0x0, {0x6}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}]}, 0x20}}, 0x0)
[ 1947.132695] loop0: detected capacity change from 0 to 262144
[ 1947.136352] kauditd_printk_skb: 14 callbacks suppressed
sendmsg$inet6(r6, &(0x7f0000000b40)={&(0x7f0000000400)={0xa, 0x4e21, 0x81, @private0={0xfc, 0x0, '\x00', 0x1}, 0x2}, 0x1c, &(0x7f0000000900)=[{&(0x7f0000000440)="064e797b45fea2f58bfd206fb0213d83e4c979099feb79c54566d76681547a3147b742126d1cc762fb7e6f6b83d5211a4311837baa01f76a76187464c2d70bf9ff30ea51aaf425a204f1d28119d776a04e572799ec32459cfd68e2a083d5676eb91775207af7df699a235d87e087", 0x6e}, {&(0x7f00000004c0)="6127730b68d913298552ac5b2ea584a2b5", 0x11}, {&(0x7f0000000500)="55822c20122d6dd990eaf5e6e9866d73fd540c04484a40f8b1696ee2f75cf379c3684eea4ad1f9c32c0d71950f8c75659f60ba847f6d0ab2c56dd06b7871ea2c5aca78846b902e9788fb6640c8d58aa407b009bf1ee68aedad4d5d0c615e2ae4fc9a9d96e05113df75c536d2d961a2eb5a103426df275d2e0c3e2ca36ea9960f0d6c7154ccd3081817269b44674ede599632d7e13f0a06037be3b759eff97503221e6a94d1151968989eb35dd5ebcdec2cf4a6e55363fb4348d05dc88a8c7c15057b1cb500149ce563f09eba6d479db200d1b384ac73ee86cfe97f9ca1c17dc5f2bddd9fd75db7e353d63804548fb7a9a99e", 0xf2}, {&(0x7f0000000600)="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", 0xfc}, {&(0x7f0000000700)="773dde0b5d841ef04767fcd4710b997e366706e1c28b62086e835670d23f05cdb8ad1142b3f00f184707b5b2e71c31496da86e5705b009d09874330b89b1e5ef64809568", 0x44}, {&(0x7f0000000780)="8c9e0a8344d4940b0568a7b2951aea82c7f8c4527d2e8ef32e912f7e39a4fc964c22d1cadef46adca29ffb22a453767df4e4486e6571bd5f6190955931006f5bb4e938484e65a6ccb120b0b6b8b493991694bcbcfe132bbe20377f1e92bf4ee8b53e9cd7add5692888b21514ea061c5b6425d4d98ea5b6176b345bd742338bf07aa0dddef9985e29f1197af063e4981105844f432c43348793962853b30ac0b792f81b931d38551f2e23d7250e949d165d3b114122ce2bd79dbbab1f9ff47bacbd438b", 0xc3}, {&(0x7f0000001480)="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", 0x1000}, {&(0x7f0000000880)="827a508a27ab1e240313f4413e0430c4c3a2771b48defedc5b83fd490d7417a4b06f4e5b121d687ccceaa01691f9f728f9cb44536fec7829e598b1823f7b663e6650efa56a75f4c1229886b03888faf66b8b5a03989599", 0x57}], 0x8, &(0x7f0000000980)=[@dstopts_2292={{0x20, 0x29, 0x4, {0x67, 0x0, '\x00', [@ra={0x5, 0x2, 0xf717}]}}}, @dstopts={{0x20, 0x29, 0x37, {0x9e, 0x0, '\x00', [@ra={0x5, 0x2, 0x5}]}}}, @dstopts_2292={{0x68, 0x29, 0x4, {0x6c, 0x9, '\x00', [@jumbo={0xc2, 0x4, 0x7}, @generic={0x40, 0x16, "2ce330b3d70c3303467b454ca681da159e594174b317"}, @hao={0xc9, 0x10, @loopback}, @ra={0x5, 0x2, 0x4}, @calipso={0x7, 0x10, {0x3, 0x2, 0x20, 0xfeff, [0x1000]}}, @pad1]}}}, @hopopts={{0x58, 0x29, 0x36, {0x4, 0x7, '\x00', [@ra={0x5, 0x2, 0xfffd}, @ra={0x5, 0x2, 0x3}, @calipso={0x7, 0x18, {0x0, 0x4, 0x3f, 0x7, [0x5, 0x3]}}, @jumbo={0xc2, 0x4, 0x6}, @hao={0xc9, 0x10, @mcast2}]}}}, @flowinfo={{0x14}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast1, r10}}}, @rthdr_2292={{0x68, 0x29, 0x39, {0x2, 0xa, 0x0, 0x80, 0x0, [@mcast1, @private1={0xfc, 0x1, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3c}}, @private0, @empty]}}}], 0x1a8}, 0x10)
ioctl$RTC_SET_TIME(r5, 0x4024700a, &(0x7f00000000c0)={0x32, 0x31, 0x14, 0x7, 0x4, 0x0, 0x6, 0x85, 0x1})

00:15:37 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')

[ 1947.136371] audit: type=1326 audit(1747095337.914:937): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12631 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1947.144958] audit: type=1326 audit(1747095337.922:938): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12631 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1947.146703] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1947.168288] audit: type=1326 audit(1747095337.936:939): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12631 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1947.195307] FAULT_INJECTION: forcing a failure.
[ 1947.195307] name failslab, interval 1, probability 0, space 0, times 0
[ 1947.197973] CPU: 1 PID: 12641 Comm: syz-executor.2 Not tainted 5.10.237 #1
00:15:37 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

[ 1947.199699] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1947.201619] Call Trace:
[ 1947.202231]  dump_stack+0x107/0x167
[ 1947.203097]  should_fail.cold+0x5/0xa
[ 1947.203982]  ? create_object.isra.0+0x3a/0xa20
00:15:37 executing program 5:
perf_event_open(&(0x7f0000000480)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[], 0xfdef)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
connect$netlink(0xffffffffffffffff, &(0x7f0000000000)=@unspec, 0xc)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002)

[ 1947.205071]  should_failslab+0x5/0x20
[ 1947.206046]  kmem_cache_alloc+0x5b/0x310
[ 1947.206990]  create_object.isra.0+0x3a/0xa20
[ 1947.208008]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1947.209206]  __kmalloc+0x16e/0x390
[ 1947.210042]  p9pdu_readf+0xadb/0x1d40
[ 1947.210929]  ? pipe_poll+0x21b/0x800
[ 1947.211833]  ? p9pdu_writef+0x100/0x100
[ 1947.212808]  ? p9_fd_poll+0x1e0/0x2c0
[ 1947.213699]  ? p9_fd_create+0x357/0x4a0
[ 1947.214601]  ? p9_conn_create+0x510/0x510
[ 1947.215570]  ? p9_client_create+0x798/0x1230
[ 1947.216575]  ? kfree+0xd7/0x340
[ 1947.217323]  ? do_raw_spin_unlock+0x4f/0x220
[ 1947.218383]  p9_client_create+0xaee/0x1230
[ 1947.219359]  ? p9_client_flush+0x430/0x430
[ 1947.220367]  ? trace_hardirqs_on+0x5b/0x180
[ 1947.221389]  ? lockdep_init_map_type+0x2c7/0x780
[ 1947.222487]  ? __raw_spin_lock_init+0x36/0x110
[ 1947.223548]  v9fs_session_init+0x1dd/0x1680
[ 1947.224568]  ? lock_release+0x680/0x680
[ 1947.225505]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1947.226604]  ? v9fs_show_options+0x690/0x690
[ 1947.227656]  ? trace_hardirqs_on+0x5b/0x180
[ 1947.228664]  ? kasan_unpoison_shadow+0x33/0x50
[ 1947.229727]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1947.230916]  v9fs_mount+0x79/0x8f0
[ 1947.231748]  ? v9fs_write_inode+0x60/0x60
[ 1947.232720]  legacy_get_tree+0x105/0x220
[ 1947.233661]  vfs_get_tree+0x8e/0x300
[ 1947.234547]  path_mount+0x1429/0x2120
[ 1947.235454]  ? strncpy_from_user+0x9e/0x470
[ 1947.236458]  ? finish_automount+0xa90/0xa90
[ 1947.237477]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1947.238550]  ? _copy_from_user+0xfb/0x1b0
[ 1947.239525]  __x64_sys_mount+0x282/0x300
[ 1947.240733]  ? copy_mnt_ns+0xa00/0xa00
[ 1947.241744]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1947.243071]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1947.244388]  do_syscall_64+0x33/0x40
[ 1947.245161]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1947.246231] RIP: 0033:0x7f543d208b19
[ 1947.247008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1947.250887] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1947.252495] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1947.253993] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1947.255484] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1947.256995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1947.258500] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1947.289071] audit: type=1326 audit(1747095337.936:940): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12631 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:15:38 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, 0x0})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1947.305655] audit: type=1326 audit(1747095337.940:941): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12631 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1947.313439] loop0: detected capacity change from 0 to 262144
00:15:38 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502174, &(0x7f00000000c0))

00:15:38 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x46e2, 0x0)
r1 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, 0x0)
mq_timedsend(0xffffffffffffffff, &(0x7f0000000600)="8994608f6102ea066f641411aef3746fecd9ecd7c1286c3a07cddd13fba802f3597a539ac9c713938e30fb7e165f1f8e4dae31b4ba230173195ac196e82eabea310b3a93db185f2570d4ff09a389bba2ce966e652a9cbed53d91cad626d27a900a30fff76b35a2ae4a5eae517d5fb7d102094ae65afe8d5e22615290e6374f2db8ab27e91b3fe0a582c6720a362c5e", 0x8f, 0x0, &(0x7f0000000440)={0x0, 0x3938700})
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x1a0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c0000002e00210c000008400000007b76ffffff3800008008000e00", @ANYRES32=r0, @ANYBLOB="04000b2f6e65742f697076342f7463705f776d656d00aefc2500"/39, @ANYRES32, @ANYRESDEC=r1], 0x4c}, 0x1, 0x0, 0x0, 0x20048007}, 0x0)
open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4, @perf_config_ext={0x0, 0xffffffffffff0bde}, 0x0, 0x53f, 0x10000000, 0x0, 0x0, 0xfffffff3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000000, 0x4000010, r2, 0x0)
r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
ioctl$SNAPSHOT_PLATFORM_SUPPORT(r4, 0x330f, 0x3)
r5 = socket$netlink(0x10, 0x3, 0x0)
dup2(r5, r4)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r5, 0x0, &(0x7f0000000300)="1a78f2fcda09e346346e785b0138da3b929d02d63ad0a6291e86e5caed2c650aae794012fe3510fb765d77a64f391633b7f50678a032b43af495a1d54aa4582a1a204411f7d61a25f77dc71ad0af9649a151881aaaa1ef24966c24a472e148cec4c6bcb544cd49b4a80fffff0d8d9cbf3f85c6d7104210008b2ba570d74c5fd7b8d00a7d56444cc2846a6cc66c490f47b7b48f9b45f09114414fbc8875c4a1d8c486a921bec699e2603d91e93491d1a498e398e7e0d059f6b9aaec60187c09c255055df0d977dcde57", 0xc9, 0x1}, 0xfffffffc)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000040)=ANY=[@ANYBLOB="770000003d17f22702000000a82470d0b0ec3f34a652b2be30bdfdb367f65ba45b10a21724c3b27ee0915466e62b8a47650ff20c05ab3f1c22f48b0a365a8e8087d95d9538c9dfc97da183913a53dc36c5d59aa98ae34fe542e6f372f4f16ecc2c70bf09ef84eef66ab53bce129d1603d548a4ec4755e09ad65ea3b9316980e99ddb407313a2957db1acbbee5dd666ac5c862f4e1eb01e05"])

00:15:38 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000000)={0x16, 0x2f, 0x16, 0x8, 0x4, 0x5, 0x6, 0x95})

[ 1947.358964] audit: type=1326 audit(1747095338.136:942): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12660 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1947.368149] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 1947.375877] audit: type=1326 audit(1747095338.153:943): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12660 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1947.424237] audit: type=1326 audit(1747095338.159:944): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12660 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:15:38 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = dup(r1)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f0000000080)={@local, 0x78, r4})
ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8916, &(0x7f0000000000)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, r4})
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x9, 0x2, 0x1, 0x8, 0x6, 0x7}, 0x20)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x190)
r6 = dup(r5)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'syz_tun\x00', <r8=>0x0})
ioctl$sock_inet6_SIOCDIFADDR(r6, 0x8936, &(0x7f0000000080)={@local, 0x78, r8})
ioctl$sock_inet6_SIOCDIFADDR(r6, 0x8916, &(0x7f0000000000)={@remote, 0x0, r8})
sendmmsg$inet(r3, &(0x7f0000000240)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000000c0)="8e053f46f4b6ce4f66341d2fc83ff91d9e9b4d42f4f91c6d807525b0fd94785ef463ea97f44a424c7eab7ea3ecebbc1190f5a6f1693e8b96b89eb71598cc20e771d31d4989ce4b9a87da95622afe969643b1daf1ef350934ae6b25c512d69e518c3afcde70b453d6f9863666c53bfdd00031d1470aa2e647bdd3a8bb766a1e445d2d842e9c80b09783823ee22cf620fccfd7c9c868e81a7dfb5488986ed9114c27e61cbbbeaa68dce75e47df29c18fdf34f5d979e433cd3511", 0xb9}], 0x1, &(0x7f0000000340)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @loopback, @loopback}}}, @ip_tos_int={{0x14}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @multicast2, @empty}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x7}}, @ip_ttl={{0x14, 0x0, 0x2, 0x81}}], 0xa0}}], 0x1, 0x8010)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000300)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}, 0xe00}], 0x40001a9, 0x0)

[ 1947.440417] audit: type=1326 audit(1747095338.159:945): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12660 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1947.462906] audit: type=1326 audit(1747095338.160:946): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12660 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:15:53 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, &(0x7f0000000080)})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:15:53 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)
accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000200))

00:15:53 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81007675}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = getpgrp(0xffffffffffffffff)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x8, 0x77, 0x1f, 0x6, 0x0, 0x8, 0x1000, 0x4, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x7fff, 0x4, @perf_config_ext={0x79, 0x80000001}, 0x7080, 0xffff, 0xdf6f, 0x1, 0xffff, 0x9f4, 0x8, 0x0, 0x14, 0x0, 0x81}, r0, 0x7, r1, 0x3)

00:15:53 executing program 3:
ftruncate(0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0)
statx(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x0, 0xbfe358c955d04901, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402, 0x0, 0x800}, 0x0, 0x2, 0xffffffffffffffff, 0x0)
creat(&(0x7f00000001c0)='./file0\x00', 0x69)
io_setup(0x3, &(0x7f0000000000)=<r1=>0x0)
r2 = inotify_init1(0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0x43)
dup3(r3, r2, 0x0)
io_cancel(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x427, r2, &(0x7f0000000080), 0x0, 0x100000000}, &(0x7f0000000180))
openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
io_submit(r1, 0x1, &(0x7f0000000380)=[&(0x7f0000000340)={0x0, 0x0, 0x0, 0x5, 0x3, r4, &(0x7f0000000240)="34ebe03ac1b8c3ed55131546c215b09166997b8f220b06746426f9330603c4dc0be792a835799895a2a6b64dcdc278a12307f3a2fd31b1ce69d5e1844af3241ba1a58036aaeff14e68bbebe329b8ff8b122d6a798e957c5e2db8cf25b9e58de3d76d36678fcf838c1dc0005491f6aa6a5533a9916edcc22fa38fde3d406be8ed89872eacdaca03c8062c16a27c14401c4c9f030979ac5d884fd0fefd755755b39d72a5f4430496d7b0f2202f27a3d90855e2d5d30dd0609259d10c5cdbf851ad2c48219a4a62b0557f3e065526800ab2eb314c5b082d70009ff1a97907f5b4352c7a7233ed2621c9cc7e52749bb647", 0xef, 0x5}])
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000080)={0x1, 0x3, 0xfffffffffffffffd})
socket$nl_generic(0x10, 0x3, 0x10)
openat$sr(0xffffffffffffff9c, &(0x7f0000000200), 0x40, 0x0)

00:15:53 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:15:53 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc050217a, &(0x7f00000000c0))

