0), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:39 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r2)
r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:39 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:28:39 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:39 executing program 0:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 1396.077714] 9pnet: Insufficient options for proto=fd
[ 1396.082490] 9pnet: Insufficient options for proto=fd
20:28:39 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r2)
r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:39 executing program 1:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1396.381090] 9pnet: Insufficient options for proto=fd
20:28:53 executing program 2:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:28:53 executing program 0:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:28:53 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:53 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:53 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:28:53 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:53 executing program 3:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:53 executing program 1:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:53 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:53 executing program 6:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:28:53 executing program 2:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:28:53 executing program 7:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:28:53 executing program 0:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:28:53 executing program 3:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

20:28:54 executing program 1:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:28:54 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1410.938765] 9pnet: Insufficient options for proto=fd
20:29:08 executing program 3:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

20:29:08 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

20:29:08 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

20:29:08 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:08 executing program 7:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:08 executing program 2:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:29:08 executing program 0:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:29:08 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1424.857760] 9pnet: Insufficient options for proto=fd
[ 1424.890995] 9pnet: Insufficient options for proto=fd
20:29:08 executing program 6:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

20:29:08 executing program 7:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:08 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:08 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

20:29:08 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

20:29:08 executing program 3:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:08 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:08 executing program 2:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:08 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:08 executing program 7:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:24 executing program 3:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000c, 0x50, r2, 0x0)

20:29:24 executing program 6:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000c, 0x50, r2, 0x0)

20:29:24 executing program 2:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:24 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:24 executing program 7:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
close(r3)
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0xa, 0x1, {}, 0x8001, 0xf, 0x0, {0x0, 0x0, r4}}, 0x8)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:24 executing program 0:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000c, 0x50, r2, 0x0)

20:29:24 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

20:29:24 executing program 4:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)

20:29:24 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:24 executing program 6:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000c, 0x50, r2, 0x0)

20:29:38 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0) (fail_nth: 1)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:29:38 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 1)

20:29:38 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:38 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 1)

20:29:38 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:38 executing program 4:
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x3, 0x0, 0x81, 0xee, 0x0, 0x0, 0x8c010, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_config_ext={0x9, 0x8}, 0x8008, 0x1b858, 0x6, 0x3, 0xe1, 0x32, 0x6, 0x0, 0x200, 0x0, 0xd9}, 0x0, 0x0, r0, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet_tcp_int(r4, 0x6, 0x9, &(0x7f0000000040), &(0x7f00000001c0)=0x4)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe6b02, 0x0)
read$hidraw(r6, &(0x7f0000000400)=""/4096, 0x1000)
r7 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r7, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r7, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r7, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
recvmmsg$unix(r6, &(0x7f0000002a00)=[{{&(0x7f00000002c0)=@abs, 0x6e, &(0x7f0000001940)=[{&(0x7f0000001440)=""/238, 0xee}, {&(0x7f0000001540)=""/140, 0x8c}, {&(0x7f0000000380)=""/92, 0x5c}, {&(0x7f0000001600)=""/192, 0xc0}, {&(0x7f00000016c0)=""/188, 0xbc}, {&(0x7f0000001780)=""/145, 0x91}, {&(0x7f0000001840)=""/249, 0xf9}], 0x7}}, {{&(0x7f00000019c0), 0x6e, &(0x7f0000001e40)=[{&(0x7f0000001a40)=""/67, 0x43}, {&(0x7f0000003600)=""/4096, 0x1000}, {&(0x7f0000001ac0)=""/110, 0x6e}, {&(0x7f0000001b40)=""/195, 0xc3}, {&(0x7f0000001c40)=""/235, 0xeb}, {&(0x7f0000001d40)=""/110, 0x6e}, {&(0x7f0000001dc0)=""/94, 0x5e}], 0x7, &(0x7f0000001ec0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x58}}, {{&(0x7f0000001f40)=@abs, 0x6e, &(0x7f0000002040)=[{&(0x7f0000001fc0)=""/89, 0x59}], 0x1, &(0x7f0000002080)=[@cred={{0x1c, 0x1, 0x2, {0x0, <r8=>0x0}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{&(0x7f0000002100)=@abs, 0x6e, &(0x7f0000002380)=[{&(0x7f0000002180)=""/187, 0xbb}, {&(0x7f0000002240)=""/137, 0x89}, {&(0x7f0000002300)=""/110, 0x6e}], 0x3}}, {{&(0x7f00000023c0), 0x6e, &(0x7f00000026c0)=[{&(0x7f0000002440)=""/60, 0x3c}, {&(0x7f0000002480)=""/212, 0xd4}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000002580)=""/195, 0xc3}, {&(0x7f0000002680)=""/52, 0x34}], 0x5}}, {{&(0x7f0000002740), 0x6e, &(0x7f0000002840)=[{&(0x7f00000027c0)=""/8, 0x6}, {&(0x7f0000002800)=""/47, 0x2f}], 0x2}}], 0x6, 0x40000000, &(0x7f0000002880))
sendmsg$nl_generic(r6, &(0x7f0000002d80)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000028c0)={&(0x7f0000002b80)={0x1f8, 0x24, 0x1, 0x70bd27, 0x25dfdbfe, {0x4}, [@typed={0x8, 0x48, 0x0, 0x0, @pid}, @nested={0x1b2, 0x88, 0x0, 0x1, [@generic, @generic="316ff40276fa25ff2082b6764fd0ad51c5d21dc937bb52a48451f34e5bd4e6051b8454d5cd7da773d2d87be92d6dc9ea5be3db746cb2c8ff80bbf56f05eb1521dfd220a6064acad72845b07ce95127e35bd4c14082ee316d3bf9fe03", @typed={0x8, 0x6f, 0x0, 0x0, @fd=r7}, @generic="96148588e746", @generic="3407f384a7216628b1bf8a32a0606d4d21c1f1f590de25910e397437ad8fb9915795d4e5236f9aa7170004d5c90f6f08abc0086d2d1c596002698cbcdf5ce2d99c47b3c995b8ed823cd7eae4fa5e6ffb42e92b7f525e09b7b03334279d0f42c1e3fa82ad89cbe8edb353800d7cbb20cdc5d6ea64877c1ca06b2cc1586d31201984fb1bf3d69007749ff4224264fbdf2b405c60d11235f4f296a9e1ba1297fe9a0550d02b756bc9f88a9534867295c9fdb8f833df2ca6ec00d120bcf41051264d3ab0eae64a8588ed5eb93eba77caba1234a11fceb941fc8d01ee3f7ac0cf1d99", @generic="a323623d0614c5aec69445b601390eb00ea2c75ae3424816a6d73eb9d9b0fe15dab84fbd28ebc3cc8706e16cd93a1d3a45eb54d9219864046c0c17ee13d0a0bca434ade04b97bb9b2e4041090c1c62dc8771a77992b7ce78f6d408d6385d2a3f919d709c"]}, @typed={0x8, 0x49, 0x0, 0x0, @uid=r8}, @generic="e300c1daa737a2c65a645d8494da534cf2431ed64caac096763af92a5b29"]}, 0x1f8}, 0x1, 0x0, 0x0, 0x48040}, 0x20000040)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000280), 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x25, &(0x7f0000000240)={@dev={0xac, 0x14, 0x14, 0x40}, @local, @private=0xa010100}, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000001400)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x4, 0x0, r5}, 0x4)
openat$full(0xffffffffffffff9c, &(0x7f0000000340), 0x10000, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f00000029c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002900)=""/158, 0x9e}, 0x0, 0x2203, 0x0, {0x1}}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:29:38 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 1)

20:29:38 executing program 3:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000c, 0x50, r2, 0x0)

[ 1454.893640] FAULT_INJECTION: forcing a failure.
[ 1454.893640] name failslab, interval 1, probability 0, space 0, times 1
[ 1454.895242] CPU: 1 PID: 27957 Comm: syz-executor.6 Not tainted 5.10.237 #1
[ 1454.896116] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1454.897172] Call Trace:
[ 1454.897526]  dump_stack+0x107/0x167
[ 1454.898013]  should_fail.cold+0x5/0xa
[ 1454.898542]  should_failslab+0x5/0x20
[ 1454.898648] FAULT_INJECTION: forcing a failure.
[ 1454.898648] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 1454.899036]  __kmalloc_track_caller+0x79/0x370
[ 1454.899052]  ? strndup_user+0x74/0xe0
[ 1454.899081]  memdup_user+0x22/0xd0
[ 1454.903218]  strndup_user+0x74/0xe0
[ 1454.903675]  __x64_sys_mount+0x133/0x300
[ 1454.904194]  ? copy_mnt_ns+0xa00/0xa00
[ 1454.904687]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1454.905356]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1454.906012]  do_syscall_64+0x33/0x40
[ 1454.906492]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1454.907152] RIP: 0033:0x7fcf9bfbdb19
[ 1454.907621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1454.909945] RSP: 002b:00007fcf99533188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1454.910911] RAX: ffffffffffffffda RBX: 00007fcf9c0d0f60 RCX: 00007fcf9bfbdb19
[ 1454.911806] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1454.912711] RBP: 00007fcf995331d0 R08: 0000000020000400 R09: 0000000000000000
[ 1454.913641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1454.914547] R13: 00007ffdcd5e939f R14: 00007fcf99533300 R15: 0000000000022000
[ 1454.915488] CPU: 0 PID: 27973 Comm: syz-executor.1 Not tainted 5.10.237 #1
[ 1454.917055] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1454.918961] Call Trace:
[ 1454.919566]  dump_stack+0x107/0x167
[ 1454.920396]  should_fail.cold+0x5/0xa
[ 1454.921259]  __alloc_pages_nodemask+0x182/0x600
[ 1454.922326]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1454.923692]  ? tun_build_skb+0x186/0xfc0
[ 1454.924619]  alloc_pages_current+0x187/0x280
[ 1454.925618]  skb_page_frag_refill+0x27c/0x490
[ 1454.926651]  tun_build_skb+0x206/0xfc0
[ 1454.927539]  ? tun_xdp_act+0x6f0/0x6f0
[ 1454.928422]  ? __lock_acquire+0xbb1/0x5b00
[ 1454.929389]  tun_get_user+0x6c1/0x32f0
[ 1454.930296]  ? tun_build_skb+0xfc0/0xfc0
[ 1454.931219]  ? rtl8211e_config_intr+0x60/0x100
[ 1454.932243]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.933187]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1454.934392]  tun_chr_write_iter+0xe1/0x1e0
[ 1454.935355]  new_sync_write+0x42c/0x660
[ 1454.936254]  ? new_sync_read+0x6f0/0x6f0
[ 1454.937187]  ? avc_policy_seqno+0x9/0x70
[ 1454.938110]  ? selinux_file_permission+0x92/0x520
[ 1454.939213]  ? security_file_permission+0xb1/0xe0
[ 1454.940340]  vfs_write+0x7c0/0xb10
[ 1454.941168]  ksys_write+0x12d/0x260
[ 1454.942013]  ? __ia32_sys_read+0xb0/0xb0
[ 1454.942958]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1454.944168]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1454.945349]  do_syscall_64+0x33/0x40
[ 1454.946209]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1454.947386] RIP: 0033:0x7f8e1781c5ff
[ 1454.948245] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 1454.952491] RSP: 002b:00007f8e14ddf150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1454.954248] RAX: ffffffffffffffda RBX: 00007f8e1797cf60 RCX: 00007f8e1781c5ff
[ 1454.955917] RDX: 000000000000003e RSI: 0000000020000300 RDI: 00000000000000f0
[ 1454.957571] RBP: 00007f8e14ddf1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1454.959237] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1454.960875] R13: 00007ffcf1fbd43f R14: 00007f8e14ddf300 R15: 0000000000022000
[ 1454.974617] FAULT_INJECTION: forcing a failure.
[ 1454.974617] name failslab, interval 1, probability 0, space 0, times 0
[ 1454.977260] CPU: 0 PID: 27960 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1454.978010] FAULT_INJECTION: forcing a failure.
[ 1454.978010] name failslab, interval 1, probability 0, space 0, times 0
[ 1454.978841] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1454.978848] Call Trace:
[ 1454.978878]  dump_stack+0x107/0x167
[ 1454.983483]  should_fail.cold+0x5/0xa
[ 1454.984351]  ? copy_process+0x3285/0x7800
[ 1454.985298]  should_failslab+0x5/0x20
[ 1454.986162]  kmem_cache_alloc_node+0x55/0x330
[ 1454.987188]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1454.988379]  copy_process+0x3285/0x7800
[ 1454.989279]  ? __lock_acquire+0xbb1/0x5b00
[ 1454.990248]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.991205]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1454.992386]  ? __cleanup_sighand+0xb0/0xb0
[ 1454.993332]  ? lock_acquire+0x197/0x470
[ 1454.994238]  ? find_held_lock+0x2c/0x110
[ 1454.995165]  kernel_clone+0xe7/0x980
[ 1454.996008]  ? lock_downgrade+0x6d0/0x6d0
[ 1454.996936]  ? find_held_lock+0x2c/0x110
[ 1454.997864]  ? create_io_thread+0xf0/0xf0
[ 1454.998813]  ? ksys_write+0x12d/0x260
[ 1454.999680]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1455.000793]  __do_sys_fork+0x8a/0xc0
[ 1455.001632]  ? kernel_thread+0xf0/0xf0
[ 1455.002533]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1455.003715]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1455.004881]  ? trace_hardirqs_on+0x5b/0x180
[ 1455.005861]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1455.007038]  do_syscall_64+0x33/0x40
[ 1455.007887]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1455.009051] RIP: 0033:0x7f899d6fab19
[ 1455.009896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1455.014017] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1455.015757] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1455.017379] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1455.018997] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1455.020619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1455.022175] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
[ 1455.023832] CPU: 1 PID: 27971 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1455.024688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1455.025730] Call Trace:
[ 1455.026064]  dump_stack+0x107/0x167
[ 1455.026514]  should_fail.cold+0x5/0xa
[ 1455.026980]  should_failslab+0x5/0x20
[ 1455.027448]  __kmalloc_track_caller+0x79/0x370
[ 1455.027991]  ? strndup_user+0x74/0xe0
[ 1455.028443]  memdup_user+0x22/0xd0
[ 1455.028863]  strndup_user+0x74/0xe0
[ 1455.029288]  __x64_sys_mount+0x133/0x300
[ 1455.029764]  ? copy_mnt_ns+0xa00/0xa00
[ 1455.030242]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1455.030873]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1455.031479]  do_syscall_64+0x33/0x40
[ 1455.031919]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1455.032525] RIP: 0033:0x7f5c6f844b19
[ 1455.032962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1455.035144] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1455.036042] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1455.036885] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1455.037744] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1455.038609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1455.039473] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:29:38 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 2)

[ 1455.123581] FAULT_INJECTION: forcing a failure.
[ 1455.123581] name failslab, interval 1, probability 0, space 0, times 0
[ 1455.124985] CPU: 1 PID: 28249 Comm: syz-executor.6 Not tainted 5.10.237 #1
[ 1455.125793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1455.126774] Call Trace:
[ 1455.127099]  dump_stack+0x107/0x167
[ 1455.127519]  should_fail.cold+0x5/0xa
[ 1455.127962]  ? create_object.isra.0+0x3a/0xa20
[ 1455.128483]  should_failslab+0x5/0x20
[ 1455.128928]  kmem_cache_alloc+0x5b/0x310
[ 1455.129416]  create_object.isra.0+0x3a/0xa20
[ 1455.129930]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1455.130535]  __kmalloc_track_caller+0x177/0x370
[ 1455.131070]  ? strndup_user+0x74/0xe0
[ 1455.131525]  memdup_user+0x22/0xd0
[ 1455.131941]  strndup_user+0x74/0xe0
[ 1455.132363]  __x64_sys_mount+0x133/0x300
[ 1455.132832]  ? copy_mnt_ns+0xa00/0xa00
[ 1455.133285]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1455.133911]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1455.134528]  do_syscall_64+0x33/0x40
[ 1455.134960]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1455.135565] RIP: 0033:0x7fcf9bfbdb19
[ 1455.136019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1455.138139] RSP: 002b:00007fcf99533188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1455.139043] RAX: ffffffffffffffda RBX: 00007fcf9c0d0f60 RCX: 00007fcf9bfbdb19
[ 1455.139868] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1455.140693] RBP: 00007fcf995331d0 R08: 0000000020000400 R09: 0000000000000000
[ 1455.141534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1455.142363] R13: 00007ffdcd5e939f R14: 00007fcf99533300 R15: 0000000000022000
20:29:38 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:38 executing program 4:
r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x3, 0x0, 0x81, 0xee, 0x0, 0x0, 0x8c010, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_config_ext={0x9, 0x8}, 0x8008, 0x1b858, 0x6, 0x3, 0xe1, 0x32, 0x6, 0x0, 0x200, 0x0, 0xd9}, 0x0, 0x0, r0, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet_tcp_int(r4, 0x6, 0x9, &(0x7f0000000040), &(0x7f00000001c0)=0x4)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe6b02, 0x0)
read$hidraw(r6, &(0x7f0000000400)=""/4096, 0x1000)
r7 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r7, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r7, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r7, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
recvmmsg$unix(r6, &(0x7f0000002a00)=[{{&(0x7f00000002c0)=@abs, 0x6e, &(0x7f0000001940)=[{&(0x7f0000001440)=""/238, 0xee}, {&(0x7f0000001540)=""/140, 0x8c}, {&(0x7f0000000380)=""/92, 0x5c}, {&(0x7f0000001600)=""/192, 0xc0}, {&(0x7f00000016c0)=""/188, 0xbc}, {&(0x7f0000001780)=""/145, 0x91}, {&(0x7f0000001840)=""/249, 0xf9}], 0x7}}, {{&(0x7f00000019c0), 0x6e, &(0x7f0000001e40)=[{&(0x7f0000001a40)=""/67, 0x43}, {&(0x7f0000003600)=""/4096, 0x1000}, {&(0x7f0000001ac0)=""/110, 0x6e}, {&(0x7f0000001b40)=""/195, 0xc3}, {&(0x7f0000001c40)=""/235, 0xeb}, {&(0x7f0000001d40)=""/110, 0x6e}, {&(0x7f0000001dc0)=""/94, 0x5e}], 0x7, &(0x7f0000001ec0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x58}}, {{&(0x7f0000001f40)=@abs, 0x6e, &(0x7f0000002040)=[{&(0x7f0000001fc0)=""/89, 0x59}], 0x1, &(0x7f0000002080)=[@cred={{0x1c, 0x1, 0x2, {0x0, <r8=>0x0}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{&(0x7f0000002100)=@abs, 0x6e, &(0x7f0000002380)=[{&(0x7f0000002180)=""/187, 0xbb}, {&(0x7f0000002240)=""/137, 0x89}, {&(0x7f0000002300)=""/110, 0x6e}], 0x3}}, {{&(0x7f00000023c0), 0x6e, &(0x7f00000026c0)=[{&(0x7f0000002440)=""/60, 0x3c}, {&(0x7f0000002480)=""/212, 0xd4}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000002580)=""/195, 0xc3}, {&(0x7f0000002680)=""/52, 0x34}], 0x5}}, {{&(0x7f0000002740), 0x6e, &(0x7f0000002840)=[{&(0x7f00000027c0)=""/8, 0x6}, {&(0x7f0000002800)=""/47, 0x2f}], 0x2}}], 0x6, 0x40000000, &(0x7f0000002880))
sendmsg$nl_generic(r6, &(0x7f0000002d80)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000028c0)={&(0x7f0000002b80)={0x1f8, 0x24, 0x1, 0x70bd27, 0x25dfdbfe, {0x4}, [@typed={0x8, 0x48, 0x0, 0x0, @pid}, @nested={0x1b2, 0x88, 0x0, 0x1, [@generic, @generic="316ff40276fa25ff2082b6764fd0ad51c5d21dc937bb52a48451f34e5bd4e6051b8454d5cd7da773d2d87be92d6dc9ea5be3db746cb2c8ff80bbf56f05eb1521dfd220a6064acad72845b07ce95127e35bd4c14082ee316d3bf9fe03", @typed={0x8, 0x6f, 0x0, 0x0, @fd=r7}, @generic="96148588e746", @generic="3407f384a7216628b1bf8a32a0606d4d21c1f1f590de25910e397437ad8fb9915795d4e5236f9aa7170004d5c90f6f08abc0086d2d1c596002698cbcdf5ce2d99c47b3c995b8ed823cd7eae4fa5e6ffb42e92b7f525e09b7b03334279d0f42c1e3fa82ad89cbe8edb353800d7cbb20cdc5d6ea64877c1ca06b2cc1586d31201984fb1bf3d69007749ff4224264fbdf2b405c60d11235f4f296a9e1ba1297fe9a0550d02b756bc9f88a9534867295c9fdb8f833df2ca6ec00d120bcf41051264d3ab0eae64a8588ed5eb93eba77caba1234a11fceb941fc8d01ee3f7ac0cf1d99", @generic="a323623d0614c5aec69445b601390eb00ea2c75ae3424816a6d73eb9d9b0fe15dab84fbd28ebc3cc8706e16cd93a1d3a45eb54d9219864046c0c17ee13d0a0bca434ade04b97bb9b2e4041090c1c62dc8771a77992b7ce78f6d408d6385d2a3f919d709c"]}, @typed={0x8, 0x49, 0x0, 0x0, @uid=r8}, @generic="e300c1daa737a2c65a645d8494da534cf2431ed64caac096763af92a5b29"]}, 0x1f8}, 0x1, 0x0, 0x0, 0x48040}, 0x20000040)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000280), 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x25, &(0x7f0000000240)={@dev={0xac, 0x14, 0x14, 0x40}, @local, @private=0xa010100}, 0xc)
syz_io_uring_submit(r2, r3, &(0x7f0000001400)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x4, 0x0, r5}, 0x4)
openat$full(0xffffffffffffff9c, &(0x7f0000000340), 0x10000, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f00000029c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002900)=""/158, 0x9e}, 0x0, 0x2203, 0x0, {0x1}}, 0x0)
io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0)

20:29:38 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:38 executing program 3:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000000080)={@local, @broadcast, @val={@val={0x9100, 0x0, 0x1, 0x4}, {0x8100, 0x2, 0x0, 0x3}}, {@canfd={0xd, {{0x2, 0x1}, 0x22, 0x0, 0x0, 0x0, "7f29e4212deb56cf549a134ba810438be8c9d19cde4ccd8db8cd0a81fd47e6fb15cef3d4175bd606bb414a986b945e3700df82564d115462cf9b049378697096"}}}}, &(0x7f0000000000)={0x1, 0x2, [0xba4, 0xda2, 0xeab, 0x8ae]})
r0 = fork()
move_pages(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000ffc000/0x1000)=nil], 0xfffffffffffffffc, &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6)
ptrace$setopts(0x4206, r0, 0x10001, 0x3d)
r1 = fork()
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
ptrace(0x10, r1)
wait4(0xffffffffffffffff, 0x0, 0x1, 0x0)
fork()
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x100000c, 0x50, r2, 0x0)

[ 1455.270459] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s
[ 1455.271591] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 1455.272380] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 1455.273172] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00
[ 1455.274057] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 2 prio class 0
20:29:38 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:38 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 2)

20:29:38 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 2)

[ 1455.399555] FAULT_INJECTION: forcing a failure.
[ 1455.399555] name failslab, interval 1, probability 0, space 0, times 0
[ 1455.402307] CPU: 0 PID: 28373 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1455.403773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1455.405526] Call Trace:
[ 1455.406092]  dump_stack+0x107/0x167
[ 1455.406889]  should_fail.cold+0x5/0xa
[ 1455.407709]  ? create_object.isra.0+0x3a/0xa20
[ 1455.408704]  should_failslab+0x5/0x20
[ 1455.409511]  kmem_cache_alloc+0x5b/0x310
[ 1455.410398]  create_object.isra.0+0x3a/0xa20
[ 1455.411322]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1455.412401]  kmem_cache_alloc_node+0x169/0x330
[ 1455.413367]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1455.414498]  copy_process+0x3285/0x7800
[ 1455.415348]  ? __lock_acquire+0xbb1/0x5b00
[ 1455.416258]  ? lock_downgrade+0x6d0/0x6d0
[ 1455.417138]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1455.418249]  ? __cleanup_sighand+0xb0/0xb0
[ 1455.419161]  ? lock_acquire+0x197/0x470
[ 1455.420004]  ? find_held_lock+0x2c/0x110
[ 1455.420864]  kernel_clone+0xe7/0x980
[ 1455.421658]  ? lock_downgrade+0x6d0/0x6d0
[ 1455.422546]  ? find_held_lock+0x2c/0x110
[ 1455.423399]  ? create_io_thread+0xf0/0xf0
[ 1455.424272]  ? ksys_write+0x12d/0x260
[ 1455.425093]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1455.426118]  __do_sys_fork+0x8a/0xc0
[ 1455.426916]  ? kernel_thread+0xf0/0xf0
[ 1455.427757]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1455.428856]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1455.429940]  ? trace_hardirqs_on+0x5b/0x180
[ 1455.430862]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1455.431949]  do_syscall_64+0x33/0x40
[ 1455.432743]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1455.433823] RIP: 0033:0x7f899d6fab19
[ 1455.434620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1455.438496] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1455.440096] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1455.441607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1455.443116] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1455.444614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1455.446114] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
[ 1455.552359] FAULT_INJECTION: forcing a failure.
[ 1455.552359] name failslab, interval 1, probability 0, space 0, times 0
[ 1455.553700] CPU: 1 PID: 28505 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1455.554512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1455.555462] Call Trace:
[ 1455.555769]  dump_stack+0x107/0x167
[ 1455.556190]  should_fail.cold+0x5/0xa
[ 1455.556638]  ? create_object.isra.0+0x3a/0xa20
[ 1455.557166]  should_failslab+0x5/0x20
[ 1455.557601]  kmem_cache_alloc+0x5b/0x310
[ 1455.558087]  create_object.isra.0+0x3a/0xa20
[ 1455.558600]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1455.559190]  __kmalloc_track_caller+0x177/0x370
[ 1455.559717]  ? strndup_user+0x74/0xe0
[ 1455.560152]  memdup_user+0x22/0xd0
[ 1455.560556]  strndup_user+0x74/0xe0
[ 1455.560975]  __x64_sys_mount+0x133/0x300
[ 1455.561437]  ? copy_mnt_ns+0xa00/0xa00
[ 1455.561894]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1455.562504]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1455.563095]  do_syscall_64+0x33/0x40
[ 1455.563530]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1455.564123] RIP: 0033:0x7f5c6f844b19
[ 1455.564547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1455.566679] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1455.567560] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1455.568388] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1455.569204] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1455.570026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1455.570853] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:29:51 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 3)

20:29:51 executing program 3:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:51 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:51 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0) (fail_nth: 2)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:29:51 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 3)

20:29:51 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 1)

20:29:51 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 3)

20:29:52 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 1)

[ 1468.656763] FAULT_INJECTION: forcing a failure.
[ 1468.656763] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 1468.658383] CPU: 1 PID: 28514 Comm: syz-executor.6 Not tainted 5.10.237 #1
[ 1468.659307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.660398] Call Trace:
[ 1468.660753]  dump_stack+0x107/0x167
[ 1468.661241]  should_fail.cold+0x5/0xa
[ 1468.661751]  _copy_from_user+0x2e/0x1b0
[ 1468.662284]  memdup_user+0x65/0xd0
[ 1468.662491] FAULT_INJECTION: forcing a failure.
[ 1468.662491] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 1468.662775]  strndup_user+0x74/0xe0
[ 1468.665674]  __x64_sys_mount+0x133/0x300
[ 1468.666214]  ? copy_mnt_ns+0xa00/0xa00
[ 1468.666735]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1468.667432]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1468.668103]  do_syscall_64+0x33/0x40
[ 1468.668614]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1468.669290] RIP: 0033:0x7fcf9bfbdb19
[ 1468.669784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1468.672212] RSP: 002b:00007fcf99533188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1468.673220] RAX: ffffffffffffffda RBX: 00007fcf9c0d0f60 RCX: 00007fcf9bfbdb19
[ 1468.674151] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1468.675100] RBP: 00007fcf995331d0 R08: 0000000020000400 R09: 0000000000000000
[ 1468.676036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1468.676963] R13: 00007ffdcd5e939f R14: 00007fcf99533300 R15: 0000000000022000
[ 1468.677937] CPU: 0 PID: 28519 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1468.679424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.681180] Call Trace:
[ 1468.681743]  dump_stack+0x107/0x167
[ 1468.682544]  should_fail.cold+0x5/0xa
[ 1468.683368]  _copy_from_user+0x2e/0x1b0
[ 1468.684222]  memdup_user+0x65/0xd0
[ 1468.684986]  strndup_user+0x74/0xe0
[ 1468.685757]  __x64_sys_mount+0x133/0x300
[ 1468.686632]  ? copy_mnt_ns+0xa00/0xa00
[ 1468.687471]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1468.688576]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1468.689674]  do_syscall_64+0x33/0x40
[ 1468.690474]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1468.691780] RIP: 0033:0x7f5c6f844b19
[ 1468.692733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1468.693990] FAULT_INJECTION: forcing a failure.
[ 1468.693990] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1468.696734] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1468.696756] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1468.696766] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1468.696776] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1468.696786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1468.696796] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1468.704400] CPU: 1 PID: 28518 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1468.705306] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.706416] Call Trace:
[ 1468.706773]  dump_stack+0x107/0x167
[ 1468.707249]  should_fail.cold+0x5/0xa
[ 1468.707754]  __alloc_pages_nodemask+0x182/0x600
[ 1468.708366]  ? lock_downgrade+0x6d0/0x6d0
[ 1468.708914]  ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170
[ 1468.709729]  ? memcg_slab_post_alloc_hook+0x17a/0x430
[ 1468.710416]  ? kmem_cache_alloc_node+0x2bc/0x330
[ 1468.711039]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1468.711717]  copy_process+0x618/0x7800
[ 1468.712242]  ? __lock_acquire+0xbb1/0x5b00
[ 1468.712810]  ? lock_downgrade+0x6d0/0x6d0
[ 1468.713354]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1468.714041]  ? __cleanup_sighand+0xb0/0xb0
[ 1468.714613]  ? lock_acquire+0x197/0x470
[ 1468.714846] FAULT_INJECTION: forcing a failure.
[ 1468.714846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1468.715133]  ? find_held_lock+0x2c/0x110
[ 1468.715157]  kernel_clone+0xe7/0x980
[ 1468.718682]  ? lock_downgrade+0x6d0/0x6d0
[ 1468.719229]  ? find_held_lock+0x2c/0x110
[ 1468.719749]  ? create_io_thread+0xf0/0xf0
[ 1468.720297]  ? ksys_write+0x12d/0x260
[ 1468.720789]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1468.721426]  __do_sys_fork+0x8a/0xc0
[ 1468.721908]  ? kernel_thread+0xf0/0xf0
[ 1468.722422]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1468.723116]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1468.723775]  ? trace_hardirqs_on+0x5b/0x180
[ 1468.724344]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1468.725015]  do_syscall_64+0x33/0x40
[ 1468.725492]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1468.726176] RIP: 0033:0x7f899d6fab19
[ 1468.726660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1468.729058] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1468.730079] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1468.731018] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1468.731938] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1468.732850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1468.733774] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
[ 1468.734741] CPU: 0 PID: 28532 Comm: syz-executor.1 Not tainted 5.10.237 #1
[ 1468.736241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.738014] Call Trace:
[ 1468.738593]  dump_stack+0x107/0x167
[ 1468.739376]  should_fail.cold+0x5/0xa
[ 1468.740201]  copy_page_from_iter+0x40a/0x900
[ 1468.741135]  tun_build_skb+0x2d9/0xfc0
[ 1468.741976]  ? tun_xdp_act+0x6f0/0x6f0
[ 1468.742826]  ? __lock_acquire+0xbb1/0x5b00
[ 1468.743737]  tun_get_user+0x6c1/0x32f0
[ 1468.744587]  ? tun_build_skb+0xfc0/0xfc0
[ 1468.745455]  ? rtl8211e_config_intr+0x60/0x100
[ 1468.746422]  ? lock_downgrade+0x6d0/0x6d0
[ 1468.747318]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1468.748452]  tun_chr_write_iter+0xe1/0x1e0
[ 1468.749364]  new_sync_write+0x42c/0x660
[ 1468.750202]  ? new_sync_read+0x6f0/0x6f0
[ 1468.751073]  ? avc_policy_seqno+0x9/0x70
[ 1468.751955]  ? selinux_file_permission+0x92/0x520
[ 1468.752972]  ? security_file_permission+0xb1/0xe0
[ 1468.753994]  vfs_write+0x7c0/0xb10
[ 1468.754764]  ksys_write+0x12d/0x260
[ 1468.755530]  ? __ia32_sys_read+0xb0/0xb0
[ 1468.756402]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1468.757508]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1468.758600]  do_syscall_64+0x33/0x40
[ 1468.759385]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1468.760469] RIP: 0033:0x7f8e1781c5ff
[ 1468.761255] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 fd ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 cc fd ff ff 48
[ 1468.765118] RSP: 002b:00007f8e14ddf150 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1468.766733] RAX: ffffffffffffffda RBX: 00007f8e1797cf60 RCX: 00007f8e1781c5ff
[ 1468.768240] RDX: 000000000000003e RSI: 0000000020000300 RDI: 00000000000000f0
[ 1468.769737] RBP: 00007f8e14ddf1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1468.771255] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[ 1468.772763] R13: 00007ffcf1fbd43f R14: 00007f8e14ddf300 R15: 0000000000022000
20:29:52 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 4)

[ 1468.797364] FAULT_INJECTION: forcing a failure.
[ 1468.797364] name failslab, interval 1, probability 0, space 0, times 0
[ 1468.799981] CPU: 0 PID: 28540 Comm: syz-executor.0 Not tainted 5.10.237 #1
[ 1468.801454] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.803222] Call Trace:
[ 1468.803784]  dump_stack+0x107/0x167
[ 1468.804563]  should_fail.cold+0x5/0xa
[ 1468.805384]  should_failslab+0x5/0x20
[ 1468.806186]  __kmalloc_track_caller+0x79/0x370
[ 1468.807151]  ? strndup_user+0x74/0xe0
[ 1468.807959]  memdup_user+0x22/0xd0
[ 1468.808708]  strndup_user+0x74/0xe0
[ 1468.809482]  __x64_sys_mount+0x133/0x300
[ 1468.810347]  ? copy_mnt_ns+0xa00/0xa00
[ 1468.811181]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1468.812318]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1468.813413]  do_syscall_64+0x33/0x40
[ 1468.814213]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1468.815326] RIP: 0033:0x7fbd92dc5b19
[ 1468.816136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1468.820130] RSP: 002b:00007fbd9033b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1468.821774] RAX: ffffffffffffffda RBX: 00007fbd92ed8f60 RCX: 00007fbd92dc5b19
[ 1468.823346] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1468.824857] RBP: 00007fbd9033b1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1468.826360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1468.827859] R13: 00007ffda67f294f R14: 00007fbd9033b300 R15: 0000000000022000
[ 1468.834434] FAULT_INJECTION: forcing a failure.
[ 1468.834434] name failslab, interval 1, probability 0, space 0, times 0
[ 1468.835937] CPU: 1 PID: 28592 Comm: syz-executor.6 Not tainted 5.10.237 #1
[ 1468.836807] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.837865] Call Trace:
[ 1468.838199]  dump_stack+0x107/0x167
[ 1468.838664]  should_fail.cold+0x5/0xa
[ 1468.839151]  ? copy_mount_options+0x55/0x180
[ 1468.839702]  should_failslab+0x5/0x20
[ 1468.840176]  kmem_cache_alloc_trace+0x55/0x320
[ 1468.840745]  ? _copy_from_user+0xfb/0x1b0
[ 1468.841266]  copy_mount_options+0x55/0x180
[ 1468.841803]  __x64_sys_mount+0x1a8/0x300
[ 1468.842310]  ? copy_mnt_ns+0xa00/0xa00
[ 1468.842856]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1468.843512]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1468.844158]  do_syscall_64+0x33/0x40
[ 1468.844625]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1468.845267] RIP: 0033:0x7fcf9bfbdb19
[ 1468.845728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1468.848009] RSP: 002b:00007fcf99533188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1468.848950] RAX: ffffffffffffffda RBX: 00007fcf9c0d0f60 RCX: 00007fcf9bfbdb19
[ 1468.849842] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1468.850726] RBP: 00007fcf995331d0 R08: 0000000020000400 R09: 0000000000000000
[ 1468.851602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1468.852474] R13: 00007ffdcd5e939f R14: 00007fcf99533300 R15: 0000000000022000
20:29:52 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 1)

20:29:52 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 4)

20:29:52 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 4)

[ 1468.929392] FAULT_INJECTION: forcing a failure.
[ 1468.929392] name failslab, interval 1, probability 0, space 0, times 0
[ 1468.930850] CPU: 1 PID: 28836 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1468.931667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.932645] Call Trace:
[ 1468.932960]  dump_stack+0x107/0x167
[ 1468.933387]  should_fail.cold+0x5/0xa
[ 1468.933837]  should_failslab+0x5/0x20
[ 1468.934286]  __kmalloc_track_caller+0x79/0x370
[ 1468.934839]  ? strndup_user+0x74/0xe0
[ 1468.935286]  memdup_user+0x22/0xd0
[ 1468.935707]  strndup_user+0x74/0xe0
[ 1468.936137]  __x64_sys_mount+0x133/0x300
[ 1468.936613]  ? copy_mnt_ns+0xa00/0xa00
[ 1468.937073]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1468.937683]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1468.938294]  do_syscall_64+0x33/0x40
[ 1468.938736]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1468.939341] RIP: 0033:0x7f1d54fbbb19
[ 1468.939772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1468.941927] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1468.942825] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1468.943657] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1468.944492] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1468.945329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1468.946158] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:29:52 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:52 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:29:52 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 2)

20:29:52 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 5)

[ 1468.992691] FAULT_INJECTION: forcing a failure.
[ 1468.992691] name failslab, interval 1, probability 0, space 0, times 0
[ 1468.995188] CPU: 0 PID: 28844 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1468.996705] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1468.998663] Call Trace:
[ 1468.999283]  dump_stack+0x107/0x167
[ 1469.000279]  should_fail.cold+0x5/0xa
[ 1469.001190]  ? copy_mount_options+0x55/0x180
[ 1469.002141]  should_failslab+0x5/0x20
[ 1469.002986]  kmem_cache_alloc_trace+0x55/0x320
[ 1469.003990]  ? _copy_from_user+0xfb/0x1b0
[ 1469.004890]  copy_mount_options+0x55/0x180
[ 1469.005805]  __x64_sys_mount+0x1a8/0x300
[ 1469.006689]  ? copy_mnt_ns+0xa00/0xa00
[ 1469.007559]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1469.008683]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1469.009790]  do_syscall_64+0x33/0x40
[ 1469.010612]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1469.011741] RIP: 0033:0x7f5c6f844b19
[ 1469.012550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1469.016519] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1469.018157] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1469.019728] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1469.020681] FAULT_INJECTION: forcing a failure.
[ 1469.020681] name failslab, interval 1, probability 0, space 0, times 0
[ 1469.021269] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1469.021286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1469.021303] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1469.027197] CPU: 1 PID: 28850 Comm: syz-executor.6 Not tainted 5.10.237 #1
[ 1469.028001] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1469.028941] Call Trace:
[ 1469.029247]  dump_stack+0x107/0x167
[ 1469.029663]  should_fail.cold+0x5/0xa
[ 1469.030102]  ? create_object.isra.0+0x3a/0xa20
[ 1469.030654]  should_failslab+0x5/0x20
[ 1469.031088]  kmem_cache_alloc+0x5b/0x310
[ 1469.031545]  create_object.isra.0+0x3a/0xa20
[ 1469.032042]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1469.032616]  kmem_cache_alloc_trace+0x151/0x320
[ 1469.033153]  copy_mount_options+0x55/0x180
[ 1469.033630]  __x64_sys_mount+0x1a8/0x300
[ 1469.034093]  ? copy_mnt_ns+0xa00/0xa00
[ 1469.034543]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1469.035145]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1469.035730]  do_syscall_64+0x33/0x40
[ 1469.036154]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1469.036744] RIP: 0033:0x7fcf9bfbdb19
[ 1469.037179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1469.039301] RSP: 002b:00007fcf99533188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1469.040172] RAX: ffffffffffffffda RBX: 00007fcf9c0d0f60 RCX: 00007fcf9bfbdb19
[ 1469.040983] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1469.041795] RBP: 00007fcf995331d0 R08: 0000000020000400 R09: 0000000000000000
[ 1469.042611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1469.043431] R13: 00007ffdcd5e939f R14: 00007fcf99533300 R15: 0000000000022000
[ 1469.053490] FAULT_INJECTION: forcing a failure.
[ 1469.053490] name failslab, interval 1, probability 0, space 0, times 0
[ 1469.056266] CPU: 0 PID: 28841 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1469.057780] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1469.059581] Call Trace:
[ 1469.060145]  dump_stack+0x107/0x167
[ 1469.060936]  should_fail.cold+0x5/0xa
[ 1469.061756]  ? prepare_creds+0x25/0x5e0
[ 1469.062630]  should_failslab+0x5/0x20
[ 1469.063463]  kmem_cache_alloc+0x5b/0x310
[ 1469.064344]  ? lock_downgrade+0x6d0/0x6d0
[ 1469.065224]  prepare_creds+0x25/0x5e0
[ 1469.066042]  copy_creds+0x72/0x580
[ 1469.066830]  copy_process+0xfdc/0x7800
[ 1469.067686]  ? __lock_acquire+0xbb1/0x5b00
[ 1469.068612]  ? lock_downgrade+0x6d0/0x6d0
[ 1469.069510]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1469.070657]  ? __cleanup_sighand+0xb0/0xb0
[ 1469.071590]  ? lock_acquire+0x197/0x470
[ 1469.072458]  ? find_held_lock+0x2c/0x110
[ 1469.073359]  kernel_clone+0xe7/0x980
[ 1469.074155]  ? lock_downgrade+0x6d0/0x6d0
[ 1469.075050]  ? find_held_lock+0x2c/0x110
[ 1469.075937]  ? create_io_thread+0xf0/0xf0
[ 1469.076829]  ? ksys_write+0x12d/0x260
[ 1469.077654]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1469.078710]  __do_sys_fork+0x8a/0xc0
[ 1469.079527]  ? kernel_thread+0xf0/0xf0
[ 1469.080379]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1469.081501]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1469.082618]  ? trace_hardirqs_on+0x5b/0x180
[ 1469.083573]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1469.084672]  do_syscall_64+0x33/0x40
[ 1469.085474]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1469.086576] RIP: 0033:0x7f899d6fab19
[ 1469.087396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1469.091355] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1469.092977] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1469.094519] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1469.096056] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1469.097596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1469.099141] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
20:30:06 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 5)