00:15:53 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10017, 0x0, 0x7ff})
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00.?file0\x00'])
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r3}, './file0\x00'})
write$binfmt_script(r3, &(0x7f00000000c0)={'#! ', './file1', [{}, {0x20, '#$\xfa]-,}-/!,.'}, {0x20, '@-!#])*'}, {0x20, '/\'&@-{%[\''}, {0x20, '/dev/rtc0\x00'}], 0xa, "6168174b2d6efcdc3df8e87e447780538d57cd5a84b8e0910a19055274f8feaa4591aceb082fa3b334efab0b7d8c7d6dd3331d460aa8fcac836b5f8a14926ba275c29e75cd5e34615b4709ca4ac430c3aae6443f48ff6b440bfc733174f0feb8220d"}, 0x98)
ioctl$LOOP_SET_STATUS(r2, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)
ioctl$RTC_ALM_SET(r2, 0x40247007, &(0x7f0000000000)={0x23, 0x27, 0x1, 0x7, 0xa, 0x0, 0x3, 0x95, 0xffffffffffffffff})
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, <r5=>r4}, './file0\x00'})
fcntl$setsig(r4, 0xa, 0x7fffffff)
r6 = openat$incfs(r5, &(0x7f0000000180)='.pending_reads\x00', 0x2000, 0x20)
r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r7, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r7}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r6, 0xc0189374, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r7, {0x4}}, './file1\x00'})

00:15:53 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 48)

[ 1962.663636] audit: type=1326 audit(1747095353.441:947): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12684 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1962.670333] audit: type=1326 audit(1747095353.448:948): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12684 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1962.674861] audit: type=1326 audit(1747095353.452:949): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12684 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1962.680171] loop0: detected capacity change from 0 to 262144
00:15:53 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
open(&(0x7f0000000040)='./file0\x00', 0x400000, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000180)={0x1, &(0x7f0000000140)=[{0xfff, 0x70, 0x6, 0x9}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

[ 1962.707000] audit: type=1326 audit(1747095353.457:950): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12684 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1962.712969] FAULT_INJECTION: forcing a failure.
[ 1962.712969] name failslab, interval 1, probability 0, space 0, times 0
[ 1962.714653] CPU: 0 PID: 12689 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1962.715625] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1962.716769] Call Trace:
[ 1962.717148]  dump_stack+0x107/0x167
[ 1962.717669]  should_fail.cold+0x5/0xa
[ 1962.718207]  should_failslab+0x5/0x20
[ 1962.718741]  __kmalloc_track_caller+0x79/0x370
[ 1962.719358]  ? kasprintf+0xbb/0xf0
[ 1962.719847]  ? __delete_object+0xb3/0x100
[ 1962.720409]  kvasprintf+0xb5/0x150
[ 1962.720890]  ? bust_spinlocks+0xe0/0xe0
[ 1962.721434]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1962.722158]  kasprintf+0xbb/0xf0
[ 1962.722625]  ? kvasprintf_const+0x1a0/0x1a0
[ 1962.723216]  ? kmem_cache_free+0x249/0x2d0
[ 1962.723804]  ? p9_client_create+0xbfa/0x1230
[ 1962.724405]  p9_client_create+0xc1b/0x1230
[ 1962.724988]  ? p9_client_flush+0x430/0x430
[ 1962.725559]  ? trace_hardirqs_on+0x5b/0x180
[ 1962.726138]  ? lockdep_init_map_type+0x2c7/0x780
[ 1962.726777]  ? __raw_spin_lock_init+0x36/0x110
[ 1962.727407]  v9fs_session_init+0x1dd/0x1680
[ 1962.727993]  ? lock_release+0x680/0x680
[ 1962.728534]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1962.729193]  ? v9fs_show_options+0x690/0x690
[ 1962.729799]  ? trace_hardirqs_on+0x5b/0x180
[ 1962.730380]  ? kasan_unpoison_shadow+0x33/0x50
[ 1962.731007]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1962.731691]  v9fs_mount+0x79/0x8f0
[ 1962.732176]  ? v9fs_write_inode+0x60/0x60
[ 1962.732745]  legacy_get_tree+0x105/0x220
[ 1962.733288]  vfs_get_tree+0x8e/0x300
[ 1962.733792]  path_mount+0x1429/0x2120
[ 1962.734311]  ? strncpy_from_user+0x9e/0x470
[ 1962.734891]  ? finish_automount+0xa90/0xa90
[ 1962.735473]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1962.736098]  ? _copy_from_user+0xfb/0x1b0
[ 1962.736661]  __x64_sys_mount+0x282/0x300
[ 1962.737206]  ? copy_mnt_ns+0xa00/0xa00
[ 1962.737730]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1962.738441]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1962.739129]  do_syscall_64+0x33/0x40
[ 1962.739628]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1962.740323] RIP: 0033:0x7f543d208b19
[ 1962.740826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1962.741061] audit: type=1326 audit(1747095353.458:951): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12684 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1962.743290] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1962.743305] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1962.743313] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1962.743320] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1962.743327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1962.743344] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:15:53 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, &(0x7f0000000080)})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:15:53 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f00000000c0)={0x19, 0x27, 0x14, 0xb, 0xb, 0x8, 0x5, 0x75, 0xfffffffffffffffe})
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x208080, 0x0)
ioctl$RTC_EPOCH_SET(r2, 0x4008700e, 0x2)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:15:53 executing program 3:
mlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xc000, &(0x7f0000000100)=0xab0, 0x100, 0x0)
r1 = pkey_alloc(0x0, 0x1)
pkey_mprotect(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x2000002, r1)
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0xffffffff, 0x1, 0x17, "77004a6efdff00002d1ceb7300"})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r2, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
r3 = socket$inet(0x2, 0xa, 0x0)
mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4000, &(0x7f0000000200)=0x1, 0x237, 0x5)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$TUNGETSNDBUF(r2, 0x800454d3, &(0x7f0000000240))
dup3(r3, r2, 0x0)
sendmmsg$inet(r0, &(0x7f0000000080)=[{{&(0x7f0000000040)={0x2, 0x4e1d, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10, 0x0}}, {{&(0x7f0000000780)={0x2, 0x4e24, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="1000000000000000000000000700000011000100000007000000000000001100000000feffffffffffff000000007f00000000100000987c6159fec3ae24dc38fd3b2a50302423524bcf6b682167ac951ffb42369415366b0e61207fa9965fea317df9afe6a7719a90ebf805294507e9f2c32fb57b8c506397a6b3f4b431a11c2ed71c5e8ee710e713dcc92584f6f43e0020603fb52a4a438abfff781d357b2858f6"], 0x40}}], 0x2, 0x0)
r4 = pkey_alloc(0x0, 0x1)
pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r4)
pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r4)
pkey_mprotect(&(0x7f0000ff0000/0x4000)=nil, 0x4000, 0x3, r4)
pkey_mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, r4)

00:15:53 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 49)

[ 1962.824798] FAULT_INJECTION: forcing a failure.
[ 1962.824798] name failslab, interval 1, probability 0, space 0, times 0
[ 1962.826373] CPU: 0 PID: 12701 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1962.827268] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1962.828362] Call Trace:
[ 1962.828705]  dump_stack+0x107/0x167
[ 1962.829180]  should_fail.cold+0x5/0xa
[ 1962.829673]  ? create_object.isra.0+0x3a/0xa20
[ 1962.830262]  should_failslab+0x5/0x20
[ 1962.830776]  kmem_cache_alloc+0x5b/0x310
[ 1962.831318]  ? vsnprintf+0x4ba/0x1600
[ 1962.831836]  create_object.isra.0+0x3a/0xa20
[ 1962.832426]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1962.833106]  __kmalloc_track_caller+0x177/0x370
[ 1962.833725]  ? kasprintf+0xbb/0xf0
[ 1962.834201]  kvasprintf+0xb5/0x150
[ 1962.834685]  ? bust_spinlocks+0xe0/0xe0
[ 1962.835233]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1962.835949]  kasprintf+0xbb/0xf0
[ 1962.836407]  ? kvasprintf_const+0x1a0/0x1a0
[ 1962.836995]  ? kmem_cache_free+0x249/0x2d0
[ 1962.837567]  ? p9_client_create+0xbfa/0x1230
[ 1962.838157]  p9_client_create+0xc1b/0x1230
[ 1962.838729]  ? p9_client_flush+0x430/0x430
[ 1962.839300]  ? trace_hardirqs_on+0x5b/0x180
[ 1962.839880]  ? lockdep_init_map_type+0x2c7/0x780
[ 1962.840513]  ? __raw_spin_lock_init+0x36/0x110
[ 1962.841117]  v9fs_session_init+0x1dd/0x1680
[ 1962.841697]  ? lock_release+0x680/0x680
[ 1962.842233]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1962.842861]  ? v9fs_show_options+0x690/0x690
[ 1962.843450]  ? trace_hardirqs_on+0x5b/0x180
[ 1962.844037]  ? kasan_unpoison_shadow+0x33/0x50
[ 1962.844646]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1962.845330]  v9fs_mount+0x79/0x8f0
[ 1962.845812]  ? v9fs_write_inode+0x60/0x60
[ 1962.846361]  legacy_get_tree+0x105/0x220
[ 1962.846906]  vfs_get_tree+0x8e/0x300
[ 1962.847399]  path_mount+0x1429/0x2120
[ 1962.847939]  ? strncpy_from_user+0x9e/0x470
[ 1962.848516]  ? finish_automount+0xa90/0xa90
[ 1962.849098]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1962.849712]  ? _copy_from_user+0xfb/0x1b0
[ 1962.850278]  __x64_sys_mount+0x282/0x300
[ 1962.850808]  ? copy_mnt_ns+0xa00/0xa00
[ 1962.851328]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1962.852025]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1962.852712]  do_syscall_64+0x33/0x40
[ 1962.853213]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1962.853891] RIP: 0033:0x7f543d208b19
[ 1962.854385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1962.856777] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1962.857775] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1962.858707] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1962.859635] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1962.860567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1962.861494] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:15:53 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:15:53 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f00000004c0), &(0x7f0000000500)=0x10)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
setsockopt$sock_timeval(r1, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4)
r3 = accept4(r1, 0x0, &(0x7f0000000180), 0x800)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x10, &(0x7f0000000700)=0x101, 0x4)
recvmsg(r3, &(0x7f0000000480)={&(0x7f00000001c0)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000240)=""/184, 0xb8}, {&(0x7f0000000300)=""/148, 0x94}], 0x2, &(0x7f0000000400)=""/104, 0x68}, 0x40000000)
sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
sendmsg$NFT_MSG_GETFLOWTABLE(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x70, 0x17, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x3}]}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x70}, 0x1, 0x0, 0x0, 0x40000c1}, 0x4)
write$P9_RUNLINKAT(r4, &(0x7f0000000040)={0x7}, 0x7)
fallocate(r4, 0x20, 0x0, 0x8000)
write$P9_RSETATTR(r4, &(0x7f0000000080)={0x7}, 0x7)

[ 1962.900274] loop0: detected capacity change from 0 to 262144
00:15:53 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x0, &(0x7f0000000080)})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1962.921519] audit: type=1326 audit(1747095353.699:952): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12698 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1962.930485] audit: type=1326 audit(1747095353.699:953): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12698 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1962.969206] audit: type=1326 audit(1747095353.747:954): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12698 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1962.972594] audit: type=1326 audit(1747095353.750:955): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12698 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1962.975764] audit: type=1326 audit(1747095353.750:956): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12698 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:10 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:16:10 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:16:10 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = dup2(r0, r0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x8, 0x0, 0x8000032, 0x19, 0xa, 0x1, 0x1})
ioctl$RTC_UIE_ON(r0, 0x7003)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f00000000c0)="7a15b281c446cd7d6f29abe8e6b4a60ec249176c0d24e662633046e4fb4938149b5313763ab3fd01b7bb7e259d6e2f0137e12a8a8814628248d3f1f0e9fe54bf1ccbf94054303f2c9831822ee204ddcf1f210840ec45994c011ffcf6005105f071056e0d0217b316449bb8bc7aac84b828b86d9c9d597598aa87d4603cd735b812d3fe34a0da90c9f0f6c3566efd98e930ad79dccf2cd6f8f1ea12851a043709200cc8dc5a206bf4cc49932728e841de6da8d438fdcf18d804f8e777857cb9095817779c4d9b2f3833564b35c8056733444e900789b0b56e8b8e682030abcf4b09ba494350ef55fc6013f590c6354a94609d936cc5c7cce6ad8cbbf46869d099")

00:16:10 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 50)

00:16:10 executing program 3:
perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0xfffffffffffffffc}, 0x4204d, 0x0, 0x0, 0x4, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0xe)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x3000005, 0x4000010, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x1)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180), &(0x7f0000002a40))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0, 0x101}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001b80)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001b40)={&(0x7f0000000500)=@pptp={0x18, 0x2, {0x0, @local}}, 0x80, &(0x7f0000000880)=[{&(0x7f0000000580)=""/152, 0x98}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000000640)=""/142, 0x8e}, {&(0x7f00000007c0)=""/119, 0x77}, {&(0x7f0000001a40)=""/253, 0xfd}], 0x5, &(0x7f0000000440)=""/30, 0x1e}, 0x0, 0x40000000, 0x1, {0x3}}, 0x25)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)}, {0x0}], 0x2}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000)
syz_io_uring_setup(0x69a3, &(0x7f0000000040)={0x0, 0x1a80, 0x0, 0x1, 0x1f2, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000300), &(0x7f0000000280))
syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x4000, @fd_index, 0x4, 0x8001, 0xfffff800, 0xc, 0x1, {0x2, r5}}, 0x1)
syz_io_uring_submit(0x0, r2, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x5, 0x0, 0xffffffff, 0x1, &(0x7f0000000340)="5d5bd2c164727dba9c634dba1b8c69eda7dcbc4cf28e94f57da051090da5428f85d1eaf38eb88b008087560dd34ef5fc07f7af76588e5797556728b263eda0", 0x30000000, 0x0, 0x0, {0x0, r5}}, 0x6)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
setresuid(0xffffffffffffffff, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)