[ 1482.752774] FAULT_INJECTION: forcing a failure.
[ 1482.752774] name failslab, interval 1, probability 0, space 0, times 0
[ 1482.754402] CPU: 1 PID: 28967 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1482.755377] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1482.756495] Call Trace:
[ 1482.756869]  dump_stack+0x107/0x167
[ 1482.757376]  should_fail.cold+0x5/0xa
[ 1482.757910]  ? create_object.isra.0+0x3a/0xa20
[ 1482.758552]  should_failslab+0x5/0x20
[ 1482.759082]  kmem_cache_alloc+0x5b/0x310
[ 1482.759646]  create_object.isra.0+0x3a/0xa20
[ 1482.760264]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1482.760974]  __kmalloc_track_caller+0x177/0x370
[ 1482.761617]  ? strndup_user+0x74/0xe0
[ 1482.762146]  memdup_user+0x22/0xd0
[ 1482.762641]  strndup_user+0x74/0xe0
[ 1482.763150]  __x64_sys_mount+0x133/0x300
[ 1482.763712]  ? copy_mnt_ns+0xa00/0xa00
[ 1482.764252]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1482.764983]  ? syscall_enter_from_user_mode+0x1d/0x50
20:30:06 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:06 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:06 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:30:06 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 2)

20:30:06 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 5)

20:30:06 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 6)

[ 1482.765973]  do_syscall_64+0x33/0x40
[ 1482.766660]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1482.767380] RIP: 0033:0x7f1d54fbbb19
[ 1482.767898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1482.770441] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
20:30:06 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1482.771494] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1482.772610] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1482.773607] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1482.773882] FAULT_INJECTION: forcing a failure.
[ 1482.773882] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1482.774585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1482.774602] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
[ 1482.779668] CPU: 0 PID: 28975 Comm: syz-executor.6 Not tainted 5.10.237 #1
[ 1482.781282] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1482.783224] Call Trace:
[ 1482.783840]  dump_stack+0x107/0x167
[ 1482.784379] FAULT_INJECTION: forcing a failure.
[ 1482.784379] name failslab, interval 1, probability 0, space 0, times 0
[ 1482.784685]  should_fail.cold+0x5/0xa
[ 1482.787085]  _copy_from_user+0x2e/0x1b0
[ 1482.788008]  copy_mount_options+0x76/0x180
[ 1482.788984]  __x64_sys_mount+0x1a8/0x300
[ 1482.789918]  ? copy_mnt_ns+0xa00/0xa00
[ 1482.790832]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1482.792045]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1482.793235]  do_syscall_64+0x33/0x40
[ 1482.794090]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1482.795276] RIP: 0033:0x7fcf9bfbdb19
[ 1482.796127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1482.800359] RSP: 002b:00007fcf99533188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1482.802103] RAX: ffffffffffffffda RBX: 00007fcf9c0d0f60 RCX: 00007fcf9bfbdb19
[ 1482.803749] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1482.805386] RBP: 00007fcf995331d0 R08: 0000000020000400 R09: 0000000000000000
[ 1482.807035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1482.808671] R13: 00007ffdcd5e939f R14: 00007fcf99533300 R15: 0000000000022000
[ 1482.810332] CPU: 1 PID: 28971 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1482.811298] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1482.812433] Call Trace:
[ 1482.812795]  dump_stack+0x107/0x167
[ 1482.813291]  should_fail.cold+0x5/0xa
[ 1482.813812]  ? create_object.isra.0+0x3a/0xa20
[ 1482.814446]  should_failslab+0x5/0x20
[ 1482.814974]  kmem_cache_alloc+0x5b/0x310
[ 1482.815528]  create_object.isra.0+0x3a/0xa20
[ 1482.816140]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1482.816834]  kmem_cache_alloc_trace+0x151/0x320
[ 1482.817475]  ? _copy_from_user+0xfb/0x1b0
[ 1482.818046]  copy_mount_options+0x55/0x180
[ 1482.818639]  __x64_sys_mount+0x1a8/0x300
[ 1482.819202]  ? copy_mnt_ns+0xa00/0xa00
[ 1482.819741]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1482.820482]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1482.821200]  do_syscall_64+0x33/0x40
[ 1482.821712]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1482.822427] RIP: 0033:0x7f5c6f844b19
[ 1482.822946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1482.825525] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1482.826583] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1482.827572] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1482.828568] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1482.829562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1482.830541] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1482.842332] FAULT_INJECTION: forcing a failure.
[ 1482.842332] name failslab, interval 1, probability 0, space 0, times 0
[ 1482.845234] CPU: 0 PID: 28963 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1482.846839] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1482.848751] Call Trace:
[ 1482.849366]  dump_stack+0x107/0x167
[ 1482.850211]  should_fail.cold+0x5/0xa
[ 1482.851104]  ? create_object.isra.0+0x3a/0xa20
[ 1482.852159]  should_failslab+0x5/0x20
[ 1482.853038]  kmem_cache_alloc+0x5b/0x310
[ 1482.853979]  create_object.isra.0+0x3a/0xa20
[ 1482.855000]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1482.856175]  kmem_cache_alloc+0x159/0x310
[ 1482.857139]  prepare_creds+0x25/0x5e0
[ 1482.858017]  copy_creds+0x72/0x580
[ 1482.858849]  copy_process+0xfdc/0x7800
[ 1482.859749]  ? __lock_acquire+0xbb1/0x5b00
[ 1482.860733]  ? lock_downgrade+0x6d0/0x6d0
[ 1482.861692]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1482.862913]  ? __cleanup_sighand+0xb0/0xb0
[ 1482.863891]  ? lock_acquire+0x197/0x470
[ 1482.864811]  ? find_held_lock+0x2c/0x110
[ 1482.865751]  kernel_clone+0xe7/0x980
[ 1482.866606]  ? lock_downgrade+0x6d0/0x6d0
[ 1482.867565]  ? find_held_lock+0x2c/0x110
[ 1482.868497]  ? create_io_thread+0xf0/0xf0
[ 1482.869453]  ? ksys_write+0x12d/0x260
[ 1482.870335]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1482.871461]  __do_sys_fork+0x8a/0xc0
[ 1482.872315]  ? kernel_thread+0xf0/0xf0
[ 1482.873223]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1482.874434]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1482.875624]  ? trace_hardirqs_on+0x5b/0x180
[ 1482.876617]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1482.877804]  do_syscall_64+0x33/0x40
[ 1482.878665]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1482.879844] RIP: 0033:0x7f899d6fab19
[ 1482.880700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1482.884944] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1482.886706] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1482.888349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1482.889990] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1482.891653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1482.893312] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
20:30:06 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:06 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 3)

20:30:06 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 7)

20:30:06 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0xd, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 1483.062145] FAULT_INJECTION: forcing a failure.
[ 1483.062145] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1483.064991] CPU: 0 PID: 29288 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1483.066599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1483.068526] Call Trace:
[ 1483.069147]  dump_stack+0x107/0x167
[ 1483.069992]  should_fail.cold+0x5/0xa
[ 1483.070890]  _copy_from_user+0x2e/0x1b0
[ 1483.071824]  memdup_user+0x65/0xd0
[ 1483.072653]  strndup_user+0x74/0xe0
[ 1483.073505]  __x64_sys_mount+0x133/0x300
[ 1483.074456]  ? copy_mnt_ns+0xa00/0xa00
[ 1483.075379]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1483.076610]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1483.077821]  do_syscall_64+0x33/0x40
[ 1483.078705]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1483.079903] RIP: 0033:0x7f1d54fbbb19
[ 1483.080771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1483.085076] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1483.086860] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1483.088543] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1483.090213] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1483.091893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1483.093562] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:30:06 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {<r1=>r0}}, './file1/file0\x00'})
syz_io_uring_setup(0x20f5, &(0x7f0000000200)={0x0, 0x50cd, 0x0, 0x0, 0x29, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000000280))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB="2c616669643d30783030303030c1f183018f3030303030303030"])

[ 1483.118414] FAULT_INJECTION: forcing a failure.
[ 1483.118414] name failslab, interval 1, probability 0, space 0, times 0
20:30:06 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 6)

[ 1483.121199] CPU: 0 PID: 29294 Comm: syz-executor.6 Not tainted 5.10.237 #1
[ 1483.122900] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1483.124812] Call Trace:
[ 1483.125429]  dump_stack+0x107/0x167
[ 1483.126270]  should_fail.cold+0x5/0xa
[ 1483.127161]  ? getname_flags.part.0+0x50/0x4f0
[ 1483.128229]  should_failslab+0x5/0x20
[ 1483.129108]  kmem_cache_alloc+0x5b/0x310
[ 1483.130051]  getname_flags.part.0+0x50/0x4f0
[ 1483.131074]  ? _copy_from_user+0xfb/0x1b0
[ 1483.132043]  user_path_at_empty+0xa1/0x100
[ 1483.133020]  __x64_sys_mount+0x1e9/0x300
[ 1483.133955]  ? copy_mnt_ns+0xa00/0xa00
[ 1483.134859]  ? copy_mnt_ns+0xa00/0xa00
[ 1483.135771]  do_syscall_64+0x33/0x40
[ 1483.136638]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
20:30:06 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1483.137820] RIP: 0033:0x7fcf9bfbdb19
[ 1483.138755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1483.143060] RSP: 002b:00007fcf99533188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1483.144840] RAX: ffffffffffffffda RBX: 00007fcf9c0d0f60 RCX: 00007fcf9bfbdb19
[ 1483.146502] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1483.148184] RBP: 00007fcf995331d0 R08: 0000000020000400 R09: 0000000000000000
[ 1483.149844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1483.151508] R13: 00007ffdcd5e939f R14: 00007fcf99533300 R15: 0000000000022000
[ 1483.171132] FAULT_INJECTION: forcing a failure.
[ 1483.171132] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1483.172615] CPU: 1 PID: 29348 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1483.173439] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1483.174399] Call Trace:
[ 1483.174716]  dump_stack+0x107/0x167
[ 1483.175138]  should_fail.cold+0x5/0xa
[ 1483.175584]  _copy_from_user+0x2e/0x1b0
[ 1483.176078]  copy_mount_options+0x76/0x180
[ 1483.176572]  __x64_sys_mount+0x1a8/0x300
[ 1483.177063]  ? copy_mnt_ns+0xa00/0xa00
[ 1483.177509]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1483.178150]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1483.178774]  do_syscall_64+0x33/0x40
[ 1483.179220]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1483.179806] RIP: 0033:0x7f5c6f844b19
[ 1483.180248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1483.182394] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1483.183328] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1483.184189] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1483.185027] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1483.185882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1483.186713] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:30:06 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:06 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 6)

20:30:06 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x7e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 1483.351360] FAULT_INJECTION: forcing a failure.
[ 1483.351360] name failslab, interval 1, probability 0, space 0, times 0
[ 1483.352829] CPU: 1 PID: 29671 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1483.353652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1483.354614] Call Trace:
[ 1483.354934]  dump_stack+0x107/0x167
[ 1483.355355]  should_fail.cold+0x5/0xa
[ 1483.355788]  ? security_prepare_creds+0x112/0x190
[ 1483.356350]  should_failslab+0x5/0x20
[ 1483.356790]  __kmalloc+0x72/0x390
[ 1483.357205]  security_prepare_creds+0x112/0x190
[ 1483.357741]  prepare_creds+0x452/0x5e0
[ 1483.358204]  copy_creds+0x72/0x580
[ 1483.358625]  copy_process+0xfdc/0x7800
[ 1483.359094]  ? __lock_acquire+0xbb1/0x5b00
[ 1483.359604]  ? lock_downgrade+0x6d0/0x6d0
[ 1483.360093]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1483.360693]  ? __cleanup_sighand+0xb0/0xb0
[ 1483.361194]  ? lock_acquire+0x197/0x470
[ 1483.361648]  ? find_held_lock+0x2c/0x110
[ 1483.362129]  kernel_clone+0xe7/0x980
[ 1483.362559]  ? lock_downgrade+0x6d0/0x6d0
[ 1483.363059]  ? find_held_lock+0x2c/0x110
[ 1483.363538]  ? create_io_thread+0xf0/0xf0
[ 1483.364034]  ? ksys_write+0x12d/0x260
[ 1483.364468]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1483.365045]  __do_sys_fork+0x8a/0xc0
[ 1483.365476]  ? kernel_thread+0xf0/0xf0
[ 1483.365939]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1483.366555]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1483.367174]  ? trace_hardirqs_on+0x5b/0x180
[ 1483.367687]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1483.368300]  do_syscall_64+0x33/0x40
[ 1483.368747]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1483.369351] RIP: 0033:0x7f899d6fab19
[ 1483.369791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1483.371983] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1483.372861] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1483.373710] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1483.374546] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1483.375368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1483.376175] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
20:30:20 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0xfdef, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:30:20 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 7)

20:30:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 4)

20:30:20 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 8)

20:30:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:20 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 7)

20:30:20 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1497.155630] FAULT_INJECTION: forcing a failure.
[ 1497.155630] name failslab, interval 1, probability 0, space 0, times 0
[ 1497.158250] CPU: 1 PID: 29824 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1497.159811] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.161651] Call Trace:
[ 1497.162247]  dump_stack+0x107/0x167
[ 1497.163025] FAULT_INJECTION: forcing a failure.
[ 1497.163025] name failslab, interval 1, probability 0, space 0, times 0
[ 1497.163075]  should_fail.cold+0x5/0xa
[ 1497.166533]  ? getname_flags.part.0+0x50/0x4f0
[ 1497.167561]  should_failslab+0x5/0x20
[ 1497.168408]  kmem_cache_alloc+0x5b/0x310
[ 1497.169316]  getname_flags.part.0+0x50/0x4f0
[ 1497.170292]  ? _copy_from_user+0xfb/0x1b0
[ 1497.171231]  user_path_at_empty+0xa1/0x100
[ 1497.172172]  __x64_sys_mount+0x1e9/0x300
[ 1497.173071]  ? copy_mnt_ns+0xa00/0xa00
[ 1497.173941]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1497.175114]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.176258]  do_syscall_64+0x33/0x40
[ 1497.177085]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1497.178222] RIP: 0033:0x7f5c6f844b19
[ 1497.179058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.183147] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1497.184836] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1497.186417] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1497.188006] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1497.189586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1497.191174] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1497.192789] CPU: 0 PID: 29829 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1497.194418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.196354] Call Trace:
[ 1497.196976]  dump_stack+0x107/0x167
[ 1497.197819]  should_fail.cold+0x5/0xa
[ 1497.198705]  ? copy_mount_options+0x55/0x180
[ 1497.199745]  should_failslab+0x5/0x20
[ 1497.200630]  kmem_cache_alloc_trace+0x55/0x320
[ 1497.201690]  ? _copy_from_user+0xfb/0x1b0
[ 1497.202649]  copy_mount_options+0x55/0x180
[ 1497.203640]  __x64_sys_mount+0x1a8/0x300
[ 1497.204419] FAULT_INJECTION: forcing a failure.
[ 1497.204419] name failslab, interval 1, probability 0, space 0, times 0
[ 1497.204585]  ? copy_mnt_ns+0xa00/0xa00
[ 1497.207957]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1497.209159]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.210339]  do_syscall_64+0x33/0x40
[ 1497.211200]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1497.212373] RIP: 0033:0x7f1d54fbbb19
[ 1497.213224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.217437] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1497.219188] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1497.220818] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1497.222441] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1497.224066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1497.225679] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
[ 1497.227338] CPU: 1 PID: 29821 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1497.228882] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.230717] Call Trace:
[ 1497.231334]  dump_stack+0x107/0x167
[ 1497.232149]  should_fail.cold+0x5/0xa
[ 1497.232994]  ? create_object.isra.0+0x3a/0xa20
[ 1497.234006]  should_failslab+0x5/0x20
[ 1497.234853]  kmem_cache_alloc+0x5b/0x310
[ 1497.235758]  create_object.isra.0+0x3a/0xa20
[ 1497.236724]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1497.237851]  __kmalloc+0x16e/0x390
[ 1497.238643]  security_prepare_creds+0x112/0x190
[ 1497.239683]  prepare_creds+0x452/0x5e0
[ 1497.240544]  copy_creds+0x72/0x580
[ 1497.241334]  copy_process+0xfdc/0x7800
[ 1497.242201]  ? __lock_acquire+0xbb1/0x5b00
[ 1497.243159]  ? lock_downgrade+0x6d0/0x6d0
[ 1497.244076]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1497.245243]  ? __cleanup_sighand+0xb0/0xb0
[ 1497.246182]  ? lock_acquire+0x197/0x470
[ 1497.247078]  ? find_held_lock+0x2c/0x110
[ 1497.247104] FAULT_INJECTION: forcing a failure.
[ 1497.247104] name failslab, interval 1, probability 0, space 0, times 0
[ 1497.248002]  kernel_clone+0xe7/0x980
[ 1497.248022]  ? lock_downgrade+0x6d0/0x6d0
[ 1497.248047]  ? find_held_lock+0x2c/0x110
[ 1497.253086]  ? create_io_thread+0xf0/0xf0
[ 1497.254001]  ? ksys_write+0x12d/0x260
[ 1497.254852]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1497.255919]  __do_sys_fork+0x8a/0xc0
[ 1497.256736]  ? kernel_thread+0xf0/0xf0
[ 1497.257609]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1497.258762]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.259902]  ? trace_hardirqs_on+0x5b/0x180
[ 1497.260853]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.261984]  do_syscall_64+0x33/0x40
[ 1497.262803]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1497.263941] RIP: 0033:0x7f899d6fab19
[ 1497.264776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.268839] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1497.270517] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1497.272092] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1497.273661] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1497.275243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1497.276813] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
[ 1497.278413] CPU: 0 PID: 29832 Comm: syz-executor.6 Not tainted 5.10.237 #1
[ 1497.279972] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.281801] Call Trace:
[ 1497.282392]  dump_stack+0x107/0x167
[ 1497.283211]  should_fail.cold+0x5/0xa
[ 1497.284059]  ? create_object.isra.0+0x3a/0xa20
[ 1497.285072]  should_failslab+0x5/0x20
[ 1497.285906]  kmem_cache_alloc+0x5b/0x310
[ 1497.286800]  create_object.isra.0+0x3a/0xa20
[ 1497.287774]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1497.288896]  kmem_cache_alloc+0x159/0x310
[ 1497.289812]  getname_flags.part.0+0x50/0x4f0
[ 1497.290778]  ? _copy_from_user+0xfb/0x1b0
[ 1497.291695]  user_path_at_empty+0xa1/0x100
[ 1497.292624]  __x64_sys_mount+0x1e9/0x300
[ 1497.293514]  ? copy_mnt_ns+0xa00/0xa00
[ 1497.294375]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1497.295532]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.296661]  do_syscall_64+0x33/0x40
[ 1497.297554]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1497.298834] RIP: 0033:0x7fcf9bfbdb19
[ 1497.299760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.304314] RSP: 002b:00007fcf99533188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1497.306206] RAX: ffffffffffffffda RBX: 00007fcf9c0d0f60 RCX: 00007fcf9bfbdb19
[ 1497.307981] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1497.309743] RBP: 00007fcf995331d0 R08: 0000000020000400 R09: 0000000000000000
[ 1497.311514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1497.313264] R13: 00007ffdcd5e939f R14: 00007fcf99533300 R15: 0000000000022000
20:30:20 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat(r0, &(0x7f0000000000)='./file1\x00', 0x2000, 0x44)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc02c2, 0x0)
r2 = syz_io_uring_setup(0x761d, &(0x7f00000002c0)={0x0, 0xb62e, 0x2, 0x0, 0x9}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000080)=<r3=>0x0, &(0x7f0000000180)=<r4=>0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x1, 0x0, 0x911c, 0x2, &(0x7f00000006c0)="f411bdbde11a2589d02c6d4df061735f1b4895b75ee555aecafbe7d13e30b2f59ec840c4d24154cb2b3bc47efb9d75e9834a2cac1c25e491f295d4f0133701d2546eca3b51b22fdd22bcd31b713e1e3afc43a71c032c7ce06d0b58cc1d8ea73ea20d48574fe160565eddb0298bffc8521333f346477232788774463f833ad074096bc683525932cdd58be057e869459cf057de2b24ca9d1f10379d773b5dc3e1772ba71e32deb14779b573ad8381523028fc370fbe908fff080bbf3419167d5749fb6e71bc967674", 0x7, 0x0, 0x1, {0x2, r5}}, 0x1)
openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x101000, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f00000004c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}}, 0x1c93)
r6 = open(&(0x7f0000000040)='./file0\x00', 0x1811c1, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r6})
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r8 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r7, r8, 0x0, 0x100000001)
r9 = syz_io_uring_setup(0x4bc4, &(0x7f0000000200)={0x0, 0x0, 0x24, 0x1, 0x1, 0x0, r7}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r6, 0xc0189374, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r10=>r9, {0x2fb38000}}, './file1\x00'})
sendmsg$IPCTNL_MSG_EXP_GET(r10, &(0x7f0000000680)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000640)={&(0x7f0000000580)=ANY=[@ANYBLOB="b800000001020104000000000000000002000006060007400000000008000840000000000800094000000004080008400000000184000280140001800800010000000000084002000a010100060003400000000014000180082101000000000008000e0200ac1414331400018008000100e0000002080002007f00000106000340000300001400018008000100ac14142b08000200000000001400018008000100ac141440080002000059d6fceba1bec32b0001002f0000"], 0xb8}, 0x1, 0x0, 0x0, 0x80b0}, 0x4)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r11}, 0x2c, {'wfdno', 0x3d, r12}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:20 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 8)

20:30:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 5)

20:30:20 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1497.519960] FAULT_INJECTION: forcing a failure.
[ 1497.519960] name failslab, interval 1, probability 0, space 0, times 0
[ 1497.522998] CPU: 0 PID: 30136 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1497.524658] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.526624] Call Trace:
[ 1497.527267]  dump_stack+0x107/0x167
[ 1497.528143]  should_fail.cold+0x5/0xa
[ 1497.529055]  ? create_object.isra.0+0x3a/0xa20
[ 1497.530148]  should_failslab+0x5/0x20
[ 1497.531059]  kmem_cache_alloc+0x5b/0x310
[ 1497.531341] FAULT_INJECTION: forcing a failure.
[ 1497.531341] name failslab, interval 1, probability 0, space 0, times 0
[ 1497.532028]  create_object.isra.0+0x3a/0xa20
[ 1497.532046]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1497.532073]  kmem_cache_alloc+0x159/0x310
[ 1497.537535]  getname_flags.part.0+0x50/0x4f0
[ 1497.538566]  ? _copy_from_user+0xfb/0x1b0
[ 1497.539555]  user_path_at_empty+0xa1/0x100
[ 1497.540555]  __x64_sys_mount+0x1e9/0x300
[ 1497.541503]  ? copy_mnt_ns+0xa00/0xa00
[ 1497.542418]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1497.543657]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.544873]  do_syscall_64+0x33/0x40
[ 1497.545745]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1497.546944] RIP: 0033:0x7f5c6f844b19
[ 1497.547803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.552065] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1497.553823] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1497.555478] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1497.557110] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1497.558745] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1497.560389] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1497.562056] CPU: 1 PID: 30140 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1497.563547] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.565337] Call Trace:
[ 1497.565903]  dump_stack+0x107/0x167
[ 1497.566669]  should_fail.cold+0x5/0xa
[ 1497.567491]  ? create_object.isra.0+0x3a/0xa20
[ 1497.568437]  should_failslab+0x5/0x20
[ 1497.569356]  kmem_cache_alloc+0x5b/0x310
[ 1497.570339]  create_object.isra.0+0x3a/0xa20
[ 1497.571542]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1497.572696]  kmem_cache_alloc_trace+0x151/0x320
[ 1497.573671]  ? _copy_from_user+0xfb/0x1b0
[ 1497.574543]  copy_mount_options+0x55/0x180
[ 1497.575437]  __x64_sys_mount+0x1a8/0x300
[ 1497.576286]  ? copy_mnt_ns+0xa00/0xa00
[ 1497.577109]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1497.578209]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.579306]  do_syscall_64+0x33/0x40
[ 1497.580086]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1497.581160] RIP: 0033:0x7f1d54fbbb19
[ 1497.581936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.585835] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1497.587458] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1497.588970] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1497.590489] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1497.592008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1497.593504] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:30:21 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 9)

20:30:21 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 8)

20:30:21 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x7, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1497.807090] FAULT_INJECTION: forcing a failure.
[ 1497.807090] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1497.809901] CPU: 0 PID: 30353 Comm: syz-executor.6 Not tainted 5.10.237 #1
[ 1497.811471] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.813364] Call Trace:
[ 1497.813968]  dump_stack+0x107/0x167
[ 1497.814796]  should_fail.cold+0x5/0xa
[ 1497.815687]  strncpy_from_user+0x34/0x470
[ 1497.816658]  getname_flags.part.0+0x95/0x4f0
[ 1497.817673]  ? _copy_from_user+0xfb/0x1b0
[ 1497.818626]  user_path_at_empty+0xa1/0x100
[ 1497.819607]  __x64_sys_mount+0x1e9/0x300
[ 1497.820525]  ? copy_mnt_ns+0xa00/0xa00
[ 1497.821421]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1497.822620]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.823810]  do_syscall_64+0x33/0x40
[ 1497.824670]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1497.825840] RIP: 0033:0x7fcf9bfbdb19
20:30:21 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x2000, 0x0)
r1 = syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x3e4d, 0x0, 0x2, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
r5 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r5, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r5, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x10, r1, 0x8000000)
name_to_handle_at(r5, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
name_to_handle_at(r5, &(0x7f0000000040)='./file2\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="140000005200000000000000000500000600"/28], 0x0, 0x400)
syz_mount_image$iso9660(&(0x7f0000000280), &(0x7f00000002c0)='./file2\x00', 0xc9, 0x1, &(0x7f0000000380)=[{&(0x7f0000000340)="b8190504a1ca0ba812f1a527168fba7b2929700939817b40ce", 0x19, 0x1}], 0x800020, &(0x7f00000004c0)={[{@overriderock}, {@check_relaxed}, {@nocompress}, {@session={'session', 0x3d, 0x57}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@unhide}], [{@audit}]})
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
symlinkat(&(0x7f0000000000)='./file1\x00', r4, &(0x7f0000000180)='./file1\x00')

[ 1497.826689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.831097] RSP: 002b:00007fcf99533188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1497.832821] RAX: ffffffffffffffda RBX: 00007fcf9c0d0f60 RCX: 00007fcf9bfbdb19
[ 1497.834440] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1497.836087] RBP: 00007fcf995331d0 R08: 0000000020000400 R09: 0000000000000000
[ 1497.837707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1497.839351] R13: 00007ffdcd5e939f R14: 00007fcf99533300 R15: 0000000000022000
[ 1497.855227] FAULT_INJECTION: forcing a failure.
[ 1497.855227] name failslab, interval 1, probability 0, space 0, times 0
[ 1497.857987] CPU: 1 PID: 30357 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1497.859465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.861236] Call Trace:
[ 1497.861795]  dump_stack+0x107/0x167
[ 1497.862558]  should_fail.cold+0x5/0xa
[ 1497.863364]  ? __delayacct_tsk_init+0x1b/0x80
[ 1497.864314]  should_failslab+0x5/0x20
[ 1497.865116]  kmem_cache_alloc+0x5b/0x310
[ 1497.865968]  ? prepare_creds+0x466/0x5e0
[ 1497.866835]  __delayacct_tsk_init+0x1b/0x80
[ 1497.867755]  copy_process+0x3319/0x7800
[ 1497.868602]  ? __lock_acquire+0xbb1/0x5b00
[ 1497.869496]  ? lock_downgrade+0x6d0/0x6d0
[ 1497.870375]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1497.871490]  ? __cleanup_sighand+0xb0/0xb0
[ 1497.872384]  ? lock_acquire+0x197/0x470
[ 1497.873233]  ? find_held_lock+0x2c/0x110
[ 1497.874099]  kernel_clone+0xe7/0x980
[ 1497.874892]  ? lock_downgrade+0x6d0/0x6d0
[ 1497.875756]  ? find_held_lock+0x2c/0x110
[ 1497.876600]  ? create_io_thread+0xf0/0xf0
[ 1497.877471]  ? ksys_write+0x12d/0x260
[ 1497.878271]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1497.879291]  __do_sys_fork+0x8a/0xc0
[ 1497.880071]  ? kernel_thread+0xf0/0xf0
[ 1497.880897]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1497.882010]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.883106]  ? trace_hardirqs_on+0x5b/0x180
[ 1497.884012]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1497.885094]  do_syscall_64+0x33/0x40
[ 1497.885876]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1497.886968] RIP: 0033:0x7f899d6fab19
[ 1497.887746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.891620] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1497.893208] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1497.894678] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1497.896167] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1497.897654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1497.899145] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
20:30:21 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x2000033e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:30:21 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 9)

[ 1497.992564] FAULT_INJECTION: forcing a failure.
[ 1497.992564] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1497.994997] CPU: 0 PID: 30467 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1497.996388] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.998030] Call Trace:
[ 1497.998563]  dump_stack+0x107/0x167
[ 1497.999321]  should_fail.cold+0x5/0xa
[ 1498.000100]  strncpy_from_user+0x34/0x470
[ 1498.000932]  getname_flags.part.0+0x95/0x4f0
[ 1498.001799]  ? _copy_from_user+0xfb/0x1b0
[ 1498.002622]  user_path_at_empty+0xa1/0x100
[ 1498.003484]  __x64_sys_mount+0x1e9/0x300
[ 1498.004303]  ? copy_mnt_ns+0xa00/0xa00
[ 1498.005084]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1498.006122]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1498.007169]  do_syscall_64+0x33/0x40
[ 1498.007921]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1498.008958] RIP: 0033:0x7f5c6f844b19
[ 1498.009704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1498.013399] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1498.014931] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1498.016352] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1498.017771] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1498.019192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1498.020623] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:30:33 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 10)

20:30:33 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0xfffffdef, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:30:33 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 9)

20:30:33 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x8, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:33 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 10)

20:30:33 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
move_mount(r0, &(0x7f0000000000)='./file1\x00', r0, &(0x7f0000000180)='./file1\x00', 0x46)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:33 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 6)

[ 1510.597088] FAULT_INJECTION: forcing a failure.
[ 1510.597088] name failslab, interval 1, probability 0, space 0, times 0
[ 1510.598458] CPU: 1 PID: 30678 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1510.599213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1510.600158] Call Trace:
[ 1510.600465]  dump_stack+0x107/0x167
[ 1510.600885]  should_fail.cold+0x5/0xa
[ 1510.601324]  ? create_object.isra.0+0x3a/0xa20
[ 1510.601822]  should_failslab+0x5/0x20
[ 1510.602260]  kmem_cache_alloc+0x5b/0x310
[ 1510.602705]  create_object.isra.0+0x3a/0xa20
[ 1510.603212]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1510.603795]  kmem_cache_alloc+0x159/0x310
[ 1510.604267]  ? prepare_creds+0x466/0x5e0
[ 1510.604717]  __delayacct_tsk_init+0x1b/0x80
[ 1510.605221]  copy_process+0x3319/0x7800
[ 1510.605655]  ? __lock_acquire+0xbb1/0x5b00
[ 1510.606143]  ? lock_downgrade+0x6d0/0x6d0
[ 1510.606615]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1510.607224]  ? __cleanup_sighand+0xb0/0xb0
[ 1510.607683]  ? lock_acquire+0x197/0x470
[ 1510.608137]  ? find_held_lock+0x2c/0x110
[ 1510.608599]  kernel_clone+0xe7/0x980
[ 1510.609027]  ? lock_downgrade+0x6d0/0x6d0
[ 1510.609496]  ? find_held_lock+0x2c/0x110
[ 1510.609936]  ? create_io_thread+0xf0/0xf0
[ 1510.610413]  ? ksys_write+0x12d/0x260
[ 1510.610833]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1510.610889] FAULT_INJECTION: forcing a failure.
[ 1510.610889] name failslab, interval 1, probability 0, space 0, times 0
[ 1510.611393]  __do_sys_fork+0x8a/0xc0
[ 1510.611403]  ? kernel_thread+0xf0/0xf0
[ 1510.611421]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1510.614733]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1510.615326]  ? trace_hardirqs_on+0x5b/0x180
[ 1510.615800]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1510.616383]  do_syscall_64+0x33/0x40
[ 1510.616789]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1510.617370] RIP: 0033:0x7f899d6fab19
[ 1510.617783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1510.619878] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1510.620702] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1510.621518] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1510.622291] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1510.623106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1510.623877] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
[ 1510.624709] CPU: 0 PID: 30690 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1510.625905] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1510.627391] Call Trace:
[ 1510.627918]  dump_stack+0x107/0x167
[ 1510.628650]  should_fail.cold+0x5/0xa
[ 1510.629405]  ? alloc_fs_context+0x57/0x840
[ 1510.630252]  should_failslab+0x5/0x20
[ 1510.631014]  kmem_cache_alloc_trace+0x55/0x320
[ 1510.631926]  alloc_fs_context+0x57/0x840
[ 1510.632732]  path_mount+0xaa3/0x2120
[ 1510.633470]  ? strncpy_from_user+0x9e/0x470
[ 1510.634336]  ? finish_automount+0xa90/0xa90
[ 1510.635191]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1510.636116]  ? _copy_from_user+0xfb/0x1b0
[ 1510.636946]  __x64_sys_mount+0x282/0x300
[ 1510.637745]  ? copy_mnt_ns+0xa00/0xa00
[ 1510.638520]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1510.639574]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1510.640608]  do_syscall_64+0x33/0x40
[ 1510.641364]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1510.642392] RIP: 0033:0x7f5c6f844b19
[ 1510.643151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1510.646857] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1510.648395] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1510.649836] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1510.651280] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1510.652707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1510.654139] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:30:34 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1510.677490] FAULT_INJECTION: forcing a failure.
[ 1510.677490] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1510.678890] CPU: 1 PID: 30688 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1510.679667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1510.680585] Call Trace:
[ 1510.680886]  dump_stack+0x107/0x167
[ 1510.681281]  should_fail.cold+0x5/0xa
[ 1510.681696]  _copy_from_user+0x2e/0x1b0
[ 1510.682132]  copy_mount_options+0x76/0x180
[ 1510.682602]  __x64_sys_mount+0x1a8/0x300
[ 1510.683057]  ? copy_mnt_ns+0xa00/0xa00
[ 1510.683489]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1510.684064]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1510.684670]  do_syscall_64+0x33/0x40
[ 1510.685082]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1510.685677] RIP: 0033:0x7f1d54fbbb19
[ 1510.686088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1510.688231] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1510.689058] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1510.689839] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1510.690615] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1510.691401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1510.692186] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:30:34 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 11)

20:30:34 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 10)

[ 1510.732224] FAULT_INJECTION: forcing a failure.
[ 1510.732224] name failslab, interval 1, probability 0, space 0, times 0
[ 1510.734328] CPU: 1 PID: 30854 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1510.735136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1510.736083] Call Trace:
[ 1510.736390]  dump_stack+0x107/0x167
[ 1510.736815]  should_fail.cold+0x5/0xa
[ 1510.737262]  ? alloc_fs_context+0x57/0x840
[ 1510.737757]  should_failslab+0x5/0x20
[ 1510.738206]  kmem_cache_alloc_trace+0x55/0x320
[ 1510.738731]  alloc_fs_context+0x57/0x840
[ 1510.739210]  path_mount+0xaa3/0x2120
[ 1510.739659]  ? strncpy_from_user+0x9e/0x470
[ 1510.740162]  ? finish_automount+0xa90/0xa90
[ 1510.740653]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1510.741187]  ? _copy_from_user+0xfb/0x1b0
[ 1510.741668]  __x64_sys_mount+0x282/0x300
[ 1510.742148]  ? copy_mnt_ns+0xa00/0xa00
[ 1510.742600]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1510.743223]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1510.743834]  do_syscall_64+0x33/0x40
[ 1510.744269]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1510.744858] RIP: 0033:0x7f5c6f844b19
[ 1510.745295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1510.747437] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1510.748307] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1510.749128] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1510.749967] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1510.750810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1510.751659] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1510.780004] FAULT_INJECTION: forcing a failure.
[ 1510.780004] name failslab, interval 1, probability 0, space 0, times 0
[ 1510.781370] CPU: 1 PID: 30975 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1510.782171] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1510.783142] Call Trace:
[ 1510.783461]  dump_stack+0x107/0x167
[ 1510.783882]  should_fail.cold+0x5/0xa
[ 1510.784330]  ? dup_fd+0x89/0xf40
[ 1510.784720]  should_failslab+0x5/0x20
[ 1510.785166]  kmem_cache_alloc+0x5b/0x310
[ 1510.785646]  dup_fd+0x89/0xf40
[ 1510.786024]  ? audit_filter_inodes+0x40/0x40
[ 1510.786526]  ? security_task_alloc+0xe6/0x260
[ 1510.787049]  copy_process+0x197e/0x7800
[ 1510.787522]  ? __lock_acquire+0xbb1/0x5b00
[ 1510.788031]  ? __cleanup_sighand+0xb0/0xb0
[ 1510.788533]  ? lock_acquire+0x197/0x470
[ 1510.788999]  ? find_held_lock+0x2c/0x110
[ 1510.789472]  kernel_clone+0xe7/0x980
[ 1510.789908]  ? lock_downgrade+0x6d0/0x6d0
[ 1510.790388]  ? find_held_lock+0x2c/0x110
[ 1510.790855]  ? create_io_thread+0xf0/0xf0
[ 1510.791353]  ? ksys_write+0x12d/0x260
[ 1510.791793]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1510.792348]  __do_sys_fork+0x8a/0xc0
[ 1510.792842]  ? kernel_thread+0xf0/0xf0
[ 1510.793302]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1510.793905]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1510.794492]  ? trace_hardirqs_on+0x5b/0x180
[ 1510.795011]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1510.795604]  do_syscall_64+0x33/0x40
[ 1510.796030]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1510.796627] RIP: 0033:0x7f899d6fab19
[ 1510.797059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1510.799180] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1510.800053] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1510.800888] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1510.801724] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1510.802563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1510.803386] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
20:30:34 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x9, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:47 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 12)

20:30:47 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:47 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xa, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:47 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 7)

20:30:47 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 11)

20:30:47 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x7e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:30:47 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0xfffffffffffffdef, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:30:47 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={<r3=>0xffffffffffffffff, 0x7ff, 0x7, 0x81})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000340)={0x5, 0x0, &(0x7f0000000180)=[r3]}, 0x1)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c63616368653d6d6d61702c63616368653d667363616368652c64656275673d3078303030303030303030303030303932342c6e6f6465766d61702c6e6f657874656e642c64666c746769643d746cdceafacb5026dc85f4ec070ac8b3e0de2b3bd2f7cb583a9d20789400970305c36f93a72ee4602dc5e85165ed4297bd3c379adf9ef01be851ec6b83c438b5c00734041a84ccdbee486cdf044a784e84342d37c1feb865f569ec311bc8c48bbd6fb2", @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])