[ 1979.533600] FAULT_INJECTION: forcing a failure.
[ 1979.533600] name failslab, interval 1, probability 0, space 0, times 0
[ 1979.536275] CPU: 1 PID: 12734 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1979.537577] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1979.539139] Call Trace:
[ 1979.539641]  dump_stack+0x107/0x167
[ 1979.540341]  should_fail.cold+0x5/0xa
[ 1979.541069]  should_failslab+0x5/0x20
[ 1979.541783]  __kmalloc_track_caller+0x79/0x370
[ 1979.542642]  ? kstrdup_const+0x53/0x80
[ 1979.543375]  ? kasprintf+0xbb/0xf0
[ 1979.544060]  kstrdup+0x36/0x70
[ 1979.544675]  kstrdup_const+0x53/0x80
[ 1979.545384]  kmem_cache_create_usercopy+0x12f/0x2f0
[ 1979.546322]  p9_client_create+0xc6a/0x1230
[ 1979.547128]  ? p9_client_flush+0x430/0x430
[ 1979.547923]  ? trace_hardirqs_on+0x5b/0x180
[ 1979.548747]  ? lockdep_init_map_type+0x2c7/0x780
[ 1979.549645]  ? __raw_spin_lock_init+0x36/0x110
[ 1979.550508]  v9fs_session_init+0x1dd/0x1680
[ 1979.551321]  ? lock_release+0x680/0x680
[ 1979.552086]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1979.552977]  ? v9fs_show_options+0x690/0x690
[ 1979.553802]  ? trace_hardirqs_on+0x5b/0x180
[ 1979.554597]  ? kasan_unpoison_shadow+0x33/0x50
[ 1979.555441]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1979.556397]  v9fs_mount+0x79/0x8f0
[ 1979.557060]  ? v9fs_write_inode+0x60/0x60
[ 1979.557833]  legacy_get_tree+0x105/0x220
[ 1979.558591]  vfs_get_tree+0x8e/0x300
[ 1979.559283]  path_mount+0x1429/0x2120
[ 1979.560002]  ? strncpy_from_user+0x9e/0x470
[ 1979.560804]  ? finish_automount+0xa90/0xa90
[ 1979.561606]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1979.562472]  ? _copy_from_user+0xfb/0x1b0
[ 1979.563255]  __x64_sys_mount+0x282/0x300
[ 1979.564027]  ? copy_mnt_ns+0xa00/0xa00
[ 1979.564761]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1979.565743]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1979.566703]  do_syscall_64+0x33/0x40
[ 1979.567397]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1979.568356] RIP: 0033:0x7f543d208b19
[ 1979.569040] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1979.572390] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1979.573779] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1979.575097] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1979.576416] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1979.577717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1979.579032] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1979.581233] kmem_cache_create(9p-fcall-cache-147) failed with error -12
[ 1979.582625] CPU: 1 PID: 12734 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1979.583906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1979.585172] loop0: detected capacity change from 0 to 262144
[ 1979.585437] Call Trace:
[ 1979.585463]  dump_stack+0x107/0x167
[ 1979.587855]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 1979.588849]  p9_client_create+0xc6a/0x1230
[ 1979.589642]  ? p9_client_flush+0x430/0x430
[ 1979.590426]  ? trace_hardirqs_on+0x5b/0x180
[ 1979.591219]  ? lockdep_init_map_type+0x2c7/0x780
[ 1979.592093]  ? __raw_spin_lock_init+0x36/0x110
[ 1979.592927]  v9fs_session_init+0x1dd/0x1680
[ 1979.593713]  ? lock_release+0x680/0x680
[ 1979.594451]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1979.595325]  ? v9fs_show_options+0x690/0x690
[ 1979.596138]  ? trace_hardirqs_on+0x5b/0x180
[ 1979.596934]  ? kasan_unpoison_shadow+0x33/0x50
[ 1979.597765]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1979.598682]  v9fs_mount+0x79/0x8f0
[ 1979.599330]  ? v9fs_write_inode+0x60/0x60
[ 1979.600089]  legacy_get_tree+0x105/0x220
[ 1979.600832]  vfs_get_tree+0x8e/0x300
[ 1979.601508]  path_mount+0x1429/0x2120
[ 1979.602209]  ? strncpy_from_user+0x9e/0x470
[ 1979.603208]  ? finish_automount+0xa90/0xa90
[ 1979.604051]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1979.604902]  ? _copy_from_user+0xfb/0x1b0
00:16:10 executing program 5:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f00000004c0), &(0x7f0000000500)=0x10)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
setsockopt$sock_timeval(r1, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4)
r3 = accept4(r1, 0x0, &(0x7f0000000180), 0x800)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x10, &(0x7f0000000700)=0x101, 0x4)
recvmsg(r3, &(0x7f0000000480)={&(0x7f00000001c0)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000240)=""/184, 0xb8}, {&(0x7f0000000300)=""/148, 0x94}], 0x2, &(0x7f0000000400)=""/104, 0x68}, 0x40000000)
sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
sendmsg$NFT_MSG_GETFLOWTABLE(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x70, 0x17, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x7}, [@NFTA_FLOWTABLE_HOOK={0xc, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x3}]}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x70}, 0x1, 0x0, 0x0, 0x40000c1}, 0x4)
write$P9_RUNLINKAT(r4, &(0x7f0000000040)={0x7}, 0x7)
fallocate(r4, 0x20, 0x0, 0x8000)
write$P9_RSETATTR(r4, &(0x7f0000000080)={0x7}, 0x7)

00:16:10 executing program 7:
r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfb, 0x3, 0xf7, 0x3, 0x0, 0x3, 0xc, 0x9, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000100), 0xa}, 0x400, 0xc9fc, 0x0, 0x9, 0x1, 0x4, 0x81, 0x0, 0x9, 0x0, 0x2000000000000000}, 0x0, 0x1, r0, 0x3)
connect$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

00:16:10 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000140))
r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000001c0), 0x408100, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000340)=ANY=[@ANYBLOB="1f4c6a180907fd45e6d3e22b01000000f7417c441800000075210c50507e8cd1c7ad232a1681fad777e3e61462abc48a762757681773f53d2475fe730463308b9bc6067deb43f6398ff1ad6b64e004399ae7665d6d6946e6335a", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000003c0)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
r4 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000100)={<r5=>r4, 0x8, 0x0, 0x3})
r6 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r6, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f00000002c0))
r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r7, 0xc0189377, &(0x7f0000001440)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r7, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
lseek(r7, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'})

[ 1979.605666]  __x64_sys_mount+0x282/0x300
[ 1979.606581]  ? copy_mnt_ns+0xa00/0xa00
[ 1979.607302]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1979.608264]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1979.609199]  do_syscall_64+0x33/0x40
[ 1979.609874]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1979.610807] RIP: 0033:0x7f543d208b19
[ 1979.611484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1979.614820] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1979.616199] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1979.617485] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1979.618775] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1979.620062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1979.621350] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1979.624258] kauditd_printk_skb: 6 callbacks suppressed
[ 1979.624277] audit: type=1326 audit(1747095370.402:963): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:10 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 1979.644748] audit: type=1326 audit(1747095370.422:964): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1979.649435] audit: type=1326 audit(1747095370.422:965): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1979.665120] audit: type=1326 audit(1747095370.423:966): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

[ 1979.686433] audit: type=1326 audit(1747095370.423:967): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:10 executing program 4:
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_tables_names\x00')
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x6000)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, r2, {r3, 0xee01}}, './file0\x00'})
close(r0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)

[ 1979.717235] audit: type=1326 audit(1747095370.423:968): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1979.746453] audit: type=1326 audit(1747095370.423:969): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1979.770930] audit: type=1326 audit(1747095370.424:970): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1979.782204] loop0: detected capacity change from 0 to 262144
[ 1979.788460] audit: type=1326 audit(1747095370.425:971): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1979.804938] audit: type=1326 audit(1747095370.429:972): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12738 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:10 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 51)

00:16:10 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:16:10 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x3, 0x7ffbfffe}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:16:10 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x80c2, 0x0)
fallocate(r0, 0x11, 0x4e6f, 0xffffffff)
write$binfmt_elf64(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="7f454c460000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000380000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ab984b86cd7534c21780d2f3c30000"], 0x78)

00:16:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:16:10 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$RTC_VL_READ(r1, 0x80047013, &(0x7f0000000000))
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:16:10 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:16:10 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000001c0)=""/141, 0x8d}, {&(0x7f0000000280)=""/161, 0xa1}], 0x2, &(0x7f0000000600)=ANY=[@ANYBLOB="28000000000000000100000001000000", @ANYBLOB="4b0a2b81be1797040fcd1ba2e3f713b3909eeaa97d8ca03a08dac04d64fa9ca16ca42305ea2d22c3608be8966fbb3dbb9e36fe62012381f9bf0e1509e055537548db79562d1f43fdc75c49952ad200d06be9948a26531fcedf4de9ade75e7675293dac0f19a74e32c94bd9c01c89c658e87c4cde2fca821f3fccc40afacd9f54ce72fbf0aaa066d73cb57950e167181bfa52665add4a7f4808dfbe2fd81346a1db7b2e8d522cbf024a298b53323e327f5dab8906b4d62df2b4f789798dbd9eb7bc25d81768bde34a625a68e7621e2490fa89ec79a8d95713415a9a599b0c815c417b68c04390d189f1f95e9cefd1dae2afa5eb3c743bc488734d14c6", @ANYRES32=<r1=>0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000180000000000000001000000010000006d8269223a1f7a191fe43cd66e86a8107ff8ddaf1870a15daaf1dec602dc6f86290b6de2f0b4024d8827ea00ff3a6ee3a026325433c2f72520897c25eeb7c09e3ca782adaa3ce52779fdb65f51bfef5d04ca2ead8adfc258ef39e112dfacfa28382d0af4cbe4d59a4f89d65b9365b97405d13be2aaeea3f291ed5b2e", @ANYRES32, @ANYRES32], 0x80}}], 0x1, 0x4418f2f248178c8e, &(0x7f0000000440))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000480))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r2, 0x401070c9, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x180, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000140))

00:16:10 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', 0x0, 0x40000, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:16:10 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001)

[ 1980.033407] FAULT_INJECTION: forcing a failure.
[ 1980.033407] name failslab, interval 1, probability 0, space 0, times 0
[ 1980.035864] CPU: 0 PID: 12775 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1980.037359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1980.039135] Call Trace:
[ 1980.039705]  dump_stack+0x107/0x167
[ 1980.040495]  should_fail.cold+0x5/0xa
[ 1980.041316]  ? create_object.isra.0+0x3a/0xa20
[ 1980.042302]  should_failslab+0x5/0x20
[ 1980.043127]  kmem_cache_alloc+0x5b/0x310
[ 1980.044007]  ? vsnprintf+0x4ba/0x1600
[ 1980.044839]  create_object.isra.0+0x3a/0xa20
[ 1980.045777]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1980.046876]  __kmalloc_track_caller+0x177/0x370
[ 1980.047873]  ? kasprintf+0xbb/0xf0
[ 1980.048661]  kvasprintf+0xb5/0x150
[ 1980.049432]  ? bust_spinlocks+0xe0/0xe0
[ 1980.050290]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1980.051431]  kasprintf+0xbb/0xf0
[ 1980.052168]  ? kvasprintf_const+0x1a0/0x1a0
[ 1980.053097]  ? kmem_cache_free+0x249/0x2d0
[ 1980.054014]  ? p9_client_create+0xbfa/0x1230
[ 1980.054962]  p9_client_create+0xc1b/0x1230
[ 1980.055880]  ? p9_client_flush+0x430/0x430
[ 1980.056792]  ? trace_hardirqs_on+0x5b/0x180
[ 1980.057723]  ? lockdep_init_map_type+0x2c7/0x780
[ 1980.058742]  ? __raw_spin_lock_init+0x36/0x110
[ 1980.059726]  v9fs_session_init+0x1dd/0x1680
[ 1980.060668]  ? lock_release+0x680/0x680
[ 1980.061540]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1980.062576]  ? v9fs_show_options+0x690/0x690
[ 1980.063532]  ? trace_hardirqs_on+0x5b/0x180
[ 1980.064470]  ? kasan_unpoison_shadow+0x33/0x50
[ 1980.065450]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1980.066537]  v9fs_mount+0x79/0x8f0
[ 1980.067306]  ? v9fs_write_inode+0x60/0x60
[ 1980.068202]  legacy_get_tree+0x105/0x220
[ 1980.069077]  vfs_get_tree+0x8e/0x300
[ 1980.069879]  path_mount+0x1429/0x2120
[ 1980.070703]  ? strncpy_from_user+0x9e/0x470
[ 1980.071629]  ? finish_automount+0xa90/0xa90
[ 1980.072564]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1980.073562]  ? _copy_from_user+0xfb/0x1b0
[ 1980.074462]  __x64_sys_mount+0x282/0x300
[ 1980.075331]  ? copy_mnt_ns+0xa00/0xa00
[ 1980.076184]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1980.077308]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1980.078423]  do_syscall_64+0x33/0x40
[ 1980.079223]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1980.080334] RIP: 0033:0x7f543d208b19
[ 1980.081137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1980.085096] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1980.086730] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1980.088271] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1980.089799] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1980.091320] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1980.092850] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:16:10 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000100)={0x26, 0x9, 0x8, 0x11, 0x0, 0x9, 0x4, 0x142, 0xffffffffffffffff})
r1 = open(&(0x7f0000000000)='./file0\x00', 0x8000, 0x82)
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f00000000c0)={0x5, 0x3b, 0x12, 0x19, 0x5, 0xfffffff7, 0x0, 0x14f, 0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>r1}, './file0\x00'})
ioctl$RTC_SET_TIME(r2, 0x4024700a, &(0x7f0000000180)={0x27, 0x1, 0x3, 0x1, 0x8, 0x80000000, 0x5, 0xb5, 0x1})

00:16:25 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:16:25 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 52)

00:16:25 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:16:25 executing program 7:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

[ 1994.782622] kauditd_printk_skb: 51 callbacks suppressed
[ 1994.782635] audit: type=1326 audit(1747095385.560:1024): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12793 comm="syz-executor.1" exe="/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x0
00:16:25 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x7ff, 0xfe, 0x1f, 0x101}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:16:25 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r2=>0x0})
syz_80211_join_ibss(0x0, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r3, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r3, 0x3305)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000000)={{{@in=@empty, @in6=@ipv4={""/10, ""/2, @empty}}}, {{@in6=@private2}, 0x0, @in=@local}}, &(0x7f0000000100)=0xe8)
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000600)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000240)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002bbd7000fddbdf250600000008000300", @ANYRES32=r2, @ANYBLOB="050053000100000008000500020000004f2362d50c56a0627ec8e559de3c56c5dd4778125bcb87ad36d5f5f41ee034bb6e0a662b5dd4d8e41be47b366f3f5c4260935e8a91b49c8536914169dd86dc5acb06b83210b61b76858c9bdbd26ac1ac968a868fb74bd08ccfa22ccd968b26c45d59dcd02400"/128], 0x2c}}, 0x20000000)

00:16:25 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
fallocate(r0, 0x4, 0x10000, 0x5)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10018, 0x0, 0x7ff, 0x0, 0x144})

00:16:25 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x89)
openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x5a7083, 0x20)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef)
syz_open_procfs(0x0, &(0x7f0000000280)='net/protocols\x00')
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000000c0)={0x3fe, 0x9, 0x17})
setsockopt$packet_int(r3, 0x107, 0xc, &(0x7f0000000080), 0x4)
syz_io_uring_complete(r1)
r4 = socket$inet_icmp(0x2, 0x2, 0x1)
fcntl$dupfd(0xffffffffffffffff, 0x0, r4)
ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611)
r5 = signalfd4(r3, &(0x7f0000000180)={[0x9]}, 0x8, 0x180800)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18}, './file0\x00'})
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f00000002c0)=@v2={0x2000000, [{0x1, 0x7}, {0x1, 0xffff8001}]}, 0x14, 0x2)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f0000000140)=ANY=[@ANYBLOB="54e1f8ed06615192c7f2e8", @ANYRES32=r3, @ANYBLOB="31960c00de9cad000004000aa15b0050cf710467e35600899aed79000000"])
move_mount(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x2)

[ 1994.818165] FAULT_INJECTION: forcing a failure.
[ 1994.818165] name failslab, interval 1, probability 0, space 0, times 0
[ 1994.819747] CPU: 0 PID: 12806 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1994.820660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1994.821719] Call Trace:
[ 1994.822071]  dump_stack+0x107/0x167
[ 1994.822546]  should_fail.cold+0x5/0xa
[ 1994.823043]  ? create_object.isra.0+0x3a/0xa20
[ 1994.823640]  should_failslab+0x5/0x20
[ 1994.824142]  kmem_cache_alloc+0x5b/0x310
[ 1994.824676]  create_object.isra.0+0x3a/0xa20
[ 1994.825236]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1994.825906]  kmem_cache_alloc+0x159/0x310
[ 1994.826455]  kmem_cache_create_usercopy+0x190/0x2f0
[ 1994.827105]  p9_client_create+0xc6a/0x1230
[ 1994.827669]  ? p9_client_flush+0x430/0x430
[ 1994.828221]  ? trace_hardirqs_on+0x5b/0x180
[ 1994.828779]  ? lockdep_init_map_type+0x2c7/0x780
[ 1994.829399]  ? __raw_spin_lock_init+0x36/0x110
[ 1994.830002]  v9fs_session_init+0x1dd/0x1680
[ 1994.830572]  ? lock_release+0x680/0x680
[ 1994.831103]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1994.831725]  ? v9fs_show_options+0x690/0x690
[ 1994.832320]  ? trace_hardirqs_on+0x5b/0x180
[ 1994.832880]  ? kasan_unpoison_shadow+0x33/0x50
[ 1994.833461]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1994.834121]  v9fs_mount+0x79/0x8f0
[ 1994.834583]  ? v9fs_write_inode+0x60/0x60
[ 1994.835122]  legacy_get_tree+0x105/0x220
[ 1994.835659]  vfs_get_tree+0x8e/0x300
[ 1994.836146]  path_mount+0x1429/0x2120
[ 1994.836655]  ? strncpy_from_user+0x9e/0x470
[ 1994.837213]  ? finish_automount+0xa90/0xa90
[ 1994.837764]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1994.838366]  ? _copy_from_user+0xfb/0x1b0
[ 1994.838903]  __x64_sys_mount+0x282/0x300
[ 1994.839423]  ? copy_mnt_ns+0xa00/0xa00
[ 1994.839924]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1994.840605]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1994.841267]  do_syscall_64+0x33/0x40
[ 1994.841740]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1994.842402] RIP: 0033:0x7f543d208b19
[ 1994.842877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1994.845258] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1994.846234] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 1994.847151] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1994.848055] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 1994.848977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1994.849883] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 1994.851588] audit: type=1326 audit(1747095385.598:1025): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12802 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1994.854691] audit: type=1326 audit(1747095385.598:1026): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12802 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1994.858654] audit: type=1326 audit(1747095385.598:1027): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12802 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1994.861458] loop0: detected capacity change from 0 to 11264
[ 1994.869243] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (11 blocks)
[ 1994.871752] audit: type=1326 audit(1747095385.598:1028): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12802 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1995.655392] audit: type=1326 audit(1747095386.433:1029): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12802 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1995.660176] audit: type=1326 audit(1747095386.433:1030): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12802 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1995.668006] audit: type=1326 audit(1747095386.433:1031): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12802 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 1995.672576] audit: type=1326 audit(1747095386.433:1032): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12802 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:42 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000001c0))