[ 1524.055987] FAULT_INJECTION: forcing a failure.
[ 1524.055987] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.058475] CPU: 0 PID: 31216 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1524.059979] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.060688] FAULT_INJECTION: forcing a failure.
[ 1524.060688] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.061738] Call Trace:
[ 1524.061763]  dump_stack+0x107/0x167
[ 1524.061784]  should_fail.cold+0x5/0xa
[ 1524.061812]  ? legacy_init_fs_context+0x44/0xe0
[ 1524.066538]  should_failslab+0x5/0x20
[ 1524.067362]  kmem_cache_alloc_trace+0x55/0x320
[ 1524.068339]  ? lockdep_init_map_type+0x2c7/0x780
[ 1524.069355]  legacy_init_fs_context+0x44/0xe0
[ 1524.070309]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 1524.071530]  alloc_fs_context+0x4fd/0x840
[ 1524.072556]  path_mount+0xaa3/0x2120
[ 1524.073482]  ? strncpy_from_user+0x9e/0x470
[ 1524.074526]  ? finish_automount+0xa90/0xa90
[ 1524.075597]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1524.076728]  ? _copy_from_user+0xfb/0x1b0
[ 1524.077758]  __x64_sys_mount+0x282/0x300
[ 1524.078752]  ? copy_mnt_ns+0xa00/0xa00
[ 1524.079727]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1524.081010]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.082286]  do_syscall_64+0x33/0x40
[ 1524.083199]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1524.084454] RIP: 0033:0x7f5c6f844b19
[ 1524.085367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.089870] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1524.091712] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1524.093453] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1524.095184] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1524.096904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1524.098631] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1524.100375] CPU: 1 PID: 31222 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1524.101422] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.102601] Call Trace:
[ 1524.102987]  dump_stack+0x107/0x167
[ 1524.103517]  should_fail.cold+0x5/0xa
[ 1524.104067]  ? create_object.isra.0+0x3a/0xa20
[ 1524.104708]  should_failslab+0x5/0x20
[ 1524.105244]  kmem_cache_alloc+0x5b/0x310
[ 1524.105819]  create_object.isra.0+0x3a/0xa20
[ 1524.106435]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1524.107169]  kmem_cache_alloc+0x159/0x310
[ 1524.107408] FAULT_INJECTION: forcing a failure.
[ 1524.107408] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.107756]  dup_fd+0x89/0xf40
[ 1524.110811]  ? audit_filter_inodes+0x40/0x40
[ 1524.111447]  ? security_task_alloc+0xe6/0x260
[ 1524.112077]  copy_process+0x197e/0x7800
[ 1524.112639]  ? __lock_acquire+0xbb1/0x5b00
[ 1524.113243]  ? __cleanup_sighand+0xb0/0xb0
[ 1524.113840]  ? lock_acquire+0x197/0x470
[ 1524.114401]  ? find_held_lock+0x2c/0x110
[ 1524.114974]  kernel_clone+0xe7/0x980
[ 1524.115499]  ? lock_downgrade+0x6d0/0x6d0
[ 1524.116077]  ? find_held_lock+0x2c/0x110
[ 1524.116627]  ? create_io_thread+0xf0/0xf0
[ 1524.117206]  ? ksys_write+0x12d/0x260
[ 1524.117739]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1524.118423]  __do_sys_fork+0x8a/0xc0
[ 1524.118941]  ? kernel_thread+0xf0/0xf0
[ 1524.119501]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1524.120234]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.120951]  ? trace_hardirqs_on+0x5b/0x180
[ 1524.121550]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.122280]  do_syscall_64+0x33/0x40
[ 1524.122804]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1524.123539] RIP: 0033:0x7f899d6fab19
[ 1524.124060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.126634] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1524.127696] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1524.128657] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1524.129649] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1524.130648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1524.131656] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
[ 1524.132681] CPU: 0 PID: 31221 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1524.134316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.136261] Call Trace:
[ 1524.136880]  dump_stack+0x107/0x167
[ 1524.137741]  should_fail.cold+0x5/0xa
[ 1524.138640]  ? getname_flags.part.0+0x50/0x4f0
[ 1524.139717]  should_failslab+0x5/0x20
[ 1524.140624]  kmem_cache_alloc+0x5b/0x310
[ 1524.141591]  getname_flags.part.0+0x50/0x4f0
[ 1524.142623]  ? _copy_from_user+0xfb/0x1b0
[ 1524.143617]  user_path_at_empty+0xa1/0x100
[ 1524.144607]  __x64_sys_mount+0x1e9/0x300
[ 1524.145548]  ? copy_mnt_ns+0xa00/0xa00
[ 1524.146473]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1524.147704]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.148919]  do_syscall_64+0x33/0x40
[ 1524.149788]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1524.150993] RIP: 0033:0x7f1d54fbbb19
[ 1524.151881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.156216] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1524.157969] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1524.159628] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1524.161291] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1524.162942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1524.164585] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:30:47 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 13)

20:30:47 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:47 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:47 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x10, 0xc1010, r0, 0x8000000)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x12, r1, 0x10000000)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000004, 0x12, 0xffffffffffffffff, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)=[0xffffffffffffffff], 0x1, 0x0, 0x1, {0x0, r5}}, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r1, 0x0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000640)=""/161, 0xa1}, {&(0x7f00000002c0)=""/126, 0x7e}, {&(0x7f0000000440)=""/194, 0xc2}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000000540)=""/170, 0xaa}], 0x5, &(0x7f0000001940)=""/4096, 0x1000}, 0x0, 0x20, 0x1, {0x3, r5}}, 0xdb12)
openat(r1, &(0x7f0000000600)='./file1\x00', 0x88000, 0x8c)
pipe(&(0x7f00000003c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r7}})

[ 1524.345511] FAULT_INJECTION: forcing a failure.
[ 1524.345511] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.347199] CPU: 1 PID: 31644 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1524.348149] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.349068] Call Trace:
[ 1524.349384]  dump_stack+0x107/0x167
[ 1524.349800]  should_fail.cold+0x5/0xa
[ 1524.350241]  ? create_object.isra.0+0x3a/0xa20
[ 1524.350771]  should_failslab+0x5/0x20
[ 1524.351220]  kmem_cache_alloc+0x5b/0x310
[ 1524.351686]  ? create_object.isra.0+0x3ad/0xa20
[ 1524.352232]  create_object.isra.0+0x3a/0xa20
[ 1524.352722]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1524.353301]  __kmalloc_node+0x1ae/0x420
[ 1524.353754]  memcg_alloc_page_obj_cgroups+0x73/0x100
[ 1524.354328]  memcg_slab_post_alloc_hook+0x1f0/0x430
[ 1524.354910]  ? trace_hardirqs_on+0x5b/0x180
[ 1524.355419]  kmem_cache_alloc_trace+0x169/0x320
[ 1524.355942]  alloc_fs_context+0x57/0x840
[ 1524.356415]  path_mount+0xaa3/0x2120
[ 1524.356853]  ? strncpy_from_user+0x9e/0x470
[ 1524.357358]  ? finish_automount+0xa90/0xa90
[ 1524.357840]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1524.358367]  ? _copy_from_user+0xfb/0x1b0
[ 1524.358841]  __x64_sys_mount+0x282/0x300
[ 1524.359314]  ? copy_mnt_ns+0xa00/0xa00
[ 1524.359760]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1524.360376]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.360943]  do_syscall_64+0x33/0x40
[ 1524.361368]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1524.361943] RIP: 0033:0x7f5c6f844b19
[ 1524.362364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.364385] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1524.365271] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1524.366064] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1524.366835] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1524.367617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1524.368398] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:30:47 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:47 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 8)

20:30:47 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:47 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 1524.493309] FAULT_INJECTION: forcing a failure.
[ 1524.493309] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.495925] CPU: 0 PID: 31851 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1524.497496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.499375] Call Trace:
[ 1524.499981]  dump_stack+0x107/0x167
[ 1524.500814]  should_fail.cold+0x5/0xa
[ 1524.501670]  ? create_object.isra.0+0x3a/0xa20
[ 1524.502710]  should_failslab+0x5/0x20
[ 1524.503574]  kmem_cache_alloc+0x5b/0x310
[ 1524.504488]  create_object.isra.0+0x3a/0xa20
[ 1524.505482]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1524.506640]  kmem_cache_alloc+0x159/0x310
[ 1524.507588]  getname_flags.part.0+0x50/0x4f0
[ 1524.508596]  ? _copy_from_user+0xfb/0x1b0
[ 1524.509552]  user_path_at_empty+0xa1/0x100
[ 1524.510517]  __x64_sys_mount+0x1e9/0x300
[ 1524.511445]  ? copy_mnt_ns+0xa00/0xa00
[ 1524.512350]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1524.513545]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.514716]  do_syscall_64+0x33/0x40
[ 1524.515565]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1524.516730] RIP: 0033:0x7f1d54fbbb19
[ 1524.517573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.521743] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1524.523470] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1524.525097] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1524.526703] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1524.528324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1524.529943] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:30:47 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 14)

20:30:47 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xc, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1524.573709] FAULT_INJECTION: forcing a failure.
[ 1524.573709] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.575039] CPU: 1 PID: 31879 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1524.575871] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.576766] Call Trace:
[ 1524.577075]  dump_stack+0x107/0x167
[ 1524.577487]  should_fail.cold+0x5/0xa
[ 1524.577921]  ? v9fs_mount+0x5a/0x8f0
[ 1524.578346]  should_failslab+0x5/0x20
[ 1524.578780]  kmem_cache_alloc_trace+0x55/0x320
[ 1524.579304]  ? v9fs_write_inode+0x60/0x60
[ 1524.579780]  v9fs_mount+0x5a/0x8f0
[ 1524.580166]  ? v9fs_write_inode+0x60/0x60
[ 1524.580640]  legacy_get_tree+0x105/0x220
[ 1524.581108]  vfs_get_tree+0x8e/0x300
[ 1524.581532]  path_mount+0x1429/0x2120
[ 1524.581972]  ? strncpy_from_user+0x9e/0x470
[ 1524.582460]  ? finish_automount+0xa90/0xa90
[ 1524.582949]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1524.583457]  ? _copy_from_user+0xfb/0x1b0
[ 1524.583933]  __x64_sys_mount+0x282/0x300
[ 1524.584373]  ? copy_mnt_ns+0xa00/0xa00
[ 1524.584819]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1524.585422]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.586008]  do_syscall_64+0x33/0x40
[ 1524.586433]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1524.587018] RIP: 0033:0x7f5c6f844b19
[ 1524.587427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.589524] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1524.590392] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1524.591210] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1524.592017] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1524.592790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1524.593595] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:30:47 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 12)

20:30:48 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:30:48 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 15)

20:30:48 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xe, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1524.717050] FAULT_INJECTION: forcing a failure.
[ 1524.717050] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.718373] CPU: 1 PID: 32267 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1524.719177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.720078] Call Trace:
[ 1524.720390]  dump_stack+0x107/0x167
[ 1524.720810]  should_fail.cold+0x5/0xa
[ 1524.721249]  ? v9fs_mount+0x5a/0x8f0
[ 1524.721680]  should_failslab+0x5/0x20
[ 1524.722119]  kmem_cache_alloc_trace+0x55/0x320
[ 1524.722647]  ? v9fs_write_inode+0x60/0x60
[ 1524.723126]  v9fs_mount+0x5a/0x8f0
[ 1524.723544]  ? v9fs_write_inode+0x60/0x60
[ 1524.724002]  legacy_get_tree+0x105/0x220
[ 1524.724470]  vfs_get_tree+0x8e/0x300
[ 1524.724901]  path_mount+0x1429/0x2120
[ 1524.725321]  ? strncpy_from_user+0x9e/0x470
[ 1524.725811]  ? finish_automount+0xa90/0xa90
[ 1524.726309]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1524.726842]  ? _copy_from_user+0xfb/0x1b0
[ 1524.727327]  __x64_sys_mount+0x282/0x300
[ 1524.727792]  ? copy_mnt_ns+0xa00/0xa00
[ 1524.728224]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1524.728824]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.729419]  do_syscall_64+0x33/0x40
[ 1524.729847]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1524.730432] RIP: 0033:0x7f5c6f844b19
[ 1524.730856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.732844] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1524.733714] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1524.734522] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1524.735345] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1524.736119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1524.736936] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1524.743621] FAULT_INJECTION: forcing a failure.
[ 1524.743621] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.745052] CPU: 1 PID: 32265 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1524.745842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.746788] Call Trace:
20:30:48 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1524.747094]  dump_stack+0x107/0x167
[ 1524.747752]  should_fail.cold+0x5/0xa
[ 1524.748165]  ? alloc_fdtable+0x84/0x280
[ 1524.748597]  should_failslab+0x5/0x20
[ 1524.749010]  kmem_cache_alloc_trace+0x55/0x320
[ 1524.749499]  ? rwlock_bug.part.0+0x90/0x90
[ 1524.749957]  alloc_fdtable+0x84/0x280
[ 1524.750394]  dup_fd+0x92e/0xf40
[ 1524.750759]  copy_process+0x197e/0x7800
[ 1524.751234]  ? __lock_acquire+0xbb1/0x5b00
[ 1524.751703]  ? __cleanup_sighand+0xb0/0xb0
[ 1524.752161]  ? lock_acquire+0x197/0x470
[ 1524.752596]  ? find_held_lock+0x2c/0x110
[ 1524.753036]  kernel_clone+0xe7/0x980
[ 1524.753462]  ? lock_downgrade+0x6d0/0x6d0
[ 1524.753910]  ? find_held_lock+0x2c/0x110
[ 1524.754371]  ? create_io_thread+0xf0/0xf0
[ 1524.754849]  ? ksys_write+0x12d/0x260
[ 1524.755287]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1524.755814]  __do_sys_fork+0x8a/0xc0
[ 1524.756246]  ? kernel_thread+0xf0/0xf0
[ 1524.756675]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1524.757276]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.757839]  ? trace_hardirqs_on+0x5b/0x180
[ 1524.758328]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1524.758887]  do_syscall_64+0x33/0x40
[ 1524.759317]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1524.759897] RIP: 0033:0x7f899d6fab19
[ 1524.760321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.762413] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1524.763294] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1524.764104] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1524.764919] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1524.765732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1524.766543] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
20:30:48 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000580)='cgroup.controllers\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000500)={0x0, 0x80, 0x81, 0x80, 0xc7, 0x0, 0x0, 0x1, 0x100, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0x5, 0x80000001}, 0x3a3, 0x7, 0x10000, 0x4, 0x6, 0x7fffffff, 0x100, 0x0, 0x7ff, 0x0, 0x7}, 0xffffffffffffffff, 0xc, r2, 0x3)
name_to_handle_at(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000340)=ANY=[@ANYBLOB="1400000052000000000000000000000000000000e4a41ea20a1060321d7919cd9433a51a3fced9fcaccbc94cbe663ca487623f60caf1b2f594e509442d38cfa3ab04b6239ed1005033a9f45cd2372756d729f36b29ff85a74ae5acc8c4"], 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
name_to_handle_at(r1, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000180)={&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000000)=""/31, 0x1f, 0x0, &(0x7f0000000200)=""/250, 0xfa}, &(0x7f0000000300)=0x40)
ioctl$AUTOFS_IOC_EXPIRE(r1, 0x810c9365, &(0x7f00000005c0)={{0xff, 0x4531}, 0x100, './file0\x00'})
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:30:48 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0280c2000000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:31:02 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 9)

20:31:02 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 13)

20:31:02 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0380c2000000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:31:02 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:31:02 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 16)

20:31:02 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:02 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x10, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:02 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="2c776664526f3d20ba376ce923c40c90139e7948e8ac85a7aab8091f3cccad7304ff8cb2fa3798fec9db7f9febe456ee442003a2111c3989354e9ff1ec65378d21e6d878b469f1b1c99e75d8789b89f815e1625ccbc9f95416f8ce7942c9657c2270", @ANYRESHEX=r1, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])

[ 1538.913290] 9pnet: Insufficient options for proto=fd
[ 1538.922797] FAULT_INJECTION: forcing a failure.
[ 1538.922797] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1538.925646] CPU: 0 PID: 32791 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1538.927234] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1538.929130] Call Trace:
[ 1538.929748]  dump_stack+0x107/0x167
[ 1538.930580]  should_fail.cold+0x5/0xa
[ 1538.931458]  strncpy_from_user+0x34/0x470
[ 1538.932410]  getname_flags.part.0+0x95/0x4f0
[ 1538.933417]  ? _copy_from_user+0xfb/0x1b0
[ 1538.934362]  user_path_at_empty+0xa1/0x100
[ 1538.935333]  __x64_sys_mount+0x1e9/0x300
[ 1538.936271]  ? copy_mnt_ns+0xa00/0xa00
[ 1538.937163]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1538.938352]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1538.939550]  do_syscall_64+0x33/0x40
[ 1538.940406]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1538.941587] RIP: 0033:0x7f1d54fbbb19
[ 1538.942440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1538.946685] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1538.948416] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1538.950034] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1538.951084] FAULT_INJECTION: forcing a failure.
[ 1538.951084] name failslab, interval 1, probability 0, space 0, times 0
[ 1538.951647] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1538.951667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1538.956965] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
[ 1538.958585] CPU: 1 PID: 32809 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1538.959897] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1538.961474] Call Trace:
[ 1538.961988]  dump_stack+0x107/0x167
[ 1538.962675]  should_fail.cold+0x5/0xa
[ 1538.963421]  should_failslab+0x5/0x20
[ 1538.964039] FAULT_INJECTION: forcing a failure.
[ 1538.964039] name failslab, interval 1, probability 0, space 0, times 0
[ 1538.964148]  __kmalloc_track_caller+0x79/0x370
[ 1538.967522]  ? v9fs_session_init+0xa7/0x1680
[ 1538.968344]  ? kernel_text_address+0xf2/0x120
[ 1538.969197]  kstrdup+0x36/0x70
[ 1538.969806]  v9fs_session_init+0xa7/0x1680
[ 1538.970603]  ? lock_release+0x680/0x680
[ 1538.971362]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1538.972343]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1538.973367]  ? trace_hardirqs_on+0x5b/0x180
[ 1538.974167]  ? v9fs_show_options+0x690/0x690
[ 1538.975003]  ? _raw_spin_unlock_irqrestore+0x25/0x40
[ 1538.975952]  ? kasan_unpoison_shadow+0x33/0x50
[ 1538.976800]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1538.977769]  v9fs_mount+0x79/0x8f0
[ 1538.978434]  ? v9fs_write_inode+0x60/0x60
[ 1538.979208]  legacy_get_tree+0x105/0x220
[ 1538.979969]  vfs_get_tree+0x8e/0x300
[ 1538.980659]  path_mount+0x1429/0x2120
[ 1538.981377]  ? strncpy_from_user+0x9e/0x470
[ 1538.982192]  ? finish_automount+0xa90/0xa90
[ 1538.983000]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1538.983859]  ? _copy_from_user+0xfb/0x1b0
[ 1538.984636]  __x64_sys_mount+0x282/0x300
[ 1538.985391]  ? copy_mnt_ns+0xa00/0xa00
[ 1538.986119]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1538.987092]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1538.988054]  do_syscall_64+0x33/0x40
[ 1538.988736]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1538.989680] RIP: 0033:0x7f5c6f844b19
[ 1538.990368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1538.993796] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1538.995215] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1538.996551] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1538.997880] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1538.999199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1539.000530] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1539.001905] CPU: 0 PID: 32796 Comm: syz-executor.2 Not tainted 5.10.237 #1
[ 1539.003529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1539.005410] Call Trace:
[ 1539.006019]  dump_stack+0x107/0x167
[ 1539.006854]  should_fail.cold+0x5/0xa
[ 1539.007725]  ? create_object.isra.0+0x3a/0xa20
[ 1539.008763]  should_failslab+0x5/0x20
[ 1539.009623]  kmem_cache_alloc+0x5b/0x310
[ 1539.010552]  create_object.isra.0+0x3a/0xa20
[ 1539.011550]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1539.012709]  kmem_cache_alloc_trace+0x151/0x320
[ 1539.013769]  ? rwlock_bug.part.0+0x90/0x90
[ 1539.014730]  alloc_fdtable+0x84/0x280
[ 1539.015601]  dup_fd+0x92e/0xf40
[ 1539.016366]  copy_process+0x197e/0x7800
[ 1539.017271]  ? __lock_acquire+0xbb1/0x5b00
[ 1539.018249]  ? __cleanup_sighand+0xb0/0xb0
[ 1539.019217]  ? lock_acquire+0x197/0x470
[ 1539.020128]  ? find_held_lock+0x2c/0x110
[ 1539.021056]  kernel_clone+0xe7/0x980
[ 1539.021901]  ? lock_downgrade+0x6d0/0x6d0
[ 1539.022850]  ? find_held_lock+0x2c/0x110
[ 1539.023775]  ? create_io_thread+0xf0/0xf0
[ 1539.024727]  ? ksys_write+0x12d/0x260
[ 1539.025601]  ? __mutex_unlock_slowpath+0xe1/0x600
[ 1539.026697]  __do_sys_fork+0x8a/0xc0
[ 1539.027540]  ? kernel_thread+0xf0/0xf0
[ 1539.028443]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1539.029628]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1539.030791]  ? trace_hardirqs_on+0x5b/0x180
[ 1539.031811]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1539.032976]  do_syscall_64+0x33/0x40
[ 1539.033812]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1539.034983] RIP: 0033:0x7f899d6fab19
[ 1539.035836] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1539.040013] RSP: 002b:00007f899ac70188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039
[ 1539.041750] RAX: ffffffffffffffda RBX: 00007f899d80df60 RCX: 00007f899d6fab19
[ 1539.043370] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1539.044994] RBP: 00007f899ac701d0 R08: 0000000000000000 R09: 0000000000000000
[ 1539.046615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1539.048243] R13: 00007ffd3ec8903f R14: 00007f899ac70300 R15: 0000000000022000
20:31:02 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2e, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:02 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 10)

20:31:02 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000840)={{0x1, 0x1, 0x18, <r2=>r1, {0xee00, 0xee00}}, './file1\x00'})
mkdirat(r2, &(0x7f0000000880)='./file1\x00', 0x100)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r3 = clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})
mount$9p_xen(&(0x7f0000000180), &(0x7f00000004c0)='./file1\x00', &(0x7f0000000500), 0x4daefe8da6a82301, &(0x7f0000000540)={'trans=xen,', {[{@version_9p2000}, {@privport}, {@cache_fscache}, {@fscache}], [{@uid_gt={'uid>', 0xee00}}, {@smackfshat={'smackfshat', 0x3d, ',('}}, {@smackfsroot={'smackfsroot', 0x3d, ':*!\x83'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@subj_type}, {@obj_user={'obj_user', 0x3d, 'debug'}}, {@dont_measure}, {@euid_eq={'euid', 0x3d, 0xee01}}, {@fowner_eq={'fowner', 0x3d, 0xee01}}]}})
r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r5, 0xc0c89425, &(0x7f0000000200)={"ff2d0d5691c98275ad37d94d4f452f58", <r7=>0x0, 0x0, {0x64cd015, 0xfffffffe}, {0x120000000}, 0x7fffffff, [0x6, 0x7, 0x1000, 0x2, 0x1ff, 0xc18, 0xc3, 0xfff, 0xfffffffffffffe01, 0x2, 0x1, 0x7f5, 0x0, 0x6, 0x3, 0xa3ae]})
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, &(0x7f0000000940)={{r6}, r7, 0x2, @inherit={0x90, &(0x7f0000000300)={0x0, 0x9, 0xfffffffffffffffd, 0x2, {0x37, 0x5, 0x1, 0x7fffffff, 0x10001}, [0x2, 0x7, 0x8, 0x2b0b, 0x3ff, 0xbd69, 0x26b6, 0x7fff, 0x5]}}, @name="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"})
clone3(&(0x7f00000007c0)={0x61891800, &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0), {0x24}, &(0x7f0000001940)=""/4096, 0x1000, &(0x7f0000000700)=""/69, &(0x7f0000000780)=[r3], 0x1, {r4}}, 0x58)

[ 1539.167161] FAULT_INJECTION: forcing a failure.
[ 1539.167161] name failslab, interval 1, probability 0, space 0, times 0
[ 1539.169071] CPU: 1 PID: 33216 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1539.170233] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1539.171625] Call Trace:
[ 1539.172061]  dump_stack+0x107/0x167
[ 1539.172684]  should_fail.cold+0x5/0xa
[ 1539.173324]  ? alloc_fs_context+0x57/0x840
[ 1539.174041]  should_failslab+0x5/0x20
[ 1539.174683]  kmem_cache_alloc_trace+0x55/0x320
[ 1539.175468]  alloc_fs_context+0x57/0x840
[ 1539.176138]  path_mount+0xaa3/0x2120
[ 1539.176758]  ? strncpy_from_user+0x9e/0x470
[ 1539.177426]  ? finish_automount+0xa90/0xa90
[ 1539.178147]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1539.178911]  ? _copy_from_user+0xfb/0x1b0
[ 1539.179608]  __x64_sys_mount+0x282/0x300
[ 1539.180284]  ? copy_mnt_ns+0xa00/0xa00
[ 1539.180948]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1539.181833]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1539.182701]  do_syscall_64+0x33/0x40
[ 1539.183312]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1539.184172] RIP: 0033:0x7f1d54fbbb19
[ 1539.184752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1539.187802] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1539.189092] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1539.190263] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1539.191449] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1539.192601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1539.193770] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:31:16 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 17)

20:31:16 executing program 5:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0xfffffffffffffdef, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:31:16 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
chdir(&(0x7f0000000000)='./file1\x00')
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:16 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:31:16 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:16 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 11)

20:31:16 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork() (fail_nth: 14)

20:31:16 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x30, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1553.563527] FAULT_INJECTION: forcing a failure.
[ 1553.563527] name failslab, interval 1, probability 0, space 0, times 0
[ 1553.566286] CPU: 0 PID: 33542 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1553.567857] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1553.569737] Call Trace:
[ 1553.570335]  dump_stack+0x107/0x167
[ 1553.571152]  should_fail.cold+0x5/0xa
[ 1553.572021]  ? create_object.isra.0+0x3a/0xa20
[ 1553.573050]  should_failslab+0x5/0x20
[ 1553.573907]  kmem_cache_alloc+0x5b/0x310
[ 1553.574825]  create_object.isra.0+0x3a/0xa20
[ 1553.575828]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1553.576991]  __kmalloc_track_caller+0x177/0x370
[ 1553.578035]  ? v9fs_session_init+0xa7/0x1680
[ 1553.579030]  ? kernel_text_address+0xf2/0x120
[ 1553.580045]  kstrdup+0x36/0x70
[ 1553.580779]  v9fs_session_init+0xa7/0x1680
[ 1553.581735]  ? lock_release+0x680/0x680
[ 1553.582652]  ? find_held_lock+0x2c/0x110
[ 1553.583596]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1553.584685]  ? v9fs_show_options+0x690/0x690
[ 1553.585681]  ? trace_hardirqs_on+0x5b/0x180
[ 1553.586656]  ? kasan_unpoison_shadow+0x33/0x50
[ 1553.587696]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1553.588839]  v9fs_mount+0x79/0x8f0
[ 1553.589633]  ? v9fs_write_inode+0x60/0x60
[ 1553.590577]  legacy_get_tree+0x105/0x220
[ 1553.591495]  vfs_get_tree+0x8e/0x300
[ 1553.592346]  path_mount+0x1429/0x2120
[ 1553.593204]  ? strncpy_from_user+0x9e/0x470
[ 1553.594168]  ? finish_automount+0xa90/0xa90
[ 1553.595130]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1553.596176]  ? _copy_from_user+0xfb/0x1b0
[ 1553.597129]  __x64_sys_mount+0x282/0x300
[ 1553.598033]  ? copy_mnt_ns+0xa00/0xa00
[ 1553.598902]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1553.600091]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1553.601257]  do_syscall_64+0x33/0x40
[ 1553.602084]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1553.603226] RIP: 0033:0x7f5c6f844b19
[ 1553.604065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1553.608186] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1553.609891] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1553.611469] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1553.613092] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1553.614690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1553.616304] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1553.624226] FAULT_INJECTION: forcing a failure.
[ 1553.624226] name failslab, interval 1, probability 0, space 0, times 0
[ 1553.625895] CPU: 1 PID: 33546 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1553.626871] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1553.628052] Call Trace:
[ 1553.628426]  dump_stack+0x107/0x167
[ 1553.628946]  should_fail.cold+0x5/0xa
[ 1553.629478]  ? create_object.isra.0+0x3a/0xa20
[ 1553.630123]  should_failslab+0x5/0x20
[ 1553.630663]  kmem_cache_alloc+0x5b/0x310
[ 1553.631241]  create_object.isra.0+0x3a/0xa20
[ 1553.631877]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1553.632589]  kmem_cache_alloc_trace+0x151/0x320
[ 1553.633255]  alloc_fs_context+0x57/0x840
[ 1553.633840]  path_mount+0xaa3/0x2120
[ 1553.634382]  ? strncpy_from_user+0x9e/0x470
[ 1553.634991]  ? finish_automount+0xa90/0xa90
[ 1553.635611]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1553.636254]  ? _copy_from_user+0xfb/0x1b0
[ 1553.636835]  __x64_sys_mount+0x282/0x300
[ 1553.637394]  ? copy_mnt_ns+0xa00/0xa00
[ 1553.637952]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1553.638683]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1553.639407]  do_syscall_64+0x33/0x40
[ 1553.639950]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1553.640664] RIP: 0033:0x7f1d54fbbb19
[ 1553.641204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1553.643787] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1553.644871] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1553.645884] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1553.646880] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1553.647954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1553.648954] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:31:17 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x48, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:17 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x7, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:17 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:31:17 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000003, 0x10, 0xffffffffffffffff, 0x10000000)
r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000000)="a8a07e2edf935d413905799cbe8d7d5f63c3926d6effbfc8cd8fedaa2d8ad65e33db", 0x22, 0x4, 0x0, {0x0, r1}}, 0x4759)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:17 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:17 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 18)

20:31:17 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 12)

20:31:17 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1553.917651] FAULT_INJECTION: forcing a failure.
[ 1553.917651] name failslab, interval 1, probability 0, space 0, times 0
[ 1553.919109] CPU: 1 PID: 34171 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1553.919952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1553.920991] Call Trace:
[ 1553.921083] FAULT_INJECTION: forcing a failure.
[ 1553.921083] name failslab, interval 1, probability 0, space 0, times 0
[ 1553.921325]  dump_stack+0x107/0x167
[ 1553.924354]  should_fail.cold+0x5/0xa
[ 1553.924828]  ? legacy_init_fs_context+0x44/0xe0
[ 1553.925408]  should_failslab+0x5/0x20
[ 1553.925882]  kmem_cache_alloc_trace+0x55/0x320
[ 1553.926448]  ? lockdep_init_map_type+0x2c7/0x780
[ 1553.927037]  legacy_init_fs_context+0x44/0xe0
[ 1553.927598]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 1553.928212]  alloc_fs_context+0x4fd/0x840
[ 1553.928728]  path_mount+0xaa3/0x2120
[ 1553.929189]  ? strncpy_from_user+0x9e/0x470
[ 1553.929718]  ? finish_automount+0xa90/0xa90
[ 1553.930248]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1553.930818]  ? _copy_from_user+0xfb/0x1b0
[ 1553.931328]  __x64_sys_mount+0x282/0x300
[ 1553.931884]  ? copy_mnt_ns+0xa00/0xa00
[ 1553.932362]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1553.933006]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1553.933643]  do_syscall_64+0x33/0x40
[ 1553.934101]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1553.934733] RIP: 0033:0x7f1d54fbbb19
[ 1553.935187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1553.937474] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1553.938408] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1553.939281] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1553.940165] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1553.941043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1553.941920] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
[ 1553.942813] CPU: 0 PID: 34169 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1553.944421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1553.946333] Call Trace:
[ 1553.946946]  dump_stack+0x107/0x167
[ 1553.947812]  should_fail.cold+0x5/0xa
[ 1553.948694]  should_failslab+0x5/0x20
[ 1553.949568]  __kmalloc_track_caller+0x79/0x370
[ 1553.950613]  ? v9fs_session_init+0xe9/0x1680
[ 1553.951629]  ? kernel_text_address+0xf2/0x120
[ 1553.952665]  kstrdup+0x36/0x70
[ 1553.953408]  v9fs_session_init+0xe9/0x1680
[ 1553.954390]  ? lock_release+0x680/0x680
[ 1553.955308]  ? find_held_lock+0x2c/0x110
[ 1553.956272]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1553.957398]  ? v9fs_show_options+0x690/0x690
[ 1553.958415]  ? trace_hardirqs_on+0x5b/0x180
[ 1553.959418]  ? kasan_unpoison_shadow+0x33/0x50
[ 1553.960479]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1553.961651]  v9fs_mount+0x79/0x8f0
[ 1553.962472]  ? v9fs_write_inode+0x60/0x60
[ 1553.963435]  legacy_get_tree+0x105/0x220
[ 1553.964379]  vfs_get_tree+0x8e/0x300
[ 1553.965235]  path_mount+0x1429/0x2120
[ 1553.966119]  ? strncpy_from_user+0x9e/0x470
[ 1553.967117]  ? finish_automount+0xa90/0xa90
[ 1553.968123]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1553.969197]  ? _copy_from_user+0xfb/0x1b0
[ 1553.970160]  __x64_sys_mount+0x282/0x300
[ 1553.971094]  ? copy_mnt_ns+0xa00/0xa00
[ 1553.972006]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1553.973219]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1553.974410]  do_syscall_64+0x33/0x40
[ 1553.975267]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1553.976456] RIP: 0033:0x7f5c6f844b19
[ 1553.977310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1553.981566] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1553.983324] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1553.984985] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1553.986630] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1553.988299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1553.989944] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:31:17 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2030000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:31:17 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x68, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:17 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
mount$9p_virtio(&(0x7f0000000580), &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600), 0x200000, &(0x7f0000000640)={'trans=virtio,', {[{@version_9p2000}, {@posixacl}, {@version_u}, {@cache_none}], [{@smackfsroot}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}]}})
syz_mount_image$nfs4(&(0x7f0000000200), &(0x7f0000000240)='./file1\x00', 0x800, 0x2, &(0x7f00000004c0)=[{&(0x7f0000000280)="43732361e3f0c6a4e3d577b3e746fa0f9fb39cef5c8e3a0f8fbf07353c27a7179d575a549ad963256d3124eeac32e04a7181346b426a7944486a9ea1c52c9a9559f6530e2ccb88586af4ba9340148cf2dacde3848e1935762e8f2043fdf6007954dcd5f5aa03920ee9ca57673e4ab1910f1cba76f4bdbd3e83f1134a241080d3620ef9613e945d710571b2bb7e140e5f77cdae3a7a469f792b6d09b320e2642902e3c0d136eac94424f304034c502f1fd724dcef20f799c90d3f6e02430aa1dc264434f45bed00891c70576bd6b7c54cfcfe5615e3e5c2fe68cb6e73663165f4124b70ccb59ad8cbbc1b3de76588d8cc", 0xf0, 0x43f0}, {&(0x7f0000000380)="b3338456be8b32586f73622c72dc28", 0xf, 0x886ab79}], 0x810, &(0x7f0000000500)={[{'(\'-/'}, {'wfdno'}, {'afid'}, {','}, {'dfltgid'}, {'9p\x00'}, {'.}'}, {'[^*^&'}, {}], [{@obj_type={'obj_type', 0x3d, '-:'}}, {@smackfsroot={'smackfsroot', 0x3d, 'debug'}}]})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r2=>r0, @ANYBLOB="000000000000fcffffffffffff653100"])
openat(r2, &(0x7f0000000180)='./file1\x00', 0x432241, 0x80)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:17 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 13)

20:31:17 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1554.121407] loop0: detected capacity change from 0 to 15554048
[ 1554.124447] nfs4: Unknown parameter '('-/'
[ 1554.156238] FAULT_INJECTION: forcing a failure.
[ 1554.156238] name failslab, interval 1, probability 0, space 0, times 0
[ 1554.158996] CPU: 0 PID: 34668 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1554.160616] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1554.162553] Call Trace:
[ 1554.163167]  dump_stack+0x107/0x167
[ 1554.164046]  should_fail.cold+0x5/0xa
[ 1554.164920]  ? legacy_init_fs_context+0x44/0xe0
[ 1554.165987]  should_failslab+0x5/0x20
[ 1554.166859]  kmem_cache_alloc_trace+0x55/0x320
[ 1554.167913]  ? lockdep_init_map_type+0x2c7/0x780
[ 1554.169001]  legacy_init_fs_context+0x44/0xe0
[ 1554.170024]  ? generic_parse_monolithic+0x1f0/0x1f0
[ 1554.171162]  alloc_fs_context+0x4fd/0x840
[ 1554.172126]  path_mount+0xaa3/0x2120
[ 1554.172984]  ? strncpy_from_user+0x9e/0x470
[ 1554.173972]  ? finish_automount+0xa90/0xa90
[ 1554.174963]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1554.176038]  ? _copy_from_user+0xfb/0x1b0
[ 1554.176995]  __x64_sys_mount+0x282/0x300
[ 1554.177921]  ? copy_mnt_ns+0xa00/0xa00
[ 1554.178817]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1554.180030]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1554.181214]  do_syscall_64+0x33/0x40
[ 1554.182067]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1554.183243] RIP: 0033:0x7f1d54fbbb19
[ 1554.184102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
20:31:17 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 1)

[ 1554.188251] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1554.190183] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1554.191832] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1554.193475] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1554.195116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1554.196762] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:31:17 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 19)

[ 1554.286556] FAULT_INJECTION: forcing a failure.
[ 1554.286556] name failslab, interval 1, probability 0, space 0, times 0
[ 1554.289235] CPU: 0 PID: 34730 Comm: syz-executor.5 Not tainted 5.10.237 #1
[ 1554.290855] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1554.292815] Call Trace:
[ 1554.293436]  dump_stack+0x107/0x167
[ 1554.294283]  should_fail.cold+0x5/0xa
[ 1554.295174]  should_failslab+0x5/0x20
[ 1554.296070]  __kmalloc_track_caller+0x79/0x370
[ 1554.297128]  ? strndup_user+0x74/0xe0
[ 1554.298015]  memdup_user+0x22/0xd0
[ 1554.298838]  strndup_user+0x74/0xe0
[ 1554.299694]  __x64_sys_mount+0x133/0x300
[ 1554.300638]  ? copy_mnt_ns+0xa00/0xa00
[ 1554.301551]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1554.302774]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1554.303986]  do_syscall_64+0x33/0x40
[ 1554.304853]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1554.306047] RIP: 0033:0x7f8f1777db19
[ 1554.306910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1554.311225] RSP: 002b:00007f8f14cf3188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1554.312999] RAX: ffffffffffffffda RBX: 00007f8f17890f60 RCX: 00007f8f1777db19
[ 1554.314673] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1554.316357] RBP: 00007f8f14cf31d0 R08: 0000000020000400 R09: 0000000000000000
[ 1554.318031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1554.319716] R13: 00007ffc284cc3af R14: 00007f8f14cf3300 R15: 0000000000022000
[ 1554.334933] FAULT_INJECTION: forcing a failure.
[ 1554.334933] name failslab, interval 1, probability 0, space 0, times 0
[ 1554.336344] CPU: 1 PID: 34834 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1554.337198] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1554.338208] Call Trace:
[ 1554.338532]  dump_stack+0x107/0x167
[ 1554.338969]  should_fail.cold+0x5/0xa
[ 1554.339418]  ? create_object.isra.0+0x3a/0xa20
[ 1554.339972]  should_failslab+0x5/0x20
[ 1554.340421]  kmem_cache_alloc+0x5b/0x310
[ 1554.340903]  create_object.isra.0+0x3a/0xa20
[ 1554.341442]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1554.342061]  __kmalloc_track_caller+0x177/0x370
[ 1554.342613]  ? v9fs_session_init+0xe9/0x1680
[ 1554.343143]  ? kernel_text_address+0xf2/0x120
[ 1554.343690]  kstrdup+0x36/0x70
[ 1554.344082]  v9fs_session_init+0xe9/0x1680
[ 1554.344584]  ? lock_release+0x680/0x680
[ 1554.345055]  ? find_held_lock+0x2c/0x110
[ 1554.345538]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1554.346109]  ? v9fs_show_options+0x690/0x690
[ 1554.346634]  ? trace_hardirqs_on+0x5b/0x180
[ 1554.347146]  ? kasan_unpoison_shadow+0x33/0x50
[ 1554.347694]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1554.348297]  v9fs_mount+0x79/0x8f0
[ 1554.348717]  ? v9fs_write_inode+0x60/0x60
[ 1554.349212]  legacy_get_tree+0x105/0x220
[ 1554.349690]  vfs_get_tree+0x8e/0x300
[ 1554.350131]  path_mount+0x1429/0x2120
[ 1554.350578]  ? strncpy_from_user+0x9e/0x470
[ 1554.351096]  ? finish_automount+0xa90/0xa90
[ 1554.351619]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1554.352189]  ? _copy_from_user+0xfb/0x1b0
[ 1554.352703]  __x64_sys_mount+0x282/0x300
[ 1554.353204]  ? copy_mnt_ns+0xa00/0xa00
[ 1554.353684]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1554.354333]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1554.354986]  do_syscall_64+0x33/0x40
[ 1554.355430]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1554.356054] RIP: 0033:0x7f5c6f844b19
[ 1554.356493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1554.358665] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1554.359571] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1554.360413] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1554.361271] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1554.362144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1554.363022] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:31:32 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 20)

20:31:32 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x8, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:32 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 2)

20:31:32 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 14)

20:31:32 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x6c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:32 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000280), 0x10000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r5=>r1, {0xf5a5}}, './file0\x00'})
r6 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r6, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r6, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r6, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
name_to_handle_at(r6, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)=@fuse={0xc, 0x81, {0x7fff, 0x9, 0x7}}, &(0x7f0000000480), 0x1400)
ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000340)={0x4bc8, 0x7, 0x4, 0x0, 0x0, [{{r1}, 0x1}, {{r4}, 0x3}, {{r0}, 0x1}, {{r5}, 0x3}]})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)=[0xffffffffffffffff], 0x1, 0x0, 0x1}, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd=r3, 0x475, {}, 0x4, 0x1, 0x0, {0x0, 0x0, r2}}, 0x3)

20:31:32 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_io_uring_setup(0x4bc5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r3=>r0, {0x2}}, './file1\x00'})
openat(r3, &(0x7f0000000180)='./file1\x00', 0x801, 0x4)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:32 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 1569.025683] FAULT_INJECTION: forcing a failure.
[ 1569.025683] name failslab, interval 1, probability 0, space 0, times 0
[ 1569.027436] CPU: 1 PID: 34907 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1569.028451] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1569.029610] Call Trace:
[ 1569.029998]  dump_stack+0x107/0x167
[ 1569.030526]  should_fail.cold+0x5/0xa
[ 1569.031083]  ? create_object.isra.0+0x3a/0xa20
[ 1569.031756]  should_failslab+0x5/0x20
[ 1569.032312]  kmem_cache_alloc+0x5b/0x310
[ 1569.032903]  ? create_object.isra.0+0x3ad/0xa20
[ 1569.033577]  create_object.isra.0+0x3a/0xa20
[ 1569.034222]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1569.034964]  __kmalloc_node+0x1ae/0x420
[ 1569.035546]  memcg_alloc_page_obj_cgroups+0x73/0x100
[ 1569.036296]  memcg_slab_post_alloc_hook+0x1f0/0x430
[ 1569.037024]  ? trace_hardirqs_on+0x5b/0x180
[ 1569.037652]  kmem_cache_alloc_trace+0x169/0x320
[ 1569.038333]  alloc_fs_context+0x57/0x840
[ 1569.038927]  path_mount+0xaa3/0x2120
[ 1569.039474]  ? strncpy_from_user+0x9e/0x470
[ 1569.040108]  ? finish_automount+0xa90/0xa90
[ 1569.040495] FAULT_INJECTION: forcing a failure.
[ 1569.040495] name failslab, interval 1, probability 0, space 0, times 0
[ 1569.040753]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1569.043966]  ? _copy_from_user+0xfb/0x1b0
[ 1569.044575]  __x64_sys_mount+0x282/0x300
[ 1569.045168]  ? copy_mnt_ns+0xa00/0xa00
[ 1569.045739]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1569.046507]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1569.047262]  do_syscall_64+0x33/0x40
[ 1569.047812]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1569.048562] RIP: 0033:0x7f1d54fbbb19
[ 1569.049101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1569.051786] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1569.052893] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1569.053933] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1569.054972] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1569.056014] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1569.057049] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
[ 1569.058113] CPU: 0 PID: 34914 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1569.059713] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1569.061642] Call Trace:
[ 1569.062248]  dump_stack+0x107/0x167
[ 1569.063084]  should_fail.cold+0x5/0xa
[ 1569.063980]  ? p9_client_create+0xaf/0x1230
[ 1569.064970]  should_failslab+0x5/0x20
[ 1569.065841]  kmem_cache_alloc_trace+0x55/0x320
[ 1569.066881]  ? find_held_lock+0x2c/0x110
[ 1569.067830]  p9_client_create+0xaf/0x1230
[ 1569.068776]  ? lock_downgrade+0x6d0/0x6d0
[ 1569.069740]  ? p9_client_flush+0x430/0x430
[ 1569.070721]  ? trace_hardirqs_on+0x5b/0x180
[ 1569.071421] FAULT_INJECTION: forcing a failure.
[ 1569.071421] name failslab, interval 1, probability 0, space 0, times 0
[ 1569.071725]  ? lockdep_init_map_type+0x2c7/0x780
[ 1569.071747]  ? __raw_spin_lock_init+0x36/0x110
[ 1569.075435]  v9fs_session_init+0x1dd/0x1680
[ 1569.076430]  ? lock_release+0x680/0x680
[ 1569.077349]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1569.078448]  ? v9fs_show_options+0x690/0x690
[ 1569.079460]  ? trace_hardirqs_on+0x5b/0x180
[ 1569.080453]  ? kasan_unpoison_shadow+0x33/0x50
[ 1569.081494]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1569.082654]  v9fs_mount+0x79/0x8f0
[ 1569.083468]  ? v9fs_write_inode+0x60/0x60
[ 1569.084423]  legacy_get_tree+0x105/0x220
[ 1569.085356]  vfs_get_tree+0x8e/0x300
[ 1569.086208]  path_mount+0x1429/0x2120
[ 1569.087086]  ? strncpy_from_user+0x9e/0x470
[ 1569.088078]  ? finish_automount+0xa90/0xa90
[ 1569.089066]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1569.090131]  ? _copy_from_user+0xfb/0x1b0
[ 1569.091086]  __x64_sys_mount+0x282/0x300
[ 1569.092020]  ? copy_mnt_ns+0xa00/0xa00
[ 1569.092914]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1569.094115]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1569.095295]  do_syscall_64+0x33/0x40
[ 1569.096158]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1569.097326] RIP: 0033:0x7f5c6f844b19
[ 1569.098177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1569.102396] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1569.104145] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1569.105770] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1569.107403] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1569.109051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1569.110679] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1569.112350] CPU: 1 PID: 34906 Comm: syz-executor.5 Not tainted 5.10.237 #1
[ 1569.113383] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1569.114598] Call Trace:
[ 1569.114991]  dump_stack+0x107/0x167
[ 1569.115520]  should_fail.cold+0x5/0xa
[ 1569.116085]  ? create_object.isra.0+0x3a/0xa20
[ 1569.116762]  should_failslab+0x5/0x20
[ 1569.117319]  kmem_cache_alloc+0x5b/0x310
[ 1569.117914]  create_object.isra.0+0x3a/0xa20
[ 1569.118554]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1569.119294]  __kmalloc_track_caller+0x177/0x370
[ 1569.119974]  ? strndup_user+0x74/0xe0
[ 1569.120528]  memdup_user+0x22/0xd0
[ 1569.121043]  strndup_user+0x74/0xe0
[ 1569.121569]  __x64_sys_mount+0x133/0x300
[ 1569.122169]  ? copy_mnt_ns+0xa00/0xa00
[ 1569.122743]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1569.123515]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1569.124276]  do_syscall_64+0x33/0x40
[ 1569.124815]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1569.125558] RIP: 0033:0x7f8f1777db19
[ 1569.126100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1569.128798] RSP: 002b:00007f8f14cf3188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1569.129907] RAX: ffffffffffffffda RBX: 00007f8f17890f60 RCX: 00007f8f1777db19
[ 1569.130940] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1569.131990] RBP: 00007f8f14cf31d0 R08: 0000000020000400 R09: 0000000000000000
[ 1569.133036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1569.134081] R13: 00007ffc284cc3af R14: 00007f8f14cf3300 R15: 0000000000022000
20:31:32 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 15)

20:31:32 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x9, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:32 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:31:32 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 21)

20:31:32 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_emit_ethernet(0x1e, &(0x7f0000000180)={@multicast, @remote, @void, {@can={0xc, {{0x3, 0x1, 0x1, 0x1}, 0x2, 0x3, 0x0, 0x0, "300a3510df090070"}}}}, &(0x7f0000000280)={0x0, 0x1, [0x5a4, 0x16b, 0x528, 0x49d]})
fork()

20:31:32 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x74, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1569.380546] FAULT_INJECTION: forcing a failure.
[ 1569.380546] name failslab, interval 1, probability 0, space 0, times 0
[ 1569.383189] CPU: 0 PID: 35450 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1569.384795] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1569.386707] Call Trace:
[ 1569.387318]  dump_stack+0x107/0x167
[ 1569.388170]  should_fail.cold+0x5/0xa
[ 1569.389053]  ? create_object.isra.0+0x3a/0xa20
[ 1569.390108]  should_failslab+0x5/0x20
[ 1569.390391] FAULT_INJECTION: forcing a failure.
[ 1569.390391] name failslab, interval 1, probability 0, space 0, times 0
[ 1569.390982]  kmem_cache_alloc+0x5b/0x310
[ 1569.391004]  ? cred_has_capability.isra.0+0x152/0x2b0
[ 1569.391028]  create_object.isra.0+0x3a/0xa20
[ 1569.395471]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1569.396653]  kmem_cache_alloc_trace+0x151/0x320
[ 1569.397723]  ? v9fs_write_inode+0x60/0x60
[ 1569.398672]  v9fs_mount+0x5a/0x8f0
[ 1569.399489]  ? v9fs_write_inode+0x60/0x60
[ 1569.400451]  legacy_get_tree+0x105/0x220
[ 1569.401386]  vfs_get_tree+0x8e/0x300
[ 1569.402246]  path_mount+0x1429/0x2120
[ 1569.403128]  ? strncpy_from_user+0x9e/0x470
[ 1569.404126]  ? finish_automount+0xa90/0xa90
[ 1569.405117]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1569.406183]  ? _copy_from_user+0xfb/0x1b0
[ 1569.407138]  __x64_sys_mount+0x282/0x300
[ 1569.408085]  ? copy_mnt_ns+0xa00/0xa00
[ 1569.408985]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1569.410184]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1569.411369]  do_syscall_64+0x33/0x40
[ 1569.412229]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1569.413400] RIP: 0033:0x7f1d54fbbb19
[ 1569.414250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1569.418487] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1569.420239] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1569.421877] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1569.423512] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1569.425153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1569.426787] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
[ 1569.428453] CPU: 1 PID: 35488 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1569.429296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1569.430269] Call Trace:
[ 1569.430590]  dump_stack+0x107/0x167
[ 1569.431026]  should_fail.cold+0x5/0xa
[ 1569.431475]  ? p9_client_create+0xaf/0x1230
[ 1569.432007]  should_failslab+0x5/0x20
[ 1569.432459]  kmem_cache_alloc_trace+0x55/0x320
[ 1569.433012]  ? find_held_lock+0x2c/0x110
[ 1569.433491]  p9_client_create+0xaf/0x1230
[ 1569.433980]  ? lock_downgrade+0x6d0/0x6d0
[ 1569.434473]  ? p9_client_flush+0x430/0x430
[ 1569.434980]  ? trace_hardirqs_on+0x5b/0x180
[ 1569.435489]  ? lockdep_init_map_type+0x2c7/0x780
[ 1569.436060]  ? __raw_spin_lock_init+0x36/0x110
[ 1569.436601]  v9fs_session_init+0x1dd/0x1680
[ 1569.437118]  ? lock_release+0x680/0x680
[ 1569.437593]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1569.438173]  ? v9fs_show_options+0x690/0x690
[ 1569.438696]  ? trace_hardirqs_on+0x5b/0x180
[ 1569.439210]  ? kasan_unpoison_shadow+0x33/0x50
[ 1569.439742]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1569.440344]  v9fs_mount+0x79/0x8f0
[ 1569.440767]  ? v9fs_write_inode+0x60/0x60
[ 1569.441262]  legacy_get_tree+0x105/0x220
[ 1569.441749]  vfs_get_tree+0x8e/0x300
[ 1569.442191]  path_mount+0x1429/0x2120
[ 1569.442648]  ? strncpy_from_user+0x9e/0x470
[ 1569.443148]  ? finish_automount+0xa90/0xa90
[ 1569.443662]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1569.444223]  ? _copy_from_user+0xfb/0x1b0
[ 1569.444718]  __x64_sys_mount+0x282/0x300
[ 1569.445200]  ? copy_mnt_ns+0xa00/0xa00
[ 1569.445663]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1569.446277]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1569.446890]  do_syscall_64+0x33/0x40
[ 1569.447327]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1569.447940] RIP: 0033:0x7f5c6f844b19
[ 1569.448380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1569.450563] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1569.451483] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1569.452335] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1569.453195] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1569.454059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1569.454918] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:31:32 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="7472cb3adf59ca48616e733d66642c7266646e6f3d", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])

20:31:32 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xa, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:32 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x7a, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:45 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x300, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:31:45 executing program 2:
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
fsetxattr$system_posix_acl(r0, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r1, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:31:45 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 3)

[ 1582.392890] FAULT_INJECTION: forcing a failure.
[ 1582.392890] name failslab, interval 1, probability 0, space 0, times 0
20:31:45 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB="2c63616368653d6d6d61702c63616368653d667363616368652c64656275673d3078303030303030303030303030303932342c6e6f6465766d61702c6e6f657874656e642c64666c746769643d3fcb8e8850380dc59374477fa086e8102c21c4f6ab0f1accacb5e47a9e61163dfdf8c2", @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])
r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r4, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="140000000100000003467bf973628adfa0abc7a8f1a2b63c00000000"], &(0x7f0000000200), 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_TEE={0x21, 0x2, 0x0, @fd_index=0xa, 0x0, 0x0, 0x6, 0xc, 0x0, {0x0, 0x0, r4}}, 0x8)
pipe(&(0x7f0000000000))

20:31:45 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 16)

20:31:45 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:31:45 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 22)

20:31:45 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1582.395242] CPU: 0 PID: 36174 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1582.396158] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1582.397218] Call Trace:
[ 1582.397581]  dump_stack+0x107/0x167
[ 1582.398065]  should_fail.cold+0x5/0xa
[ 1582.398580]  should_failslab+0x5/0x20
[ 1582.399087]  __kmalloc_track_caller+0x79/0x370
[ 1582.399692]  ? p9_client_create+0x41d/0x1230
[ 1582.400288]  kstrdup+0x36/0x70
[ 1582.400715]  p9_client_create+0x41d/0x1230
[ 1582.401284]  ? lock_downgrade+0x6d0/0x6d0
[ 1582.401846]  ? p9_client_flush+0x430/0x430
[ 1582.402421]  ? trace_hardirqs_on+0x5b/0x180
[ 1582.403021]  ? lockdep_init_map_type+0x2c7/0x780
[ 1582.403654]  ? __raw_spin_lock_init+0x36/0x110
[ 1582.404279]  v9fs_session_init+0x1dd/0x1680
[ 1582.404855]  ? lock_release+0x680/0x680
[ 1582.405388]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1582.406027]  ? v9fs_show_options+0x690/0x690
[ 1582.406631]  ? trace_hardirqs_on+0x5b/0x180
[ 1582.407223]  ? kasan_unpoison_shadow+0x33/0x50
[ 1582.407851]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1582.408534]  v9fs_mount+0x79/0x8f0
[ 1582.409021]  ? v9fs_write_inode+0x60/0x60
[ 1582.409582]  legacy_get_tree+0x105/0x220
[ 1582.410116]  vfs_get_tree+0x8e/0x300
[ 1582.410611]  path_mount+0x1429/0x2120
[ 1582.411131]  ? strncpy_from_user+0x9e/0x470
[ 1582.411700]  ? finish_automount+0xa90/0xa90
[ 1582.412310]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1582.412974]  ? _copy_from_user+0xfb/0x1b0
[ 1582.413539]  __x64_sys_mount+0x282/0x300
[ 1582.414056]  ? copy_mnt_ns+0xa00/0xa00
[ 1582.414558]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1582.415224]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1582.415900]  do_syscall_64+0x33/0x40
[ 1582.416388]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1582.417062] RIP: 0033:0x7f5c6f844b19
[ 1582.417543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1582.419936] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1582.420938] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1582.421851] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1582.422763] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1582.423696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1582.424633] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1582.431558] FAULT_INJECTION: forcing a failure.
[ 1582.431558] name failslab, interval 1, probability 0, space 0, times 0
[ 1582.433127] CPU: 0 PID: 36168 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1582.434012] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1582.435115] Call Trace:
[ 1582.435448]  dump_stack+0x107/0x167
[ 1582.435921]  should_fail.cold+0x5/0xa
[ 1582.436413]  should_failslab+0x5/0x20
[ 1582.436902]  __kmalloc_track_caller+0x79/0x370
[ 1582.437494]  ? v9fs_session_init+0xa7/0x1680
[ 1582.438069]  ? kernel_text_address+0xf2/0x120
[ 1582.438645]  kstrdup+0x36/0x70
[ 1582.439066]  v9fs_session_init+0xa7/0x1680
[ 1582.439602]  ? lock_release+0x680/0x680
[ 1582.440109]  ? find_held_lock+0x2c/0x110
[ 1582.440625]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1582.441233]  ? v9fs_show_options+0x690/0x690
[ 1582.441800]  ? trace_hardirqs_on+0x5b/0x180
[ 1582.442344]  ? kasan_unpoison_shadow+0x33/0x50
[ 1582.442924]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1582.443581]  v9fs_mount+0x79/0x8f0
[ 1582.444042]  ? v9fs_write_inode+0x60/0x60
[ 1582.444583]  legacy_get_tree+0x105/0x220
[ 1582.445100]  vfs_get_tree+0x8e/0x300
[ 1582.445577]  path_mount+0x1429/0x2120
[ 1582.446074]  ? strncpy_from_user+0x9e/0x470
[ 1582.446632]  ? finish_automount+0xa90/0xa90
[ 1582.447188]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1582.447789]  ? _copy_from_user+0xfb/0x1b0
[ 1582.448342]  __x64_sys_mount+0x282/0x300
[ 1582.448877]  ? copy_mnt_ns+0xa00/0xa00
[ 1582.449380]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1582.450055]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1582.450720]  do_syscall_64+0x33/0x40
[ 1582.451196]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1582.451855] RIP: 0033:0x7f1d54fbbb19
[ 1582.452345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1582.454733] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1582.455712] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1582.456631] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1582.457558] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1582.458463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1582.459382] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
[ 1582.472739] FAULT_INJECTION: forcing a failure.
[ 1582.472739] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1582.474444] CPU: 0 PID: 36175 Comm: syz-executor.5 Not tainted 5.10.237 #1
[ 1582.475317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1582.476382] Call Trace:
[ 1582.476724]  dump_stack+0x107/0x167
[ 1582.477191]  should_fail.cold+0x5/0xa
[ 1582.477701]  _copy_from_user+0x2e/0x1b0
[ 1582.478230]  memdup_user+0x65/0xd0
[ 1582.478694]  strndup_user+0x74/0xe0
[ 1582.479168]  __x64_sys_mount+0x133/0x300
[ 1582.479693]  ? copy_mnt_ns+0xa00/0xa00
[ 1582.480195]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1582.480860]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1582.481526]  do_syscall_64+0x33/0x40
[ 1582.481992]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1582.482650] RIP: 0033:0x7f8f1777db19
[ 1582.483138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1582.485459] RSP: 002b:00007f8f14cf3188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1582.486419] RAX: ffffffffffffffda RBX: 00007f8f17890f60 RCX: 00007f8f1777db19
[ 1582.487325] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1582.488226] RBP: 00007f8f14cf31d0 R08: 0000000020000400 R09: 0000000000000000
[ 1582.489137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1582.490052] R13: 00007ffc284cc3af R14: 00007f8f14cf3300 R15: 0000000000022000
20:32:03 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 4)

20:32:03 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:32:03 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})
r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r2, 0x80089419, &(0x7f0000000000))

20:32:03 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 17)

20:32:03 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 23)

20:32:03 executing program 2:
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x105600, 0x0)
mkdirat(r0, &(0x7f0000000280)='./file0/file0\x00', 0x6)
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000680)=0x8000)
mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
r2 = syz_mount_image$nfs4(&(0x7f00000002c0), &(0x7f0000000340)='./file0/file0\x00', 0x1, 0x2, &(0x7f0000000540)=[{&(0x7f0000000380)="0408299f932a0f8517e32b3eb3ad7a35769e28ed095ef3eb8bb49d94649943de8442b6807fbe0f2fa7cbdd03525fdf94e7d82e29074ef13d73da1bba864a9f873ac744ae4940e5d1e428737018fd1bc4d823fbe1d2831f468ad2ca6cac4fecbf721655a7e39b13156cc3b4acf8fd7b87b423e1dff66e7dee7185ab5282f1debb4aa9f88b042275247a39c6fbf1c8e8575e8484de2dae69230b58a2ecb367154fff78c5a4b3d67422b72728db1563c3f9e34d77c51e9e8e0703016f327926cbba9a833bc8f9e4d0788d6ef20fac74c99df1ca3f78", 0xd4, 0x2}, {&(0x7f0000000480)="e1e3a6096208f003802eb6edafb4ee8d6ee2b6b27efde0a3da64f0bcf8897909e0aa579414fd174e584ecf15d958aae2c0b691c32d8056216efae61dc697e0a3f8752980f41d8f9c18483eed402fe74bf6f8f36a08ba3acc2db6cc5973fcfc8e6b3c55eea8bec4ab6a91a0443ce6b591059e651680510909f4715bc491a8bfa11473d969453f19c2dc51e06efc9caa2ffdf0ba3a4d7b2b4d1034fa680c34698a27ceb9abeedbda5232076f5720cb13f57b1c5d3bfd2810", 0xb7, 0x9}], 0x20, &(0x7f0000000580)={[{'system.posix_acl_default\x00'}, {'^'}, {'-\\#\xd29+/[]\xbc'}, {'}&\\&).}\'\'(*\x9e{}&]-'}, {':\'*'}, {'@/*'}], [{@uid_lt}, {@smackfsfloor}]})
r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="14000000520000000000000000000000000000000063e00000000000"], 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
renameat2(r2, &(0x7f0000000600)='./file0\x00', r3, &(0x7f0000000640)='./file0/file1\x00', 0x5)
name_to_handle_at(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r1, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "001000", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x5, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:32:03 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xc, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:03 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x500, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1599.706477] FAULT_INJECTION: forcing a failure.
[ 1599.706477] name failslab, interval 1, probability 0, space 0, times 0
[ 1599.708534] CPU: 1 PID: 36701 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1599.709704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1599.711105] Call Trace:
[ 1599.711550]  dump_stack+0x107/0x167
[ 1599.712173]  should_fail.cold+0x5/0xa
[ 1599.712814]  ? create_object.isra.0+0x3a/0xa20
[ 1599.713603]  should_failslab+0x5/0x20
[ 1599.714257]  kmem_cache_alloc+0x5b/0x310
[ 1599.714933]  ? lock_downgrade+0x6d0/0x6d0
[ 1599.715639]  create_object.isra.0+0x3a/0xa20
[ 1599.716376]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1599.717226]  __kmalloc_track_caller+0x177/0x370
[ 1599.718007]  ? p9_client_create+0x41d/0x1230
[ 1599.718757]  kstrdup+0x36/0x70
[ 1599.719294]  p9_client_create+0x41d/0x1230
[ 1599.719998]  ? lock_downgrade+0x6d0/0x6d0
[ 1599.720756]  ? p9_client_flush+0x430/0x430
[ 1599.721457]  ? trace_hardirqs_on+0x5b/0x180
[ 1599.722177]  ? lockdep_init_map_type+0x2c7/0x780
[ 1599.722968]  ? __raw_spin_lock_init+0x36/0x110
[ 1599.723732]  v9fs_session_init+0x1dd/0x1680
[ 1599.724466]  ? lock_release+0x680/0x680
[ 1599.725154]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1599.725965]  ? v9fs_show_options+0x690/0x690
[ 1599.726719]  ? trace_hardirqs_on+0x5b/0x180
[ 1599.727484]  ? kasan_unpoison_shadow+0x33/0x50
[ 1599.728286]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1599.729159]  v9fs_mount+0x79/0x8f0
[ 1599.729764]  ? v9fs_write_inode+0x60/0x60
[ 1599.730473]  legacy_get_tree+0x105/0x220
[ 1599.731168]  vfs_get_tree+0x8e/0x300
[ 1599.731801]  path_mount+0x1429/0x2120
[ 1599.732464]  ? strncpy_from_user+0x9e/0x470
[ 1599.733206]  ? finish_automount+0xa90/0xa90
[ 1599.733965]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1599.734815]  ? _copy_from_user+0xfb/0x1b0
[ 1599.735527]  __x64_sys_mount+0x282/0x300
[ 1599.736244]  ? copy_mnt_ns+0xa00/0xa00
[ 1599.736926]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1599.737845]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1599.738733]  do_syscall_64+0x33/0x40
[ 1599.739373]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1599.740315] RIP: 0033:0x7f5c6f844b19
[ 1599.740978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1599.744146] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1599.745436] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1599.746631] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1599.747834] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1599.748920] FAULT_INJECTION: forcing a failure.
[ 1599.748920] name failslab, interval 1, probability 0, space 0, times 0
[ 1599.749056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1599.749067] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1599.755604] CPU: 0 PID: 36696 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1599.757265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1599.759190] Call Trace:
[ 1599.759806]  dump_stack+0x107/0x167
[ 1599.760678]  should_fail.cold+0x5/0xa
[ 1599.761569]  ? create_object.isra.0+0x3a/0xa20
[ 1599.762623]  should_failslab+0x5/0x20
[ 1599.763506]  kmem_cache_alloc+0x5b/0x310
[ 1599.764483]  create_object.isra.0+0x3a/0xa20
[ 1599.765499]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1599.766678]  __kmalloc_track_caller+0x177/0x370
[ 1599.767752]  ? v9fs_session_init+0xa7/0x1680
[ 1599.768804]  ? kernel_text_address+0xf2/0x120
[ 1599.769850]  kstrdup+0x36/0x70
[ 1599.770597]  v9fs_session_init+0xa7/0x1680
[ 1599.771575]  ? lock_release+0x680/0x680
[ 1599.772531]  ? find_held_lock+0x2c/0x110
[ 1599.773473]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1599.774591]  ? v9fs_show_options+0x690/0x690
[ 1599.775616]  ? trace_hardirqs_on+0x5b/0x180
[ 1599.776637]  ? kasan_unpoison_shadow+0x33/0x50
[ 1599.777701]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1599.778884]  v9fs_mount+0x79/0x8f0
[ 1599.779703]  ? v9fs_write_inode+0x60/0x60
[ 1599.780696]  legacy_get_tree+0x105/0x220
[ 1599.781639]  vfs_get_tree+0x8e/0x300
[ 1599.782500]  path_mount+0x1429/0x2120
[ 1599.783384]  ? strncpy_from_user+0x9e/0x470
[ 1599.784410]  ? finish_automount+0xa90/0xa90
[ 1599.785408]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1599.786487]  ? _copy_from_user+0xfb/0x1b0
[ 1599.787448]  __x64_sys_mount+0x282/0x300
[ 1599.788416]  ? copy_mnt_ns+0xa00/0xa00
[ 1599.789320]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1599.790536]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1599.791725]  do_syscall_64+0x33/0x40
[ 1599.792613]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1599.793804] RIP: 0033:0x7f1d54fbbb19
[ 1599.794669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1599.798944] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1599.800724] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1599.802387] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1599.804053] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1599.805735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1599.807389] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
[ 1599.845954] FAULT_INJECTION: forcing a failure.
[ 1599.845954] name failslab, interval 1, probability 0, space 0, times 0
[ 1599.847734] CPU: 1 PID: 36694 Comm: syz-executor.5 Not tainted 5.10.237 #1
[ 1599.848773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1599.849989] Call Trace:
[ 1599.850384]  dump_stack+0x107/0x167
[ 1599.850931]  should_fail.cold+0x5/0xa
[ 1599.851505]  ? copy_mount_options+0x55/0x180
[ 1599.852170]  should_failslab+0x5/0x20
[ 1599.852734]  kmem_cache_alloc_trace+0x55/0x320
[ 1599.853415]  ? _copy_from_user+0xfb/0x1b0
[ 1599.854038]  copy_mount_options+0x55/0x180
[ 1599.854662]  __x64_sys_mount+0x1a8/0x300
[ 1599.855267]  ? copy_mnt_ns+0xa00/0xa00
[ 1599.855856]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1599.856641]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1599.857399]  do_syscall_64+0x33/0x40
[ 1599.857942]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1599.858697] RIP: 0033:0x7f8f1777db19
[ 1599.859257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1599.861961] RSP: 002b:00007f8f14cf3188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1599.863098] RAX: ffffffffffffffda RBX: 00007f8f17890f60 RCX: 00007f8f1777db19
[ 1599.864173] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1599.865196] RBP: 00007f8f14cf31d0 R08: 0000000020000400 R09: 0000000000000000
[ 1599.866223] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1599.867253] R13: 00007ffc284cc3af R14: 00007f8f14cf3300 R15: 0000000000022000
20:32:03 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xe, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:03 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x600, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:03 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 5)

20:32:03 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 18)

20:32:03 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2004000aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:32:03 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000340)={{0xfffffffc}, 0x100, './file0\x00'})
fork()

[ 1600.052473] FAULT_INJECTION: forcing a failure.
[ 1600.052473] name failslab, interval 1, probability 0, space 0, times 0
[ 1600.054169] CPU: 1 PID: 37234 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1600.055183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1600.056407] Call Trace:
[ 1600.056804]  dump_stack+0x107/0x167
[ 1600.057340]  should_fail.cold+0x5/0xa
[ 1600.057903]  should_failslab+0x5/0x20
[ 1600.058457]  __kmalloc_track_caller+0x79/0x370
[ 1600.059124]  ? v9fs_session_init+0xe9/0x1680
[ 1600.059766]  ? kernel_text_address+0xf2/0x120
[ 1600.060437]  kstrdup+0x36/0x70
[ 1600.060911]  v9fs_session_init+0xe9/0x1680
[ 1600.061530]  ? lock_release+0x680/0x680
[ 1600.062107]  ? find_held_lock+0x2c/0x110
[ 1600.062704]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1600.063410]  ? v9fs_show_options+0x690/0x690
[ 1600.064064]  ? trace_hardirqs_on+0x5b/0x180
[ 1600.064701]  ? kasan_unpoison_shadow+0x33/0x50
[ 1600.065369]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1600.066110]  v9fs_mount+0x79/0x8f0
[ 1600.066630]  ? v9fs_write_inode+0x60/0x60
[ 1600.067237]  legacy_get_tree+0x105/0x220
[ 1600.067835]  vfs_get_tree+0x8e/0x300
[ 1600.068384]  path_mount+0x1429/0x2120
[ 1600.068943]  ? strncpy_from_user+0x9e/0x470
[ 1600.069571]  ? finish_automount+0xa90/0xa90
[ 1600.070206]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1600.070883]  ? _copy_from_user+0xfb/0x1b0
[ 1600.071489]  __x64_sys_mount+0x282/0x300
[ 1600.072087]  ? copy_mnt_ns+0xa00/0xa00
[ 1600.072654]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1600.073422]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1600.074173]  do_syscall_64+0x33/0x40
[ 1600.074715]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1600.075464] RIP: 0033:0x7f1d54fbbb19
[ 1600.076006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1600.078688] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1600.079800] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1600.080849] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1600.081892] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1600.082933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1600.083974] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
[ 1600.087527] FAULT_INJECTION: forcing a failure.
[ 1600.087527] name failslab, interval 1, probability 0, space 0, times 0
[ 1600.089240] CPU: 1 PID: 37216 Comm: syz-executor.5 Not tainted 5.10.237 #1
[ 1600.090245] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1600.091452] Call Trace:
[ 1600.091835]  dump_stack+0x107/0x167
[ 1600.092374]  should_fail.cold+0x5/0xa
[ 1600.092930]  ? create_object.isra.0+0x3a/0xa20
[ 1600.093595]  should_failslab+0x5/0x20
[ 1600.094154]  kmem_cache_alloc+0x5b/0x310
[ 1600.094762]  create_object.isra.0+0x3a/0xa20
[ 1600.095397]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1600.096161]  kmem_cache_alloc_trace+0x151/0x320
[ 1600.096864]  copy_mount_options+0x55/0x180
[ 1600.097484]  __x64_sys_mount+0x1a8/0x300
[ 1600.098081]  ? copy_mnt_ns+0xa00/0xa00
[ 1600.098655]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1600.099424]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1600.100194]  do_syscall_64+0x33/0x40
[ 1600.100746]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1600.101514] RIP: 0033:0x7f8f1777db19
[ 1600.102052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1600.104767] RSP: 002b:00007f8f14cf3188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1600.105878] RAX: ffffffffffffffda RBX: 00007f8f17890f60 RCX: 00007f8f1777db19
[ 1600.106921] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1600.107969] RBP: 00007f8f14cf31d0 R08: 0000000020000400 R09: 0000000000000000
[ 1600.109052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1600.110140] R13: 00007ffc284cc3af R14: 00007f8f14cf3300 R15: 0000000000022000
20:32:03 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x101002, 0x40)
r3 = dup2(0xffffffffffffffff, r2)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB="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", @ANYRESHEX=r2, @ANYBLOB=',\x00'])
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, 0xffffffffffffffff, 0x41843000)

20:32:03 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 24)

[ 1600.200461] FAULT_INJECTION: forcing a failure.
[ 1600.200461] name failslab, interval 1, probability 0, space 0, times 0
[ 1600.202137] CPU: 1 PID: 37469 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1600.203124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1600.204318] Call Trace:
[ 1600.204718]  dump_stack+0x107/0x167
[ 1600.205254]  should_fail.cold+0x5/0xa
[ 1600.205807]  should_failslab+0x5/0x20
[ 1600.206349]  __kmalloc_track_caller+0x79/0x370
[ 1600.206995]  ? p9_client_create+0x41d/0x1230
[ 1600.207635]  kstrdup+0x36/0x70
[ 1600.208112]  p9_client_create+0x41d/0x1230
[ 1600.208708]  ? lock_downgrade+0x6d0/0x6d0
[ 1600.209316]  ? p9_client_flush+0x430/0x430
[ 1600.209909]  ? trace_hardirqs_on+0x5b/0x180
[ 1600.210555]  ? lockdep_init_map_type+0x2c7/0x780
[ 1600.211236]  ? __raw_spin_lock_init+0x36/0x110
[ 1600.211916]  v9fs_session_init+0x1dd/0x1680
[ 1600.212557]  ? lock_release+0x680/0x680
[ 1600.213144]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1600.213864]  ? v9fs_show_options+0x690/0x690
[ 1600.214518]  ? trace_hardirqs_on+0x5b/0x180
[ 1600.215116]  ? kasan_unpoison_shadow+0x33/0x50
[ 1600.215653]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1600.216267]  v9fs_mount+0x79/0x8f0
[ 1600.216693]  ? v9fs_write_inode+0x60/0x60
[ 1600.217203]  legacy_get_tree+0x105/0x220
[ 1600.217694]  vfs_get_tree+0x8e/0x300
[ 1600.218144]  path_mount+0x1429/0x2120
[ 1600.218601]  ? strncpy_from_user+0x9e/0x470
[ 1600.219123]  ? finish_automount+0xa90/0xa90
[ 1600.219650]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1600.220220]  ? _copy_from_user+0xfb/0x1b0
[ 1600.220721]  __x64_sys_mount+0x282/0x300
[ 1600.221214]  ? copy_mnt_ns+0xa00/0xa00
[ 1600.221673]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1600.222304]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1600.222927]  do_syscall_64+0x33/0x40
[ 1600.223372]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1600.223981] RIP: 0033:0x7f5c6f844b19
[ 1600.224428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1600.226652] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1600.227569] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1600.228450] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1600.229318] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1600.230171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1600.231055] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:32:18 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:32:18 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x700, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:18 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000280)=ANY=[@ANYBLOB="02000000010001000000000002000400", @ANYRES32=0xee00, @ANYBLOB="040003000000000008000100", @ANYRES32=0xee01, @ANYBLOB="08000200", @ANYRES32=0xee00, @ANYBLOB="100000699c6ffcc151266700000000008e82ce22eaf2ca7c824927e3e4316c7747d7d90ebaa607e1fb483e62342bee9ea9534c97ecdba5d5bd44b2520f636c63bcd0edc8546b90d2a0a04a997e"], 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()
sendfile(r1, r1, &(0x7f0000000180)=0x5, 0xffffffff00000001)

20:32:18 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 6)

20:32:18 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 19)

20:32:18 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x10, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:18 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 25)

20:32:18 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0xa8200, 0x0)
io_uring_enter(r0, 0x6d4a, 0x3e0f, 0x2, &(0x7f0000000180)={[0x3]}, 0x8)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c63616368653d6d6d702c63616368653d667363616368652c64656275673d3078302030303010303030303030303932342c6e6f6465766d61702c6e6f657874656e642c64666c746769643d56308500", @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])

[ 1615.340600] FAULT_INJECTION: forcing a failure.
[ 1615.340600] name failslab, interval 1, probability 0, space 0, times 0
[ 1615.343044] CPU: 0 PID: 37752 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1615.344504] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1615.346232] Call Trace:
[ 1615.346536] FAULT_INJECTION: forcing a failure.
[ 1615.346536] name failslab, interval 1, probability 0, space 0, times 0
[ 1615.346788]  dump_stack+0x107/0x167
[ 1615.349898]  should_fail.cold+0x5/0xa
[ 1615.350689]  should_failslab+0x5/0x20
[ 1615.351466]  __kmalloc_track_caller+0x79/0x370
[ 1615.352419]  ? p9_client_create+0x51e/0x1230
[ 1615.353320]  kmemdup_nul+0x2d/0xa0
[ 1615.354054]  p9_client_create+0x51e/0x1230
[ 1615.354939]  ? p9_client_flush+0x430/0x430
[ 1615.355802]  ? trace_hardirqs_on+0x5b/0x180
[ 1615.356693]  ? lockdep_init_map_type+0x2c7/0x780
[ 1615.357658]  ? __raw_spin_lock_init+0x36/0x110
[ 1615.358594]  v9fs_session_init+0x1dd/0x1680
[ 1615.359484]  ? lock_release+0x680/0x680
[ 1615.360307]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1615.361304]  ? v9fs_show_options+0x690/0x690
[ 1615.362218]  ? trace_hardirqs_on+0x5b/0x180
[ 1615.363103]  ? kasan_unpoison_shadow+0x33/0x50
[ 1615.364035]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1615.365075]  v9fs_mount+0x79/0x8f0
[ 1615.365810]  ? v9fs_write_inode+0x60/0x60
[ 1615.366659]  legacy_get_tree+0x105/0x220
[ 1615.367500]  vfs_get_tree+0x8e/0x300
[ 1615.368256]  path_mount+0x1429/0x2120
[ 1615.369047]  ? strncpy_from_user+0x9e/0x470
[ 1615.369940]  ? finish_automount+0xa90/0xa90
[ 1615.370821]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1615.371764]  ? _copy_from_user+0xfb/0x1b0
[ 1615.372628]  __x64_sys_mount+0x282/0x300
[ 1615.373451]  ? copy_mnt_ns+0xa00/0xa00
[ 1615.374254]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1615.375321]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1615.376384]  do_syscall_64+0x33/0x40
[ 1615.377141]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1615.378200] RIP: 0033:0x7f5c6f844b19
[ 1615.378961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1615.382715] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1615.384284] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1615.385729] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1615.387197] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1615.388638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1615.390075] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1615.391547] CPU: 1 PID: 37755 Comm: syz-executor.3 Not tainted 5.10.237 #1
[ 1615.393051] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1615.394809] Call Trace:
[ 1615.395376]  dump_stack+0x107/0x167
[ 1615.396143]  should_fail.cold+0x5/0xa
[ 1615.396960]  ? create_object.isra.0+0x3a/0xa20
[ 1615.397921]  should_failslab+0x5/0x20
[ 1615.398720]  kmem_cache_alloc+0x5b/0x310
[ 1615.399595]  create_object.isra.0+0x3a/0xa20
[ 1615.400537]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1615.401636]  __kmalloc_track_caller+0x177/0x370
[ 1615.402629]  ? v9fs_session_init+0xe9/0x1680
[ 1615.403571]  kstrdup+0x36/0x70
[ 1615.404268]  v9fs_session_init+0xe9/0x1680
[ 1615.405175]  ? lock_release+0x680/0x680
[ 1615.406017]  ? find_held_lock+0x2c/0x110
[ 1615.406892]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1615.407923]  ? v9fs_show_options+0x690/0x690
[ 1615.408877]  ? trace_hardirqs_on+0x5b/0x180
[ 1615.409794]  ? kasan_unpoison_shadow+0x33/0x50
[ 1615.410773]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1615.411855]  v9fs_mount+0x79/0x8f0
[ 1615.412620]  ? v9fs_write_inode+0x60/0x60
[ 1615.413515]  legacy_get_tree+0x105/0x220
[ 1615.414392]  vfs_get_tree+0x8e/0x300
[ 1615.415197]  path_mount+0x1429/0x2120
[ 1615.416013]  ? strncpy_from_user+0x9e/0x470
[ 1615.416938]  ? finish_automount+0xa90/0xa90
[ 1615.417864]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1615.418853]  ? _copy_from_user+0xfb/0x1b0
[ 1615.419748]  __x64_sys_mount+0x282/0x300
[ 1615.420621]  ? copy_mnt_ns+0xa00/0xa00
[ 1615.421459]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1615.422568]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1615.423669]  do_syscall_64+0x33/0x40
[ 1615.424468]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1615.425560] RIP: 0033:0x7f1d54fbbb19
[ 1615.426354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1615.430294] RSP: 002b:00007f1d52531188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1615.431927] RAX: ffffffffffffffda RBX: 00007f1d550cef60 RCX: 00007f1d54fbbb19
[ 1615.433474] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1615.435003] RBP: 00007f1d525311d0 R08: 0000000020000400 R09: 0000000000000000
[ 1615.436529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1615.438044] R13: 00007ffcbedd4a7f R14: 00007f1d52531300 R15: 0000000000022000
20:32:18 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='tr,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6361636865c3906d61702c63616368653d667363616368652c64656275673d3078303030303030303030303030303932342c6e6f6465766d61702c6e6f657874656e642c64666c746769643d", @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])