00:16:42 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setpriority(0x0, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x30, 0x10, 0x1, 0x0, 0x0, {0xe}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0x11, 0x3ffc, 0x0, 0x1, [@generic="487fec864b245e0f3f9be149f8"]}]}, 0x30}}, 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000140))
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0)
syz_open_dev$vcsa(&(0x7f0000000100), 0x0, 0x401)
syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00'})
lseek(r0, 0x1, 0x4)
unshare(0x48020200)

00:16:42 executing program 7:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

00:16:42 executing program 3:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@updsa={0x1a8, 0x1a, 0x1, 0x0, 0x0, {{@in=@remote, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in=@dev, 0x0, 0x32}, @in=@local, {0x4000000000}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @algo_auth_trunc={0x6d, 0x14, {{'cmac(aes)\x00'}, 0x108, 0x0, "034d39f653c40d78d5cf0eac0082d506cb40c7140ab97aa5dfb101608e8ec5f747"}}]}, 0x1a8}}, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000200), 0x4, 0x201)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f00000002c0)={'syztnl0\x00', &(0x7f0000000240)={'ip6tnl0\x00', <r2=>0x0, 0x4, 0x0, 0x92, 0xbd9, 0x20, @remote, @private0, 0x8, 0x700, 0x6}})
setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000000300)={r2, 0x1, 0x6, @local}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r3=>r0, {0x7, 0x46a}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000100000002570000", @ANYRES32=r1, @ANYBLOB="80000000000000002e2f66696c653000"])

[ 2011.450527] audit: type=1326 audit(1747095402.219:1033): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2011.455884] audit: type=1326 audit(1747095402.226:1034): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2011.460741] audit: type=1326 audit(1747095402.226:1035): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2011.465318] loop0: detected capacity change from 0 to 11264
[ 2011.471255] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (11 blocks)
[ 2011.473134] audit: type=1326 audit(1747095402.227:1036): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2011.478986] audit: type=1326 audit(1747095402.227:1037): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2011.483661] audit: type=1326 audit(1747095402.227:1038): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2011.487277] audit: type=1326 audit(1747095402.228:1039): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2011.499719] audit: type=1326 audit(1747095402.261:1040): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:42 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
fdatasync(0xffffffffffffffff)

00:16:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:16:42 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 53)

00:16:42 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

[ 2011.506873] audit: type=1326 audit(1747095402.261:1041): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2011.507282] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'.
[ 2011.515575] audit: type=1326 audit(1747095402.261:1042): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12821 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x0, 0x6, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}, {&(0x7f0000000140)="4c828eafd5e49b5fad4e60e9f0d5d8ee7228339edcab6c0fb658d44f83c98d0c295adabda21768989cbb1e3bd54f3fb81076067d94", 0x35, 0x7f}], 0x1000003, &(0x7f00000003c0)=ANY=[])

[ 2011.538969] FAULT_INJECTION: forcing a failure.
[ 2011.538969] name failslab, interval 1, probability 0, space 0, times 0
[ 2011.541528] CPU: 1 PID: 12838 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2011.542991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2011.544795] Call Trace:
[ 2011.545370]  dump_stack+0x107/0x167
[ 2011.546163]  should_fail.cold+0x5/0xa
[ 2011.546993]  ? create_object.isra.0+0x3a/0xa20
[ 2011.547983]  should_failslab+0x5/0x20
[ 2011.548823]  kmem_cache_alloc+0x5b/0x310
[ 2011.549708]  create_object.isra.0+0x3a/0xa20
[ 2011.550660]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2011.551768]  kmem_cache_alloc+0x159/0x310
[ 2011.552679]  kmem_cache_create_usercopy+0x190/0x2f0
[ 2011.553770]  p9_client_create+0xc6a/0x1230
[ 2011.554697]  ? p9_client_flush+0x430/0x430
[ 2011.555616]  ? trace_hardirqs_on+0x5b/0x180
[ 2011.556559]  ? lockdep_init_map_type+0x2c7/0x780
[ 2011.557587]  ? __raw_spin_lock_init+0x36/0x110
[ 2011.558582]  v9fs_session_init+0x1dd/0x1680
[ 2011.559518]  ? lock_release+0x680/0x680
[ 2011.560397]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2011.561440]  ? v9fs_show_options+0x690/0x690
[ 2011.562405]  ? trace_hardirqs_on+0x5b/0x180
[ 2011.563341]  ? kasan_unpoison_shadow+0x33/0x50
[ 2011.564329]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2011.565443]  v9fs_mount+0x79/0x8f0
[ 2011.566216]  ? v9fs_write_inode+0x60/0x60
[ 2011.567120]  legacy_get_tree+0x105/0x220
[ 2011.568003]  vfs_get_tree+0x8e/0x300
[ 2011.568814]  path_mount+0x1429/0x2120
[ 2011.569644]  ? strncpy_from_user+0x9e/0x470
[ 2011.570574]  ? finish_automount+0xa90/0xa90
[ 2011.571506]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2011.572518]  ? _copy_from_user+0xfb/0x1b0
[ 2011.573421]  __x64_sys_mount+0x282/0x300
[ 2011.574298]  ? copy_mnt_ns+0xa00/0xa00
[ 2011.575148]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2011.576283]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2011.577412]  do_syscall_64+0x33/0x40
[ 2011.578216]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2011.579324] RIP: 0033:0x7f543d208b19
[ 2011.580127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2011.584113] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2011.585768] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2011.587313] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2011.588871] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2011.590411] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2011.591957] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:16:42 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000000)='memory.pressure\x00', 0x2, 0x0)
fsetxattr$security_ima(r1, &(0x7f00000000c0), &(0x7f0000000080)=@md5={0x1, "106600"}, 0x11, 0x2)
ioctl$RTC_AIE_ON(r0, 0x7001)

00:16:42 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
r1 = accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040))
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0', [{0x20, '\''}], 0xa, "47c198893c4d5625b2d3da96584ebf9d1a0bbe9a17f9354eb64582d6657b82d3f869cb74a0e8f9e55cd03e520b0f7b017503ebcdd20378a121a782e1122b1ae0cd3bf1e79bb227c3d4e523830975f40147b338c30c4a3da5af4bfc4e740f5f2ca68b75974ec15b3301698b2fb7"}, 0x7a)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

[ 2011.616073] loop0: detected capacity change from 0 to 11264
[ 2011.631740] EXT4-fs (loop0): bad geometry: block count 256 exceeds size of device (11 blocks)
00:16:42 executing program 7:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

00:16:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x0, 0x0, 0x1000003, &(0x7f00000003c0)=ANY=[])

00:16:42 executing program 7:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

00:16:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x0, 0x0, 0x1000003, &(0x7f00000003c0)=ANY=[])

00:16:58 executing program 7:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

00:16:58 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 54)

00:16:58 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0182101, &(0x7f00000000c0))

[ 2028.152093] kauditd_printk_skb: 17 callbacks suppressed
[ 2028.152113] audit: type=1326 audit(1747095418.930:1060): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:58 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x0, 0x0, 0x1000003, &(0x7f00000003c0)=ANY=[])

00:16:58 executing program 5:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000000)='memory.pressure\x00', 0x2, 0x0)
fsetxattr$security_ima(r1, &(0x7f00000000c0), &(0x7f0000000080)=@md5={0x1, "106600"}, 0x11, 0x2)
ioctl$RTC_AIE_ON(r0, 0x7001)

00:16:58 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x47e2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ftruncate(r0, 0x1000003)
dup2(r0, r1)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0)
ioctl$SNAPSHOT_PLATFORM_SUPPORT(r2, 0x330f, 0x3)
r3 = socket$netlink(0x10, 0x3, 0x0)
dup2(r3, r2)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000340)={'wlan0\x00'})
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x3, 0x0, 0x800000, 0x8})
fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2, 0x14, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$binfmt_script(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="2321202e2f66696c65302069736f39363630002073656375726974792e636170a3a193337876994074620f635eac3efa8ed49fab22d831e4c0c6507fdae851da3b3bf487b56264b92e8b0192591c071ece6aa0deeb52320d423e9c684d349b7f2a0d54ed0d4ee6f2807e"], 0x7a)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, &(0x7f0000000100)={0x2, 0x4})
sendmsg$NL80211_CMD_SET_PMKSA(r1, &(0x7f0000000300)={&(0x7f0000000140), 0xc, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="020029bd7000fe95a4653d647f2cf2646f2c40dbdf25340000000c0099000900000031e9000008001f01000000001600340066250be570288215a025b709ff40d6c7721800000a0006003e784b8f6cf9000014005500327d55294d867d5ff2ef36eb8eece10baf181081665b3ee89917c11aa32fdae52f2945ae6c99357052c6edb08d4dc877ccde84eb19881c467011d79c166776d90259ffcd9a26055d20b27b8c4e05cedda658fd10"], 0x60}, 0x1, 0x0, 0x0, 0x20080}, 0x24004000)

00:16:58 executing program 6:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
r0 = creat(&(0x7f0000000240)='\x00', 0xc3)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)={<r1=>0x0})
setsockopt$IP_VS_SO_SET_STOPDAEMON(r0, 0x0, 0x48c, &(0x7f0000000280)={0x1, 'netdevsim0\x00', 0x1}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r2, 0x401070c9, 0x0)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x301, 0x0)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
ioctl$BTRFS_IOC_BALANCE_CTL(r4, 0x40049421, 0x3)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f0000000180)={0x0, {}, 0x0, {}, 0x82, 0x0, 0x1011, 0x8, "5f736ad2f0aa9472c75be79cccc4a68e2741cf5a86c8c47f6423e8f51294c4fc3eb9a306e5936e9636a658a04b7008cc5659cacff04ad314c81e453d3c72dd47", "ee257a077fc809a19edb03497e7f2fe9477669c3fda3ef82865ccc90108b6832", [0x400]})
ioctl$SNAPSHOT_FREE(r2, 0x3305)
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r2, 0x40082102, &(0x7f0000000040)=r1)

00:16:58 executing program 4:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
epoll_wait(r0, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}], 0x6, 0x7)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000340)={0x8, [], 0x5, "b53acec1810ff0"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={<r1=>0x0, ""/256, <r2=>0x0, <r3=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x7, [{}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}], 0x4, "9755154351ac9a"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f000005a100)={{<r4=>0x0, 0x6, 0xb1, 0x5, 0x24c, 0x1f, 0x7b66, 0x6, 0x7, 0x10001, 0x100, 0x9, 0xfffffffffffffffa, 0x7, 0x400}, 0x50, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='attr\x00')
r6 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00')
renameat(r6, &(0x7f0000000080)='./mnt\x00', r5, &(0x7f00000001c0)='./mnt\x00')
r7 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = pidfd_getfd(0xffffffffffffffff, r7, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, &(0x7f0000002e00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {<r9=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r10=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r11=>0x0}, {}, {}, {}, {}, {}, {0x0, <r12=>0x0}], 0xd4, "544d056968f26f"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000001540)={0x0, ""/256, 0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r8, 0xd000943d, &(0x7f0000000340)={0x8, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r11}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {0x0, r12}], 0x5, "b53acec1810ff0"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f000005a1c0)={{<r14=>0x0, 0x1000, 0x5, 0x4, 0xed, 0x20, 0x800, 0x1, 0x33e59b88, 0x2100000, 0x6, 0xb4, 0x0, 0x4, 0x8000}, 0x40, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005a280)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {r4}, {0x0, r13}, {r14}], 0x0, "423a27d5182f86"})
r15 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r15, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

[ 2028.184574] audit: type=1326 audit(1747095418.930:1061): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:58 executing program 5:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000000)='memory.pressure\x00', 0x2, 0x0)
fsetxattr$security_ima(r1, &(0x7f00000000c0), &(0x7f0000000080)=@md5={0x1, "106600"}, 0x11, 0x2)
ioctl$RTC_AIE_ON(r0, 0x7001)

[ 2028.202377] audit: type=1326 audit(1747095418.930:1062): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2028.202676] FAULT_INJECTION: forcing a failure.
[ 2028.202676] name failslab, interval 1, probability 0, space 0, times 0
[ 2028.209132] CPU: 1 PID: 12893 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2028.209992] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2028.211043] Call Trace:
[ 2028.211379]  dump_stack+0x107/0x167
[ 2028.211832]  should_fail.cold+0x5/0xa
[ 2028.212308]  ? __kmem_cache_create+0x10e/0x520
[ 2028.212886]  should_failslab+0x5/0x20
[ 2028.213358]  kmem_cache_alloc_node+0x55/0x330
[ 2028.213920]  __kmem_cache_create+0x10e/0x520
[ 2028.214479]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2028.215105]  p9_client_create+0xc6a/0x1230
[ 2028.215652]  ? p9_client_flush+0x430/0x430
[ 2028.216177]  ? trace_hardirqs_on+0x5b/0x180
[ 2028.216718]  ? lockdep_init_map_type+0x2c7/0x780
[ 2028.217302]  ? __raw_spin_lock_init+0x36/0x110
[ 2028.217872]  v9fs_session_init+0x1dd/0x1680
[ 2028.218407]  ? lock_release+0x680/0x680
[ 2028.218904]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2028.219506]  ? v9fs_show_options+0x690/0x690
[ 2028.220050]  ? trace_hardirqs_on+0x5b/0x180
[ 2028.220633]  ? kasan_unpoison_shadow+0x33/0x50
[ 2028.221272]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2028.221889]  v9fs_mount+0x79/0x8f0
[ 2028.222319]  ? v9fs_write_inode+0x60/0x60
[ 2028.222824]  legacy_get_tree+0x105/0x220
[ 2028.223321]  vfs_get_tree+0x8e/0x300
[ 2028.223773]  path_mount+0x1429/0x2120
[ 2028.224241]  ? strncpy_from_user+0x9e/0x470
[ 2028.224787]  ? finish_automount+0xa90/0xa90
[ 2028.225315]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2028.225887]  ? _copy_from_user+0xfb/0x1b0
[ 2028.226398]  __x64_sys_mount+0x282/0x300
[ 2028.226898]  ? copy_mnt_ns+0xa00/0xa00
[ 2028.227312] audit: type=1326 audit(1747095418.930:1063): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2028.227383]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2028.232651]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2028.233279]  do_syscall_64+0x33/0x40
[ 2028.233734]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2028.234359] RIP: 0033:0x7f543d208b19
[ 2028.234812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2028.237064] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2028.238008] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2028.238879] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2028.239759] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2028.240640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2028.241508] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 2028.242437] kmem_cache_create(9p-fcall-cache-151) failed with error -22
[ 2028.243272] CPU: 1 PID: 12893 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2028.244110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2028.245120] Call Trace:
[ 2028.245439]  dump_stack+0x107/0x167
[ 2028.245888]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2028.246536]  p9_client_create+0xc6a/0x1230
[ 2028.247056]  ? p9_client_flush+0x430/0x430
[ 2028.247377] audit: type=1326 audit(1747095418.930:1064): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2028.247572]  ? trace_hardirqs_on+0x5b/0x180
[ 2028.252674]  ? lockdep_init_map_type+0x2c7/0x780
[ 2028.253243]  ? __raw_spin_lock_init+0x36/0x110
[ 2028.253793]  v9fs_session_init+0x1dd/0x1680
[ 2028.254323]  ? lock_release+0x680/0x680
[ 2028.254810]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2028.255395]  ? v9fs_show_options+0x690/0x690
[ 2028.255936]  ? trace_hardirqs_on+0x5b/0x180
[ 2028.256455]  ? kasan_unpoison_shadow+0x33/0x50
[ 2028.257004]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2028.257609]  v9fs_mount+0x79/0x8f0
[ 2028.258036]  ? v9fs_write_inode+0x60/0x60
[ 2028.258539]  legacy_get_tree+0x105/0x220
[ 2028.259027]  vfs_get_tree+0x8e/0x300
[ 2028.259478]  path_mount+0x1429/0x2120
[ 2028.259937]  ? strncpy_from_user+0x9e/0x470
[ 2028.260470]  ? finish_automount+0xa90/0xa90
[ 2028.260992]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2028.261560]  ? _copy_from_user+0xfb/0x1b0
[ 2028.262060]  __x64_sys_mount+0x282/0x300
[ 2028.262553]  ? copy_mnt_ns+0xa00/0xa00
[ 2028.263024]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2028.263661]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2028.264280]  do_syscall_64+0x33/0x40
[ 2028.264741]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2028.265353] RIP: 0033:0x7f543d208b19
[ 2028.265492] audit: type=1326 audit(1747095418.931:1065): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2028.265815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2028.265821] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2028.265839] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2028.274293] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2028.275151] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2028.275995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2028.276858] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:16:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x5, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}, {&(0x7f0000000400)="7f7ee91b315c51921c9b1f0db6094e39ffa136bb4bbbc18d808b13d488201b9e3edfc1c738028845ff0d37a9f71fa51b7cec6738bcf1b2447029c3125a80cd6720312be427774b1ad8fc75d55424895090953ae3613d5b369f38ca3259670ea71a88fe2cd28cbdca59d9a8123576cb553c41529364975aec6f22547d551bbf30831e9ee16e75e0ae53b468b91f3bf5a794fcd1da8963781b2b6d7bfa2ad9bb2ab4effc5c06a3fd61c3528f960ffe4b4a935f2eb59a9780", 0xb7}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:16:59 executing program 7:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