20:32:18 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x900, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:18 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2e, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:18 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}}) (fail_nth: 20)

20:32:18 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 26)

[ 1615.703128] FAULT_INJECTION: forcing a failure.
[ 1615.703128] name failslab, interval 1, probability 0, space 0, times 0
[ 1615.705215] CPU: 0 PID: 38401 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1615.706421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1615.707863] Call Trace:
[ 1615.708338]  dump_stack+0x107/0x167
[ 1615.708970]  should_fail.cold+0x5/0xa
[ 1615.709635]  should_failslab+0x5/0x20
[ 1615.710295]  __kmalloc_track_caller+0x79/0x370
[ 1615.711078]  ? parse_opts.part.0+0x8e/0x340
[ 1615.711841]  kstrdup+0x36/0x70
[ 1615.712416]  parse_opts.part.0+0x8e/0x340
[ 1615.713127]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1615.713911]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1615.714819]  ? quarantine_put+0x8b/0x1a0
[ 1615.715533]  ? trace_hardirqs_on+0x5b/0x180
[ 1615.716290]  ? kfree+0xd7/0x340
[ 1615.716868]  p9_fd_create+0x98/0x4a0
[ 1615.717507]  ? p9_conn_create+0x510/0x510
[ 1615.718219]  ? p9_client_create+0x798/0x1230
[ 1615.718966]  ? kfree+0xd7/0x340
[ 1615.719536]  ? do_raw_spin_unlock+0x4f/0x220
[ 1615.720306]  p9_client_create+0x7ff/0x1230
[ 1615.721033]  ? p9_client_flush+0x430/0x430
[ 1615.721756]  ? trace_hardirqs_on+0x5b/0x180
[ 1615.722488]  ? lockdep_init_map_type+0x2c7/0x780
[ 1615.723302]  ? __raw_spin_lock_init+0x36/0x110
[ 1615.724105]  v9fs_session_init+0x1dd/0x1680
[ 1615.724848]  ? lock_release+0x680/0x680
[ 1615.725539]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1615.726356]  ? v9fs_show_options+0x690/0x690
[ 1615.727117]  ? trace_hardirqs_on+0x5b/0x180
[ 1615.727852]  ? kasan_unpoison_shadow+0x33/0x50
[ 1615.728644]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1615.729523]  v9fs_mount+0x79/0x8f0
[ 1615.730141]  ? v9fs_write_inode+0x60/0x60
[ 1615.730848]  legacy_get_tree+0x105/0x220
[ 1615.731550]  vfs_get_tree+0x8e/0x300
[ 1615.732182]  path_mount+0x1429/0x2120
[ 1615.732841]  ? strncpy_from_user+0x9e/0x470
[ 1615.733576]  ? finish_automount+0xa90/0xa90
[ 1615.734317]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1615.735106]  ? _copy_from_user+0xfb/0x1b0
[ 1615.735826]  __x64_sys_mount+0x282/0x300
[ 1615.736514]  ? copy_mnt_ns+0xa00/0xa00
[ 1615.737188]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1615.738084]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1615.738951]  do_syscall_64+0x33/0x40
[ 1615.739586]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1615.740459] RIP: 0033:0x7f5c6f844b19
[ 1615.741080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1615.744196] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1615.745483] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1615.746696] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1615.747906] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1615.749129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1615.750341] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1615.751703] 9pnet: Insufficient options for proto=fd
20:32:19 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:19 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:32:34 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0xffffffffffffffff, r2, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0xffffffffffffffff, r3, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [{@subj_user={'subj_user', 0x3d, '9p\x00'}}, {@fowner_gt={'fowner>', 0xee00}}, {@fowner_eq={'fowner', 0x3d, r2}}, {@dont_measure}, {@uid_eq={'uid', 0x3d, r3}}, {@subj_user={'subj_user', 0x3d, 'rfdno'}}, {@fowner_eq={'fowner', 0x3d, r4}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@fsname={'fsname', 0x3d, '\x00'}}]}})

20:32:34 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:32:34 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:34 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xa00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:34 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 27)

20:32:34 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x48, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:34 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:34 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
r1 = syz_open_dev$hidraw(&(0x7f0000000280), 0xdb, 0x410540)
dup2(r0, r1)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()
openat(r0, &(0x7f0000000180)='./file0\x00', 0x2000, 0x14)

[ 1631.072600] FAULT_INJECTION: forcing a failure.
[ 1631.072600] name failslab, interval 1, probability 0, space 0, times 0
[ 1631.075400] CPU: 0 PID: 38902 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1631.077105] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1631.079025] Call Trace:
[ 1631.079628]  dump_stack+0x107/0x167
[ 1631.080502]  should_fail.cold+0x5/0xa
[ 1631.081399]  ? create_object.isra.0+0x3a/0xa20
[ 1631.082483]  should_failslab+0x5/0x20
[ 1631.083379]  kmem_cache_alloc+0x5b/0x310
[ 1631.084339]  ? legacy_get_tree+0x105/0x220
[ 1631.085342]  ? vfs_get_tree+0x8e/0x300
[ 1631.086237]  create_object.isra.0+0x3a/0xa20
[ 1631.087267]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1631.088459]  __kmalloc_track_caller+0x177/0x370
[ 1631.089552]  ? parse_opts.part.0+0x8e/0x340
[ 1631.090546]  kstrdup+0x36/0x70
[ 1631.091290]  parse_opts.part.0+0x8e/0x340
[ 1631.092261]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1631.093347]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1631.094576]  ? quarantine_put+0x8b/0x1a0
[ 1631.095530]  ? trace_hardirqs_on+0x5b/0x180
[ 1631.096540]  ? kfree+0xd7/0x340
[ 1631.097334]  p9_fd_create+0x98/0x4a0
[ 1631.098207]  ? p9_conn_create+0x510/0x510
[ 1631.099172]  ? p9_client_create+0x798/0x1230
[ 1631.100208]  ? kfree+0xd7/0x340
[ 1631.100961]  ? do_raw_spin_unlock+0x4f/0x220
[ 1631.101960]  p9_client_create+0x7ff/0x1230
[ 1631.102934]  ? p9_client_flush+0x430/0x430
[ 1631.103983]  ? trace_hardirqs_on+0x5b/0x180
[ 1631.104972]  ? lockdep_init_map_type+0x2c7/0x780
[ 1631.106061]  ? __raw_spin_lock_init+0x36/0x110
[ 1631.107108]  v9fs_session_init+0x1dd/0x1680
[ 1631.108101]  ? lock_release+0x680/0x680
[ 1631.109028]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1631.110135]  ? v9fs_show_options+0x690/0x690
[ 1631.111142]  ? trace_hardirqs_on+0x5b/0x180
[ 1631.112123]  ? kasan_unpoison_shadow+0x33/0x50
[ 1631.113164]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1631.114327]  v9fs_mount+0x79/0x8f0
[ 1631.115145]  ? v9fs_write_inode+0x60/0x60
[ 1631.116094]  legacy_get_tree+0x105/0x220
[ 1631.117030]  vfs_get_tree+0x8e/0x300
[ 1631.117885]  path_mount+0x1429/0x2120
[ 1631.118756]  ? strncpy_from_user+0x9e/0x470
[ 1631.119738]  ? finish_automount+0xa90/0xa90
[ 1631.120742]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1631.121789]  ? _copy_from_user+0xfb/0x1b0
[ 1631.122739]  __x64_sys_mount+0x282/0x300
[ 1631.123645]  ? copy_mnt_ns+0xa00/0xa00
[ 1631.124535]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1631.125720]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1631.126884]  do_syscall_64+0x33/0x40
[ 1631.127726]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1631.128887] RIP: 0033:0x7f5c6f844b19
[ 1631.129716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1631.133850] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1631.135571] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1631.137198] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1631.138801] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1631.140409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
20:32:34 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 1631.142020] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:32:34 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xb00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:34 executing program 0:
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
faccessat2(r3, &(0x7f0000000380)='./file0/file0\x00', 0x90, 0x300)
mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000240)={0x0, 0x0, 0x2, 0x0, '\x00', [{0x0, 0x3f, 0x7f, 0x8, 0xb786, 0x4}, {0x0, 0x8, 0x380000000, 0x625e, 0x1, 0x81}], ['\x00', '\x00']})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})
r4 = syz_open_dev$vcsn(&(0x7f0000000180), 0x7, 0x0)
openat(r4, &(0x7f0000000200)='./file1\x00', 0x10000, 0x0)

20:32:34 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x2, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:34 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:34 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[@ANYRESOCT=r0, @ANYRESHEX=r0, @ANYBLOB="f3f8446956027550d5c1d89576a966c59bc15604e2761494d5b6938bd35c61fdc02fc54ddfc12833c361679369ffe8a8f63759bcb85e08326d7060568c650c6751fdde0631937791d74446b442c82aabda39f1c4ad001b9f2493bece3447248de9b565ba0588ec03564d81d675f095ea7e25e41b22e1595f6e2c743c75e3b5e7de8852a41bdf4bd8642e489e0dc95c71b6bf364bf58be292a1d563a70aef571d16185a0cbac0253a6af400e7290cc99c1163bcf0b0329c05e06a6a75c64866f47f85351414e43fdbc6cfbd9f78338ad23a12d1d75df67c91b936d4853b5a", @ANYRESDEC=0x0, @ANYRESOCT=r0, @ANYRES16, @ANYRES32=r1, @ANYBLOB="6799e53c5091722435cfab467eef81a2096176848bd41154594064c8bcfa18a50a0fa1174cdc0cc0dc5c12c71bcd2122f2037057913e57d81d4258f2389d4f79856b512a6d79024457ca25576ab71d4acdf984a5f55d17bc5272adf261cfab5e82b33b2d9d6984ca479dc73516d5a22ee0a1b2ecca1ff09b3f8176fbc40724e45f717a6278"])
mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r2, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:32:34 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:34 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:34 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:32:34 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xc00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1631.513672] tmpfs: Unknown parameter '000000000000000000000030x0000000000000003óøDiVuPÕÁØ•v©fÅ›ÁVâv”Õ¶“‹Ó\aýÀ/ÅMßÁ(3Ãag“iÿè¨ö7Y¼¸^2mp`VŒegQýÞ1“w‘×DF´BÈ*«Ú9ñÄ­'
20:32:49 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x68, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:49 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
openat(r0, &(0x7f0000000000)='./file1\x00', 0x180803, 0x141)
r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB="2c7766646e6f3d648fd023aecdd088f257a296404309a0a105a0e48470fbf40548d787325e67dba7edb58029", @ANYRESHEX=r2, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRES32=r3, @ANYBLOB=',afid=0x0000000000000345,\x00'])

20:32:49 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="14000000f8ffffff0000000000000000002fee6d12cf71a593000000"], 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
name_to_handle_at(r1, &(0x7f0000000180)='./file0\x00', &(0x7f0000000280)=@fuse={0xc, 0x81, {0xffff, 0x0, 0x3}}, &(0x7f00000002c0), 0x1000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:32:49 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 28)

20:32:49 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x4, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:49 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xe00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:49 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:32:49 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1646.110557] FAULT_INJECTION: forcing a failure.
[ 1646.110557] name failslab, interval 1, probability 0, space 0, times 0
[ 1646.113511] CPU: 0 PID: 40556 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1646.115308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1646.117454] Call Trace:
[ 1646.118148]  dump_stack+0x107/0x167
[ 1646.119083]  should_fail.cold+0x5/0xa
[ 1646.120082]  should_failslab+0x5/0x20
[ 1646.121079]  __kmalloc_track_caller+0x79/0x370
[ 1646.122250]  ? parse_opts.part.0+0x8e/0x340
[ 1646.123362]  kstrdup+0x36/0x70
[ 1646.124193]  parse_opts.part.0+0x8e/0x340
[ 1646.125269]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1646.126438]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1646.127795]  ? quarantine_put+0x8b/0x1a0
[ 1646.128846]  ? trace_hardirqs_on+0x5b/0x180
[ 1646.129962]  ? kfree+0xd7/0x340
[ 1646.130818]  p9_fd_create+0x98/0x4a0
[ 1646.131776]  ? p9_conn_create+0x510/0x510
[ 1646.132856]  ? p9_client_create+0x798/0x1230
[ 1646.133985]  ? kfree+0xd7/0x340
[ 1646.134829]  ? do_raw_spin_unlock+0x4f/0x220
[ 1646.135975]  p9_client_create+0x7ff/0x1230
[ 1646.137086]  ? p9_client_flush+0x430/0x430
[ 1646.138179]  ? trace_hardirqs_on+0x5b/0x180
[ 1646.139287]  ? lockdep_init_map_type+0x2c7/0x780
[ 1646.140504]  ? __raw_spin_lock_init+0x36/0x110
[ 1646.141670]  v9fs_session_init+0x1dd/0x1680
[ 1646.142601]  ? lock_release+0x680/0x680
[ 1646.143466]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1646.144503]  ? v9fs_show_options+0x690/0x690
[ 1646.145476]  ? trace_hardirqs_on+0x5b/0x180
[ 1646.146403]  ? kasan_unpoison_shadow+0x33/0x50
[ 1646.147381]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1646.148469]  v9fs_mount+0x79/0x8f0
[ 1646.149236]  ? v9fs_write_inode+0x60/0x60
[ 1646.150122]  legacy_get_tree+0x105/0x220
[ 1646.150991]  vfs_get_tree+0x8e/0x300
[ 1646.151790]  path_mount+0x1429/0x2120
[ 1646.152614]  ? strncpy_from_user+0x9e/0x470
[ 1646.153545]  ? finish_automount+0xa90/0xa90
[ 1646.154471]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1646.155471]  ? _copy_from_user+0xfb/0x1b0
[ 1646.156385]  __x64_sys_mount+0x282/0x300
[ 1646.157265]  ? copy_mnt_ns+0xa00/0xa00
[ 1646.158107]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1646.159230]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1646.160334]  do_syscall_64+0x33/0x40
[ 1646.161145]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1646.162239] RIP: 0033:0x7f5c6f844b19
[ 1646.163038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1646.166990] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1646.168618] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1646.170152] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1646.171675] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1646.173213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1646.174742] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1646.176387] 9pnet: Insufficient options for proto=fd
20:32:49 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x5, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:49 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:49 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x6c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:49 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 29)

20:32:49 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x1020, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:32:49 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0xa76, 0x105a82)
r1 = syz_open_dev$vcsa(&(0x7f00000002c0), 0xffffffffffffff58, 0x200000)
ioctl$FS_IOC_FSGETXATTR(r1, 0x801c581f, &(0x7f0000000300)={0x6, 0x8, 0x9, 0x0, 0x5})
newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}, 0x0)
fchownat(r0, &(0x7f0000000180)='./file1\x00', 0xee00, r2, 0x1000)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1646.444746] FAULT_INJECTION: forcing a failure.
[ 1646.444746] name failslab, interval 1, probability 0, space 0, times 0
[ 1646.446584] CPU: 1 PID: 41398 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1646.447628] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1646.448903] Call Trace:
[ 1646.449315]  dump_stack+0x107/0x167
[ 1646.449866]  should_fail.cold+0x5/0xa
[ 1646.450444]  ? create_object.isra.0+0x3a/0xa20
[ 1646.451140]  should_failslab+0x5/0x20
[ 1646.451717]  kmem_cache_alloc+0x5b/0x310
[ 1646.452338]  create_object.isra.0+0x3a/0xa20
[ 1646.453005]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1646.453772]  __kmalloc_track_caller+0x177/0x370
[ 1646.454485]  ? match_number+0xaf/0x1d0
[ 1646.455082]  kmemdup_nul+0x2d/0xa0
[ 1646.455625]  match_number+0xaf/0x1d0
[ 1646.456192]  ? match_u64+0x190/0x190
[ 1646.456769]  ? __kmalloc_track_caller+0x2c6/0x370
[ 1646.457496]  ? memcpy+0x39/0x60
[ 1646.458002]  parse_opts.part.0+0x1f3/0x340
[ 1646.458639]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1646.459319]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1646.460121]  ? trace_hardirqs_on+0x5b/0x180
[ 1646.460779]  ? kfree+0xd7/0x340
[ 1646.461283]  p9_fd_create+0x98/0x4a0
[ 1646.461841]  ? p9_conn_create+0x510/0x510
[ 1646.462462]  ? p9_client_create+0x798/0x1230
[ 1646.463123]  ? kfree+0xd7/0x340
[ 1646.463622]  ? do_raw_spin_unlock+0x4f/0x220
[ 1646.464283]  p9_client_create+0x7ff/0x1230
[ 1646.464925]  ? p9_client_flush+0x430/0x430
[ 1646.465555]  ? trace_hardirqs_on+0x5b/0x180
[ 1646.466205]  ? lockdep_init_map_type+0x2c7/0x780
[ 1646.466915]  ? __raw_spin_lock_init+0x36/0x110
[ 1646.467608]  v9fs_session_init+0x1dd/0x1680
[ 1646.468250]  ? lock_release+0x680/0x680
[ 1646.468864]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1646.469582]  ? v9fs_show_options+0x690/0x690
[ 1646.470249]  ? trace_hardirqs_on+0x5b/0x180
[ 1646.470900]  ? kasan_unpoison_shadow+0x33/0x50
[ 1646.471578]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1646.472345]  v9fs_mount+0x79/0x8f0
[ 1646.472879]  ? v9fs_write_inode+0x60/0x60
[ 1646.473491]  legacy_get_tree+0x105/0x220
[ 1646.474089]  vfs_get_tree+0x8e/0x300
[ 1646.474632]  path_mount+0x1429/0x2120
[ 1646.475196]  ? strncpy_from_user+0x9e/0x470
[ 1646.475830]  ? finish_automount+0xa90/0xa90
[ 1646.476463]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1646.477156]  ? _copy_from_user+0xfb/0x1b0
[ 1646.477764]  __x64_sys_mount+0x282/0x300
[ 1646.478365]  ? copy_mnt_ns+0xa00/0xa00
[ 1646.478924]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1646.479701]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1646.480464]  do_syscall_64+0x33/0x40
[ 1646.481016]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1646.481774] RIP: 0033:0x7f5c6f844b19
[ 1646.482319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1646.485045] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1646.486166] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1646.487221] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1646.488247] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1646.489304] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1646.490314] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:33:06 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 30)

20:33:06 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:06 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000003aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:33:06 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{}, 0x0, 0x2}}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x44, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_AUTH_TYPE={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x44}}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000001900)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r3, 0x0, &(0x7f00000018c0)={&(0x7f0000000280)=@l2, 0x80, &(0x7f0000001800)=[{&(0x7f0000000480)=""/163, 0xa3}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/146, 0x92}, {&(0x7f0000001600)=""/117, 0x75}, {&(0x7f0000000180)=""/31, 0x1f}, {&(0x7f0000001680)=""/247, 0xf7}, {&(0x7f0000001780)=""/114, 0x72}], 0x7, &(0x7f0000001880)=""/8, 0x8}, 0x0, 0x0, 0x1, {0x3}}, 0xca)
syz_emit_ethernet(0x6e, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:33:06 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x74, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:06 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc02c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1811c1, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1})
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x20, 0x2, 0x0, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:06 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:06 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1663.352519] FAULT_INJECTION: forcing a failure.
[ 1663.352519] name failslab, interval 1, probability 0, space 0, times 0
[ 1663.355415] CPU: 1 PID: 41800 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1663.357185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1663.359311] Call Trace:
[ 1663.359988]  dump_stack+0x107/0x167
[ 1663.360939]  should_fail.cold+0x5/0xa
[ 1663.361927]  should_failslab+0x5/0x20
[ 1663.362910]  __kmalloc_track_caller+0x79/0x370
[ 1663.364082]  ? match_number+0xaf/0x1d0
[ 1663.365090]  ? kfree+0xd7/0x340
[ 1663.365945]  kmemdup_nul+0x2d/0xa0
[ 1663.366818]  match_number+0xaf/0x1d0
[ 1663.367727]  ? match_u64+0x190/0x190
[ 1663.368631]  ? __kmalloc_track_caller+0x2c6/0x370
[ 1663.369806]  ? memcpy+0x39/0x60
[ 1663.370555]  parse_opts.part.0+0x1f3/0x340
[ 1663.371513]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1663.372542]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1663.373737]  ? trace_hardirqs_on+0x5b/0x180
[ 1663.374715]  ? kfree+0xd7/0x340
[ 1663.375471]  p9_fd_create+0x98/0x4a0
[ 1663.376314]  ? p9_conn_create+0x510/0x510
[ 1663.377265]  ? p9_client_create+0x798/0x1230
[ 1663.378267]  ? kfree+0xd7/0x340
[ 1663.379009]  ? do_raw_spin_unlock+0x4f/0x220
[ 1663.380008]  p9_client_create+0x7ff/0x1230
[ 1663.380990]  ? p9_client_flush+0x430/0x430
[ 1663.381941]  ? trace_hardirqs_on+0x5b/0x180
[ 1663.382917]  ? lockdep_init_map_type+0x2c7/0x780
[ 1663.383992]  ? __raw_spin_lock_init+0x36/0x110
[ 1663.385039]  v9fs_session_init+0x1dd/0x1680
[ 1663.386021]  ? lock_release+0x680/0x680
[ 1663.386926]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1663.388007]  ? v9fs_show_options+0x690/0x690
[ 1663.389018]  ? trace_hardirqs_on+0x5b/0x180
[ 1663.389985]  ? kasan_unpoison_shadow+0x33/0x50
[ 1663.391007]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1663.392153]  v9fs_mount+0x79/0x8f0
[ 1663.392957]  ? v9fs_write_inode+0x60/0x60
[ 1663.393894]  legacy_get_tree+0x105/0x220
[ 1663.394815]  vfs_get_tree+0x8e/0x300
[ 1663.395650]  path_mount+0x1429/0x2120
[ 1663.396519]  ? strncpy_from_user+0x9e/0x470
[ 1663.397509]  ? finish_automount+0xa90/0xa90
[ 1663.398483]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1663.399535]  ? _copy_from_user+0xfb/0x1b0
[ 1663.400482]  __x64_sys_mount+0x282/0x300
[ 1663.401405]  ? copy_mnt_ns+0xa00/0xa00
[ 1663.402284]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1663.403462]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1663.404616]  do_syscall_64+0x33/0x40
[ 1663.405464]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1663.406627] RIP: 0033:0x7f5c6f844b19
[ 1663.407472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1663.411648] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1663.413371] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1663.414983] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1663.416598] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1663.418220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1663.419831] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1663.422928] 9pnet: Insufficient options for proto=fd
20:33:06 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x7, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:06 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2010, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:06 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x7a, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:07 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x7, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:07 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x8, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:07 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 31)

20:33:07 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2e00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:07 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:33:07 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()
stat(&(0x7f0000001580)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0xffffffffffffffff, r1, 0x0)
fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000001540), 0xffffffffffffffff, 0x0, 0x3)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0xffffffffffffffff, r2, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f0000000280)='./file0\x00', 0x100, 0x4, &(0x7f00000013c0)=[{&(0x7f00000002c0)="d396e424ee", 0x5, 0x5}, {&(0x7f0000000340)="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", 0x1000, 0x5}, {&(0x7f0000001340)="ea92be108219187139d17a0ceb5a", 0xe, 0xfffffffffffffffd}, {&(0x7f0000001380)="be6ef8ca1bf2d92da6130f1096a48982b98ed9246965f08bce82d1693931b8597db9421daeeaf055c215b031a5a65e157b1a9796fd8367", 0x37, 0x8}], 0x800000, &(0x7f0000001440)={[{@bh}, {@minixdf}, {@jqfmt_vfsv1}, {@init_itable_val={'init_itable', 0x3d, 0x61d3f3b9}}, {@barrier}], [{@obj_type={'obj_type', 0x3d, ' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, {@fowner_gt={'fowner>', r1}}, {@fowner_eq={'fowner', 0x3d, r2}}, {@obj_user={'obj_user', 0x3d, '&[/'}}, {@permit_directio}, {@dont_appraise}, {@pcr={'pcr', 0x3d, 0x6}}]})

[ 1663.910407] FAULT_INJECTION: forcing a failure.
[ 1663.910407] name failslab, interval 1, probability 0, space 0, times 0
[ 1663.913048] CPU: 0 PID: 42867 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1663.914510] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1663.916277] Call Trace:
[ 1663.916856]  dump_stack+0x107/0x167
[ 1663.917633]  should_fail.cold+0x5/0xa
20:33:07 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r0=>0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_io_uring_setup(0x4c1, &(0x7f0000000200)={0x0, 0x6e7f, 0x2, 0x3, 0x3a0, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r2, r0, &(0x7f0000000280)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x1}, 0x40)
pipe(&(0x7f00000003c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x210002, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@fscache}, {@posixacl}, {@version_u}], [{@fsname={'fsname', 0x3d, 'wfdno'}}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@smackfsroot={'smackfsroot', 0x3d, '0\xb5\nI\xf8U\x86\xa62c\xc4\xa5h)\x8f\xfc\xbc\x8b\xd1O\xf5_S\xd9#%\x00\xe2)\x01\x93k/\xa2\\r^\x9a\x99\t.\x06}\x1c\xcd#\x93\xe4\x8f\xf1~R\xc8\x8e\xe9\x19\xc8\xc2\xa7\xbd\xa5\xc7\xcck\xeb\xbb\xd0\xa7\x82\xb2\xe4\xc0\x03tc\x80\xa6\x9d\xf6\x95\x1b'}}]}})

[ 1663.918449]  ? create_object.isra.0+0x3a/0xa20
[ 1663.919578]  should_failslab+0x5/0x20
[ 1663.920386]  kmem_cache_alloc+0x5b/0x310
[ 1663.921264]  create_object.isra.0+0x3a/0xa20
[ 1663.922194]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1663.923292]  __kmalloc_track_caller+0x177/0x370
[ 1663.924282]  ? match_number+0xaf/0x1d0
[ 1663.925124]  kmemdup_nul+0x2d/0xa0
[ 1663.925880]  match_number+0xaf/0x1d0
[ 1663.926672]  ? match_u64+0x190/0x190
[ 1663.927460]  ? __kmalloc_track_caller+0x2c6/0x370
[ 1663.928479]  ? memcpy+0x39/0x60
[ 1663.929198]  parse_opts.part.0+0x1f3/0x340
[ 1663.930098]  ? p9_fd_show_options+0x1c0/0x1c0
[ 1663.931061]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1663.932167]  ? trace_hardirqs_on+0x5b/0x180
[ 1663.933106]  ? kfree+0xd7/0x340
[ 1663.933808]  p9_fd_create+0x98/0x4a0
[ 1663.934596]  ? p9_conn_create+0x510/0x510
[ 1663.935471]  ? p9_client_create+0x798/0x1230
[ 1663.936412]  ? kfree+0xd7/0x340
[ 1663.937121]  ? do_raw_spin_unlock+0x4f/0x220
[ 1663.938071]  p9_client_create+0x7ff/0x1230
[ 1663.938985]  ? p9_client_flush+0x430/0x430
[ 1663.939888]  ? trace_hardirqs_on+0x5b/0x180
[ 1663.940807]  ? lockdep_init_map_type+0x2c7/0x780
[ 1663.941831]  ? __raw_spin_lock_init+0x36/0x110
[ 1663.942817]  v9fs_session_init+0x1dd/0x1680
[ 1663.943743]  ? lock_release+0x680/0x680
[ 1663.944596]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1663.945635]  ? v9fs_show_options+0x690/0x690
[ 1663.946580]  ? trace_hardirqs_on+0x5b/0x180
[ 1663.947496]  ? kasan_unpoison_shadow+0x33/0x50
[ 1663.948466]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1663.949557]  v9fs_mount+0x79/0x8f0
[ 1663.950309]  ? v9fs_write_inode+0x60/0x60
[ 1663.951197]  legacy_get_tree+0x105/0x220
[ 1663.952073]  vfs_get_tree+0x8e/0x300
[ 1663.952873]  path_mount+0x1429/0x2120
[ 1663.953693]  ? strncpy_from_user+0x9e/0x470
[ 1663.954606]  ? finish_automount+0xa90/0xa90
[ 1663.955532]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1663.956520]  ? _copy_from_user+0xfb/0x1b0
[ 1663.957424]  __x64_sys_mount+0x282/0x300
[ 1663.958286]  ? copy_mnt_ns+0xa00/0xa00
[ 1663.959121]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1663.960260]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1663.961373]  do_syscall_64+0x33/0x40
[ 1663.962166]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1663.963257] RIP: 0033:0x7f5c6f844b19
[ 1663.964048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1663.967971] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1663.969626] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1663.971150] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1663.972672] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1663.974229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1663.975751] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:33:22 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="746f616e733d66ff4dcd10bb5e7ab32acb640c7266646e6f3d", @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])

20:33:22 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x300, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:22 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000040aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:33:22 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x9, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:22 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:22 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x8, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:22 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 32)

20:33:22 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{0x0, 0x3}, 0xfff}}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r2 = fork()
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, 0xffffffffffffffff, &(0x7f00000002c0)={0x2000, 0x0, 0x2}, &(0x7f0000000480)='./file1\x00', 0x18, 0x0, 0x23456}, 0x0)
r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r3, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x5, 0x9, 0x9, 0x1, 0x0, 0x8, 0x100, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7fff, 0x1, @perf_config_ext={0x4, 0x9}, 0x100, 0x5, 0x2fd, 0x0, 0x3ff, 0xfffffffe, 0x7, 0x0, 0x60c, 0x0, 0x1}, r2, 0xa, r3, 0x0)
fcntl$getownex(r1, 0x10, &(0x7f0000000180)={0x0, <r4=>0x0})
r5 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000280), 0x2, 0x0)
r6 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0xb, 0x4, @tid=r6}, &(0x7f0000000040))
kcmp$KCMP_EPOLL_TFD(r6, r4, 0x7, r0, &(0x7f0000000340)={0xffffffffffffffff, r5, 0xfff})

[ 1679.215899] FAULT_INJECTION: forcing a failure.
[ 1679.215899] name failslab, interval 1, probability 0, space 0, times 0
[ 1679.218617] CPU: 0 PID: 43514 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1679.220226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1679.222145] Call Trace:
[ 1679.222756]  dump_stack+0x107/0x167
[ 1679.223589]  should_fail.cold+0x5/0xa
[ 1679.224460]  ? p9_fd_create+0x161/0x4a0
[ 1679.225372]  should_failslab+0x5/0x20
[ 1679.226229]  kmem_cache_alloc_trace+0x55/0x320
[ 1679.227257]  p9_fd_create+0x161/0x4a0
[ 1679.228119]  ? p9_conn_create+0x510/0x510
[ 1679.229078]  ? p9_client_create+0x798/0x1230
[ 1679.230082]  ? kfree+0xd7/0x340
[ 1679.230844]  ? do_raw_spin_unlock+0x4f/0x220
[ 1679.231867]  p9_client_create+0x7ff/0x1230
[ 1679.232858]  ? p9_client_flush+0x430/0x430
[ 1679.233836]  ? trace_hardirqs_on+0x5b/0x180
[ 1679.234832]  ? lockdep_init_map_type+0x2c7/0x780
[ 1679.235916]  ? __raw_spin_lock_init+0x36/0x110
[ 1679.236962]  v9fs_session_init+0x1dd/0x1680
[ 1679.237963]  ? lock_release+0x680/0x680
[ 1679.238879]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1679.239982]  ? v9fs_show_options+0x690/0x690
[ 1679.240992]  ? trace_hardirqs_on+0x5b/0x180
[ 1679.241990]  ? kasan_unpoison_shadow+0x33/0x50
[ 1679.243047]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1679.244213]  v9fs_mount+0x79/0x8f0
[ 1679.245037]  ? v9fs_write_inode+0x60/0x60
[ 1679.245989]  legacy_get_tree+0x105/0x220
[ 1679.246925]  vfs_get_tree+0x8e/0x300
[ 1679.247772]  path_mount+0x1429/0x2120
[ 1679.248652]  ? strncpy_from_user+0x9e/0x470
[ 1679.249649]  ? finish_automount+0xa90/0xa90
[ 1679.250645]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1679.251697]  ? _copy_from_user+0xfb/0x1b0
[ 1679.252649]  __x64_sys_mount+0x282/0x300
[ 1679.253591]  ? copy_mnt_ns+0xa00/0xa00
[ 1679.254486]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1679.255687]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1679.256872]  do_syscall_64+0x33/0x40
[ 1679.257734]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1679.258911] RIP: 0033:0x7f5c6f844b19
[ 1679.259762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1679.263974] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1679.265725] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1679.267358] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1679.268984] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1679.270612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1679.272247] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:33:22 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x500, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:22 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2009078aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:33:22 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3f00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:22 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x9, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:22 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r0 = open(&(0x7f0000000000)='./file1\x00', 0x40100, 0x190)
futimesat(r0, &(0x7f0000000180)='./file1\x00', &(0x7f0000000200)={{}, {0x77359400}})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:22 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xa, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:22 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:35 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 33)

20:33:35 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x600, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:35 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:35 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4084, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:35 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:35 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:33:35 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xa, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:35 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="140000000100000003c7a8eea2b63c00000000000000"], &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

[ 1692.623070] FAULT_INJECTION: forcing a failure.
[ 1692.623070] name failslab, interval 1, probability 0, space 0, times 0
[ 1692.625734] CPU: 0 PID: 44915 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1692.627272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1692.629114] Call Trace:
[ 1692.629720]  dump_stack+0x107/0x167
[ 1692.630533]  should_fail.cold+0x5/0xa
[ 1692.631396]  ? p9_fd_create+0x161/0x4a0
[ 1692.632290]  should_failslab+0x5/0x20
[ 1692.633143]  kmem_cache_alloc_trace+0x55/0x320
[ 1692.634176]  p9_fd_create+0x161/0x4a0
[ 1692.635026]  ? p9_conn_create+0x510/0x510
[ 1692.635950]  ? p9_client_create+0x798/0x1230
[ 1692.636933]  ? kfree+0xd7/0x340
[ 1692.637670]  ? do_raw_spin_unlock+0x4f/0x220
[ 1692.638645]  p9_client_create+0x7ff/0x1230
[ 1692.639584]  ? p9_client_flush+0x430/0x430
[ 1692.640522]  ? trace_hardirqs_on+0x5b/0x180
[ 1692.641491]  ? lockdep_init_map_type+0x2c7/0x780
[ 1692.642540]  ? __raw_spin_lock_init+0x36/0x110
[ 1692.643552]  v9fs_session_init+0x1dd/0x1680
[ 1692.644507]  ? lock_release+0x680/0x680
[ 1692.645400]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1692.646470]  ? v9fs_show_options+0x690/0x690
[ 1692.647450]  ? trace_hardirqs_on+0x5b/0x180
[ 1692.648408]  ? kasan_unpoison_shadow+0x33/0x50
[ 1692.649429]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1692.650547]  v9fs_mount+0x79/0x8f0
[ 1692.651328]  ? v9fs_write_inode+0x60/0x60
[ 1692.652243]  legacy_get_tree+0x105/0x220
[ 1692.653142]  vfs_get_tree+0x8e/0x300
[ 1692.653965]  path_mount+0x1429/0x2120
[ 1692.654816]  ? strncpy_from_user+0x9e/0x470
[ 1692.655764]  ? finish_automount+0xa90/0xa90
[ 1692.656718]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1692.657746]  ? _copy_from_user+0xfb/0x1b0
[ 1692.658664]  __x64_sys_mount+0x282/0x300
[ 1692.659543]  ? copy_mnt_ns+0xa00/0xa00
[ 1692.660397]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1692.661552]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1692.662672]  do_syscall_64+0x33/0x40
[ 1692.663486]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1692.664617] RIP: 0033:0x7f5c6f844b19
[ 1692.665433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1692.668518] 9pnet: Insufficient options for proto=fd
[ 1692.669446] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1692.669472] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1692.673310] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1692.674884] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1692.676436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1692.678000] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:33:36 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x46db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = signalfd4(r0, &(0x7f0000000000)={[0x2]}, 0x8, 0x80000)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40106614, &(0x7f0000000180))
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x700, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="140000005200"/28], 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()
stat(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x7, 0x7, &(0x7f0000000740)=[{&(0x7f00000002c0)="ce23376157a0bc26f4d52729b1f749edeb34e70c14750c19e45d702f1933c211071f6c5be2c51c0b6ef7216f90b4", 0x2e, 0xffff}, {&(0x7f0000000340)="14228eb17b4b304281da48f0707a4f62607d38bb64fbe58688908702f9e4dcdb0d778add40309e3d541811a0f1c1445eda80dc60068fec452602045558684eefabdeb0f7216b7992febce8972c2d0c1ce58a4b6caf1ceaaf6a45eae122521c22627d29b62d7b26bcd4e2d706a1248a0ee4ad440d20e4c2915ac42e5b64d931e93040c79e7ed8d4eff825f184dc65f75ef064fb504e3d6d19ee7d81750a96a36b5b0aacd0942cd4", 0xa7, 0xffffffffffffffc1}, {&(0x7f0000000400)="bd63742c9f144f8959ffa81893afb88a7daf4964f6b8580a0fccd47547f07e8dd0436fe0643f5e8a82985a25475190884b82913060792d6c961ce687ce11146731db15a8f3c74f8e614515a7b99e9ab1cd9a063a242412846fdec822be67d68b28c9856fbd2633200a6a5edce32c40af23922dee07c7bbd493", 0x79}, {&(0x7f0000000480)="5c9407871165fd2b9b9f8c7a38c30c6a9a514ef2a26a2f093c99b64acb4eca977e432fce2724c2a7b6c0ee603b32a797d5fa5b8ac4001601a2835b029cabe853c77b6d71eb8c042cb668dd4b6f9ff92234647ef50e3558baec26324776fdfab3300a52000d02c4bcd6e1d33363c209e4edbfac0b621d2ba70a1c1590d1ba54444e37", 0x82, 0x8}, {&(0x7f0000000540)="5b2185c07f9513f1a039165b15d3e18d38df0f6abd89b0683e600d3ad3cb8e21013984159c08e4d3088e3097bd276108582fad5f540938c6fa65451406310389941f74513abf3d87b0b37f6ae0930a5ffb2f16f46f9f2f9ba04a25c5923dc93a3cb51c241dd65481f61aae327954024341cbb67c9f5334844bbcdee5", 0x7c, 0x3}, {&(0x7f00000005c0)="534b2045dfccc421bbd377044b08fa6e3f54ce7a62bcc0dfa6066d765753788e317263ed2630bf7bff6aa69cf0a63068af9d9224cf915e566f4b88a688a47d40de78b85fdea4bb9e0f28e11c3e565a9f8fcd797aff946b0de1545b5bbe427f9b9665a9d863282cbd7aa00181a46d0d014080a894305a6fc8f511887192eb3f67acf41cd26d", 0x85, 0x1}, {&(0x7f0000000680)="fd460fce644257ffc11ed8ed6f970fe89cb94153edca7807bd38e129ccf080a5de9f7b738c6de02457cb9db1aca5e27d62c550caaf14e4968f911a33b24b848d09aa56bcb47ca0fcdd5294ba69ec0a0814c2c6adfa1cdfe50441dd1d9c4c960fb2fd0ca2aba697f0d77eee9004d69a9e6613070c279fb7157c1d5812be4ac2ee0243", 0x82, 0xfffffffeffffffff}], 0x2008002, &(0x7f00000008c0)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2}}, {@nomblk_io_submit}, {@nolazytime}, {@dioread_nolock}, {@debug}, {@min_batch_time={'min_batch_time', 0x3d, 0x8}}, {@resuid={'resuid', 0x3d, 0xee00}}], [{@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@euid_eq={'euid', 0x3d, r1}}, {@fsname={'fsname', 0x3d, 'system.posix_acl_default\x00'}}, {@obj_role={'obj_role', 0x3d, '^'}}, {@uid_lt}, {@smackfsdef={'smackfsdef', 0x3d, '\xff\xff'}}, {@dont_hash}, {@smackfshat={'smackfshat', 0x3d, '.(\xcd@-'}}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x35, 0x62, 0x31, 0x66, 0x39, 0x36, 0x31], 0x2d, [0x30, 0x37, 0x38, 0x35], 0x2d, [0x31, 0x63, 0x39, 0x34], 0x2d, [0x64, 0x65, 0x32, 0x66], 0x2d, [0x39, 0x36, 0x65, 0x51, 0x37, 0x35, 0x36, 0x39]}}}, {@dont_measure}]})

20:33:36 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xc, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x47db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:33:36 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 34)

20:33:36 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4800, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x900, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1693.013132] FAULT_INJECTION: forcing a failure.
[ 1693.013132] name failslab, interval 1, probability 0, space 0, times 0
[ 1693.015780] CPU: 0 PID: 46190 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1693.017241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1693.018992] Call Trace:
[ 1693.019548]  dump_stack+0x107/0x167
[ 1693.020319]  should_fail.cold+0x5/0xa
[ 1693.021123]  ? p9_client_prepare_req.part.0+0x3a/0xac0
[ 1693.022249]  should_failslab+0x5/0x20
[ 1693.023061]  kmem_cache_alloc+0x5b/0x310
[ 1693.023921]  p9_client_prepare_req.part.0+0x3a/0xac0
[ 1693.024997]  p9_client_rpc+0x220/0x1370
[ 1693.025844]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1693.026958]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1693.028088]  ? pipe_poll+0x21b/0x800
[ 1693.028874]  ? p9_fd_close+0x4a0/0x4a0
[ 1693.029715]  ? wait_for_partner+0x3c0/0x3c0
[ 1693.030616]  ? p9_fd_poll+0x1e0/0x2c0
[ 1693.031427]  ? p9_fd_create+0x357/0x4a0
[ 1693.032274]  ? p9_conn_create+0x510/0x510
[ 1693.033148]  ? p9_client_create+0x798/0x1230
[ 1693.034115]  ? kfree+0xd7/0x340
[ 1693.034812]  ? do_raw_spin_unlock+0x4f/0x220
[ 1693.035729]  p9_client_create+0xa76/0x1230
[ 1693.036626]  ? p9_client_flush+0x430/0x430
[ 1693.037523]  ? trace_hardirqs_on+0x5b/0x180
[ 1693.038444]  ? lockdep_init_map_type+0x2c7/0x780
[ 1693.039442]  ? __raw_spin_lock_init+0x36/0x110
[ 1693.040398]  v9fs_session_init+0x1dd/0x1680
[ 1693.041315]  ? lock_release+0x680/0x680
[ 1693.042173]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1693.043196]  ? v9fs_show_options+0x690/0x690
[ 1693.044127]  ? trace_hardirqs_on+0x5b/0x180
[ 1693.045048]  ? kasan_unpoison_shadow+0x33/0x50
[ 1693.046019]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1693.047083]  v9fs_mount+0x79/0x8f0
[ 1693.047832]  ? v9fs_write_inode+0x60/0x60
[ 1693.048712]  legacy_get_tree+0x105/0x220
[ 1693.049579]  vfs_get_tree+0x8e/0x300
[ 1693.050374]  path_mount+0x1429/0x2120
[ 1693.051185]  ? strncpy_from_user+0x9e/0x470
[ 1693.052108]  ? finish_automount+0xa90/0xa90
[ 1693.053025]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1693.054019]  ? _copy_from_user+0xfb/0x1b0
[ 1693.054905]  __x64_sys_mount+0x282/0x300
[ 1693.055774]  ? copy_mnt_ns+0xa00/0xa00
[ 1693.056608]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1693.057719]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1693.058814]  do_syscall_64+0x33/0x40
[ 1693.059603]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1693.060689] RIP: 0033:0x7f5c6f844b19
[ 1693.061484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1693.065386] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1693.066971] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1693.068482] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1693.070004] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1693.071506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1693.073017] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:33:36 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xc, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x48db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xa00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:36 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:33:53 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xe, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:53 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = pidfd_getfd(r2, r1, 0x0)
openat(r3, &(0x7f0000000200)='./file1\x00', 0x410403, 0x14)
ioctl$F2FS_IOC_FLUSH_DEVICE(r1, 0x4008f50a, &(0x7f0000000000)={0xe7c2, 0x1000})
openat(r0, &(0x7f0000000180)='./file1\x00', 0x100080, 0x100)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:53 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000004aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:33:53 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 35)

20:33:53 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x49db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:53 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000040000000000000002000400", @ANYRES32=0xee00, @ANYBLOB="040003000000000008000100", @ANYRES32=0xee01, @ANYBLOB="08000200", @ANYRES32=0xee00, @ANYBLOB="10000000000000002000050000000000"], 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
r1 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000180)=0xff)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x14e, &(0x7f0000000340)={@broadcast, @remote, @void, {@ipv6={0x86dd, @generic={0x3, 0x6, "77a424", 0x118, 0x87, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, {[@fragment={0x3b, 0x0, 0xce, 0x1, 0x0, 0x3, 0x65}, @fragment={0x8, 0x0, 0x6, 0x1, 0x0, 0x4, 0x9}, @dstopts={0x3a, 0xe, '\x00', [@jumbo={0xc2, 0x4, 0xfffffff8}, @padn={0x1, 0x1, [0x0]}, @jumbo={0xc2, 0x4, 0x8000}, @pad1, @calipso={0x7, 0x18, {0x0, 0x4, 0x7, 0x8, [0xe84, 0x400]}}, @jumbo={0xc2, 0x4, 0x7fffffff}, @calipso={0x7, 0x40, {0x3, 0xe, 0x0, 0x9, [0xffff, 0x3, 0xffff, 0x0, 0x8, 0x9, 0x1]}}]}, @fragment={0x2b, 0x0, 0x9, 0x1, 0x0, 0x12, 0x65}, @srh={0x16, 0x6, 0x4, 0x3, 0x80, 0x50, 0x3cbe, [@private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0xc}, @private0={0xfc, 0x0, '\x00', 0x1}]}], "3cff73f36f594f4861facbce6b58e50c0bda87dce77d913477761d941699c8163dbab9a5cf5770eef201535b01366a44ebedcc2c02c67132e79fc3dcd460a3f9c6bbd903cff658af"}}}}}, 0x0)
accept4$unix(0xffffffffffffffff, &(0x7f0000000280), &(0x7f00000005c0)=0x6e, 0x800)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
gettid()
ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f00000004c0))
fork()

20:33:53 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xb00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:53 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xe, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1710.487535] FAULT_INJECTION: forcing a failure.
[ 1710.487535] name failslab, interval 1, probability 0, space 0, times 0
[ 1710.490268] CPU: 1 PID: 47102 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1710.491852] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1710.493773] Call Trace:
[ 1710.494408]  dump_stack+0x107/0x167
[ 1710.495282]  should_fail.cold+0x5/0xa
[ 1710.496132]  ? create_object.isra.0+0x3a/0xa20
[ 1710.497183]  should_failslab+0x5/0x20
[ 1710.498036]  kmem_cache_alloc+0x5b/0x310
[ 1710.499067]  create_object.isra.0+0x3a/0xa20
[ 1710.500129]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1710.501337]  kmem_cache_alloc+0x159/0x310
[ 1710.502352]  p9_client_prepare_req.part.0+0x3a/0xac0
[ 1710.503510]  p9_client_rpc+0x220/0x1370
[ 1710.504417]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1710.505625]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1710.506849]  ? pipe_poll+0x21b/0x800
[ 1710.507698]  ? p9_fd_close+0x4a0/0x4a0
[ 1710.508587]  ? wait_for_partner+0x3c0/0x3c0
[ 1710.509605]  ? p9_fd_poll+0x1e0/0x2c0
[ 1710.510500]  ? p9_fd_create+0x357/0x4a0
[ 1710.511407]  ? p9_conn_create+0x510/0x510
[ 1710.512358]  ? p9_client_create+0x798/0x1230
[ 1710.513354]  ? kfree+0xd7/0x340
[ 1710.514188]  ? do_raw_spin_unlock+0x4f/0x220
[ 1710.515266]  p9_client_create+0xa76/0x1230
[ 1710.516229]  ? p9_client_flush+0x430/0x430
[ 1710.517184]  ? trace_hardirqs_on+0x5b/0x180
[ 1710.518169]  ? lockdep_init_map_type+0x2c7/0x780
[ 1710.519287]  ? __raw_spin_lock_init+0x36/0x110
[ 1710.520388]  v9fs_session_init+0x1dd/0x1680
[ 1710.521454]  ? lock_release+0x680/0x680
[ 1710.522428]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1710.523629]  ? v9fs_show_options+0x690/0x690
[ 1710.524647]  ? trace_hardirqs_on+0x5b/0x180
[ 1710.525710]  ? kasan_unpoison_shadow+0x33/0x50
[ 1710.526842]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1710.528074]  v9fs_mount+0x79/0x8f0
[ 1710.528951]  ? v9fs_write_inode+0x60/0x60
[ 1710.529981]  legacy_get_tree+0x105/0x220
[ 1710.530988]  vfs_get_tree+0x8e/0x300
[ 1710.531879]  path_mount+0x1429/0x2120
[ 1710.532758]  ? strncpy_from_user+0x9e/0x470
[ 1710.533838]  ? finish_automount+0xa90/0xa90
[ 1710.534891]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1710.535957]  ? _copy_from_user+0xfb/0x1b0
[ 1710.536970]  __x64_sys_mount+0x282/0x300
[ 1710.537973]  ? copy_mnt_ns+0xa00/0xa00
[ 1710.538843]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1710.540042]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1710.541256]  do_syscall_64+0x33/0x40
[ 1710.542185]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1710.543403] RIP: 0033:0x7f5c6f844b19
[ 1710.544337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1710.548765] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1710.550781] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1710.552650] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1710.554504] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1710.556360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1710.558254] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:33:54 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xc00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:54 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4adb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:54 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x10, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:54 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x10, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:54 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4bdb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:54 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 36)

20:33:54 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x26040, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:33:54 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x2e, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:54 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2e, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:33:54 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xe00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1711.099033] FAULT_INJECTION: forcing a failure.
[ 1711.099033] name failslab, interval 1, probability 0, space 0, times 0
[ 1711.101668] CPU: 1 PID: 48286 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1711.103455] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1711.105581] Call Trace:
[ 1711.106264]  dump_stack+0x107/0x167
[ 1711.107200]  should_fail.cold+0x5/0xa
[ 1711.108189]  ? p9_fcall_init+0x97/0x290
[ 1711.109215]  should_failslab+0x5/0x20
[ 1711.110216]  __kmalloc+0x72/0x390
[ 1711.111122]  p9_fcall_init+0x97/0x290
[ 1711.112116]  p9_client_prepare_req.part.0+0x8c/0xac0
[ 1711.113472]  p9_client_rpc+0x220/0x1370
[ 1711.114510]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1711.115871]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1711.117242]  ? pipe_poll+0x21b/0x800
[ 1711.118209]  ? p9_fd_close+0x4a0/0x4a0
[ 1711.119206]  ? wait_for_partner+0x3c0/0x3c0
[ 1711.120312]  ? p9_fd_poll+0x1e0/0x2c0
[ 1711.121291]  ? p9_fd_create+0x357/0x4a0
[ 1711.122285]  ? p9_conn_create+0x510/0x510
[ 1711.123369]  ? p9_client_create+0x798/0x1230
[ 1711.124349]  ? kfree+0xd7/0x340
[ 1711.125088]  ? do_raw_spin_unlock+0x4f/0x220
[ 1711.126094]  p9_client_create+0xa76/0x1230
[ 1711.127054]  ? p9_client_flush+0x430/0x430
[ 1711.128005]  ? trace_hardirqs_on+0x5b/0x180
[ 1711.128967]  ? lockdep_init_map_type+0x2c7/0x780
[ 1711.130035]  ? __raw_spin_lock_init+0x36/0x110
[ 1711.131058]  v9fs_session_init+0x1dd/0x1680
[ 1711.132019]  ? lock_release+0x680/0x680
[ 1711.132924]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1711.134025]  ? v9fs_show_options+0x690/0x690
[ 1711.135020]  ? trace_hardirqs_on+0x5b/0x180
[ 1711.135959]  ? kasan_unpoison_shadow+0x33/0x50
[ 1711.136962]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1711.138113]  v9fs_mount+0x79/0x8f0
[ 1711.138911]  ? v9fs_write_inode+0x60/0x60
[ 1711.139823]  legacy_get_tree+0x105/0x220
[ 1711.140720]  vfs_get_tree+0x8e/0x300
[ 1711.141556]  path_mount+0x1429/0x2120
[ 1711.142397]  ? strncpy_from_user+0x9e/0x470
[ 1711.143338]  ? finish_automount+0xa90/0xa90
[ 1711.144291]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1711.145311]  ? _copy_from_user+0xfb/0x1b0
[ 1711.146252]  __x64_sys_mount+0x282/0x300
[ 1711.147146]  ? copy_mnt_ns+0xa00/0xa00
[ 1711.148003]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1711.149146]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1711.150295]  do_syscall_64+0x33/0x40
[ 1711.151120]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1711.152256] RIP: 0033:0x7f5c6f844b19
[ 1711.153074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1711.157150] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1711.158846] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1711.160431] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1711.162021] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1711.163624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1711.165217] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:34:07 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x48, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:07 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000030aaaaaa5ceb0086dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:34:07 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
creat(&(0x7f0000000180)='./file0\x00', 0x100)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:34:07 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x48, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:07 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe)
keyctl$update(0x2, r1, &(0x7f0000000000)="a7", 0x1)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f00000004c0)={@desc={0x1, 0x0, @desc2}, 0x40, r1, '\x00', @b})
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
openat(r0, &(0x7f0000000180)='./file1\x00', 0x20ffb9e586c16402, 0x28)
name_to_handle_at(r2, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
write$binfmt_script(r2, &(0x7f0000000200)={'#! ', './file1', [{}, {0x20, 'dfltgid'}, {0x20, 'wfdno'}, {0x20, 'afid'}], 0xa, "940f36b53de3e76ac5584131e505fb99019170605fc5eea476e61a6e6d72f7e74491501245cc594ffc2a33e83797500c3d9f19a041603b5ffbc6e7ec91fb614edf9093cbfa89"}, 0x65)
pipe(&(0x7f00000003c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:07 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4c00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:07 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x1020, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:07 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 37)

[ 1724.388455] FAULT_INJECTION: forcing a failure.
[ 1724.388455] name failslab, interval 1, probability 0, space 0, times 0
[ 1724.389843] CPU: 0 PID: 48837 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1724.390646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1724.391600] Call Trace:
[ 1724.391913]  dump_stack+0x107/0x167
[ 1724.392341]  should_fail.cold+0x5/0xa
[ 1724.392780]  ? create_object.isra.0+0x3a/0xa20
[ 1724.393312]  should_failslab+0x5/0x20
[ 1724.393760]  kmem_cache_alloc+0x5b/0x310
[ 1724.394231]  create_object.isra.0+0x3a/0xa20
[ 1724.394732]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1724.395315]  __kmalloc+0x16e/0x390
[ 1724.395731]  p9_fcall_init+0x97/0x290
[ 1724.396188]  p9_client_prepare_req.part.0+0x8c/0xac0
[ 1724.396781]  p9_client_rpc+0x220/0x1370
[ 1724.397243]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1724.397866]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1724.398492]  ? pipe_poll+0x21b/0x800
[ 1724.398921]  ? p9_fd_close+0x4a0/0x4a0
[ 1724.399372]  ? wait_for_partner+0x3c0/0x3c0
[ 1724.399874]  ? p9_fd_poll+0x1e0/0x2c0
[ 1724.400322]  ? p9_fd_create+0x357/0x4a0
[ 1724.400786]  ? p9_conn_create+0x510/0x510
[ 1724.401263]  ? p9_client_create+0x798/0x1230
[ 1724.401776]  ? kfree+0xd7/0x340
[ 1724.402151]  ? do_raw_spin_unlock+0x4f/0x220
[ 1724.402664]  p9_client_create+0xa76/0x1230
[ 1724.403159]  ? p9_client_flush+0x430/0x430
[ 1724.403654]  ? trace_hardirqs_on+0x5b/0x180
[ 1724.404158]  ? lockdep_init_map_type+0x2c7/0x780
[ 1724.404707]  ? __raw_spin_lock_init+0x36/0x110
[ 1724.405249]  v9fs_session_init+0x1dd/0x1680
[ 1724.405760]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1724.406317]  ? v9fs_show_options+0x690/0x690
[ 1724.406832]  ? trace_hardirqs_on+0x5b/0x180
[ 1724.407330]  ? kasan_unpoison_shadow+0x33/0x50
[ 1724.407857]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1724.408438]  v9fs_mount+0x79/0x8f0
[ 1724.408860]  ? v9fs_write_inode+0x60/0x60
[ 1724.409344]  legacy_get_tree+0x105/0x220
[ 1724.409821]  vfs_get_tree+0x8e/0x300
[ 1724.410246]  path_mount+0x1429/0x2120
[ 1724.410690]  ? strncpy_from_user+0x9e/0x470
[ 1724.411189]  ? finish_automount+0xa90/0xa90
[ 1724.411684]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1724.412228]  ? _copy_from_user+0xfb/0x1b0
[ 1724.412709]  __x64_sys_mount+0x282/0x300
[ 1724.413183]  ? copy_mnt_ns+0xa00/0xa00
[ 1724.413661]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1724.414269]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1724.414871]  do_syscall_64+0x33/0x40
[ 1724.415304]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1724.415903] RIP: 0033:0x7f5c6f844b19
[ 1724.416331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1724.418476] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1724.419351] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1724.420172] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1724.420990] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1724.421813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1724.422626] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:34:07 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:20 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0005dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:34:20 executing program 0:
r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x110, 0xffffffffffffffff, 0x8000000)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f00000004c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
clone3(&(0x7f00000002c0)={0x80000, &(0x7f0000000000)=<r3=>0xffffffffffffffff, &(0x7f0000000180), &(0x7f0000000200), {0x5}, &(0x7f0000000940)=""/4096, 0x1000, &(0x7f0000000240)=""/35, &(0x7f0000000280)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x7}, 0x58)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r0, r2, &(0x7f0000000380)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x100, &(0x7f0000000340)=[0xffffffffffffffff, r3, 0xffffffffffffffff], 0x3, 0x0, 0x0, {0x0, r4}}, 0x2)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4cdb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x4c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:20 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:20 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010001000000000002000400", @ANYRES32=0xee00, @ANYBLOB="04e402200000000008000100", @ANYRES32=0xee01, @ANYBLOB="08000200", @ANYRES32=0xee00, @ANYBLOB="10000000000000002000050000000000"], 0x3c, 0x0)
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x2)
r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="140000005200"/28], 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000100)='./file0\x00', &(0x7f0000001640)=ANY=[@ANYBLOB="140000000100000003467bf973628a558650c6e69ce921dcdfe0abd4c7a8eea2b63c000000000f9368e0aab929e4e26ce153c44c80ac51fcbece9c31cbd1c2c9024daa422e6e"], &(0x7f0000000200), 0x0)
read(r1, &(0x7f0000000100)=""/124, 0x7c)
syz_io_uring_setup(0x1e17, &(0x7f0000000280)={0x0, 0xf8d0, 0x2, 0x1, 0x1b0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000001500)=<r2=>0x0, &(0x7f0000001540))
syz_io_uring_submit(r2, 0x0, &(0x7f0000001580)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x4, 0xfd, 0x0, 0xfffffffd}, 0x6)
syz_extract_tcp_res(&(0x7f0000000180)={0x41424344, <r3=>0x41424344}, 0x0, 0x9e)
syz_emit_ethernet(0x11ac, &(0x7f0000000340)={@broadcast, @remote, @void, {@ipv6={0x86dd, @tcp={0x1, 0x6, "e167ba", 0x1176, 0x6, 0x0, @loopback, @loopback, {[@hopopts={0x3b, 0x20a, '\x00', [@ra, @generic={0x81, 0x1e, "4d1e4fc821f9420db6bf8dbdfc7679ed466de3f5bb794437096a07c327d4"}, @generic={0x20, 0x1000, "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"}, @calipso={0x7, 0x28, {0x0, 0x8, 0x0, 0x4, [0x0, 0x3, 0x3, 0x4]}}, @pad1]}, @dstopts={0xc}, @hopopts={0x3b, 0x2, '\x00', [@ra={0x5, 0x2, 0xffff}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}]}, @routing={0x67, 0x2, 0x0, 0x1b, 0x0, [@private2]}, @fragment={0x87, 0x0, 0x0, 0x1, 0x0, 0x0, 0x65}, @routing={0x2b, 0xa, 0x2, 0x0, 0x0, [@empty, @private1, @private2, @mcast2, @rand_addr=' \x01\x00']}], {{0x4e24, 0x4e24, 0x41424344, r3, 0x0, 0x0, 0x6, 0x80, 0x7fff, 0x0, 0x0, {[@generic={0xfc, 0x2}]}}, {"c6432f45a392952ed47ba9443b09033d0d97c9630f0436402d625ca5a442b9c25d84e15eb4e0c3d95212167fdbb82aeeb5672d0fb8e0f267f1fa90e39887f6b27c04ac75fd1fbc09576c36c84dc0e1a4e41542135409b6b0c0f57f0fe813"}}}}}}}, 0x0)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000015c0), 0x80100, 0x0)
fsconfig$FSCONFIG_SET_FD(r4, 0x5, &(0x7f0000001600)='$,^y\x00', 0x0, r1)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:34:20 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x68, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:20 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 38)

[ 1737.389689] FAULT_INJECTION: forcing a failure.
[ 1737.389689] name failslab, interval 1, probability 0, space 0, times 0
[ 1737.392393] CPU: 1 PID: 49576 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1737.393963] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1737.395831] Call Trace:
[ 1737.396430]  dump_stack+0x107/0x167
[ 1737.397254]  should_fail.cold+0x5/0xa
[ 1737.398141]  ? p9_fcall_init+0x97/0x290
[ 1737.399049]  should_failslab+0x5/0x20
[ 1737.399911]  __kmalloc+0x72/0x390
[ 1737.400706]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1737.401887]  p9_fcall_init+0x97/0x290
[ 1737.402762]  p9_client_prepare_req.part.0+0xf4/0xac0
[ 1737.403927]  p9_client_rpc+0x220/0x1370
[ 1737.404837]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1737.406046]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1737.407261]  ? pipe_poll+0x21b/0x800
[ 1737.408100]  ? p9_fd_close+0x4a0/0x4a0
[ 1737.409015]  ? wait_for_partner+0x3c0/0x3c0
[ 1737.409998]  ? p9_fd_poll+0x1e0/0x2c0
[ 1737.410881]  ? p9_fd_create+0x357/0x4a0
[ 1737.411781]  ? p9_conn_create+0x510/0x510
[ 1737.412731]  ? p9_client_create+0x798/0x1230
[ 1737.413745]  ? kfree+0xd7/0x340
[ 1737.414502]  ? do_raw_spin_unlock+0x4f/0x220
[ 1737.415514]  p9_client_create+0xa76/0x1230
[ 1737.416490]  ? p9_client_flush+0x430/0x430
[ 1737.417469]  ? trace_hardirqs_on+0x5b/0x180
[ 1737.418455]  ? lockdep_init_map_type+0x2c7/0x780
[ 1737.419541]  ? __raw_spin_lock_init+0x36/0x110
[ 1737.420593]  v9fs_session_init+0x1dd/0x1680
[ 1737.421550]  ? lock_release+0x680/0x680
[ 1737.422447]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1737.423541]  ? v9fs_show_options+0x690/0x690
[ 1737.424560]  ? trace_hardirqs_on+0x5b/0x180
[ 1737.425541]  ? kasan_unpoison_shadow+0x33/0x50
[ 1737.426586]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1737.427731]  v9fs_mount+0x79/0x8f0
[ 1737.428549]  ? v9fs_write_inode+0x60/0x60
[ 1737.429493]  legacy_get_tree+0x105/0x220
[ 1737.430435]  vfs_get_tree+0x8e/0x300
[ 1737.431280]  path_mount+0x1429/0x2120
[ 1737.432148]  ? strncpy_from_user+0x9e/0x470
[ 1737.433145]  ? finish_automount+0xa90/0xa90
[ 1737.434136]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1737.435201]  ? _copy_from_user+0xfb/0x1b0
[ 1737.436160]  __x64_sys_mount+0x282/0x300
[ 1737.437090]  ? copy_mnt_ns+0xa00/0xa00
[ 1737.437983]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1737.439191]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1737.440372]  do_syscall_64+0x33/0x40
[ 1737.441235]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1737.442407] RIP: 0033:0x7f5c6f844b19
[ 1737.443255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1737.447451] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1737.449167] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1737.450783] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1737.452390] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1737.454022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1737.455645] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:34:20 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2010, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4ddb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x68, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:21 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x6c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:21 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$SG_IO(r3, 0x227a, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, @buffer={0x300, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})
r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r4, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
ioctl$SCSI_IOCTL_PROBE_HOST(r4, 0x5385, &(0x7f0000000200)={0xa4, ""/164})

20:34:37 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 39)

20:34:37 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2e00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:37 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2800004, 0x80010, r0, 0x10000000)
syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000fff000/0x1000)=nil, 0x1000, 0x3, 0x1}, 0x15)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:37 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:34:37 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4edb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:37 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x6c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:37 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x74, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:37 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
name_to_handle_at(r0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000280)=@isofs={0x14, 0x1, {0x4, 0x7, 0x8, 0x5, 0x81, 0x4a4ba737}}, &(0x7f00000002c0), 0x1000)
syz_emit_ethernet(0x6e, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb866000013f00383c00000000000000000000ffffe0000002ff020000000000000000000000000001000000000000000001009078000000006041337400000000fc010000000000feffffffffffffff002001000000000000000000000000000100"], 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

[ 1753.713650] FAULT_INJECTION: forcing a failure.
[ 1753.713650] name failslab, interval 1, probability 0, space 0, times 0
[ 1753.716324] CPU: 1 PID: 50822 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1753.717899] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1753.719827] Call Trace:
[ 1753.720438]  dump_stack+0x107/0x167
[ 1753.721295]  should_fail.cold+0x5/0xa
[ 1753.722184]  ? create_object.isra.0+0x3a/0xa20
[ 1753.723216]  should_failslab+0x5/0x20
[ 1753.724086]  kmem_cache_alloc+0x5b/0x310
[ 1753.725015]  create_object.isra.0+0x3a/0xa20
[ 1753.726056]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1753.727201]  __kmalloc+0x16e/0x390
[ 1753.728027]  p9_fcall_init+0x97/0x290
[ 1753.728889]  p9_client_prepare_req.part.0+0xf4/0xac0
[ 1753.730075]  p9_client_rpc+0x220/0x1370
[ 1753.730993]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1753.732182]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1753.733401]  ? pipe_poll+0x21b/0x800
[ 1753.734278]  ? p9_fd_close+0x4a0/0x4a0
[ 1753.735155]  ? wait_for_partner+0x3c0/0x3c0
[ 1753.736123]  ? p9_fd_poll+0x1e0/0x2c0
[ 1753.736995]  ? p9_fd_create+0x357/0x4a0
[ 1753.737902]  ? p9_conn_create+0x510/0x510
[ 1753.738866]  ? p9_client_create+0x798/0x1230
[ 1753.739851]  ? kfree+0xd7/0x340
[ 1753.740590]  ? do_raw_spin_unlock+0x4f/0x220
[ 1753.741594]  p9_client_create+0xa76/0x1230
[ 1753.742591]  ? p9_client_flush+0x430/0x430
[ 1753.743567]  ? trace_hardirqs_on+0x5b/0x180
[ 1753.744547]  ? lockdep_init_map_type+0x2c7/0x780
[ 1753.745622]  ? __raw_spin_lock_init+0x36/0x110
[ 1753.746699]  v9fs_session_init+0x1dd/0x1680
[ 1753.747676]  ? lock_release+0x680/0x680
[ 1753.748578]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1753.749681]  ? v9fs_show_options+0x690/0x690
[ 1753.750726]  ? trace_hardirqs_on+0x5b/0x180
[ 1753.751702]  ? kasan_unpoison_shadow+0x33/0x50
[ 1753.752740]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1753.753887]  v9fs_mount+0x79/0x8f0
[ 1753.754722]  ? v9fs_write_inode+0x60/0x60
[ 1753.755668]  legacy_get_tree+0x105/0x220
[ 1753.756590]  vfs_get_tree+0x8e/0x300
[ 1753.757434]  path_mount+0x1429/0x2120
[ 1753.758344]  ? strncpy_from_user+0x9e/0x470
[ 1753.759334]  ? finish_automount+0xa90/0xa90
[ 1753.760315]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1753.761379]  ? _copy_from_user+0xfb/0x1b0
[ 1753.762365]  __x64_sys_mount+0x282/0x300
[ 1753.763289]  ? copy_mnt_ns+0xa00/0xa00
[ 1753.764182]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1753.765403]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1753.766616]  do_syscall_64+0x33/0x40
[ 1753.767468]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1753.768636] RIP: 0033:0x7f5c6f844b19
[ 1753.769483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1753.773678] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1753.775417] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1753.777037] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1753.778687] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1753.780302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1753.781934] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:34:37 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x7a, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:37 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x74, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:37 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x36de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:37 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4fdb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:37 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 40)

20:34:37 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x3173, &(0x7f0000000200)={0x0, 0x0, 0x10, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1754.123614] FAULT_INJECTION: forcing a failure.
[ 1754.123614] name failslab, interval 1, probability 0, space 0, times 0
[ 1754.126390] CPU: 0 PID: 51574 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1754.127961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1754.129842] Call Trace:
[ 1754.130459]  dump_stack+0x107/0x167
[ 1754.131295]  should_fail.cold+0x5/0xa
[ 1754.132175]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1754.133475]  should_failslab+0x5/0x20
[ 1754.134354]  kmem_cache_alloc+0x5b/0x310
[ 1754.135285]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1754.136558]  idr_get_free+0x4b5/0x8f0
[ 1754.137431]  idr_alloc_u32+0x170/0x2d0
[ 1754.138323]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1754.139413]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1754.140635]  ? lock_release+0x680/0x680
[ 1754.141534]  idr_alloc+0xc2/0x130
[ 1754.142334]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1754.143238]  ? rwlock_bug.part.0+0x90/0x90
[ 1754.144227]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1754.145390]  p9_client_rpc+0x220/0x1370
[ 1754.146292]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1754.147485]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1754.148700]  ? pipe_poll+0x21b/0x800
[ 1754.149539]  ? p9_fd_close+0x4a0/0x4a0
[ 1754.150418]  ? wait_for_partner+0x3c0/0x3c0
[ 1754.151391]  ? p9_fd_poll+0x1e0/0x2c0
[ 1754.152254]  ? p9_fd_create+0x357/0x4a0
[ 1754.153145]  ? p9_conn_create+0x510/0x510
[ 1754.154083]  ? p9_client_create+0x798/0x1230
[ 1754.155069]  ? kfree+0xd7/0x340
[ 1754.155820]  ? do_raw_spin_unlock+0x4f/0x220
[ 1754.156838]  p9_client_create+0xa76/0x1230
[ 1754.157810]  ? p9_client_flush+0x430/0x430
[ 1754.158769]  ? trace_hardirqs_on+0x5b/0x180
[ 1754.159740]  ? lockdep_init_map_type+0x2c7/0x780
[ 1754.160829]  ? __raw_spin_lock_init+0x36/0x110
[ 1754.161865]  v9fs_session_init+0x1dd/0x1680
[ 1754.162853]  ? lock_release+0x680/0x680
[ 1754.163758]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1754.164847]  ? v9fs_show_options+0x690/0x690
[ 1754.165847]  ? trace_hardirqs_on+0x5b/0x180
[ 1754.166831]  ? kasan_unpoison_shadow+0x33/0x50
[ 1754.167862]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1754.169007]  v9fs_mount+0x79/0x8f0
[ 1754.169810]  ? v9fs_write_inode+0x60/0x60
[ 1754.170747]  legacy_get_tree+0x105/0x220
[ 1754.171668]  vfs_get_tree+0x8e/0x300
[ 1754.172500]  path_mount+0x1429/0x2120
[ 1754.173362]  ? strncpy_from_user+0x9e/0x470
[ 1754.174340]  ? finish_automount+0xa90/0xa90
[ 1754.175319]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1754.176349]  ? _copy_from_user+0xfb/0x1b0
[ 1754.177334]  __x64_sys_mount+0x282/0x300
[ 1754.178262]  ? copy_mnt_ns+0xa00/0xa00
[ 1754.179145]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1754.180338]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1754.181509]  do_syscall_64+0x33/0x40
[ 1754.182362]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1754.183520] RIP: 0033:0x7f5c6f844b19
[ 1754.184357] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1754.188502] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1754.190228] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1754.191843] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1754.193463] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1754.195081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1754.196680] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:34:37 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0386dd6096153f00082c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:34:37 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x7a, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x50db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:34:53 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xb, 0x4000010, 0xffffffffffffffff, 0x10000000)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x2e51, &(0x7f0000000200)={0x0, 0xb79f, 0x2, 0x1, 0x1a7, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000180)=<r5=>0x0)
syz_io_uring_submit(r3, r5, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xe3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 41)

20:34:53 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x300, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0)=@reiserfs_4={0x10, 0x4, {0x4, 0xa8, 0x2e, 0x400}}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
name_to_handle_at(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x8}, [{}]}, 0x78)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000600)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r4, r5, 0x0, 0x100000001)
r6 = eventfd2(0x8, 0x0)
r7 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r7, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
io_submit(0x0, 0x6, &(0x7f0000000980)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x2, 0x3ca, 0xffffffffffffffff, &(0x7f0000000340)="d1c20ed5dc2c4e52343ec69092bb0003d3fe90efd77e46ed68cfa2b260e8c238ec72586c35e2d58461a9265cef39b1458cdcca46ee78ed0ea1d65643ebafc19bb3180cd1dc236fbab24ef2535d7cf6a07241db2d8028efec3708b879145b9f6ac2f4891d40dd480d501cb264f158de3681cdf22f1549aff27588c9615f26b3d5692aa1ddc536de8f471031d9a98dede17a09e1572c6376a8cfe870ee60c4de66427451a6bee854c93cf38b1bd2e8f5b5", 0xb0, 0x9, 0x0, 0x3}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x6, 0xffffffffffffffff, &(0x7f0000000400)="3cc93808a0e94021b9f89ca2af579005f82e0b4250173f2686b03b297329eb68aa929cf4fe712d356bc803766eea4454edae0a96f9ff42e54c2a7d4105951f815b01b8d769aee1f9a89671f110db414c7dde2e8645250c60479611348c01d24bba121317f1e086711d6f6a290b04ae25cb8a1e40cd77e48d9a7867200bdd9cbea43c4038f1e34e7d56a0b3322efc4b816394428d95898b7aaff43e2cbb41e64cf1ef37624d62e5e6432ce8840781484f94e2f3e01011", 0xb6, 0x8000}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x2, 0x7, 0xffffffffffffffff, &(0x7f0000000500)="bbc54d83e8d4f7bdb8347cb8cd7c4943decf7d047cdc6c1888f5a46a8ee68db24bd7ef9793b39950c4518bcce5f4c417a33238f2e61b2bfaa94801ac06345fd0eb11aa176c2e68650d90000cd569e6f4e8c326944e21bf678cb695ed881a2b127eaf3bdff6566ca1e17718ede023ef249e112db4566dbb55eb98139ccd87b97387c47f2a562c75caac78979a4db920c956b0142aa2e04e37eb438e4b73214f6f490f01b94b9bf6", 0xa7, 0x1, 0x0, 0x0, r2}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x6, 0x4fdb, r3, &(0x7f0000000640)="c77cf08fdd5fc36f75920ff46f0fea9c317d6623f65d49a2f325dc5570f5c824b0e562dc153a11ffdce52294c97d0fa5d7db17c36ce5799bc64442e031bdbcb58b2cac3bf9f92fb55c8fda5b5600def23e81564458d285c32465b41e0233bb20c3da2d081c964a30b9020cb42455709330a87f8b0d00033097728feb925576fc72544d8139517ba55e4e7030850175cc645552142409f721a4dd66706ab6cc20a49dccd0226333434e52aecd9d50", 0xae, 0x8}, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x3, 0x1, r1, &(0x7f0000000740)="6f19cb97772a27281bede8003a3a55ed1f1210f3543b01cb8517371f2c80506077616ff2ba09b9c6fcbb04f82d8344630e9fd1b10d0c4cb99cb60d1bcc1d0100cf2d46149557fe908afb5f47a0360673346212654c874e636d40f6b14e195a1e73454177ee0ebf784793c10382109a2589912bef891b65abc5d0c054d3c6c3e8add289c359e4087473d78dbb0232e30b006c0b5be8a8c802e8443e25c772c9c878a4a7ab01b6b4aef57b3ac5b2e81886f45fee6bcf9adc66db9eaeea7744ff3985bddfc19fae6cf74f318b664ece0f0a2bb9616554299d915923f5063362ce38788712", 0xe3, 0x1f, 0x0, 0x2, r4}, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x8, 0x1, r6, &(0x7f0000000880)="e5f924860cdea3bc57a4d98c578167cb00bad3dd8f0cd328ee9486091a01e44abd054a7ad03ff2c79599741a257a0417baa0a66c7cb4bee75efb9c58b484923f36d5052f7631f44dbdafb324c2d2f3ac83c27ccf0bf9d743d26bcb643d1772bb70144d797d051f410ddc5512267f13792766e8e0986750b5bc3f9e381b72b177e06085b16703ca2236c0fa81d9330204e9243b1468cfe8f8bfd1e94bf0424f", 0x9f, 0x7, 0x0, 0x3, r7}])
fork()

20:34:53 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x37de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1769.724946] FAULT_INJECTION: forcing a failure.
[ 1769.724946] name failslab, interval 1, probability 0, space 0, times 0
[ 1769.726398] CPU: 0 PID: 52272 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1769.727256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1769.728288] Call Trace:
[ 1769.728624]  dump_stack+0x107/0x167
[ 1769.729081]  should_fail.cold+0x5/0xa
[ 1769.729562]  ? create_object.isra.0+0x3a/0xa20
[ 1769.730142]  should_failslab+0x5/0x20
[ 1769.730620]  kmem_cache_alloc+0x5b/0x310
[ 1769.731138]  create_object.isra.0+0x3a/0xa20
[ 1769.731684]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1769.732324]  kmem_cache_alloc+0x159/0x310
[ 1769.732850]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1769.733547]  idr_get_free+0x4b5/0x8f0
[ 1769.734059]  idr_alloc_u32+0x170/0x2d0
[ 1769.734557]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1769.735166]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1769.735834]  ? lock_release+0x680/0x680
[ 1769.736330]  idr_alloc+0xc2/0x130
[ 1769.736761]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1769.737263]  ? rwlock_bug.part.0+0x90/0x90
[ 1769.737832]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1769.738498]  p9_client_rpc+0x220/0x1370
[ 1769.739033]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1769.739693]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1769.740360]  ? pipe_poll+0x21b/0x800
[ 1769.740828]  ? p9_fd_close+0x4a0/0x4a0
[ 1769.741312]  ? wait_for_partner+0x3c0/0x3c0
[ 1769.741850]  ? p9_fd_poll+0x1e0/0x2c0
[ 1769.742385]  ? p9_fd_create+0x357/0x4a0
[ 1769.742879]  ? p9_conn_create+0x510/0x510
[ 1769.743391]  ? p9_client_create+0x798/0x1230
[ 1769.743936]  ? kfree+0xd7/0x340
[ 1769.744341]  ? do_raw_spin_unlock+0x4f/0x220
[ 1769.744899]  p9_client_create+0xa76/0x1230
[ 1769.745428]  ? p9_client_flush+0x430/0x430
[ 1769.745954]  ? trace_hardirqs_on+0x5b/0x180
[ 1769.746493]  ? lockdep_init_map_type+0x2c7/0x780
[ 1769.747078]  ? __raw_spin_lock_init+0x36/0x110
[ 1769.747648]  v9fs_session_init+0x1dd/0x1680
[ 1769.748184]  ? lock_release+0x680/0x680
[ 1769.748681]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1769.749277]  ? v9fs_show_options+0x690/0x690
[ 1769.749837]  ? trace_hardirqs_on+0x5b/0x180
[ 1769.750380]  ? kasan_unpoison_shadow+0x33/0x50
[ 1769.750944]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1769.751574]  v9fs_mount+0x79/0x8f0
[ 1769.752015]  ? v9fs_write_inode+0x60/0x60
[ 1769.752528]  legacy_get_tree+0x105/0x220
[ 1769.753036]  vfs_get_tree+0x8e/0x300
[ 1769.753499]  path_mount+0x1429/0x2120
[ 1769.753977]  ? strncpy_from_user+0x9e/0x470
[ 1769.754520]  ? finish_automount+0xa90/0xa90
[ 1769.755079]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1769.755659]  ? _copy_from_user+0xfb/0x1b0
[ 1769.756175]  __x64_sys_mount+0x282/0x300
[ 1769.756675]  ? copy_mnt_ns+0xa00/0xa00
[ 1769.757158]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1769.757811]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1769.758466]  do_syscall_64+0x33/0x40
[ 1769.758927]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1769.759564] RIP: 0033:0x7f5c6f844b19
[ 1769.760025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1769.762490] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1769.763437] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1769.764384] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1769.765348] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1769.766293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1769.767220] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:34:53 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x500, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x51db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:34:53 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x38de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x1e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 42)