[ 2028.283563] audit: type=1326 audit(1747095418.931:1066): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:59 executing program 6:
ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000040)=<r0=>0x0)
ioctl$BTRFS_IOC_WAIT_SYNC(0xffffffffffffffff, 0x40089416, &(0x7f0000000180)=r0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x8, 0x0, 0x0, 0x7ffc0000}]})
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r2, {0x0, 0x3}}, './file0\x00'})
sendfile(r1, r2, &(0x7f0000000140)=0x5766, 0x6)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000000c0))

[ 2028.330415] audit: type=1326 audit(1747095418.936:1067): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2028.357699] audit: type=1326 audit(1747095418.936:1068): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:16:59 executing program 5:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000000)='memory.pressure\x00', 0x2, 0x0)
fsetxattr$security_ima(r1, &(0x7f00000000c0), &(0x7f0000000080)=@md5={0x1, "106600"}, 0x11, 0x2)
ioctl$RTC_AIE_ON(r0, 0x7001)

00:16:59 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0182101, &(0x7f00000000c0))

00:16:59 executing program 4:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r2, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r2, 0x3305)
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x9, 0x0, 0x2, 0x10, 0xffffffff, 0x7ff, 0x4, 0x10000097})

[ 2028.383216] audit: type=1326 audit(1747095418.937:1069): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12888 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2028.397151] loop0: detected capacity change from 0 to 262144
00:16:59 executing program 7:
perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

[ 2028.464509] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
00:17:12 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
openat(0xffffffffffffffff, &(0x7f0000000100)='./file0/file0\x00', 0x911802, 0x140)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0)
r2 = openat$hpet(0xffffffffffffff9c, 0x0, 0x80000, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={<r3=>0x0, ""/256, <r4=>0x0, <r5=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={<r6=>0x0, <r7=>0x0, "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", "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"})
r8 = mq_open(&(0x7f0000001200)='G\x9d\xbb\x8a\\\x18\xd1\x04\x80\xd6\xea\xb0D\x83\xe8By\xb0\x1b4P\x1c^\x11\x01\x04\x00\x00\x97l', 0xc1, 0x15a, 0x0)
flistxattr(r8, &(0x7f0000001140)=""/76, 0x4c)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x7, [{}, {}, {0x0, r5}, {}, {}, {0x0, <r9=>0x0}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r10=>0x0}, {}, {}, {}, {}, {}, {<r11=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3, <r12=>0x0}, {<r13=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r14=>0x0}, {<r15=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}, {}, {}, {}, {}, {}, {}, {}, {}, {<r16=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r17=>0x0}, {0x0, r5}, {0x0, r6}, {}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r18=>r6}, {0x0, <r19=>0x0}, {}, {}, {}, {}, {}, {0x0, <r20=>0x0}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r21=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {<r22=>0x0}, {}, {}, {0x0, r6}, {}, {}, {r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r23=>0x0}, {}, {}, {0x0, r5}, {}, {0x0, <r24=>0x0}, {0x0, <r25=>0x0}, {}, {}, {0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {<r26=>0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r27=>0x0}, {}, {r4}], 0x4, "9755154351ac9a"})
mount$bind(&(0x7f0000001240)='./file0/file0\x00', &(0x7f0000001280)='./file0\x00', &(0x7f00000012c0), 0x1080420, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000013c0)={0x0, ""/256, <r28=>0x0})
openat(0xffffffffffffffff, &(0x7f0000001340)='./file0/file0\x00', 0x14000, 0x1)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f00000015c0)=ANY=[@ANYBLOB="121911b86de3b84ddb581d966a9f30caa75142dee7a5f98b25a1330bbf11bca22ca17021559d2aab2583bd5e4908acfd84c0f86b458af1638cc2c9304cc4a13de23a9d8672667aba84cf5e010645d5b4cfffc9f92cee61764e90106c75a8c9dc3f0000000054a4907d41e550bb0cec39f2adce0c6d70e8deb88eff7ac199b76f21d718937259259e2bffe31eb2b636251d37c1d9fd8c8120e97c98c2fb8d8c2b75627c44640fdfec4b38bd9270f0531ea809b1115431f78137f0472dd7a12f096ded84216ca302650af000710e5da3c9a81b546e3742a62eeef289b904de0880d18acb5e78f02d49215802000000000000", @ANYRES32=r0, @ANYBLOB="07000000030000002e2f66696c65302f66696c653000"])
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000140)={0x0, [{}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r22}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r24}, {}, {}, {}, {}, {r15}, {}, {0x0, r20}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r19}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r16}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r13}, {}, {}, {r17}, {}, {}, {}, {}, {}, {}, {}, {r28}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r23}, {}, {r26}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r27}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r14}, {}, {}, {}, {}, {0x0, r18}, {}, {0x0, r21}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r25}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r12}], 0x7f, "9656c75f04ba4d"})
lseek(r1, 0x0, 0x2)
r29 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
copy_file_range(r29, 0x0, r1, 0x0, 0x200f5ef, 0x0)

00:17:12 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r1, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r1, 0x3305)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000140))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

[ 2041.858962] kauditd_printk_skb: 40 callbacks suppressed
[ 2041.858974] audit: type=1326 audit(1747095432.635:1110): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12933 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2041.867892] audit: type=1326 audit(1747095432.635:1111): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12933 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2041.881952] audit: type=1326 audit(1747095432.650:1112): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12937 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2041.893548] audit: type=1326 audit(1747095432.650:1113): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12937 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2041.899896] audit: type=1326 audit(1747095432.650:1114): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12937 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
00:17:12 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0182101, &(0x7f00000000c0))

00:17:12 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 55)

00:17:12 executing program 7:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

00:17:12 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x4, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:17:12 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x2, 0x7ff})
ioctl$RTC_AIE_ON(r0, 0x7001)
r1 = accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x800)
dup(r1)

00:17:12 executing program 5:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000500))
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4307, 0x9000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x7, 0x2000000000, 0x2}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0)
write(0xffffffffffffffff, &(0x7f0000000000)="6c917d5068143eb537a96c21228cd247", 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
lseek(r1, 0x800, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x2)
r3 = inotify_init1(0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r4 = socket$netlink(0x10, 0x3, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000140)='./file1/file0\x00', &(0x7f0000000180), 0x800)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000007c0)=ANY=[@ANYRESDEC=r2, @ANYRES32, @ANYRES32=0x0, @ANYRESDEC, @ANYBLOB="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"])
r5 = fcntl$dupfd(r4, 0x0, r4)
lseek(r0, 0x4202, 0x3)
sendmmsg$inet6(r5, &(0x7f0000003dc0)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000000c0)='6', 0x1}], 0x1}}, {{&(0x7f00000002c0)={0xa, 0x0, 0x0, @local}, 0x1c, &(0x7f0000001b00)=[{&(0x7f0000000780)='7', 0x1}], 0x1}}], 0x2, 0x0)
inotify_add_watch(r3, &(0x7f0000000040)='.\x00', 0x2000003)
sendfile(r1, r2, 0x0, 0x100000001)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000080))
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)

00:17:12 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, 0x0)

[ 2041.916249] audit: type=1326 audit(1747095432.651:1115): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12933 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2041.916934] loop0: detected capacity change from 0 to 262144
[ 2041.926979] audit: type=1326 audit(1747095432.651:1116): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12933 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2041.940742] audit: type=1326 audit(1747095432.660:1117): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12933 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2041.943681] FAULT_INJECTION: forcing a failure.
[ 2041.943681] name failslab, interval 1, probability 0, space 0, times 0
[ 2041.946218] CPU: 0 PID: 12951 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2041.947940] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2041.949724] Call Trace:
[ 2041.950291]  dump_stack+0x107/0x167
[ 2041.951087]  should_fail.cold+0x5/0xa
[ 2041.951899]  ? create_object.isra.0+0x3a/0xa20
[ 2041.952892]  should_failslab+0x5/0x20
[ 2041.953712]  kmem_cache_alloc+0x5b/0x310
[ 2041.954585]  create_object.isra.0+0x3a/0xa20
[ 2041.955534]  kmemleak_alloc_percpu+0xa0/0x100
[ 2041.956504]  pcpu_alloc+0x4e2/0x1240
[ 2041.957337]  __kmem_cache_create+0x35a/0x520
[ 2041.958282]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2041.959354]  p9_client_create+0xc6a/0x1230
[ 2041.960274]  ? p9_client_flush+0x430/0x430
[ 2041.961201]  ? trace_hardirqs_on+0x5b/0x180
[ 2041.962120]  ? lockdep_init_map_type+0x2c7/0x780
[ 2041.963131]  ? __raw_spin_lock_init+0x36/0x110
[ 2041.964108]  v9fs_session_init+0x1dd/0x1680
[ 2041.965047]  ? lock_release+0x680/0x680
[ 2041.965905]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2041.966937]  ? v9fs_show_options+0x690/0x690
[ 2041.967892]  ? trace_hardirqs_on+0x5b/0x180
[ 2041.968829]  ? kasan_unpoison_shadow+0x33/0x50
[ 2041.969801]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2041.970883]  v9fs_mount+0x79/0x8f0
[ 2041.971638]  ? v9fs_write_inode+0x60/0x60
[ 2041.972527]  legacy_get_tree+0x105/0x220
[ 2041.973408]  vfs_get_tree+0x8e/0x300
[ 2041.974199]  path_mount+0x1429/0x2120
[ 2041.975012]  ? strncpy_from_user+0x9e/0x470
[ 2041.975935]  ? finish_automount+0xa90/0xa90
[ 2041.976862]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2041.977851]  ? _copy_from_user+0xfb/0x1b0
[ 2041.978740]  __x64_sys_mount+0x282/0x300
[ 2041.979608]  ? copy_mnt_ns+0xa00/0xa00
[ 2041.980439]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2041.981563]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2041.982670]  do_syscall_64+0x33/0x40
[ 2041.983476]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2041.984590] RIP: 0033:0x7f543d208b19
[ 2041.985477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2041.989691] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2041.991655] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2041.993264] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2041.994866] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2041.996480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2041.998094] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 2042.006666] audit: type=1326 audit(1747095432.660:1118): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12933 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2042.018737] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[ 2042.023896] audit: type=1326 audit(1747095432.660:1119): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=12933 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:17:12 executing program 4:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x181400, 0x0)
sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x0, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x24000014)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = syz_open_dev$mouse(&(0x7f00000001c0), 0x100, 0x2400)
ioctl$RTC_EPOCH_SET(r2, 0x4008700e, 0x8)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:17:12 executing program 5:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000100)={@multicast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "96153f", 0x20, 0x2c, 0x0, @dev, @mcast2, {[@routing={0x6, 0x0, 0x0, 0x3}], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @local}}}}}}, 0x0)
syz_emit_ethernet(0x1e, &(0x7f0000000000)={@empty, @remote, @void, {@can={0xc, {{0x2, 0x1, 0x1}, 0x1, 0x0, 0x0, 0x0, "de372a8096344dc9"}}}}, 0x0)

00:17:12 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}], 0x1000003, &(0x7f00000003c0)=ANY=[])

[ 2042.080382] loop0: detected capacity change from 0 to 262144
00:17:12 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x8001, 0x189040)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f00000000c0)={0x5, 0x31, 0x0, 0x11, 0xa, 0x428, 0x3, 0x160, 0x1})
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})

00:17:12 executing program 3:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000540)='./file0\x00', 0x1, 0x4, &(0x7f00000004c0)=[{&(0x7f0000000140)="129d8a23b00573ec297fee3670b6fc9309a17ba5b695b15803c1fccf69db2020202ce42fa69dd057f23b675b7fb43520a5cfa0ed32fecade70786ae0d46746006bb45d3a97a4c8bf6e1c01b2eb3ba22b9f24f340d0bd50dc4578f758e9b4441dbabe64e2a3a1b7beda1710b75a71e3e3ab358134ffcd2b0ab85f6716760477b7687793364ad3bc7eab6dadeabf72802c0fda15ebe6d9409123e4fc1c8fbad5b992107aa546c863cd0cadd8660f33e97c16ad50f3ce74482c8996931384d2c25e18f6570f4b04fe147adf940adcb8f655725f01e003d85922eb1fd3f6", 0xdc, 0xffffffffffffffe1}, {&(0x7f0000000240)="5626521474c0f52033e7fde5cf83f3c5d70c0a7cd6dda90fc1744282249e2bb6b46b553869668b0f536a3e2df2930ea0ce44474255191ae7a683dea373c3b3b0e15136fbb5799b25f8ee5f0e300074b8120356df8c066c9df0ddd485c977c20029cb114c94251eb4308b31619f88dc59", 0x70, 0xfb5}, {&(0x7f0000000300)="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", 0xfb, 0x5}, {&(0x7f0000000580)="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", 0x194, 0x1}], 0xc0000, &(0x7f0000000240)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xea202, 0x0)
write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10)
r2 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x5, 0x50, r2, 0x8000000)
syz_io_uring_setup(0x3, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000540)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x6003, @fd_index=0x4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r3, r5, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x5)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYRESHEX], 0xfdef)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000001}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, r1, 0x0, 0x100000001)

[ 2042.098458] EXT4-fs error (device loop0): ext4_fill_super:4967: inode #2: comm syz-executor.0: iget: special inode unallocated
[ 2042.101178] EXT4-fs (loop0): get root inode failed
[ 2042.101751] EXT4-fs (loop0): mount failed
00:17:12 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 56)

[ 2042.137714] FAULT_INJECTION: forcing a failure.
[ 2042.137714] name failslab, interval 1, probability 0, space 0, times 0
[ 2042.139056] CPU: 1 PID: 12971 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2042.139846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2042.140795] Call Trace:
[ 2042.141099]  dump_stack+0x107/0x167
[ 2042.141516]  should_fail.cold+0x5/0xa
[ 2042.141950]  ? create_object.isra.0+0x3a/0xa20
[ 2042.142469]  should_failslab+0x5/0x20
[ 2042.142901]  kmem_cache_alloc+0x5b/0x310
[ 2042.143369]  ? mark_held_locks+0x9e/0xe0
[ 2042.143839]  create_object.isra.0+0x3a/0xa20
[ 2042.144349]  kmemleak_alloc_percpu+0xa0/0x100
[ 2042.144870]  pcpu_alloc+0x4e2/0x1240
[ 2042.145305]  __kmem_cache_create+0x35a/0x520
[ 2042.145810]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2042.146389]  p9_client_create+0xc6a/0x1230
[ 2042.146877]  ? p9_client_flush+0x430/0x430
[ 2042.147361]  ? trace_hardirqs_on+0x5b/0x180
[ 2042.147858]  ? lockdep_init_map_type+0x2c7/0x780
[ 2042.148403]  ? __raw_spin_lock_init+0x36/0x110
[ 2042.148935]  v9fs_session_init+0x1dd/0x1680
[ 2042.149442]  ? lock_release+0x680/0x680
[ 2042.149915]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2042.150467]  ? v9fs_show_options+0x690/0x690
[ 2042.150980]  ? trace_hardirqs_on+0x5b/0x180
[ 2042.151479]  ? kasan_unpoison_shadow+0x33/0x50
[ 2042.152000]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2042.152590]  v9fs_mount+0x79/0x8f0
[ 2042.153006]  ? v9fs_write_inode+0x60/0x60
[ 2042.153479]  legacy_get_tree+0x105/0x220
[ 2042.153949]  vfs_get_tree+0x8e/0x300
[ 2042.154379]  path_mount+0x1429/0x2120
[ 2042.154821]  ? strncpy_from_user+0x9e/0x470
[ 2042.155329]  ? finish_automount+0xa90/0xa90
[ 2042.155828]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2042.156376]  ? _copy_from_user+0xfb/0x1b0
[ 2042.156872]  __x64_sys_mount+0x282/0x300
[ 2042.157350]  ? copy_mnt_ns+0xa00/0xa00
[ 2042.157803]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2042.158641]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2042.159396]  do_syscall_64+0x33/0x40
[ 2042.159825]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2042.160413] RIP: 0033:0x7f543d208b19
[ 2042.160844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2042.162946] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2042.163980] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2042.164916] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2042.165734] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2042.166544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2042.167366] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:17:12 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:17:12 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, 0x0)

[ 2042.198495] loop0: detected capacity change from 0 to 262144
00:17:12 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x6600c0, 0x9)
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f00000000c0)={0x6, 0x3b, 0x9, 0xc, 0x5, 0xff, 0x1, 0xc})

[ 2042.226216] EXT4-fs error (device loop0): ext4_fill_super:4967: inode #2: comm syz-executor.0: iget: special inode unallocated
[ 2042.228725] EXT4-fs (loop0): get root inode failed
[ 2042.229326] EXT4-fs (loop0): mount failed
00:17:13 executing program 5:
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r1, {0x0, 0x9}}, './file0\x00'})
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r2}, './file0\x00'})
r3 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000000480)={{0x1, 0x1, 0x18, r2, {r3}}, './file0\x00'})
sendmsg$802154_raw(r0, &(0x7f0000001100)={&(0x7f0000000040)={0x24, @none={0x0, 0x3}}, 0x14, &(0x7f0000001140)={&(0x7f0000001480)="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", 0x1000}, 0x1, 0x0, 0x0, 0x811}, 0x20000004)
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x40300, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, <r5=>r4}, './file0\x00'})
perf_event_open$cgroup(&(0x7f0000000140)={0x3, 0x80, 0x9, 0x1, 0x80, 0x1, 0x0, 0x1, 0x800, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xe6, 0x2, @perf_config_ext={0x100000001, 0x3}, 0x60, 0xffffffffffff8000, 0x4, 0x0, 0x1ac000000000000, 0x1, 0x6, 0x0, 0x20, 0x0, 0x448}, r5, 0x3, r5, 0xf)
pwritev2(0xffffffffffffffff, &(0x7f00000004c0), 0x0, 0x248, 0xca, 0x21)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bind$802154_dgram(r6, &(0x7f0000000100)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0302}}}, 0x14)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r7, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r7, 0x3305)
r8 = accept4(0xffffffffffffffff, &(0x7f0000000c80)=@in6={0xa, 0x0, 0x0, @remote}, &(0x7f0000000d00)=0x80, 0x80000)
connect$802154_dgram(r8, &(0x7f0000000d40)={0x24, @short={0x2, 0x1, 0xfffe}}, 0x14)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r4, 0x80089419, &(0x7f0000000000))

00:17:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:17:28 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 57)

00:17:28 executing program 7:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

00:17:28 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup3(r0, r1, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))

00:17:28 executing program 5:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x0, &(0x7f0000000180)='\xfa9\x01\\\xb7H\xbd\x9f\xbf\xd3\xdaE\x83\n\xf4I\xe6\xfa\x152G(*o\xc7+)\x81\x9c\xae\xae\xff\xcc\xe6\xa18\x1ep\x00s3m#\xaf\x06q\"tX\x91t\xb2\x19\xcdU$~\xe6\x0f\xc7\xfd2\x97\r\xfc\xbe$53~f\xf8\x8c\xd1\f\x18')
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x80)
unlink(&(0x7f0000000000)='./file0\x00')
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
recvmmsg$unix(r1, &(0x7f0000005340)=[{{&(0x7f0000000440), 0x6e, &(0x7f0000000a00)=[{&(0x7f0000000580)=""/197, 0xc5}, {&(0x7f00000004c0)=""/30, 0x1e}, {&(0x7f0000000680)=""/174, 0xae}, {&(0x7f0000000740)=""/41, 0x29}, {&(0x7f0000000780)=""/91, 0x5b}, {&(0x7f0000000800)=""/222, 0xde}, {&(0x7f0000000900)=""/23, 0x9}, {&(0x7f0000000940)=""/132, 0x84}], 0x8, &(0x7f0000000a80)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000000b00), 0x6e, &(0x7f0000000f00)=[{&(0x7f0000000b80)=""/203, 0xcb}, {&(0x7f0000000c80)=""/40, 0x28}, {&(0x7f0000000cc0)=""/222, 0xde}, {&(0x7f0000000dc0)=""/37, 0x25}, {&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f0000000e00)=""/215, 0xd7}], 0x6, &(0x7f0000000f80)}}, {{&(0x7f0000000fc0), 0x6e, &(0x7f0000001480)=[{&(0x7f0000001040)=""/101, 0x65}, {&(0x7f00000010c0)=""/115, 0x73}, {&(0x7f0000001140)=""/34, 0x22}, {&(0x7f0000001180)=""/63, 0x3f}, {&(0x7f00000011c0)=""/71, 0x47}, {&(0x7f0000001240)=""/168, 0xa8}, {&(0x7f0000002900)=""/4096, 0x1000}, {&(0x7f0000001300)=""/72, 0x48}, {&(0x7f0000001380)=""/38, 0x26}], 0x9, &(0x7f00000013c0)}}, {{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000001540)=""/225, 0xe1}, {&(0x7f0000001640)=""/179, 0xb3}], 0x2, &(0x7f0000001700)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xc8}}, {{&(0x7f0000003900), 0x6e, &(0x7f0000004c00)=[{&(0x7f0000003980)=""/97, 0x61}, {&(0x7f0000003a00)=""/102, 0x66}, {&(0x7f0000003a80)=""/108, 0x6c}, {&(0x7f0000003b00)=""/4, 0x4}, {&(0x7f0000003b40)=""/4096, 0x1000}, {&(0x7f0000004b40)=""/145, 0x91}], 0x6, &(0x7f0000004c80)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, <r2=>0x0}}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x140}}, {{&(0x7f0000004dc0), 0x6e, &(0x7f0000005200)=[{&(0x7f0000004e40)=""/221, 0x4e}, {&(0x7f0000004f40)=""/251, 0xfb}, {&(0x7f0000005040)=""/211, 0xd3}, {&(0x7f0000005140)=""/45, 0x2d}, {&(0x7f0000005180)=""/32, 0x20}, {&(0x7f00000051c0)=""/60, 0x3c}], 0x6, &(0x7f0000005280)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}}], 0x6, 0x10000, &(0x7f00000054c0)={0x77359400})
chown(&(0x7f0000000400)='./file1\x00', 0xffffffffffffffff, r2)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000300)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000005500)=ANY=[@ANYBLOB="0300db0018cef3c26bc97d70fb9a70552b7e361c14564902dc7ebf0f1ddf8537184f73a062bb0065bccdff5a4384821eb417f95f5c15e168e35a0efa51712c954ba9a3abe56d884840dbbdcb53d310109cd0d02a451528d6c670db30cdb36edbf5b22036738929da512b98993a353391f9c108764efe0efd06f8f9c1620c2101a3327d60a6a57e465fd96b823cbf84f3da51d0933c44abb4bc7483f153219604c7fa6af35c6a8648bf65ba498f1e13531b6e06d26bb624de25ad9dd1757ecbcc4b7998c19f3329cea211e86f27beb4f90d57b573d236a1ddf39e2df4f1d49fc8a096d28b"])
recvfrom$unix(r1, &(0x7f0000000200)=""/48, 0x30, 0x4, 0x0, 0x0)
syz_io_uring_setup(0x3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2c9}, &(0x7f0000ff6000/0x8000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000540)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000500)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x6003, @fd_index=0x4, 0x0, 0x0}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x30080, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r6, 0x4, &(0x7f0000000240)='&\x00', &(0x7f00000002c0)='./file0\x00', r1)
ioctl$LOOP_SET_STATUS(r6, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r6, 0x3305)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000080)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x3, 0x0, r6, 0x0, r0, 0x2, 0x0, 0x0, {0x0, r7}}, 0x101)

00:17:28 executing program 3:
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000000))
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1400001252640a1ecce5d4649a05000000000000000000000000000a2f0cad20817615cd8a24c3fd0d349cea951813bad4e6594401dcf231486032f791c59c5510ad2906005c96b3f1494d28bdf6"], 0x14}}, 0x0)
ioctl$FIOCLEX(r1, 0x5451)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r1)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000004c0)={0x114, 0x2, 0x2, 0x101, 0x0, 0x0, {0x5, 0x0, 0x2}, [@CTA_EXPECT_TUPLE={0x38, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @CTA_EXPECT_TUPLE={0xc8, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x94bf81ab9e7fb00f}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x1a}}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x20}}, {0x14, 0x4, @private1}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x34}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010100}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}]}]}, 0x114}, 0x1, 0x0, 0x0, 0x20008000}, 0x4040801)
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f00000002c0))
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00'})

00:17:28 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, 0x0)

00:17:28 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x1a, 0x0, 0xc, 0x10015, 0x3, 0x7ff})

[ 2057.628197] kauditd_printk_skb: 17 callbacks suppressed
[ 2057.628209] audit: type=1326 audit(1747095448.406:1137): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13001 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2057.639330] audit: type=1326 audit(1747095448.406:1138): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13001 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2057.645629] loop0: detected capacity change from 0 to 262144
[ 2057.652055] audit: type=1326 audit(1747095448.416:1139): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13001 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2057.657544] autofs4:pid:13018:autofs_fill_super: called with bogus options
[ 2057.664439] FAULT_INJECTION: forcing a failure.
[ 2057.664439] name failslab, interval 1, probability 0, space 0, times 0
[ 2057.665968] CPU: 1 PID: 13012 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2057.666897] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2057.667995] Call Trace:
[ 2057.668353]  dump_stack+0x107/0x167
[ 2057.668843]  should_fail.cold+0x5/0xa
[ 2057.669367]  should_failslab+0x5/0x20
[ 2057.669873]  __kmalloc_track_caller+0x79/0x370
[ 2057.670480]  ? kstrdup_const+0x53/0x80
[ 2057.671002]  kstrdup+0x36/0x70
[ 2057.671434]  kstrdup_const+0x53/0x80
[ 2057.671925]  kvasprintf_const+0x10c/0x1a0
[ 2057.672479]  kobject_set_name_vargs+0x56/0x150
[ 2057.673094]  kobject_init_and_add+0xc9/0x160
[ 2057.673686]  ? kobject_create_and_add+0xb0/0xb0
[ 2057.674303]  ? wait_for_completion_io+0x270/0x270
[ 2057.674946]  ? kernfs_name_hash+0xe7/0x110
[ 2057.675514]  ? kernfs_find_ns+0x256/0x380
[ 2057.676069]  sysfs_slab_add+0x172/0x200
[ 2057.676595]  __kmem_cache_create+0x3db/0x520
[ 2057.677188]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2057.677864]  p9_client_create+0xc6a/0x1230
[ 2057.678429]  ? p9_client_flush+0x430/0x430
[ 2057.678994]  ? trace_hardirqs_on+0x5b/0x180
[ 2057.679562]  ? lockdep_init_map_type+0x2c7/0x780
[ 2057.680198]  ? __raw_spin_lock_init+0x36/0x110
[ 2057.680809]  v9fs_session_init+0x1dd/0x1680
[ 2057.681395]  ? lock_release+0x680/0x680
[ 2057.681938]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2057.682453] audit: type=1326 audit(1747095448.416:1140): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13001 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2057.682583]  ? v9fs_show_options+0x690/0x690
[ 2057.687586]  ? trace_hardirqs_on+0x5b/0x180
[ 2057.687878] audit: type=1326 audit(1747095448.416:1141): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13001 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2057.688174]  ? kasan_unpoison_shadow+0x33/0x50
[ 2057.693189]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2057.693857]  v9fs_mount+0x79/0x8f0
[ 2057.694326]  ? v9fs_write_inode+0x60/0x60
[ 2057.694881]  legacy_get_tree+0x105/0x220
[ 2057.695414]  vfs_get_tree+0x8e/0x300
[ 2057.695906]  path_mount+0x1429/0x2120
[ 2057.696419]  ? strncpy_from_user+0x9e/0x470
[ 2057.696991]  ? finish_automount+0xa90/0xa90
[ 2057.697563]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2057.698182]  ? _copy_from_user+0xfb/0x1b0
[ 2057.698741]  __x64_sys_mount+0x282/0x300
[ 2057.699274]  ? copy_mnt_ns+0xa00/0xa00
[ 2057.699689] audit: type=1326 audit(1747095448.417:1142): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13001 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
[ 2057.699796]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2057.699808]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2057.699822]  do_syscall_64+0x33/0x40
[ 2057.699843]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2057.706724] RIP: 0033:0x7f543d208b19
[ 2057.707233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2057.707865] audit: type=1326 audit(1747095448.429:1143): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13009 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2057.709661] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2057.709675] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2057.709683] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2057.709690] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2057.709696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2057.709703] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 2057.710360] kobject: can not set name properly!
[ 2057.717944] audit: type=1326 audit(1747095448.429:1144): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13009 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2057.718093] kmem_cache_create(9p-fcall-cache-154) failed with error -12
[ 2057.720967] audit: type=1326 audit(1747095448.435:1145): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13009 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2057.721114] CPU: 1 PID: 13012 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2057.728946] audit: type=1326 audit(1747095448.435:1146): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13009 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2057.729127] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2057.729131] Call Trace:
[ 2057.729143]  dump_stack+0x107/0x167
[ 2057.729159]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2057.729178]  p9_client_create+0xc6a/0x1230
[ 2057.736422]  ? p9_client_flush+0x430/0x430
[ 2057.736982]  ? trace_hardirqs_on+0x5b/0x180
[ 2057.737547]  ? lockdep_init_map_type+0x2c7/0x780
[ 2057.738161]  ? __raw_spin_lock_init+0x36/0x110
[ 2057.738746]  v9fs_session_init+0x1dd/0x1680
[ 2057.739302]  ? lock_release+0x680/0x680
[ 2057.739816]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2057.740454]  ? v9fs_show_options+0x690/0x690
[ 2057.741039]  ? trace_hardirqs_on+0x5b/0x180
[ 2057.741602]  ? kasan_unpoison_shadow+0x33/0x50
[ 2057.742204]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2057.742854]  v9fs_mount+0x79/0x8f0
[ 2057.743319]  ? v9fs_write_inode+0x60/0x60
[ 2057.743867]  legacy_get_tree+0x105/0x220
[ 2057.744388]  vfs_get_tree+0x8e/0x300
[ 2057.744869]  path_mount+0x1429/0x2120
[ 2057.745380]  ? strncpy_from_user+0x9e/0x470
[ 2057.745938]  ? finish_automount+0xa90/0xa90
[ 2057.746502]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2057.747096]  ? _copy_from_user+0xfb/0x1b0
[ 2057.747640]  __x64_sys_mount+0x282/0x300
[ 2057.748172]  ? copy_mnt_ns+0xa00/0xa00
[ 2057.748683]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2057.749372]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2057.750061]  do_syscall_64+0x33/0x40
[ 2057.750538]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2057.751190] RIP: 0033:0x7f543d208b19
[ 2057.751680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2057.754050] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2057.755012] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2057.755929] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2057.756846] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2057.757772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2057.758690] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 2057.762098] EXT4-fs error (device loop0): ext4_fill_super:4967: inode #2: comm syz-executor.0: iget: special inode unallocated
00:17:28 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f00000000c0)={0x24, 0x2a, 0xf, 0xf, 0x1, 0x101, 0x2, 0x39})