20:34:53 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x52db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1770.080426] FAULT_INJECTION: forcing a failure.
[ 1770.080426] name failslab, interval 1, probability 0, space 0, times 0
[ 1770.081668] CPU: 0 PID: 53175 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1770.082427] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1770.083322] Call Trace:
[ 1770.083613]  dump_stack+0x107/0x167
[ 1770.084005]  should_fail.cold+0x5/0xa
[ 1770.084420]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1770.085039]  should_failslab+0x5/0x20
[ 1770.085455]  kmem_cache_alloc+0x5b/0x310
[ 1770.085895]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1770.086505]  idr_get_free+0x4b5/0x8f0
[ 1770.086949]  idr_alloc_u32+0x170/0x2d0
[ 1770.087372]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1770.087926]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1770.088511]  ? lock_release+0x680/0x680
[ 1770.088962]  idr_alloc+0xc2/0x130
[ 1770.089338]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1770.089773]  ? rwlock_bug.part.0+0x90/0x90
[ 1770.090240]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1770.090797]  p9_client_rpc+0x220/0x1370
[ 1770.091250]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1770.091821]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1770.092436]  ? pipe_poll+0x21b/0x800
[ 1770.092838]  ? p9_fd_close+0x4a0/0x4a0
[ 1770.093257]  ? wait_for_partner+0x3c0/0x3c0
[ 1770.093717]  ? p9_fd_poll+0x1e0/0x2c0
[ 1770.094158]  ? p9_fd_create+0x357/0x4a0
[ 1770.094591]  ? p9_conn_create+0x510/0x510
[ 1770.095066]  ? p9_client_create+0x798/0x1230
[ 1770.095539]  ? kfree+0xd7/0x340
[ 1770.095913]  ? do_raw_spin_unlock+0x4f/0x220
[ 1770.096389]  p9_client_create+0xa76/0x1230
[ 1770.096849]  ? p9_client_flush+0x430/0x430
[ 1770.097306]  ? trace_hardirqs_on+0x5b/0x180
[ 1770.097769]  ? lockdep_init_map_type+0x2c7/0x780
[ 1770.098280]  ? __raw_spin_lock_init+0x36/0x110
[ 1770.098775]  v9fs_session_init+0x1dd/0x1680
[ 1770.099238]  ? lock_release+0x680/0x680
[ 1770.099694]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1770.100214]  ? v9fs_show_options+0x690/0x690
[ 1770.100720]  ? trace_hardirqs_on+0x5b/0x180
[ 1770.101190]  ? kasan_unpoison_shadow+0x33/0x50
[ 1770.101681]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1770.102231]  v9fs_mount+0x79/0x8f0
[ 1770.102633]  ? v9fs_write_inode+0x60/0x60
[ 1770.103081]  legacy_get_tree+0x105/0x220
[ 1770.103517]  vfs_get_tree+0x8e/0x300
[ 1770.103942]  path_mount+0x1429/0x2120
[ 1770.104362]  ? strncpy_from_user+0x9e/0x470
[ 1770.104852]  ? finish_automount+0xa90/0xa90
[ 1770.105320]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1770.105848]  ? _copy_from_user+0xfb/0x1b0
[ 1770.106308]  __x64_sys_mount+0x282/0x300
[ 1770.106747]  ? copy_mnt_ns+0xa00/0xa00
[ 1770.107165]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1770.107730]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1770.108320]  do_syscall_64+0x33/0x40
[ 1770.108724]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1770.109310] RIP: 0033:0x7f5c6f844b19
[ 1770.109713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1770.111817] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1770.112640] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1770.113404] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1770.114174] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1770.114938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1770.115706] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:34:53 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x800, 0x9)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc02c2, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1811c1, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1})
r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, r2, {0x0, 0x6}}, './file0\x00'})
pipe(&(0x7f00000003c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x600, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x53db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
ioctl$F2FS_IOC_RESIZE_FS(r0, 0x4008f510, &(0x7f0000000180)=0x676d)
r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
utime(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x401})
name_to_handle_at(r1, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r1, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000280)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd6000013f00383c0000000000000000000000ffffe0000002ff020000000000000000000000000001000000000000000001009078000000006041337400000000fc01000000000000000000000000000020010000000000000000000000000001ea"], 0x0)
perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0xff, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x104, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:34:53 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x39de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:34:53 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x54db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:05 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:35:05 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 43)

20:35:05 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000280)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2}}, 0xb82b)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2, 0x20010, r1, 0x10000000)
syz_io_uring_submit(r2, r4, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x3, 0x2, &(0x7f0000000480)="1076b2faa599e9f110fc07da794fc14e7712b273bb5d17ea2bbb7589dc53b1a91045717c041e00c7373b59c4472858480abc57342ad40b5d70942f57b15b33e4f1081c8b6527448479420240c2980b9748009cd90de81d29eba5cb984954077301051dea80e9f13478772e97a03394168f9173ecddd5a6c78bca08b705b3ab0dbf5fea02119e1b89fc67345523f6a18b778ab45587e7aa86670990cbb1910dc159cecae2cf1484cbed96df3275dad70c69820bbbb8fdb92aa60fbdb046f76937d99c57bd933bb5f674a457db31c1f5265cfc4ad9a45825222850840799e596d918", 0x5, 0x0, 0x1, {0x3}}, 0x4b)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
bind(0xffffffffffffffff, &(0x7f0000000580)=@pptp={0x18, 0x2, {0x2, @multicast1}}, 0x80)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x10000010)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=ANY=[@ANYBLOB="1400000001ff0f0003467bf973628adfa0abc7a8eea2b63c00000000"], &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000400)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd6000013f00383c0000000000000000000000ffffe0000002ff020000000000000000000000000001000000000000000001009078000000006041337400000000f517b2bd1886679e60d3fc010000000000000000000000f1ffff1f010000000000000000004e50f6b101"], 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:35:05 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={r1, 0x4, 0x7f, 0xffffffffffff9c4d})
clone3(&(0x7f0000000200)={0x5244100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r3, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB="2c6103c6fb3f138e1a2514f3303030303030303030303033b435"])
r4 = fsopen(&(0x7f0000000180)='tmpfs\x00', 0x0)
pipe2$9p(&(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
dup2(r4, r5)

20:35:05 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3ade, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:05 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x700, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:05 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x55db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:05 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x300, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1782.588398] FAULT_INJECTION: forcing a failure.
[ 1782.588398] name failslab, interval 1, probability 0, space 0, times 0
[ 1782.589694] CPU: 1 PID: 54350 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1782.590488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1782.591463] Call Trace:
[ 1782.591779]  dump_stack+0x107/0x167
[ 1782.592200]  should_fail.cold+0x5/0xa
[ 1782.592642]  ? create_object.isra.0+0x3a/0xa20
[ 1782.593171]  should_failslab+0x5/0x20
[ 1782.593609]  kmem_cache_alloc+0x5b/0x310
[ 1782.594081]  create_object.isra.0+0x3a/0xa20
[ 1782.594597]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1782.595179]  kmem_cache_alloc+0x159/0x310
[ 1782.595663]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1782.596309]  idr_get_free+0x4b5/0x8f0
[ 1782.596752]  idr_alloc_u32+0x170/0x2d0
[ 1782.597201]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1782.597757]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1782.598379]  ? lock_release+0x680/0x680
[ 1782.598837]  idr_alloc+0xc2/0x130
[ 1782.599234]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1782.599697]  ? rwlock_bug.part.0+0x90/0x90
[ 1782.600193]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1782.600785]  p9_client_rpc+0x220/0x1370
[ 1782.601241]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1782.601843]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1782.602467]  ? pipe_poll+0x21b/0x800
[ 1782.602894]  ? p9_fd_close+0x4a0/0x4a0
[ 1782.603341]  ? wait_for_partner+0x3c0/0x3c0
[ 1782.603835]  ? p9_fd_poll+0x1e0/0x2c0
[ 1782.604276]  ? p9_fd_create+0x357/0x4a0
[ 1782.604733]  ? p9_conn_create+0x510/0x510
[ 1782.605205]  ? p9_client_create+0x798/0x1230
[ 1782.605710]  ? kfree+0xd7/0x340
[ 1782.606088]  ? do_raw_spin_unlock+0x4f/0x220
[ 1782.606612]  p9_client_create+0xa76/0x1230
[ 1782.607100]  ? p9_client_flush+0x430/0x430
[ 1782.607586]  ? trace_hardirqs_on+0x5b/0x180
[ 1782.608085]  ? lockdep_init_map_type+0x2c7/0x780
[ 1782.608628]  ? __raw_spin_lock_init+0x36/0x110
[ 1782.609155]  v9fs_session_init+0x1dd/0x1680
[ 1782.609650]  ? lock_release+0x680/0x680
[ 1782.610113]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1782.610671]  ? v9fs_show_options+0x690/0x690
[ 1782.611184]  ? trace_hardirqs_on+0x5b/0x180
[ 1782.611679]  ? kasan_unpoison_shadow+0x33/0x50
[ 1782.612206]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1782.612791]  v9fs_mount+0x79/0x8f0
[ 1782.613201]  ? v9fs_write_inode+0x60/0x60
[ 1782.613677]  legacy_get_tree+0x105/0x220
[ 1782.614148]  vfs_get_tree+0x8e/0x300
[ 1782.614594]  path_mount+0x1429/0x2120
[ 1782.615040]  ? strncpy_from_user+0x9e/0x470
[ 1782.615533]  ? finish_automount+0xa90/0xa90
[ 1782.616029]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1782.616564]  ? _copy_from_user+0xfb/0x1b0
[ 1782.617043]  __x64_sys_mount+0x282/0x300
[ 1782.617509]  ? copy_mnt_ns+0xa00/0xa00
[ 1782.617961]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1782.618569]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1782.619157]  do_syscall_64+0x33/0x40
[ 1782.619582]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1782.620169] RIP: 0033:0x7f5c6f844b19
[ 1782.620598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1782.622716] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1782.623587] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1782.624406] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1782.625223] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1782.626036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1782.626859] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:35:19 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 44)

20:35:19 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3bde, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:19 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:35:19 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x642243, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0xf48dd8aa47fb13ca, 0x13, r0, 0x8000000)
syz_io_uring_submit(r3, r2, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f0000000200), &(0x7f0000000000)='./file1\x00', 0x800, 0x800}, 0x38cf)
pipe(&(0x7f00000003c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB="6adf76eabd9c55832c77663d", @ANYRESHEX=r5, @ANYBLOB="2cc9616368653d6d6d78702c63616368653d667363616368561c07f34b49f9ec0918652c64657275673d6583166e093078303030303030303030303030b8e349d3eb9046a82e6f657874656e642c64666c", @ANYRESHEX=0x0, @ANYBLOB='K@fid=0x0000000000000345,\x00'])
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000004, 0x12, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r9 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000400), 0x80000, 0x0)
r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000004, 0x12, 0xffffffffffffffff, 0x0)
r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, 0x0, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)=[0xffffffffffffffff], 0x1, 0x0, 0x1, {0x0, r11}}, 0x5)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_CLOSE={0x13, 0x4, 0x0, r9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0x7f)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, 0x0, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)=[0xffffffffffffffff], 0x1, 0x0, 0x1, {0x0, r12}}, 0x5)
syz_io_uring_submit(r1, r7, &(0x7f0000000300)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3, r12}}, 0x1)

20:35:19 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x56db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:19 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x900, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:19 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:19 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='uid_map\x00')
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'})
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2, 0x4000010, r1, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000340)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x7, 0x0, 0xfffffffa, 0x2, &(0x7f00000002c0)="e54cfec44f35d8e97e124a6a203cc392", 0x7, 0x0, 0x1, {0x3}}, 0x5)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
sendto(r1, &(0x7f0000000380)="69db0bae90845a9ba7eb83b58e7714cbd877e298cb032dd35d21e89d985a722d79ada15328dac612d509fdb55fbc93f34476d39874bc8bffe9592c1e4756fdee461b0822190ad45220746289b7dc3a02abb3af4bd5aef82544861113ac32edaf4d773555a75840e13ab1d758944c21f710bf52962fdc91f554b78c56946e54c047fd7184a564eab05220aac94111454e06a02489e621543f747159ef4ce91522bb60e068c208eced40da8fd5f6b9d935c258aa91b7c1c075a35f5ec2ebb47401e5e65ab0e8207c4897b92380f0ce5a15e4a675b3777f11ac84391e137d0042c71d07c15466989d8c74c2bf9bd661", 0xee, 0x40040, &(0x7f0000000480)=@tipc, 0x80)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x3, 0x0, 0xd0a8, 0x404}, 0x0, 0xfffffdffffffffff, 0xffffffffffffffff, 0x1)
fork()

[ 1796.281475] FAULT_INJECTION: forcing a failure.
[ 1796.281475] name failslab, interval 1, probability 0, space 0, times 0
[ 1796.283010] audit: type=1400 audit(1748637319.635:11): avc:  denied  { map } for  pid=55076 comm="syz-executor.2" path="/proc/55076/task/55091/uid_map" dev="proc" ino=34524 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=file permissive=1
[ 1796.284051] CPU: 0 PID: 55111 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1796.291072] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1796.292984] Call Trace:
[ 1796.293587]  dump_stack+0x107/0x167
[ 1796.294427]  should_fail.cold+0x5/0xa
[ 1796.295298]  ? ___slab_alloc+0x360/0x700
[ 1796.296233]  ? create_object.isra.0+0x3a/0xa20
[ 1796.297290]  should_failslab+0x5/0x20
[ 1796.298173]  kmem_cache_alloc+0x5b/0x310
[ 1796.299112]  create_object.isra.0+0x3a/0xa20
[ 1796.300115]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1796.301299]  kmem_cache_alloc+0x159/0x310
[ 1796.302270]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1796.303569]  idr_get_free+0x4b5/0x8f0
[ 1796.304463]  idr_alloc_u32+0x170/0x2d0
[ 1796.305357]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1796.306476]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1796.307691]  ? lock_release+0x680/0x680
[ 1796.308598]  idr_alloc+0xc2/0x130
[ 1796.309389]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1796.310309]  ? rwlock_bug.part.0+0x90/0x90
[ 1796.311297]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1796.312506]  p9_client_rpc+0x220/0x1370
[ 1796.313420]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1796.314643]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1796.315871]  ? pipe_poll+0x21b/0x800
[ 1796.316713]  ? p9_fd_close+0x4a0/0x4a0
[ 1796.317602]  ? wait_for_partner+0x3c0/0x3c0
[ 1796.318593]  ? p9_fd_poll+0x1e0/0x2c0
[ 1796.319462]  ? p9_fd_create+0x357/0x4a0
[ 1796.320367]  ? p9_conn_create+0x510/0x510
[ 1796.321308]  ? p9_client_create+0x798/0x1230
[ 1796.322311]  ? kfree+0xd7/0x340
[ 1796.323072]  ? do_raw_spin_unlock+0x4f/0x220
[ 1796.324088]  p9_client_create+0xa76/0x1230
[ 1796.325075]  ? p9_client_flush+0x430/0x430
[ 1796.326044]  ? trace_hardirqs_on+0x5b/0x180
[ 1796.327035]  ? lockdep_init_map_type+0x2c7/0x780
[ 1796.328116]  ? __raw_spin_lock_init+0x36/0x110
[ 1796.329153]  v9fs_session_init+0x1dd/0x1680
[ 1796.330130]  ? lock_release+0x680/0x680
[ 1796.331049]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1796.332155]  ? v9fs_show_options+0x690/0x690
[ 1796.333180]  ? trace_hardirqs_on+0x5b/0x180
[ 1796.334178]  ? kasan_unpoison_shadow+0x33/0x50
[ 1796.335244]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1796.336399]  v9fs_mount+0x79/0x8f0
[ 1796.337211]  ? v9fs_write_inode+0x60/0x60
[ 1796.338143]  legacy_get_tree+0x105/0x220
[ 1796.339074]  vfs_get_tree+0x8e/0x300
[ 1796.339925]  path_mount+0x1429/0x2120
[ 1796.340798]  ? strncpy_from_user+0x9e/0x470
[ 1796.341795]  ? finish_automount+0xa90/0xa90
[ 1796.342783]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1796.343847]  ? _copy_from_user+0xfb/0x1b0
[ 1796.344799]  __x64_sys_mount+0x282/0x300
[ 1796.345731]  ? copy_mnt_ns+0xa00/0xa00
[ 1796.346646]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1796.347846]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1796.349025]  do_syscall_64+0x33/0x40
[ 1796.349872]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1796.351045] RIP: 0033:0x7f5c6f844b19
[ 1796.351891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1796.356110] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1796.357860] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1796.359503] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1796.361124] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1796.362759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1796.364379] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:35:19 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xa00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:19 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3cde, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:19 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x57db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:19 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
rename(&(0x7f0000000000)='./file1/file0\x00', &(0x7f0000000180)='./file1\x00')
chdir(&(0x7f0000000400)='./file0\x00')
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
faccessat(r0, &(0x7f0000000340)='./file1\x00', 0x10)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/syz0\x00', 0x200002, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB="2c616669643d3078303030303030303030303030303334352c0049b13a62d4c6ae269b8cb3d80002fae208b1e5edc4a98a5a6d4466fe91b5ad92c4339c1f7629c9eb1d9f498568cb869c086727bace0155a3254a2bd8b0d0333916044f59f09347e035337079293a63b1dbfc1672afbbc527f429bb29e256cea2e24ecb435df64d16adc4423dd87997792f432c8cb6e9bd2d0a0d8d369aab9f"])

20:35:19 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xae3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:20 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
openat(r0, &(0x7f0000000700)='./file0\x00', 0x4000, 0x42)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
syz_emit_ethernet(0x312, &(0x7f0000000340)={@local, @broadcast, @val={@val={0x9100, 0x5, 0x0, 0x2}, {0x8100, 0x7}}, {@ipv6={0x86dd, @dccp_packet={0xe, 0x6, "6b03d2", 0x2d4, 0x21, 0x1, @remote, @local, {[@fragment={0x1d, 0x0, 0x81, 0x1, 0x0, 0x10, 0x65}, @dstopts={0x9c, 0x2, '\x00', [@hao={0xc9, 0x10, @mcast1}, @ra={0x5, 0x2, 0x81}]}, @srh={0x29, 0x14, 0x4, 0xa, 0xd4, 0x8, 0x1, [@rand_addr=' \x01\x00', @empty, @remote, @mcast2, @remote, @mcast1, @local, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @private2, @ipv4={'\x00', '\xff\xff', @empty}]}, @srh={0x2c, 0xe, 0x4, 0x7, 0x6, 0x40, 0x4, [@local, @empty, @loopback, @loopback, @dev={0xfe, 0x80, '\x00', 0x21}, @mcast2, @mcast1]}, @srh={0x33, 0xa, 0x4, 0x5, 0xed, 0x30, 0xfff0, [@mcast2, @empty, @local, @private0={0xfc, 0x0, '\x00', 0x1}, @rand_addr=' \x01\x00']}, @fragment={0xb, 0x0, 0x5, 0x0, 0x0, 0x0, 0x65}, @hopopts={0x4, 0xb, '\x00', [@jumbo={0xc2, 0x4, 0x3}, @jumbo={0xc2, 0x4, 0x5}, @jumbo={0xc2, 0x4, 0xfffffffa}, @generic={0x1, 0x4a, "86bd28a57ee8c687ea0c4bc484e9ed684b49e0761bee87348690aa56ede6905090e75466d2df7b9fe0086c831800b3251ccd2b92ef32ed405f434798fc9304576934f3a63c32c8595a4f"}]}, @srh={0x67, 0x4, 0x4, 0x2, 0x1, 0x8, 0xe3c, [@mcast2, @dev={0xfe, 0x80, '\x00', 0x14}]}], {{0x4e22, 0x4e22, 0x4, 0x1, 0x1, 0x0, 0x0, 0x8, 0x3, "e877f2", 0x80, "6bc68a"}, "52d733244413da59d918c14baf7176d1f2469bf25d56d10d47ff31199a453f24912dac636a447f1dcd4ec3f8cb0b63b784af53eb602df1c51127666bd05676106e6a92b93b9349f3f0e5dbdd54a5ddc2a5173db9f6a91d3c2c172705ed6e539428214cbeee6bcea1bec4ff06207ea66dbecc3cb556e751c5d94fd8eeddf644945d4dacb0602eca68497d2873"}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = fork()
move_pages(r1, 0x7, &(0x7f0000000180)=[&(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil], 0x0, &(0x7f0000000280)=[0x0], 0x6)
mount$bind(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0), 0x1, 0x0)

20:35:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x58db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:36 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180), 0x38001, 0x0)
mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, 0x50, r1, 0xebf4000)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:35:36 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x500, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:36 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x59db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:36 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 45)

20:35:36 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:36 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xb00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:36 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:35:36 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3dde, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1813.474280] FAULT_INJECTION: forcing a failure.
[ 1813.474280] name failslab, interval 1, probability 0, space 0, times 0
[ 1813.476646] CPU: 1 PID: 56620 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1813.478101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1813.479881] Call Trace:
[ 1813.480450]  dump_stack+0x107/0x167
[ 1813.481224]  should_fail.cold+0x5/0xa
[ 1813.482045]  ? radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1813.483279]  should_failslab+0x5/0x20
[ 1813.484088]  kmem_cache_alloc+0x5b/0x310
[ 1813.484965]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1813.486168]  idr_get_free+0x4b5/0x8f0
[ 1813.487006]  idr_alloc_u32+0x170/0x2d0
[ 1813.487842]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1813.488877]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1813.490005]  ? lock_release+0x680/0x680
[ 1813.490866]  idr_alloc+0xc2/0x130
[ 1813.491604]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1813.492468]  ? rwlock_bug.part.0+0x90/0x90
[ 1813.493383]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1813.494489]  p9_client_rpc+0x220/0x1370
[ 1813.495349]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1813.496478]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1813.497618]  ? pipe_poll+0x21b/0x800
[ 1813.498413]  ? p9_fd_close+0x4a0/0x4a0
[ 1813.499255]  ? wait_for_partner+0x3c0/0x3c0
[ 1813.500177]  ? p9_fd_poll+0x1e0/0x2c0
[ 1813.500992]  ? p9_fd_create+0x357/0x4a0
[ 1813.501852]  ? p9_conn_create+0x510/0x510
[ 1813.502749]  ? p9_client_create+0x798/0x1230
[ 1813.503685]  ? kfree+0xd7/0x340
[ 1813.504387]  ? do_raw_spin_unlock+0x4f/0x220
[ 1813.505333]  p9_client_create+0xa76/0x1230
[ 1813.506259]  ? p9_client_flush+0x430/0x430
[ 1813.507210]  ? trace_hardirqs_on+0x5b/0x180
[ 1813.508136]  ? lockdep_init_map_type+0x2c7/0x780
[ 1813.509167]  ? __raw_spin_lock_init+0x36/0x110
[ 1813.510175]  v9fs_session_init+0x1dd/0x1680
[ 1813.511132]  ? lock_release+0x680/0x680
[ 1813.511993]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1813.513046]  ? v9fs_show_options+0x690/0x690
[ 1813.513995]  ? trace_hardirqs_on+0x5b/0x180
[ 1813.514933]  ? kasan_unpoison_shadow+0x33/0x50
[ 1813.515915]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1813.517004]  v9fs_mount+0x79/0x8f0
[ 1813.517771]  ? v9fs_write_inode+0x60/0x60
[ 1813.518666]  legacy_get_tree+0x105/0x220
[ 1813.519547]  vfs_get_tree+0x8e/0x300
[ 1813.520351]  path_mount+0x1429/0x2120
[ 1813.521177]  ? strncpy_from_user+0x9e/0x470
[ 1813.522110]  ? finish_automount+0xa90/0xa90
[ 1813.523041]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1813.524044]  ? _copy_from_user+0xfb/0x1b0
[ 1813.524940]  __x64_sys_mount+0x282/0x300
[ 1813.525823]  ? copy_mnt_ns+0xa00/0xa00
[ 1813.526670]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1813.527789]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1813.528903]  do_syscall_64+0x33/0x40
[ 1813.529705]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1813.530818] RIP: 0033:0x7f5c6f844b19
[ 1813.531598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1813.535553] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1813.537191] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1813.538730] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1813.540261] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1813.541799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1813.543335] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:35:37 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5adb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:37 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xbe3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:37 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3ede, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:37 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:37 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rddno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])

[ 1813.962218] 9pnet: Insufficient options for proto=fd
20:35:37 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:35:37 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5bdb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:37 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xc00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:37 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3f00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:37 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 46)

20:35:37 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000700)=ANY=[@ANYBLOB="02000000010001000000000002000400", @ANYRES32=0xee00, @ANYBLOB="040003000000000008000100", @ANYRES32=0xee01, @ANYBLOB="08000200", @ANYRES32=0xee00, @ANYBLOB="00000000002000050020000100000000795e047af38c954b1e6c2b5646e5998c129c75459e2f83c6a803472c297e9b55107bd307fb78056a5fc198242f86dce46069e9b25cc3f7e45ad0c799517cf25f62c34f12c26dae5d6d961db6f4abb932f946031ce2398a30f29c967e132f7b0667b6be099ac9d16e9a84363323bfac2d1aec485e414617cb81e97f9aa4304bc7659e587cf6f6834d378775adf1232ca99eb7d7d0605ae4178abf8522212b583c16d231237a9956bb01c35624a9e4dc9126e2aa47e14aa421099939229d761fe9ef168097ec01c1745ab8592d68ce4566249fe64b849722a5bd8199"], 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
sendfile(0xffffffffffffffff, r0, &(0x7f0000001bc0)=0x5, 0x9348)
r1 = syz_mount_image$msdos(&(0x7f0000000900), &(0x7f0000000940)='./file0\x00', 0xffff, 0x3, &(0x7f0000001a40)=[{&(0x7f0000000980)="cd5efb2a527adc153a9c9cf5298df1c2c17900f913ad64f40528ace018047901f065416451585870b8997887ee80281f3f0bf9bc887d8449eab08b761a272e82bf7e0dcd71331bb5b7576e3e9f806f10a40860b8a1532f70e6136bbcde3990a0fa59bc34dc953732766703cb8fc0b604c6499316ae5ab3", 0x77, 0x2}, {&(0x7f0000000a00)="6bf0a1c69b55825e617475fd325ff8e94461287e504b351b9c883e92bf53761cd00e02976eea87d0c4a4fd274f7d", 0x2e, 0xfa4}, {&(0x7f0000000a40)="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", 0x1000, 0x1}], 0x1000808, &(0x7f0000001ac0)={[{@fat=@sys_immutable}, {@fat=@debug}], [{@fsuuid={'fsuuid', 0x3d, {[0x33, 0x37, 0x66, 0x64, 0x36, 0x61, 0x31, 0x31], 0x2d, [0x38, 0x33, 0x30, 0x33], 0x2d, [0x63, 0x66, 0x61, 0x35], 0x2d, [0x32, 0x63, 0x31, 0x37], 0x2d, [0x36, 0x64, 0x65, 0x36, 0x35, 0x30, 0x51, 0x61]}}}, {@seclabel}, {@uid_lt={'uid<', 0xee00}}, {@subj_role={'subj_role', 0x3d, '\'*$!'}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@euid_gt={'euid>', 0xffffffffffffffff}}, {@uid_lt}]})
move_mount(r0, &(0x7f00000008c0)='./file0\x00', r1, &(0x7f0000001b80)='./file0\x00', 0x10)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f00000006c0)=ANY=[@ANYBLOB="14000000520000000000000000000000001b000012555aabbe0000000000000000"], 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
r2 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x5e9, 0x3, &(0x7f0000000580)=[{&(0x7f0000000340)="03ab9fb99321b7ba2b14f79a916b73479826913af7728c251b470423a43ab512b2b336a9c74a68dd27950b84322d9c4c0de31f252849a98db0abd94294ec2ac92365ead2b568409c5c08d31bbb08a74c1e89c3c41060f461c76349ffe887793e66", 0x61, 0x100000001}, {&(0x7f00000003c0)="fa92ed6cdde7160a64f3baf8cf2ad4010ce8b709b51bf27d5e11f0465e70a1f4f68be3a12ebcbb8d083aa22a854a9b8bcabc98990e4f5b5152076260ac416c71c656fa2883536515bc0880591c8468e7b5c2932b336f763d7932194bfcb17909352db2390b43f362b538b146d35b25a80df3a77e98cf50fa57d4f82bcb62d24c44bb77c668c9010a9fb77a8928326ccc2706a9a07d12ea8bf3e85f2f4d76ebbe65ae53d8f4375acfb6027018d10aa58b41e960a292d9b3697c084b65dc1ede57db4d17942090f00659146c6c62a6961d3f29c05f45c352fa52", 0xd9, 0x101}, {&(0x7f00000004c0)="e352b129cf43e4904073357c52b2f025e195587f3bfb7f07586daea012279214683104a1b2a39f2535137571ca2681bafc92b47b534b5692d17794a8d9da9d2b638a49dab230ca5834431caa1c1832166ca7d4aa34bb197e419aa6a0b3255863afa279388ce3f746111f389ee8988b53b7425f854cd5b8b42584115065beb08d8a6ebe6d86ef312c8d3284bdb45fb0a49215994968178667d16bab9372a3192df2021f7938a5edc3", 0xa8, 0x1}], 0x2001000, &(0x7f0000000600)={[{@map_acorn}], [{@permit_directio}, {@fsname={'fsname', 0x3d, '('}}, {@dont_hash}, {@obj_user={'obj_user', 0x3d, '+\''}}, {@permit_directio}, {@subj_user={'subj_user', 0x3d, ',&\x1a'}}]})
r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0xffffffffffffff99, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r3, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000840))
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000680)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x100000001, &(0x7f00000002c0)=[r2, r3], 0x2, 0x0, 0x0, {0x0, r4}}, 0x4)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:35:37 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x600, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1814.097566] FAULT_INJECTION: forcing a failure.
[ 1814.097566] name failslab, interval 1, probability 0, space 0, times 0
[ 1814.099815] CPU: 0 PID: 57833 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1814.101162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1814.102794] Call Trace:
[ 1814.103325]  dump_stack+0x107/0x167
[ 1814.104035]  should_fail.cold+0x5/0xa
[ 1814.104779]  ? ___slab_alloc+0x470/0x700
[ 1814.105566]  ? create_object.isra.0+0x3a/0xa20
[ 1814.106488]  should_failslab+0x5/0x20
[ 1814.107244]  kmem_cache_alloc+0x5b/0x310
[ 1814.108039]  create_object.isra.0+0x3a/0xa20
[ 1814.108900]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1814.109930]  kmem_cache_alloc+0x159/0x310
[ 1814.110785]  radix_tree_node_alloc.constprop.0+0x1e3/0x300
[ 1814.111898]  idr_get_free+0x4b5/0x8f0
[ 1814.112681]  idr_alloc_u32+0x170/0x2d0
[ 1814.113452]  ? __fprop_inc_percpu_max+0x130/0x130
[ 1814.114391]  ? p9_client_prepare_req.part.0+0x20a/0xac0
[ 1814.115431]  ? lock_release+0x680/0x680
[ 1814.116207]  idr_alloc+0xc2/0x130
[ 1814.116876]  ? idr_alloc_u32+0x2d0/0x2d0
[ 1814.117659]  ? rwlock_bug.part.0+0x90/0x90
[ 1814.118503]  p9_client_prepare_req.part.0+0x612/0xac0
[ 1814.119567]  p9_client_rpc+0x220/0x1370
[ 1814.120334]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1814.121368]  ? p9_client_prepare_req.part.0+0xac0/0xac0
[ 1814.122408]  ? pipe_poll+0x21b/0x800
[ 1814.123136]  ? p9_fd_close+0x4a0/0x4a0
[ 1814.123894]  ? wait_for_partner+0x3c0/0x3c0
[ 1814.124731]  ? p9_fd_poll+0x1e0/0x2c0
[ 1814.125475]  ? p9_fd_create+0x357/0x4a0
[ 1814.126233]  ? p9_conn_create+0x510/0x510
[ 1814.127063]  ? p9_client_create+0x798/0x1230
[ 1814.127940]  ? kfree+0xd7/0x340
[ 1814.128591]  ? do_raw_spin_unlock+0x4f/0x220
[ 1814.129499]  p9_client_create+0xa76/0x1230
[ 1814.130338]  ? p9_client_flush+0x430/0x430
[ 1814.131170]  ? trace_hardirqs_on+0x5b/0x180
[ 1814.132000]  ? lockdep_init_map_type+0x2c7/0x780
[ 1814.132914]  ? __raw_spin_lock_init+0x36/0x110
[ 1814.133802]  v9fs_session_init+0x1dd/0x1680
[ 1814.134652]  ? lock_release+0x680/0x680
[ 1814.135451]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1814.136386]  ? v9fs_show_options+0x690/0x690
[ 1814.137249]  ? trace_hardirqs_on+0x5b/0x180
[ 1814.138100]  ? kasan_unpoison_shadow+0x33/0x50
[ 1814.138989]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1814.139982]  v9fs_mount+0x79/0x8f0
[ 1814.140670]  ? v9fs_write_inode+0x60/0x60
[ 1814.141472]  legacy_get_tree+0x105/0x220
[ 1814.142248]  vfs_get_tree+0x8e/0x300
[ 1814.142966]  path_mount+0x1429/0x2120
[ 1814.143698]  ? strncpy_from_user+0x9e/0x470
[ 1814.144529]  ? finish_automount+0xa90/0xa90
[ 1814.145353]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1814.146238]  ? _copy_from_user+0xfb/0x1b0
[ 1814.147052]  __x64_sys_mount+0x282/0x300
[ 1814.147845]  ? copy_mnt_ns+0xa00/0xa00
[ 1814.148605]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1814.149618]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1814.150616]  do_syscall_64+0x33/0x40
[ 1814.151379]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1814.152388] RIP: 0033:0x7f5c6f844b19
[ 1814.153102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1814.156668] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1814.158153] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1814.159562] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1814.160902] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1814.162277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1814.163672] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1814.188933] loop2: detected capacity change from 0 to 65024
[ 1814.204523] FAT-fs (loop2): Unrecognized mount option "fsuuid=37fd6a11-8303-cfa5-2c17-6de650Qa" or missing value
[ 1814.246216] loop2: detected capacity change from 0 to 135266304
[ 1814.260271] tmpfs: Unknown parameter 'map'
[ 1814.344154] tmpfs: Unknown parameter 'map'
[ 1828.909161] FAULT_INJECTION: forcing a failure.
[ 1828.909161] name failslab, interval 1, probability 0, space 0, times 0
[ 1828.911725] CPU: 0 PID: 58488 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1828.913194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1828.915027] Call Trace:
[ 1828.915595]  dump_stack+0x107/0x167
[ 1828.916395]  should_fail.cold+0x5/0xa
[ 1828.917238]  ? create_object.isra.0+0x3a/0xa20
[ 1828.918242]  should_failslab+0x5/0x20
[ 1828.919090]  kmem_cache_alloc+0x5b/0x310
[ 1828.919983]  create_object.isra.0+0x3a/0xa20
[ 1828.920946]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1828.922059]  __kmalloc+0x16e/0x390
[ 1828.922853]  p9pdu_readf+0xadb/0x1d40
[ 1828.923691]  ? pipe_poll+0x21b/0x800
[ 1828.924501]  ? p9pdu_writef+0x100/0x100
[ 1828.925370]  ? p9_fd_poll+0x1e0/0x2c0
[ 1828.926208]  ? p9_fd_create+0x357/0x4a0
[ 1828.927083]  ? p9_conn_create+0x510/0x510
[ 1828.927990]  ? p9_client_create+0x798/0x1230
[ 1828.928943]  ? kfree+0xd7/0x340
[ 1828.929667]  ? do_raw_spin_unlock+0x4f/0x220
[ 1828.930636]  p9_client_create+0xaee/0x1230
[ 1828.931593]  ? p9_client_flush+0x430/0x430
[ 1828.932522]  ? trace_hardirqs_on+0x5b/0x180
[ 1828.933467]  ? lockdep_init_map_type+0x2c7/0x780
[ 1828.934501]  ? __raw_spin_lock_init+0x36/0x110
[ 1828.935519]  v9fs_session_init+0x1dd/0x1680
[ 1828.936466]  ? lock_release+0x680/0x680
[ 1828.937340]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1828.938391]  ? v9fs_show_options+0x690/0x690
[ 1828.939364]  ? trace_hardirqs_on+0x5b/0x180
[ 1828.940307]  ? kasan_unpoison_shadow+0x33/0x50
[ 1828.941304]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1828.942410]  v9fs_mount+0x79/0x8f0
[ 1828.943188]  ? v9fs_write_inode+0x60/0x60
[ 1828.944094]  legacy_get_tree+0x105/0x220
[ 1828.944977]  vfs_get_tree+0x8e/0x300
[ 1828.945780]  path_mount+0x1429/0x2120
[ 1828.946609]  ? strncpy_from_user+0x9e/0x470
[ 1828.947556]  ? finish_automount+0xa90/0xa90
[ 1828.948495]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1828.949505]  ? _copy_from_user+0xfb/0x1b0
[ 1828.950412]  __x64_sys_mount+0x282/0x300
[ 1828.951312]  ? copy_mnt_ns+0xa00/0xa00
[ 1828.952176]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1828.953328]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1828.954470]  do_syscall_64+0x33/0x40
[ 1828.955301]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1828.956431] RIP: 0033:0x7f5c6f844b19
[ 1828.957248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1828.961288] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1828.962967] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1828.964523] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1828.966082] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1828.967650] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1828.969198] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:35:52 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 47)

20:35:52 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x2, 0xffffffff}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:52 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:35:52 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5cdb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:52 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xce3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:52 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3fde, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:52 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x6e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:52 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000440)=ANY=[@ANYBLOB="3ff5f900000100d0bc0766341e0ff84990aa2dcddd02308d774e6b40618555630cf9b4c83089c313ef6cfb1cb88e86c4471a422034f75c1172bea9356c1665fb1fb0422c93f3ad2224707681297e80bb52ad7699e0b43666aef04e8448634b2249260d3c90365530ed1ecb35d1e4dff079126fb0fa1c56c734a808008269fdf9147247998717c759a331b20649b11320cf", @ANYRES32=0xee00, @ANYBLOB="040003000000000008000100", @ANYRES32=0xee01, @ANYBLOB="08000200", @ANYRES32=0xee00, @ANYBLOB="10000000000000002000050000000000"], 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000500)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd6000013f00383c0000000000000000000000ffffe0000002ff020000000000000000000000000001000000000000000001009078000000006041337400000000fc010000000000000000000000000000200100000001ae3045d2700dff41793cbf5c8e5ed3968ee0140388d96fb4ba0cde2f61606a21d04bb6a062f73db6"], 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r1, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r1, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
sendfile(0xffffffffffffffff, r1, &(0x7f0000000180)=0x7, 0x401)
preadv(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000340)=""/204, 0xcc}], 0x1, 0xffffff08, 0xffffffff)
r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r2, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r2, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, &(0x7f00000000c0)={0xffff, 0x8c, 0x0, 0x6, 0x0, [0x1, 0x101, 0x7, 0x1ac00]})
fork()

20:35:52 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x700, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:52 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5ddb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:52 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xde3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:52 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:35:52 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@version_9p2000}]}})

20:35:52 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:35:52 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 48)