[ 2057.773616] EXT4-fs (loop0): get root inode failed
[ 2057.774857] EXT4-fs (loop0): mount failed
00:17:28 executing program 3:
sendmsg$BATADV_CMD_GET_NEIGHBORS(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/netstat\x00')
perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x7, 0x1, 0x6, 0x89, 0x0, 0x7, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0xc}, 0xa2, 0x6351, 0x7, 0x9, 0x8001, 0x0, 0x2, 0x0, 0xbe5, 0x0, 0x9}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0x1)
pread64(r0, &(0x7f00000001c0)=""/119, 0x77, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x3c)
socket(0x10, 0x5, 0xff)

00:17:28 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0)) (fail_nth: 1)

[ 2057.827522] autofs4:pid:13018:autofs_fill_super: called with bogus options
00:17:28 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0182101, &(0x7f00000000c0))

00:17:28 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x4, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {0x0, 0x0, 0x1600}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:17:28 executing program 4:
openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x151400, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$RTC_UIE_ON(r0, 0x7003)

00:17:28 executing program 5:
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
stat(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000340)={[{@release_agent={'release_agent', 0x3d, './file0'}}, {@release_agent={'release_agent', 0x3d, './file0/file0'}}], [{@smackfsroot={'smackfsroot', 0x3d, 'cgroup\x00'}}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@uid_lt={'uid<', r0}}, {@fsuuid={'fsuuid', 0x3d, {[0x37, 0x63, 0x64, 0x66, 0x32, 0x30, 0x36, 0x64], 0x2d, [0x62, 0x31, 0x37, 0x63], 0x2d, [0x36, 0x34, 0x38, 0x35], 0x2d, [0x36, 0x33, 0x38, 0x37], 0x2d, [0x37, 0x31, 0x35, 0x62, 0x64, 0x64, 0x31, 0x61]}}}, {@permit_directio}, {@subj_type}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@uid_gt={'uid>', r0}}]})

[ 2057.925953] loop0: detected capacity change from 0 to 262144
[ 2057.944955] EXT4-fs error (device loop0): ext4_fill_super:4967: inode #2: comm syz-executor.0: iget: special inode unallocated
[ 2057.946555] EXT4-fs (loop0): get root inode failed
[ 2057.947174] EXT4-fs (loop0): mount failed
00:17:28 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 58)

00:17:28 executing program 3:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x3a7b, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000740)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000700)={&(0x7f0000000380)=@ll={0x11, 0x1a, 0x0, 0x1, 0x9, 0x6, @local}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000500)="07257ca05e1f01cebd8e9291d617749fccadb8718e6c166ba43e7a2ed8ef5acd4aa6cf08a3ab5777f7363cb619422c68fca91199656f26c9a39835e298dabd0b37597bffed3558c46afc3a8f45adc0e79b54e267299524d827a8b48f52aa77cf9976784b780c7d234f3350e87ae0445fa57e3150e389217386a168f489adffc06c66f87bfc5bbec120719c99ccd8d4e3f691d3fa8ac7a603c8cb014670eea9b6fbb20e05adf8ea727236f2667252f53c93f5bd547c13859ac0fc", 0xba}, {&(0x7f00000005c0)="dd7a10bf69199439de7aa9e810cfa4ca53ea9f9eb23c1671c5d1cc67497c9a75d3cd3b1e168175028015aa252546d185edd4f7ab36a7ec8d46684805803053329680ced4fe4b4136eed39b56652441fbc3dbb7cc3708f94ff8089d8e2044e2c0bd6801eefb24a5ec1fbaccdced02798baf6c8acea9fa66237e774ff190fef6c6ff779a4a99ed55781e4f0c31709919c645144c89c587fd19f5bc905fbe7d9aee5deb80a16f3dc84ae681e3e7314cf50591c3129f17557d72", 0xb8}, {&(0x7f0000000680)="5cd0245a15fb0159bf5625e7f31d68d636e73ea999e3f794108ef34a9771e7c93a2a1e8f95b512a982eafc819b66e164fc3a01e39145cd0ad430674981449b186e860a984ee9c02fb3802bd05fc75d3e82a07bd25f8ffbcc0cf582a946f2ed302b5b6cbb9465b3f81a0077", 0x6b}], 0x3}, 0x0, 0x1}, 0xfffffffe)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000004, 0x10010, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x242e2, 0x0)
copy_file_range(0xffffffffffffffff, &(0x7f0000000180), 0xffffffffffffffff, &(0x7f0000000280)=0x800, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x800, 0xe0)
flock(r3, 0x1)
accept$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000140)=0x1c)
clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100)
pidfd_open(0x0, 0x0)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='oom_adj\x00')
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2800)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r7=>r5, {0x1000}}, './file0\x00'})
close_range(r6, r7, 0x0)
write$cgroup_int(r5, &(0x7f0000000040), 0x12)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000008, 0x10, 0xffffffffffffffff, 0x0)

[ 2058.005658] cgroup: release_agent respecified
[ 2058.017426] FAULT_INJECTION: forcing a failure.
[ 2058.017426] name failslab, interval 1, probability 0, space 0, times 0
[ 2058.019901] CPU: 0 PID: 13044 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2058.021392] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2058.023176] Call Trace:
[ 2058.023748]  dump_stack+0x107/0x167
[ 2058.024540]  should_fail.cold+0x5/0xa
[ 2058.025377]  should_failslab+0x5/0x20
[ 2058.026198]  __kmalloc_track_caller+0x79/0x370
[ 2058.027167]  ? kstrdup_const+0x53/0x80
[ 2058.028003]  kstrdup+0x36/0x70
[ 2058.028688]  kstrdup_const+0x53/0x80
[ 2058.029490]  kvasprintf_const+0x10c/0x1a0
[ 2058.030375]  kobject_set_name_vargs+0x56/0x150
[ 2058.031356]  kobject_init_and_add+0xc9/0x160
[ 2058.032290]  ? kobject_create_and_add+0xb0/0xb0
[ 2058.033289]  ? wait_for_completion_io+0x270/0x270
[ 2058.034312]  ? kernfs_name_hash+0xe7/0x110
[ 2058.035217]  ? kernfs_find_ns+0x256/0x380
[ 2058.036110]  sysfs_slab_add+0x172/0x200
[ 2058.036969]  __kmem_cache_create+0x3db/0x520
[ 2058.037908]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2058.038984]  p9_client_create+0xc6a/0x1230
[ 2058.039895]  ? p9_client_flush+0x430/0x430
[ 2058.040800]  ? trace_hardirqs_on+0x5b/0x180
[ 2058.041737]  ? lockdep_init_map_type+0x2c7/0x780
[ 2058.042748]  ? __raw_spin_lock_init+0x36/0x110
[ 2058.043723]  v9fs_session_init+0x1dd/0x1680
[ 2058.044644]  ? lock_release+0x680/0x680
[ 2058.045505]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2058.046528]  ? v9fs_show_options+0x690/0x690
[ 2058.047470]  ? trace_hardirqs_on+0x5b/0x180
[ 2058.048390]  ? kasan_unpoison_shadow+0x33/0x50
[ 2058.049367]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2058.050447]  v9fs_mount+0x79/0x8f0
[ 2058.051210]  ? v9fs_write_inode+0x60/0x60
[ 2058.052097]  legacy_get_tree+0x105/0x220
[ 2058.052977]  vfs_get_tree+0x8e/0x300
[ 2058.053770]  path_mount+0x1429/0x2120
[ 2058.054589]  ? strncpy_from_user+0x9e/0x470
[ 2058.055513]  ? finish_automount+0xa90/0xa90
[ 2058.056433]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2058.057434]  ? _copy_from_user+0xfb/0x1b0
[ 2058.058327]  __x64_sys_mount+0x282/0x300
[ 2058.059190]  ? copy_mnt_ns+0xa00/0xa00
[ 2058.060021]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2058.061150]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2058.062248]  do_syscall_64+0x33/0x40
[ 2058.063042]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2058.064136] RIP: 0033:0x7f543d208b19
[ 2058.064926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2058.068866] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2058.070499] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2058.072015] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2058.073538] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2058.075056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2058.076574] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 2058.078201] kobject: can not set name properly!
[ 2058.079322] kmem_cache_create(9p-fcall-cache-155) failed with error -12
[ 2058.080801] CPU: 0 PID: 13044 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2058.082292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2058.084057] Call Trace:
[ 2058.084615]  dump_stack+0x107/0x167
[ 2058.085408]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2058.086529]  p9_client_create+0xc6a/0x1230
[ 2058.087435]  ? p9_client_flush+0x430/0x430
[ 2058.088338]  ? trace_hardirqs_on+0x5b/0x180
[ 2058.089270]  ? lockdep_init_map_type+0x2c7/0x780
[ 2058.090283]  ? __raw_spin_lock_init+0x36/0x110
[ 2058.091259]  v9fs_session_init+0x1dd/0x1680
[ 2058.092178]  ? lock_release+0x680/0x680
[ 2058.093039]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2058.094060]  ? v9fs_show_options+0x690/0x690
[ 2058.095003]  ? trace_hardirqs_on+0x5b/0x180
[ 2058.095920]  ? kasan_unpoison_shadow+0x33/0x50
[ 2058.096894]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2058.097982]  v9fs_mount+0x79/0x8f0
[ 2058.098745]  ? v9fs_write_inode+0x60/0x60
[ 2058.099626]  legacy_get_tree+0x105/0x220
[ 2058.100504]  vfs_get_tree+0x8e/0x300
[ 2058.101299]  path_mount+0x1429/0x2120
[ 2058.102111]  ? strncpy_from_user+0x9e/0x470
[ 2058.103028]  ? finish_automount+0xa90/0xa90
[ 2058.103940]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2058.104944]  ? _copy_from_user+0xfb/0x1b0
[ 2058.105844]  __x64_sys_mount+0x282/0x300
[ 2058.106708]  ? copy_mnt_ns+0xa00/0xa00
[ 2058.107539]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2058.108654]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2058.109756]  do_syscall_64+0x33/0x40
[ 2058.110551]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2058.111644] RIP: 0033:0x7f543d208b19
[ 2058.112429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2058.116356] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2058.117990] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2058.119508] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2058.121038] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2058.122560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2058.124080] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
00:17:42 executing program 7:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @any, 0xfffb}, 0xe)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3}, 0xe)

00:17:42 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x2, &(0x7f00000000c0))

00:17:42 executing program 6:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x0, &(0x7f0000000080)})
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001440)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000180)=""/153, 0x99}, {&(0x7f0000000240)=""/4096, 0x1000}], 0x2, 0x10001, 0x101)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000140)={0x3, &(0x7f0000000040)=[{0x4cf, 0x4, 0xb7, 0x1ff}, {0x3, 0x2, 0x81, 0x1}, {0x0, 0x8, 0x7, 0x2}]})

00:17:42 executing program 4:
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x501180, 0x0)
ioctl$RTC_ALM_SET(r1, 0x40247007, &(0x7f00000000c0)={0x21, 0x27, 0xf, 0x1d, 0x2, 0x3ff, 0x3, 0x16a, 0x1})

00:17:42 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x4, &(0x7f0000000940)=[{&(0x7f0000000280)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {0x0, 0x0, 0x1600}], 0x1000003, &(0x7f00000003c0)=ANY=[])

00:17:42 executing program 3:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r0, &(0x7f00000011c0)=[{{&(0x7f0000000040)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10, &(0x7f0000000540)=[{&(0x7f0000000080)="50f2", 0x2}], 0x1}}], 0x1, 0x4810)
r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x101000, 0x10)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
setsockopt$inet_group_source_req(r2, 0x0, 0x1, &(0x7f00000000c0)={0x8000, {{0x2, 0x4e23, @local}}, {{0x2, 0x4e24, @remote}}}, 0x108)
dup3(r0, r1, 0x80000)

00:17:42 executing program 5:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x440f2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = eventfd2(0x0, 0x80801)
io_setup(0x7, &(0x7f0000000180)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000300)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x300}])

00:17:42 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 59)

[ 2071.382029] FAULT_INJECTION: forcing a failure.
[ 2071.382029] name failslab, interval 1, probability 0, space 0, times 0
[ 2071.383618] CPU: 0 PID: 13066 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2071.384494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2071.385556] Call Trace:
[ 2071.385901]  dump_stack+0x107/0x167
[ 2071.386377]  should_fail.cold+0x5/0xa
[ 2071.386876]  should_failslab+0x5/0x20
[ 2071.387375]  __kmalloc_track_caller+0x79/0x370
[ 2071.387976]  ? kstrdup_const+0x53/0x80
[ 2071.388475]  kstrdup+0x36/0x70
[ 2071.388897]  kstrdup_const+0x53/0x80
[ 2071.389390]  __kernfs_new_node+0x9d/0x860
[ 2071.389933]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2071.390547]  ? lock_acquire+0x197/0x470
[ 2071.391060]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2071.391734]  ? lock_release+0x680/0x680
[ 2071.392246]  ? find_held_lock+0x2c/0x110
[ 2071.392775]  kernfs_new_node+0x18d/0x250
[ 2071.393301]  kernfs_create_dir_ns+0x49/0x160
[ 2071.393860]  sysfs_create_dir_ns+0x127/0x290
[ 2071.394417]  ? sysfs_create_mount_point+0xb0/0xb0
[ 2071.395035]  ? rwlock_bug.part.0+0x90/0x90
[ 2071.395588]  ? do_raw_spin_unlock+0x4f/0x220
[ 2071.396161]  kobject_add_internal+0x25e/0xa30
[ 2071.396731]  kobject_init_and_add+0x101/0x160
[ 2071.397312]  ? kobject_create_and_add+0xb0/0xb0
[ 2071.397927]  ? wait_for_completion_io+0x270/0x270
[ 2071.398544]  ? kernfs_name_hash+0xe7/0x110
[ 2071.399083]  ? kernfs_find_ns+0x256/0x380
[ 2071.399611]  sysfs_slab_add+0x172/0x200
[ 2071.400130]  __kmem_cache_create+0x3db/0x520
[ 2071.400695]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2071.401355]  p9_client_create+0xc6a/0x1230
[ 2071.401897]  ? p9_client_flush+0x430/0x430
[ 2071.402435]  ? trace_hardirqs_on+0x5b/0x180
[ 2071.402985]  ? lockdep_init_map_type+0x2c7/0x780
[ 2071.403578]  ? __raw_spin_lock_init+0x36/0x110
[ 2071.404174]  v9fs_session_init+0x1dd/0x1680
[ 2071.404729]  ? lock_release+0x680/0x680
[ 2071.405256]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2071.405868]  ? v9fs_show_options+0x690/0x690
[ 2071.406439]  ? trace_hardirqs_on+0x5b/0x180
[ 2071.406984]  ? kasan_unpoison_shadow+0x33/0x50
[ 2071.407563]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2071.408216]  v9fs_mount+0x79/0x8f0
[ 2071.408680]  ? v9fs_write_inode+0x60/0x60
[ 2071.409222]  legacy_get_tree+0x105/0x220
[ 2071.409751]  vfs_get_tree+0x8e/0x300
[ 2071.410217]  path_mount+0x1429/0x2120
[ 2071.410705]  ? strncpy_from_user+0x9e/0x470
[ 2071.411262]  ? finish_automount+0xa90/0xa90
[ 2071.411817]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2071.412409]  ? _copy_from_user+0xfb/0x1b0
[ 2071.412937]  __x64_sys_mount+0x282/0x300
[ 2071.413490]  ? copy_mnt_ns+0xa00/0xa00
[ 2071.413988]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2071.414652]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2071.415304]  do_syscall_64+0x33/0x40
[ 2071.415772]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2071.416421] RIP: 0033:0x7f543d208b19
[ 2071.416883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2071.419208] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2071.420157] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2071.421062] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2071.421957] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2071.422856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2071.423752] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 2071.424751] kobject_add_internal failed for 9p-fcall-cache-156 (error: -12 parent: slab)
[ 2071.425852] kmem_cache_create(9p-fcall-cache-156) failed with error -12
[ 2071.426718] CPU: 0 PID: 13066 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2071.427596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2071.428643] Call Trace:
[ 2071.428978]  dump_stack+0x107/0x167
[ 2071.429461]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 2071.430127]  p9_client_create+0xc6a/0x1230
[ 2071.430658]  ? p9_client_flush+0x430/0x430
[ 2071.431189]  ? trace_hardirqs_on+0x5b/0x180
[ 2071.431728]  ? lockdep_init_map_type+0x2c7/0x780
[ 2071.432318]  ? __raw_spin_lock_init+0x36/0x110
[ 2071.432902]  v9fs_session_init+0x1dd/0x1680
[ 2071.433452]  ? lock_release+0x680/0x680
[ 2071.433972]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2071.434595]  ? v9fs_show_options+0x690/0x690
[ 2071.435152]  ? trace_hardirqs_on+0x5b/0x180
[ 2071.435696]  ? kasan_unpoison_shadow+0x33/0x50
[ 2071.436266]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2071.436900]  v9fs_mount+0x79/0x8f0
[ 2071.437358]  ? v9fs_write_inode+0x60/0x60
[ 2071.437877]  legacy_get_tree+0x105/0x220
[ 2071.438381]  vfs_get_tree+0x8e/0x300
[ 2071.438848]  path_mount+0x1429/0x2120
[ 2071.439333]  ? strncpy_from_user+0x9e/0x470
[ 2071.439872]  ? finish_automount+0xa90/0xa90
[ 2071.440416]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2071.441005]  ? _copy_from_user+0xfb/0x1b0
[ 2071.441540]  __x64_sys_mount+0x282/0x300
[ 2071.442047]  ? copy_mnt_ns+0xa00/0xa00
[ 2071.442547]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2071.443214]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2071.443875]  do_syscall_64+0x33/0x40
[ 2071.444341]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2071.444987] RIP: 0033:0x7f543d208b19
[ 2071.445457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2071.447764] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2071.448721] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2071.449639] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2071.450532] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2071.451431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2071.452327] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 2071.456361] kauditd_printk_skb: 12 callbacks suppressed
[ 2071.456373] audit: type=1326 audit(1747095462.233:1159): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13062 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2071.463909] audit: type=1326 audit(1747095462.233:1160): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13062 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
00:17:42 executing program 3:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))
sendmsg$IEEE802154_LIST_IFACE(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$fou(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, 0xa, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_SET_POLICY={0x8}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x18}, @NFTA_SET_DATA_LEN={0x8, 0x7, 0x1, 0x0, 0x1e}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xb}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @hash={{0x9}, @void}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
r0 = accept$unix(0xffffffffffffffff, &(0x7f0000000280), &(0x7f0000000300)=0x6e)
sendmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000680)="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", 0x1000}, {&(0x7f0000000340)="fd6b25138e6071d1733328e3a9f0b94b675c2f7f6d606f0c7b01f169e208e92afafc0b8013d2b919f691ac8e7143971569e804554ccc1047a628", 0x3a}], 0x2, &(0x7f0000001680)=[{0x110, 0x114, 0x846, "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"}, {0xb8, 0x108, 0x80000000, "2799052adbda6f6e318a63d4272900f0582072950223c9c0a065d3fea7fa49a56947e200b8ea800154482f403f3b50823289b0de5cbcfd36a8de4c92f9bc5438e1de116fce553e1abbb6eaab9ece88cb6e0a4255511cd1a16970ba70e1d9846a5dc29225c31dbb378783918830a96a44bf397133cdfbbbc5bdfca6a34c3e5f90071551e8f4e61148e1fe1933691c56d075f33c3a466d859bfacff659cb6ade0a20e5eb11d2"}, {0x20, 0x3a, 0x1, "56501bb9c5b2ca0aa5"}, {0x30, 0x107, 0x1, "2175df8dfb8de7aaf3b2b223fc8002f0c2e149cdc8e3c588bcced2a56e991a"}, {0xa8, 0x112, 0x9cc, "8805bad10f03c882a238ee73aa45b98307a5cc014abd503d0e7e3dffb9d3aeb534880ad69e0e0353182144ae3b83597f5db98f7e10041532a3a84ffdf9a306cab93b00fbf64a960f7297df44aa2740a5cefe9af78584e30eeb88f160a2774154c3ad20303ecb5809f1c36e2d6802e1d487ee6035a853d1553f52e554cbf3520edd1909f40f530455d1eea8fbe19f9195d1365fcf31f8"}], 0x2c0}, 0x8)

[ 2071.469923] audit: type=1326 audit(1747095462.238:1161): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13062 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2071.473910] audit: type=1326 audit(1747095462.241:1162): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13062 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2071.474187] loop0: detected capacity change from 0 to 262144
00:17:42 executing program 6:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}, {0x0, 0x0, 0x80000000}], 0x1, &(0x7f0000013a00))
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0))
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
mount$9p_unix(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000340), 0x100804, &(0x7f0000000380)={'trans=unix,', {[{@access_client}, {@access_any}, {@msize={'msize', 0x3d, 0x6}}, {@privport}], [{@fsname={'fsname', 0x3d, '&.^.[\\-./\\-#'}}]}})
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
openat(r2, &(0x7f0000000400)='./file0\x00', 0x80000, 0x2)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000140)={<r3=>0x0})
r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001400), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f0000000240)=ANY=[@ANYBLOB="10000013f90f049100487a73ca882038b427faf8454f4c3abdb9428e3f86c1d7bfa6a2e5345b2653eb45b7c4282136d5d4a0c137bcdd5c07ea4dca238a2dc8fc29a9da286a898b5bbf0341f01cd37a54a1c1c6ad4eda41452464622468efa6648b9cd616d192af75fbeefad56dabccd04ee5cbda79bc69c9ebbee6d8", @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000040)={r3, 0x0, r4, 0x7})

00:17:42 executing program 1:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0x4b47, &(0x7f00000000c0))

00:17:42 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS(r0, 0x401070c9, 0x0)
ioctl$SNAPSHOT_FREE(r0, 0x3305)
ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000000))
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x220600, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r2=>r1, {r1}}, './file0\x00'})
ioctl$RTC_AIE_ON(r2, 0x7001)

00:17:42 executing program 2:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsmount(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x4007, @fd_index=0x1, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0)
signalfd(r0, &(0x7f0000000200)={[0xfffffffffffffffd]}, 0x8)
syz_io_uring_setup(0x4d4f, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_none}]}}) (fail_nth: 60)

[ 2071.523208] EXT4-fs error (device loop0): ext4_fill_super:4967: inode #2: comm syz-executor.0: iget: special inode unallocated
00:17:42 executing program 5:
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000002640), 0xa06701, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'lo\x00'})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_opts(r1, 0x29, 0x37, &(0x7f0000000040)=""/69, &(0x7f00000000c0)=0x45)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0x8001}}, './file1\x00'})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8910, &(0x7f0000000140)={'macvlan1\x00'})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x100000001)
getsockopt$IP_SET_OP_VERSION(r3, 0x1, 0x53, &(0x7f0000000180), &(0x7f00000001c0)=0x8)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x80100)
r5 = syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x200600)
sendfile(r4, r5, &(0x7f0000000340)=0xfffffffffffffffc, 0x6b5)
timerfd_gettime(0xffffffffffffffff, 0x0)

[ 2071.536726] FAULT_INJECTION: forcing a failure.
[ 2071.536726] name failslab, interval 1, probability 0, space 0, times 0
[ 2071.538186] CPU: 0 PID: 13087 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 2071.539006] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 2071.539989] Call Trace:
[ 2071.540307]  dump_stack+0x107/0x167
[ 2071.540740]  should_fail.cold+0x5/0xa
[ 2071.541205]  ? create_object.isra.0+0x3a/0xa20
[ 2071.541750]  should_failslab+0x5/0x20
[ 2071.542203]  kmem_cache_alloc+0x5b/0x310
[ 2071.542688]  create_object.isra.0+0x3a/0xa20
[ 2071.543210]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2071.543816]  __kmalloc_track_caller+0x177/0x370
[ 2071.544370]  ? kstrdup_const+0x53/0x80
[ 2071.544833]  kstrdup+0x36/0x70
[ 2071.545221]  kstrdup_const+0x53/0x80
[ 2071.545660]  __kernfs_new_node+0x9d/0x860
[ 2071.546154]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 2071.546721]  ? lock_acquire+0x197/0x470
[ 2071.547196]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 2071.547815]  ? lock_release+0x680/0x680
[ 2071.548281]  ? find_held_lock+0x2c/0x110
[ 2071.548764]  kernfs_new_node+0x18d/0x250
[ 2071.549249]  kernfs_create_dir_ns+0x49/0x160
[ 2071.549765]  sysfs_create_dir_ns+0x127/0x290
[ 2071.550284]  ? sysfs_create_mount_point+0xb0/0xb0
[ 2071.550852]  ? rwlock_bug.part.0+0x90/0x90
[ 2071.551353]  ? do_raw_spin_unlock+0x4f/0x220
[ 2071.551877]  kobject_add_internal+0x25e/0xa30
[ 2071.552406]  kobject_init_and_add+0x101/0x160
[ 2071.552932]  ? kobject_create_and_add+0xb0/0xb0
[ 2071.553487]  ? wait_for_completion_io+0x270/0x270
[ 2071.554064]  ? kernfs_name_hash+0xe7/0x110
[ 2071.554559]  ? kernfs_find_ns+0x256/0x380
[ 2071.555051]  sysfs_slab_add+0x172/0x200
[ 2071.555521]  __kmem_cache_create+0x3db/0x520
[ 2071.556038]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 2071.556637]  p9_client_create+0xc6a/0x1230
[ 2071.557147]  ? p9_client_flush+0x430/0x430
[ 2071.557651]  ? trace_hardirqs_on+0x5b/0x180
[ 2071.558160]  ? lockdep_init_map_type+0x2c7/0x780
[ 2071.558713]  ? __raw_spin_lock_init+0x36/0x110
[ 2071.559256]  v9fs_session_init+0x1dd/0x1680
[ 2071.559762]  ? lock_release+0x680/0x680
[ 2071.560232]  ? kmem_cache_alloc_trace+0x151/0x320
[ 2071.560798]  ? v9fs_show_options+0x690/0x690
[ 2071.561321]  ? trace_hardirqs_on+0x5b/0x180
[ 2071.561823]  ? kasan_unpoison_shadow+0x33/0x50
[ 2071.562350]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 2071.562945]  v9fs_mount+0x79/0x8f0
[ 2071.563358]  ? v9fs_write_inode+0x60/0x60
[ 2071.563844]  legacy_get_tree+0x105/0x220
[ 2071.564318]  vfs_get_tree+0x8e/0x300
[ 2071.564752]  path_mount+0x1429/0x2120
[ 2071.565208]  ? strncpy_from_user+0x9e/0x470
[ 2071.565711]  ? finish_automount+0xa90/0xa90
[ 2071.566217]  ? getname_flags.part.0+0x1dd/0x4f0
[ 2071.566762]  ? _copy_from_user+0xfb/0x1b0
[ 2071.567254]  __x64_sys_mount+0x282/0x300
[ 2071.567727]  ? copy_mnt_ns+0xa00/0xa00
[ 2071.568181]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 2071.568797]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2071.569406]  do_syscall_64+0x33/0x40
[ 2071.569841]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 2071.570438] RIP: 0033:0x7f543d208b19
[ 2071.570874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2071.573025] RSP: 002b:00007f543a77e188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 2071.573924] RAX: ffffffffffffffda RBX: 00007f543d31bf60 RCX: 00007f543d208b19
[ 2071.574759] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 2071.575602] RBP: 00007f543a77e1d0 R08: 0000000020000140 R09: 0000000000000000
[ 2071.576437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2071.577275] R13: 00007fff6cd0ff4f R14: 00007f543a77e300 R15: 0000000000022000
[ 2071.583746] EXT4-fs (loop0): get root inode failed
[ 2071.584977] EXT4-fs (loop0): mount failed
[ 2071.587554] audit: type=1326 audit(1747095462.365:1163): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13095 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2071.593117] audit: type=1326 audit(1747095462.369:1164): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13095 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2071.596610] audit: type=1326 audit(1747095462.369:1165): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13095 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2071.599404] audit: type=1326 audit(1747095462.369:1166): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13095 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2071.601964] audit: type=1326 audit(1747095462.374:1167): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13095 comm="syz-executor.1" exe="/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6540006b19 code=0x7ffc0000
[ 2071.604520] audit: type=1326 audit(1747095462.374:1168): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=13091 comm="syz-executor.6" exe="/syz-executor.6" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4a2a8eb19 code=0x7ffc0000
00:17:42 executing program 4:
r0 = accept(0xffffffffffffffff, &(0x7f00000000c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000000)=0x80)
write$binfmt_elf64(r0, &(0x7f0000000140)={{0x7f, 0x45, 0x4c, 0x46, 0x81, 0x3, 0x0, 0x1f, 0x400, 0x2, 0x3, 0x80, 0x3b6, 0x40, 0xa, 0x0, 0x5, 0x38, 0x1, 0x86e8, 0x9, 0x3}, [{0x70000004, 0x7, 0x7ff, 0x900000000, 0x1, 0x101, 0x5, 0x8001}], "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", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1978)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$RTC_SET_TIME(r1, 0x4024700a, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x10015, 0x0, 0x7ff})
ioctl$RTC_WIE_ON(r1, 0x700f)
r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x3, 0x0, 0xf4d3})
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000001800)={{{@in=@multicast2, @in=@local}}, {{@in=@private}, 0x0, @in=@local}}, &(0x7f0000001440)=0xe8)
ioctl$RTC_ALM_SET(r2, 0x40247007, &(0x7f0000001ac0)={0x31, 0x32, 0x15, 0x4, 0x0, 0xc40, 0x0, 0xea, 0x1})

[ 2085.726821] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
BUG: memory leak
unreferenced object 0xffff888044faf300 (size 32):
  comm "syz-executor.2", pid 13066, jiffies 4296738330 (age 21.979s)
  hex dump (first 32 bytes):
    39 70 2d 66 63 61 6c 6c 2d 63 61 63 68 65 2d 31  9p-fcall-cache-1
    35 36 00 44 80 88 ff ff 00 00 00 00 00 00 00 00  56.D............
  backtrace:
    [<000000005b53729d>] kstrdup+0x36/0x70
    [<00000000c0878727>] kstrdup_const+0x53/0x80
    [<00000000908e6342>] kvasprintf_const+0x10c/0x1a0
    [<00000000c5414176>] kobject_set_name_vargs+0x56/0x150
    [<0000000059a21337>] kobject_init_and_add+0xc9/0x160
    [<000000007d20ce71>] sysfs_slab_add+0x172/0x200
    [<000000002be3767a>] __kmem_cache_create+0x3db/0x520
    [<000000004c21c15d>] kmem_cache_create_usercopy+0x1db/0x2f0
    [<000000005cf30ce4>] p9_client_create+0xc6a/0x1230
    [<00000000aabd9e6f>] v9fs_session_init+0x1dd/0x1680
    [<000000005edd01fb>] v9fs_mount+0x79/0x8f0
    [<000000007fbce8c3>] legacy_get_tree+0x105/0x220
    [<00000000aac10fbc>] vfs_get_tree+0x8e/0x300
    [<00000000e8b46819>] path_mount+0x1429/0x2120
    [<000000008549759d>] __x64_sys_mount+0x282/0x300
    [<00000000c6ee1040>] do_syscall_64+0x33/0x40

BUG: leak checking failed

VM DIAGNOSIS:
00:18:04  Registers:
info registers vcpu 0
RAX=ffffffff83e91390 RBX=0000000000000000 RCX=ffffffff83e78f2c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e91998 RBP=0000000000000000 RSP=ffffffff84e07e38
R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001
R12=0000000000000000 R13=ffffffff85678748 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e9139e RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 ffffc90000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f8ccb1e6c88 CR3=000000000e642000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=656a626f206465636e6572656665726e
XMM02=3a29323320657a697328203030336661 XMM03=333120646970202c22322e726f747563
XMM04=6c6c6163662d70392020313320643220 XMM05=32206336206336203136203336203636
XMM06=73657479622032332074737269662820 XMM07=2e313220656761282030333338333736
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffffffff83e91390 RBX=0000000000000001 RCX=ffffffff83e78f2c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e91998 RBP=0000000000000001 RSP=ffff888008987e70
R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001
R12=0000000000000001 R13=ffffffff85678748 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e9139e RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 ffffc90000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffff30e7230 CR3=000000000e642000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=656a626f206465636e6572656665726e
XMM02=3a29323320657a697328203030336661 XMM03=333120646970202c22322e726f747563
XMM04=6c6c6163662d70392020313320643220 XMM05=32206336206336203136203336203636
XMM06=73657479622032332074737269662820 XMM07=2e313220656761282030333338333736
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000