[ 1829.280679] FAULT_INJECTION: forcing a failure.
[ 1829.280679] name failslab, interval 1, probability 0, space 0, times 0
[ 1829.282086] CPU: 1 PID: 59462 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1829.282919] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1829.283887] Call Trace:
[ 1829.284209]  dump_stack+0x107/0x167
[ 1829.284643]  should_fail.cold+0x5/0xa
[ 1829.285093]  should_failslab+0x5/0x20
[ 1829.285550]  __kmalloc_track_caller+0x79/0x370
[ 1829.286105]  ? kasprintf+0xbb/0xf0
[ 1829.286523]  ? __delete_object+0xb3/0x100
[ 1829.287021]  kvasprintf+0xb5/0x150
[ 1829.287441]  ? bust_spinlocks+0xe0/0xe0
[ 1829.287920]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1829.288536]  kasprintf+0xbb/0xf0
[ 1829.288946]  ? kvasprintf_const+0x1a0/0x1a0
[ 1829.289448]  ? kmem_cache_free+0x249/0x2d0
[ 1829.289955]  ? p9_client_create+0xbfa/0x1230
[ 1829.290464]  p9_client_create+0xc1b/0x1230
[ 1829.290989]  ? p9_client_flush+0x430/0x430
[ 1829.291485]  ? trace_hardirqs_on+0x5b/0x180
[ 1829.292002]  ? lockdep_init_map_type+0x2c7/0x780
[ 1829.292557]  ? __raw_spin_lock_init+0x36/0x110
[ 1829.293104]  v9fs_session_init+0x1dd/0x1680
[ 1829.293622]  ? lock_release+0x680/0x680
[ 1829.294097]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1829.294668]  ? v9fs_show_options+0x690/0x690
[ 1829.295211]  ? trace_hardirqs_on+0x5b/0x180
[ 1829.295730]  ? kasan_unpoison_shadow+0x33/0x50
[ 1829.296274]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1829.296879]  v9fs_mount+0x79/0x8f0
[ 1829.297292]  ? v9fs_write_inode+0x60/0x60
[ 1829.297790]  legacy_get_tree+0x105/0x220
[ 1829.298275]  vfs_get_tree+0x8e/0x300
[ 1829.298714]  path_mount+0x1429/0x2120
[ 1829.299179]  ? strncpy_from_user+0x9e/0x470
[ 1829.299686]  ? finish_automount+0xa90/0xa90
[ 1829.300196]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1829.300731]  ? _copy_from_user+0xfb/0x1b0
[ 1829.301221]  __x64_sys_mount+0x282/0x300
[ 1829.301694]  ? copy_mnt_ns+0xa00/0xa00
[ 1829.302148]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1829.302776]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1829.303385]  do_syscall_64+0x33/0x40
[ 1829.303833]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1829.304447] RIP: 0033:0x7f5c6f844b19
[ 1829.304885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1829.307084] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1829.307990] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1829.308840] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1829.309683] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1829.310518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1829.311370] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:36:06 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4084, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:06 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
mkdirat(r0, &(0x7f0000000000)='./file1\x00', 0x30)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB='/wfdno=', @ANYRESHEX=r2, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])

20:36:06 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x7e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:06 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:36:06 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xe00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:06 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010001000000000002000400", @ANYRES32=0xee00, @ANYBLOB="04813b000000000008000100", @ANYRES32=0xee01, @ANYBLOB="08000200", @ANYRES32=0xee00, @ANYBLOB="10000000000000002000050000000000"], 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:36:06 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 49)

20:36:06 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5edb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1843.246370] FAULT_INJECTION: forcing a failure.
[ 1843.246370] name failslab, interval 1, probability 0, space 0, times 0
[ 1843.248195] CPU: 1 PID: 59847 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1843.249234] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1843.250501] Call Trace:
[ 1843.250897]  dump_stack+0x107/0x167
[ 1843.251482]  should_fail.cold+0x5/0xa
[ 1843.252070]  ? create_object.isra.0+0x3a/0xa20
[ 1843.252756]  should_failslab+0x5/0x20
[ 1843.253327]  kmem_cache_alloc+0x5b/0x310
[ 1843.253936]  ? vsnprintf+0x4ba/0x1600
[ 1843.254508]  create_object.isra.0+0x3a/0xa20
[ 1843.255175]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1843.255938]  __kmalloc_track_caller+0x177/0x370
[ 1843.256638]  ? kasprintf+0xbb/0xf0
[ 1843.257194]  kvasprintf+0xb5/0x150
[ 1843.257731]  ? bust_spinlocks+0xe0/0xe0
[ 1843.258345]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1843.259147]  kasprintf+0xbb/0xf0
[ 1843.259653]  ? kvasprintf_const+0x1a0/0x1a0
[ 1843.260328]  ? kmem_cache_free+0x249/0x2d0
[ 1843.260970]  ? p9_client_create+0xbfa/0x1230
[ 1843.261634]  p9_client_create+0xc1b/0x1230
[ 1843.262287]  ? p9_client_flush+0x430/0x430
[ 1843.262921]  ? trace_hardirqs_on+0x5b/0x180
[ 1843.263592]  ? lockdep_init_map_type+0x2c7/0x780
[ 1843.264335]  ? __raw_spin_lock_init+0x36/0x110
[ 1843.265045]  v9fs_session_init+0x1dd/0x1680
[ 1843.265687]  ? lock_release+0x680/0x680
[ 1843.266283]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1843.267008]  ? v9fs_show_options+0x690/0x690
[ 1843.267665]  ? trace_hardirqs_on+0x5b/0x180
[ 1843.267823] 9pnet: Insufficient options for proto=fd
[ 1843.268315]  ? kasan_unpoison_shadow+0x33/0x50
[ 1843.270134]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1843.270899]  v9fs_mount+0x79/0x8f0
[ 1843.271462]  ? v9fs_write_inode+0x60/0x60
[ 1843.272098]  legacy_get_tree+0x105/0x220
[ 1843.272717]  vfs_get_tree+0x8e/0x300
[ 1843.273285]  path_mount+0x1429/0x2120
[ 1843.273872]  ? strncpy_from_user+0x9e/0x470
[ 1843.274527]  ? finish_automount+0xa90/0xa90
[ 1843.275201]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1843.275926]  ? _copy_from_user+0xfb/0x1b0
[ 1843.276569]  __x64_sys_mount+0x282/0x300
[ 1843.277202]  ? copy_mnt_ns+0xa00/0xa00
[ 1843.277803]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1843.278608]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1843.279407]  do_syscall_64+0x33/0x40
[ 1843.279996]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1843.280782] RIP: 0033:0x7f5c6f844b19
[ 1843.281352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1843.284193] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1843.285365] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1843.286453] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1843.287541] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1843.288634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1843.289731] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:36:06 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xee3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:06 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x5fdb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:06 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x8e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:06 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x40de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:06 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:06 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 50)

20:36:06 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x60db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:06 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f003f2c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 1843.631707] FAULT_INJECTION: forcing a failure.
[ 1843.631707] name failslab, interval 1, probability 0, space 0, times 0
[ 1843.634712] CPU: 0 PID: 60797 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1843.636292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1843.638183] Call Trace:
[ 1843.638780]  dump_stack+0x107/0x167
[ 1843.639620]  should_fail.cold+0x5/0xa
[ 1843.640499]  should_failslab+0x5/0x20
[ 1843.641371]  __kmalloc_track_caller+0x79/0x370
[ 1843.642416]  ? kstrdup_const+0x53/0x80
[ 1843.643306]  ? kasprintf+0xbb/0xf0
[ 1843.644131]  kstrdup+0x36/0x70
[ 1843.644863]  kstrdup_const+0x53/0x80
[ 1843.645738]  kmem_cache_create_usercopy+0x12f/0x2f0
[ 1843.646890]  p9_client_create+0xc6a/0x1230
[ 1843.647896]  ? p9_client_flush+0x430/0x430
[ 1843.648878]  ? trace_hardirqs_on+0x5b/0x180
[ 1843.649886]  ? lockdep_init_map_type+0x2c7/0x780
[ 1843.650990]  ? __raw_spin_lock_init+0x36/0x110
[ 1843.652062]  v9fs_session_init+0x1dd/0x1680
[ 1843.653083]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1843.654193]  ? v9fs_show_options+0x690/0x690
[ 1843.655238]  ? trace_hardirqs_on+0x5b/0x180
[ 1843.656248]  ? kasan_unpoison_shadow+0x33/0x50
[ 1843.657309]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1843.658497]  v9fs_mount+0x79/0x8f0
[ 1843.659330]  ? v9fs_write_inode+0x60/0x60
[ 1843.660288]  legacy_get_tree+0x105/0x220
[ 1843.661194]  vfs_get_tree+0x8e/0x300
[ 1843.662024]  path_mount+0x1429/0x2120
[ 1843.662883]  ? strncpy_from_user+0x9e/0x470
[ 1843.663853]  ? finish_automount+0xa90/0xa90
[ 1843.664805]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1843.665832]  ? _copy_from_user+0xfb/0x1b0
[ 1843.666749]  __x64_sys_mount+0x282/0x300
[ 1843.667650]  ? copy_mnt_ns+0xa00/0xa00
[ 1843.668516]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1843.669670]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1843.670811]  do_syscall_64+0x33/0x40
[ 1843.671636]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1843.672765] RIP: 0033:0x7f5c6f844b19
[ 1843.673589] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1843.677650] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1843.679314] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1843.680888] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1843.682441] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1843.684026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1843.685566] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1843.687233] kmem_cache_create(9p-fcall-cache-734) failed with error -12
[ 1843.688720] CPU: 0 PID: 60797 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1843.690224] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1843.692047] Call Trace:
[ 1843.692625]  dump_stack+0x107/0x167
[ 1843.693441]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 1843.694602]  p9_client_create+0xc6a/0x1230
[ 1843.695544]  ? p9_client_flush+0x430/0x430
[ 1843.696459]  ? trace_hardirqs_on+0x5b/0x180
[ 1843.697407]  ? lockdep_init_map_type+0x2c7/0x780
[ 1843.698453]  ? __raw_spin_lock_init+0x36/0x110
[ 1843.699459]  v9fs_session_init+0x1dd/0x1680
[ 1843.700404]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1843.701462]  ? v9fs_show_options+0x690/0x690
[ 1843.702419]  ? trace_hardirqs_on+0x5b/0x180
[ 1843.703361]  ? kasan_unpoison_shadow+0x33/0x50
[ 1843.704357]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1843.705471]  v9fs_mount+0x79/0x8f0
[ 1843.706243]  ? v9fs_write_inode+0x60/0x60
[ 1843.707141]  legacy_get_tree+0x105/0x220
[ 1843.708034]  vfs_get_tree+0x8e/0x300
[ 1843.708852]  path_mount+0x1429/0x2120
[ 1843.709673]  ? strncpy_from_user+0x9e/0x470
[ 1843.710592]  ? finish_automount+0xa90/0xa90
[ 1843.711532]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1843.712541]  ? _copy_from_user+0xfb/0x1b0
[ 1843.713439]  __x64_sys_mount+0x282/0x300
[ 1843.714315]  ? copy_mnt_ns+0xa00/0xa00
[ 1843.715176]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1843.716328]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1843.717439]  do_syscall_64+0x33/0x40
[ 1843.718244]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1843.719330] RIP: 0033:0x7f5c6f844b19
[ 1843.720125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1843.724051] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1843.725667] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1843.727209] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1843.728752] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1843.730324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1843.731865] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:36:20 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 51)

20:36:20 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x41de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:20 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f00032c0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:36:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x61db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:20 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x900, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:20 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0, <r2=>0x0}, &(0x7f0000000180)=0xc)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x400000000000924}}, {@nodevmap}, {@noextend}, {@dfltgid={'dfltgid', 0x3d, r2}}, {@afid={'afid', 0x3d, 0x345}}], [{@smackfsdef={'smackfsdef', 0x3d, 'debug'}}, {@pcr={'pcr', 0x3d, 0x21}}]}})

20:36:20 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r1=>r0, {0xee01, 0xffffffffffffffff}}, './file1\x00'})
sendfile(r0, r1, 0x0, 0x100000001)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:36:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0xfe3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1857.347663] FAULT_INJECTION: forcing a failure.
[ 1857.347663] name failslab, interval 1, probability 0, space 0, times 0
[ 1857.350209] CPU: 1 PID: 61297 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1857.351753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1857.353578] Call Trace:
[ 1857.354158]  dump_stack+0x107/0x167
[ 1857.354970]  should_fail.cold+0x5/0xa
[ 1857.355817]  ? create_object.isra.0+0x3a/0xa20
[ 1857.356828]  should_failslab+0x5/0x20
[ 1857.357657]  kmem_cache_alloc+0x5b/0x310
[ 1857.358551]  create_object.isra.0+0x3a/0xa20
[ 1857.359509]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1857.360615]  __kmalloc_track_caller+0x177/0x370
[ 1857.361643]  ? kstrdup_const+0x53/0x80
[ 1857.362505]  kstrdup+0x36/0x70
[ 1857.363214]  kstrdup_const+0x53/0x80
[ 1857.364037]  kmem_cache_create_usercopy+0x12f/0x2f0
[ 1857.365136]  p9_client_create+0xc6a/0x1230
[ 1857.366068]  ? p9_client_flush+0x430/0x430
[ 1857.366998]  ? trace_hardirqs_on+0x5b/0x180
[ 1857.367952]  ? lockdep_init_map_type+0x2c7/0x780
[ 1857.368992]  ? __raw_spin_lock_init+0x36/0x110
[ 1857.370005]  v9fs_session_init+0x1dd/0x1680
[ 1857.370962]  ? lock_release+0x680/0x680
[ 1857.371849]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1857.372904]  ? v9fs_show_options+0x690/0x690
[ 1857.373873]  ? trace_hardirqs_on+0x5b/0x180
[ 1857.374812]  ? kasan_unpoison_shadow+0x33/0x50
[ 1857.375824]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1857.376942]  v9fs_mount+0x79/0x8f0
[ 1857.377714]  ? v9fs_write_inode+0x60/0x60
[ 1857.378622]  legacy_get_tree+0x105/0x220
[ 1857.379526]  vfs_get_tree+0x8e/0x300
[ 1857.380340]  path_mount+0x1429/0x2120
[ 1857.381176]  ? strncpy_from_user+0x9e/0x470
[ 1857.382124]  ? finish_automount+0xa90/0xa90
[ 1857.383071]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1857.384110]  ? _copy_from_user+0xfb/0x1b0
[ 1857.385020]  __x64_sys_mount+0x282/0x300
[ 1857.385918]  ? copy_mnt_ns+0xa00/0xa00
[ 1857.386775]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1857.387938]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1857.389072]  do_syscall_64+0x33/0x40
[ 1857.389886]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1857.391017] RIP: 0033:0x7f5c6f844b19
[ 1857.391837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1857.395907] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1857.397565] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1857.399153] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1857.400719] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1857.402291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1857.403874] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:36:20 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x42de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x62db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:20 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
syz_mount_image$nfs(&(0x7f0000000580), &(0x7f00000005c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000640), 0x0, &(0x7f0000000680)={[{'\x00'}]})
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x1020, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:20 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x9e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1857.683499] 9pnet: Insufficient options for proto=fd
20:36:35 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xa00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:35 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x63db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:35 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
faccessat2(r0, &(0x7f0000000180)='./file0\x00', 0x9c, 0x1000)
fork()

20:36:35 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000580)='./file0\x00', 0xa200, 0x2)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB="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", @ANYRESHEX=r4, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x1)

20:36:35 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 52)

20:36:35 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x43de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:35 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:36:35 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x10e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1872.135020] FAULT_INJECTION: forcing a failure.
[ 1872.135020] name failslab, interval 1, probability 0, space 0, times 0
[ 1872.136746] CPU: 0 PID: 62545 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1872.137724] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1872.138891] Call Trace:
[ 1872.139270]  dump_stack+0x107/0x167
[ 1872.139791]  should_fail.cold+0x5/0xa
[ 1872.140332]  ? create_object.isra.0+0x3a/0xa20
[ 1872.140981]  should_failslab+0x5/0x20
[ 1872.141529]  kmem_cache_alloc+0x5b/0x310
[ 1872.142104]  create_object.isra.0+0x3a/0xa20
[ 1872.142735]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1872.143473]  kmem_cache_alloc+0x159/0x310
[ 1872.144063]  kmem_cache_create_usercopy+0x190/0x2f0
[ 1872.144772]  p9_client_create+0xc6a/0x1230
[ 1872.145377]  ? p9_client_flush+0x430/0x430
[ 1872.145973]  ? trace_hardirqs_on+0x5b/0x180
[ 1872.146583]  ? lockdep_init_map_type+0x2c7/0x780
[ 1872.147221] 9pnet: Insufficient options for proto=fd
[ 1872.147254]  ? __raw_spin_lock_init+0x36/0x110
[ 1872.148994]  v9fs_session_init+0x1dd/0x1680
[ 1872.149609]  ? lock_release+0x680/0x680
[ 1872.150173]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1872.150849]  ? v9fs_show_options+0x690/0x690
[ 1872.151487]  ? trace_hardirqs_on+0x5b/0x180
[ 1872.152094]  ? kasan_unpoison_shadow+0x33/0x50
[ 1872.152734]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1872.153462]  v9fs_mount+0x79/0x8f0
[ 1872.153962]  ? v9fs_write_inode+0x60/0x60
[ 1872.154546]  legacy_get_tree+0x105/0x220
[ 1872.155121]  vfs_get_tree+0x8e/0x300
[ 1872.155655]  path_mount+0x1429/0x2120
[ 1872.156194]  ? strncpy_from_user+0x9e/0x470
[ 1872.156796]  ? finish_automount+0xa90/0xa90
[ 1872.157414]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1872.158078]  ? _copy_from_user+0xfb/0x1b0
[ 1872.158677]  __x64_sys_mount+0x282/0x300
[ 1872.159239]  ? copy_mnt_ns+0xa00/0xa00
[ 1872.159794]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1872.160529]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1872.161262]  do_syscall_64+0x33/0x40
[ 1872.161784]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1872.162501] RIP: 0033:0x7f5c6f844b19
[ 1872.163021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1872.165593] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1872.166656] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1872.167655] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1872.168651] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1872.169647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1872.170641] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:36:35 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x44de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:35 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x11e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:35 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 53)

20:36:35 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x64db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1872.355330] FAULT_INJECTION: forcing a failure.
[ 1872.355330] name failslab, interval 1, probability 0, space 0, times 0
[ 1872.356893] CPU: 0 PID: 63113 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1872.357815] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1872.358898] Call Trace:
[ 1872.359242]  dump_stack+0x107/0x167
[ 1872.359718]  should_fail.cold+0x5/0xa
[ 1872.360220]  ? __kmem_cache_create+0x10e/0x520
[ 1872.360842]  should_failslab+0x5/0x20
[ 1872.361354]  kmem_cache_alloc_node+0x55/0x330
[ 1872.361952]  __kmem_cache_create+0x10e/0x520
[ 1872.362531]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 1872.363195]  p9_client_create+0xc6a/0x1230
[ 1872.363755]  ? p9_client_flush+0x430/0x430
[ 1872.364305]  ? trace_hardirqs_on+0x5b/0x180
[ 1872.364892]  ? lockdep_init_map_type+0x2c7/0x780
[ 1872.365507]  ? __raw_spin_lock_init+0x36/0x110
[ 1872.366099]  v9fs_session_init+0x1dd/0x1680
[ 1872.366681]  ? lock_release+0x680/0x680
[ 1872.367214]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1872.367857]  ? v9fs_show_options+0x690/0x690
[ 1872.368439]  ? trace_hardirqs_on+0x5b/0x180
[ 1872.369019]  ? kasan_unpoison_shadow+0x33/0x50
[ 1872.369620]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1872.370277]  v9fs_mount+0x79/0x8f0
[ 1872.370745]  ? v9fs_write_inode+0x60/0x60
[ 1872.371291]  legacy_get_tree+0x105/0x220
[ 1872.371821]  vfs_get_tree+0x8e/0x300
[ 1872.372303]  path_mount+0x1429/0x2120
[ 1872.372828]  ? strncpy_from_user+0x9e/0x470
[ 1872.373388]  ? finish_automount+0xa90/0xa90
[ 1872.373946]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1872.374558]  ? _copy_from_user+0xfb/0x1b0
[ 1872.375102]  __x64_sys_mount+0x282/0x300
[ 1872.375645]  ? copy_mnt_ns+0xa00/0xa00
[ 1872.376152]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1872.376832]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1872.377499]  do_syscall_64+0x33/0x40
[ 1872.377987]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1872.378663] RIP: 0033:0x7f5c6f844b19
[ 1872.379148] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1872.381504] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1872.382521] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1872.383451] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1872.384376] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
20:36:35 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xb00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1872.385294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1872.386404] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1872.387485] kmem_cache_create(9p-fcall-cache-738) failed with error -22
[ 1872.388365] CPU: 0 PID: 63113 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1872.389252] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1872.390314] Call Trace:
[ 1872.390654]  dump_stack+0x107/0x167
[ 1872.391126]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 1872.391799]  p9_client_create+0xc6a/0x1230
[ 1872.392350]  ? p9_client_flush+0x430/0x430
[ 1872.392885]  ? trace_hardirqs_on+0x5b/0x180
[ 1872.393450]  ? lockdep_init_map_type+0x2c7/0x780
[ 1872.394066]  ? __raw_spin_lock_init+0x36/0x110
[ 1872.394657]  v9fs_session_init+0x1dd/0x1680
[ 1872.395211]  ? lock_release+0x680/0x680
[ 1872.395753]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1872.396380]  ? v9fs_show_options+0x690/0x690
[ 1872.396956]  ? trace_hardirqs_on+0x5b/0x180
[ 1872.397508]  ? kasan_unpoison_shadow+0x33/0x50
[ 1872.398094]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1872.398746]  v9fs_mount+0x79/0x8f0
[ 1872.399200]  ? v9fs_write_inode+0x60/0x60
[ 1872.399735]  legacy_get_tree+0x105/0x220
[ 1872.400284]  vfs_get_tree+0x8e/0x300
[ 1872.400770]  path_mount+0x1429/0x2120
[ 1872.401261]  ? strncpy_from_user+0x9e/0x470
[ 1872.401840]  ? finish_automount+0xa90/0xa90
[ 1872.402414]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1872.403003]  ? _copy_from_user+0xfb/0x1b0
[ 1872.403541]  __x64_sys_mount+0x282/0x300
[ 1872.404054]  ? copy_mnt_ns+0xa00/0xa00
[ 1872.404551]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1872.405223]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1872.405874]  do_syscall_64+0x33/0x40
[ 1872.406347]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1872.407004] RIP: 0033:0x7f5c6f844b19
[ 1872.407486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1872.409798] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1872.410749] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1872.411659] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1872.412559] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1872.413458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1872.414360] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:36:35 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000004, 0x4000010, r1, 0x10000000)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r5, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0xfbb7d2483e6060a, 0x0, @fd=r2, 0x2d, 0x0, 0x1000, 0x1, 0x1, {0x0, r6}}, 0x6)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:35 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x45de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1872.515102] audit: type=1400 audit(1748637395.866:12): avc:  denied  { map } for  pid=63432 comm="syz-executor.0" path="pipe:[35493]" dev="pipefs" ino=35493 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1
[ 1872.521549] audit: type=1400 audit(1748637395.866:13): avc:  denied  { execute } for  pid=63432 comm="syz-executor.0" path="pipe:[35493]" dev="pipefs" ino=35493 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1
20:36:35 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f0008040020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:36:35 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x12e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:35 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 54)

20:36:35 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4, 0x0, 0x0, 0x0, 0x1c9ce555}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
fork()

[ 1872.660038] FAULT_INJECTION: forcing a failure.
[ 1872.660038] name failslab, interval 1, probability 0, space 0, times 0
[ 1872.662840] CPU: 1 PID: 63771 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1872.664450] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1872.666415] Call Trace:
[ 1872.667019]  dump_stack+0x107/0x167
[ 1872.667861]  should_fail.cold+0x5/0xa
[ 1872.668727]  ? create_object.isra.0+0x3a/0xa20
[ 1872.669780]  should_failslab+0x5/0x20
[ 1872.670710]  kmem_cache_alloc+0x5b/0x310
[ 1872.671664]  create_object.isra.0+0x3a/0xa20
[ 1872.672673]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1872.673841]  kmem_cache_alloc_node+0x169/0x330
[ 1872.674945]  __kmem_cache_create+0x10e/0x520
[ 1872.675982]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 1872.677148]  p9_client_create+0xc6a/0x1230
[ 1872.678191]  ? p9_client_flush+0x430/0x430
[ 1872.679168]  ? trace_hardirqs_on+0x5b/0x180
[ 1872.680183]  ? lockdep_init_map_type+0x2c7/0x780
[ 1872.681260]  ? __raw_spin_lock_init+0x36/0x110
[ 1872.682345]  v9fs_session_init+0x1dd/0x1680
[ 1872.683335]  ? lock_release+0x680/0x680
[ 1872.684252]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1872.685339]  ? v9fs_show_options+0x690/0x690
[ 1872.686384]  ? trace_hardirqs_on+0x5b/0x180
[ 1872.687387]  ? kasan_unpoison_shadow+0x33/0x50
[ 1872.688427]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1872.689587]  v9fs_mount+0x79/0x8f0
[ 1872.690441]  ? v9fs_write_inode+0x60/0x60
[ 1872.691405]  legacy_get_tree+0x105/0x220
[ 1872.692342]  vfs_get_tree+0x8e/0x300
[ 1872.693192]  path_mount+0x1429/0x2120
[ 1872.694097]  ? strncpy_from_user+0x9e/0x470
[ 1872.695102]  ? finish_automount+0xa90/0xa90
[ 1872.696087]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1872.697149]  ? _copy_from_user+0xfb/0x1b0
[ 1872.698123]  __x64_sys_mount+0x282/0x300
[ 1872.699054]  ? copy_mnt_ns+0xa00/0xa00
[ 1872.699975]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1872.701190]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1872.702411]  do_syscall_64+0x33/0x40
[ 1872.703247]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1872.704413] RIP: 0033:0x7f5c6f844b19
[ 1872.705257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1872.709465] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1872.711226] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1872.712846] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1872.714494] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1872.716135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1872.717755] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:36:49 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 55)

20:36:49 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xc00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:49 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x13e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:49 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010001000000000002000400", @ANYRES32=0xee00, @ANYBLOB="0400f4ffffffffff07000e00", @ANYRES32=0xee01, @ANYBLOB="08000200", @ANYRES32=0xee00, @ANYBLOB="10000000000000002000050000000000"], 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000280), 0x7, 0x4000)
syz_io_uring_submit(r1, r4, &(0x7f00000002c0)=@IORING_OP_TEE={0x21, 0x3, 0x0, @fd_index=0x1, 0x0, 0x0, 0x5, 0x0, 0x1, {0x0, 0x0, r5}}, 0x8001)
fork()
r6 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r6, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r6, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r6, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
openat(r6, &(0x7f0000000180)='./file0\x00', 0x2000, 0x22)

20:36:49 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r0 = clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = gettid()
timer_create(0x0, &(0x7f0000000240)={0x0, 0xb, 0x4, @tid=r3}, &(0x7f0000000040))
r4 = fsmount(r2, 0x0, 0x1)
clone3(&(0x7f0000000580)={0x101000000, &(0x7f0000000000), &(0x7f0000000180), &(0x7f0000000200), {0x1d}, &(0x7f0000000240)=""/226, 0xe2, &(0x7f00000004c0)=""/155, &(0x7f0000000340)=[r0, r0, r3], 0x3, {r4}}, 0x58)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:49 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x65db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:49 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x46de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:49 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 1886.321588] FAULT_INJECTION: forcing a failure.
[ 1886.321588] name failslab, interval 1, probability 0, space 0, times 0
[ 1886.324252] CPU: 0 PID: 64215 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1886.325829] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1886.327754] Call Trace:
[ 1886.328356]  dump_stack+0x107/0x167
[ 1886.329193]  should_fail.cold+0x5/0xa
[ 1886.330060]  ? create_object.isra.0+0x3a/0xa20
[ 1886.331121]  should_failslab+0x5/0x20
[ 1886.331989]  kmem_cache_alloc+0x5b/0x310
[ 1886.332917]  create_object.isra.0+0x3a/0xa20
[ 1886.333938]  kmemleak_alloc_percpu+0xa0/0x100
[ 1886.334968]  pcpu_alloc+0x4e2/0x1240
[ 1886.335849]  __kmem_cache_create+0x35a/0x520
[ 1886.336853]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 1886.337998]  p9_client_create+0xc6a/0x1230
[ 1886.338985]  ? p9_client_flush+0x430/0x430
[ 1886.339952]  ? trace_hardirqs_on+0x5b/0x180
[ 1886.340946]  ? lockdep_init_map_type+0x2c7/0x780
[ 1886.342031]  ? __raw_spin_lock_init+0x36/0x110
[ 1886.343078]  v9fs_session_init+0x1dd/0x1680
[ 1886.344073]  ? lock_release+0x680/0x680
[ 1886.345005]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1886.346112]  ? v9fs_show_options+0x690/0x690
[ 1886.347133]  ? trace_hardirqs_on+0x5b/0x180
[ 1886.348113]  ? kasan_unpoison_shadow+0x33/0x50
[ 1886.349168]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1886.350320]  v9fs_mount+0x79/0x8f0
[ 1886.351120]  ? v9fs_write_inode+0x60/0x60
[ 1886.352081]  legacy_get_tree+0x105/0x220
[ 1886.353003]  vfs_get_tree+0x8e/0x300
[ 1886.353856]  path_mount+0x1429/0x2120
[ 1886.354729]  ? strncpy_from_user+0x9e/0x470
[ 1886.355737]  ? finish_automount+0xa90/0xa90
[ 1886.356714]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1886.357764]  ? _copy_from_user+0xfb/0x1b0
[ 1886.358715]  __x64_sys_mount+0x282/0x300
[ 1886.359643]  ? copy_mnt_ns+0xa00/0xa00
[ 1886.360533]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1886.361718]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1886.362895]  do_syscall_64+0x33/0x40
[ 1886.363742]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1886.364901] RIP: 0033:0x7f5c6f844b19
[ 1886.365757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1886.369914] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1886.371643] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1886.373247] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1886.374881] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1886.376491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1886.378102] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:36:49 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0xe00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:49 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x66db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:49 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
syz_emit_ethernet(0xb8, &(0x7f0000000340)={@remote, @multicast, @void, {@x25={0x805, {0x3, 0x9, 0x27, "a76163cf36ee07794f9c67ce8a3f1542d1c1a4ffdf759b194ad5aa3bf9e025c8f80fd098ccb5fe2396bcc23043d05a66275e8b3402cadd928be11971078782a27286e2a96def02bb029f263ea077d4517b3baccecb68257aa553fbc9bc66448f4f1573766034c35ecab73589fb5b119d5a31d175d34812ab831f0511aeafb3f57e9d4fd556b612fd4abd0cad09c2d3e115d5b3a459aac64faab89c1698363fc3981cc3b7958855"}}}}, 0x0)
fork()

20:36:49 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x47de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:49 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:36:49 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x14e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:36:49 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
syz_io_uring_submit(r0, r1, &(0x7f0000000300)=@IORING_OP_WRITEV={0x2, 0x1, 0x2004, @fd_index=0xa, 0x2, &(0x7f0000000180)=[{&(0x7f0000000000)="a65107d9a1a86ad8b363b841dae36cf571b2fd38db8f5c4a46395747be33eca5e0e1", 0x22}, {&(0x7f0000000200)="60c58488b848693622876d155381ae40807e144736c54ff2b4b2e0d951912c46b2021137a18d374fc32ad197fce1a13df4a628685c1585762859727f46599c8b5c871a02f4c01d907107ce8deace32c533c4817b033ebe3c1ec6f5e7e7f11fc2d83ae5bd89768b8b83d8952ffb447f803ca149b5698bb23c7eb60fd38e324cb9e68ccbfa5424c86b238398fb8640fef6e8f929e306dba9d9e3bd13489a1fa9b6f440d6af13cacefabfd382b5ec73d309e4f1fedc92d516ce58579bc73d8550e11325784725aa71e02c72ab94e4aacaa6895d0b0bc315543bc869117e6fc975a2", 0xe0}], 0x2, 0x0, 0x1, {0x1}}, 0x20)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x100000001)
r4 = syz_open_dev$vcsa(&(0x7f0000000100), 0x0, 0x401)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="ad88601b1f061177586a9207aa13cf57c0be481bcfc681073561b0581b2cc2b2f2348f209f30df9a12b25e1b33cfc4917be070c05af51e811ab71efc01b054866b8377ca6bfae7e47fe72466b0e94db1d05dfa96175a1b43b6d27ced9be161c18f17b66612f0b4bbf5f34dfa3f3343d93581d42d2eb4df167c3ef0fdb64547af9fe75672f3163f5df6f18050180b0cd744ac6741785000c767f4ed49d637b149271dd477c1c1049f5f78e3d84753b03ef817e04452b9005535373bb74c4342fc269da3627a2900f16f4f71ba8effe06f42b71b9db59292614ae0a3442620026920fb5d0cc7a318be4dcf03af27f8943870314e2695", @ANYRES16=0x0, @ANYBLOB="010027bd7000fddbdf25010000000048e01e344100000014001462726f6164636173742d6c696e6b"], 0x30}}, 0x1)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'geneve0\x00', <r5=>0x0})
setsockopt$packet_drop_memb(r4, 0x107, 0x2, &(0x7f0000000000)={r5, 0x1, 0x6, @remote}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r2, 0x89f8, &(0x7f00000004c0)={'ip6_vti0\x00', &(0x7f0000000340)={'syztnl2\x00', r5, 0x2f, 0x7, 0x6, 0x3, 0x1, @private1={0xfc, 0x1, '\x00', 0x1}, @local, 0x8000, 0x7800, 0x7fff, 0x1}})
pipe(&(0x7f00000003c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e732069e453656b87ef6f3d", @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])

20:36:49 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x1020, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4800, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x6800, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
syz_io_uring_setup(0x64a2, &(0x7f0000000280)={0x0, 0x67cc, 0x10, 0x0, 0x340}, &(0x7f0000003000/0x1000)=nil, &(0x7f0000003000/0x4000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000004000/0x2000)=nil, 0x2000, 0x0, 0x2010, 0xffffffffffffffff, 0x10000000)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000004, 0x12, 0xffffffffffffffff, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)=[0xffffffffffffffff], 0x1, 0x0, 0x1, {0x0, r4}}, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000880)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000840)={&(0x7f0000000380)=@generic={0xf, "51531ef40e1641f538495934a6140df71380a65a3c18a340124fb98696d6809e4e975971c63a0447b5ca0db99c45aa744f29071df2f58a1b0caf61879673e93dc94ea6de41c52593f7d39b76294a4b3d3560e3adc8898d69e08eb11dfbace1c3b2ec5897012c1966e8f9542b365ee74577375fefd1b599f151cc3d9b57c7"}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000400)="ecd92a18de714da511c83a1c092d", 0xe}, {&(0x7f0000000440)="c13d406cab56fb2e3e9e0965beb13a3c821e4a596c5634729f4c8dcf389afac75f6edba26478aa3cad5cd0dea735506566283cae30701b691da9ac45ae0f4c613039461afd7a65e83cd3bea67fb5d310eb88741a2e7f021a2036ff16590487eefe7279ae864edb3ba724da0ab9751f385a73cb6e2c", 0x75}, {&(0x7f00000004c0)="272d80922da5db31473a07db52e0137c86c7f7c6322a35154c0853b4ea3c512720e900cd335c6d4976181f7a51da2d7d68186cb7846646f2112d085256a253092ff7d7b974b756202ddd2cf41e36e9dd48eaef4a1caafbfdf79d33c963c0b479160b7d799067ea7b2ebdef4aa9b853bb5394", 0x72}, {&(0x7f0000000540)="4215f27bb3ce0bf8d94ee00eddaaef8f2919c9ee7950567ee921f68c03e6ead596b59b1b15380a28119a8b7e541180c5f37598073a53d454c867d1ccd01e03a280ada64a7f73ed51", 0x48}], 0x4, &(0x7f0000000600)=[{0x100, 0x119, 0xffff, "b8f343fd7ff25c519f58d69b0be9d65db333b928815897763c070a2f6ac110b66f38bccd636aee4053839dbed6efbaf878497e7780d1e0cdd79f56d540fb4101aaf839df3e3d52e18e4d57213acea116f84660cef80c76e09d63df1fde74b0fc728fea2c74cf4bfea95b113100ff88766a43e417e437a5e411ba79e80a1277a06c9f91ab393cd2280c93ab65376fd3653d786a8ff156e103cac30437169bdd45191c474a4f96aacb11e9d9b0b53205a415b672f000fd083944505f07e705cfdaba5960e554f71b733e36075b8f140d472a195f4a41d8401c4ab9437e24a97f1999da2f96385f17c46d1d"}, {0x40, 0x115, 0x0, "b416963a02707e5be471c5ba8faf8368006ce4bd434a2178c802a6375d040b379bfc8ae1c0ce97d94c5582b3af61f8c7"}, {0xb8, 0x10e, 0xce6, "aa5b1af03a27da4e4bfd2db2921f7123862cd350b088022704bdfe7daa7171c6615788eb8300f0daae875b81e89f915e2f9ca2b7b3f5957173caa7538ede7b75aa0b6274e6a403304a10a47aad0ec5457f8c3cbe415e5931f3d35cd681a4597112b8d9b9ce00cee7c4f39f3f4b254650f4f156e91c132d00d9513f6950c8826a4467344f63de287f324fc9d5ad577f4234db086db48d9f8b427135ef57257d0e628fdc2b"}, {0x40, 0x10e, 0x9, "7e14f7a73531225dc646b63b1b5873e2d94d5345a2b5d9a72c5899b934b46b4af4216446311ad05ed84ff4"}], 0x238}, 0x0, 0x48000, 0x0, {0x0, r4}}, 0x7000)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:37:04 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:37:04 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x15e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
syz_read_part_table(0x3, 0x3, &(0x7f0000000340)=[{&(0x7f0000000200)="87cf3ae794d5e26f54a4e0e0ec1c02a40155934cfcdfe53ffe7021ac70a377436853442e873a4e2e026e23113ac92c538b79e3e9c3d27bebe5c5f320c9eb51b1fc1658b45cc02bb19f95a5b2d0f61a2ba61eaa", 0x53, 0x3}, {}, {&(0x7f0000000280)="05700453145360bfc92563bc35eeb7845019461149801b1452b26f893faf5e1bb5161b6b73f28f4bf43ea86b943f13c2862ed7430d14db09910ed0de9ba921e24c1e95e0042eb151abe8ac6539e76091d046cfacbee800fe4d1246714db9991a515c6fb3d4002e638ee8f9bb3fba8e1a36c2c0a0952944a80af9408d87a533517283f142e0817bd43a9a2c96204a51883b4629eef90090c8c6196b7f5ff7d5531db049aa9ccc84711bfc22adfd8bbb19b1d3", 0xb2, 0x3}])
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000180)='./file1\x00', 0x4, 0x3, &(0x7f0000000640)=[{&(0x7f00000004c0)="1e5aff68c467bd5581daa447bbc3a59788ea6845d823152356e2526d8b399a740d07ed0910aa0bab82d51965686f387d0af3c3d88f794877183203c9872ae7329c72a510f00570172446a240a7b89628d96b9105b12cb4265650c1c228fc15ea493668a417d937906703fa48c3c9bd1612f34caa8260d7ec776d99b4638c583555e6cd07209efedf9d01a07c4054e89fd8d2f33af634e1ac5bd22053183f2b5513e53cac10ba81d0a2690fad56c47b4e9587ce35eca759aee6aa94b653d0ee7e41eae4e3b07363554254c3f0740549e4ad5e0c1fc97496f85aa1450f17", 0xdd, 0xffffffffffffffff}, {&(0x7f00000005c0)="49576ea38eb823592d44ba93390dc2ceb8bc1c3bcc8fd072799b658f6041e958a1ff6957e447fb49ff840998ae34ca3ec9b428371ece1128752468e2d9ef87ce80139cb7eb06ecfaedfbdc41d49de58d7aff26b5f9528572dc7e", 0x5a, 0x8}, {&(0x7f0000000940)="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", 0x1000, 0x6}], 0x1002400, &(0x7f00000006c0)={[], [{@permit_directio}, {@subj_role={'subj_role', 0x3d, '/\x88@+'}}, {@func={'func', 0x3d, 'CREDS_CHECK'}}]})
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 56)

[ 1901.038187] FAULT_INJECTION: forcing a failure.
[ 1901.038187] name failslab, interval 1, probability 0, space 0, times 0
[ 1901.040886] CPU: 1 PID: 65759 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1901.042474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1901.044361] Call Trace:
[ 1901.044960]  dump_stack+0x107/0x167
[ 1901.045788]  should_fail.cold+0x5/0xa
[ 1901.046650]  ? create_object.isra.0+0x3a/0xa20
[ 1901.047691]  should_failslab+0x5/0x20
[ 1901.048550]  kmem_cache_alloc+0x5b/0x310
[ 1901.049464]  ? mark_held_locks+0x9e/0xe0
[ 1901.050399]  create_object.isra.0+0x3a/0xa20
[ 1901.051408]  kmemleak_alloc_percpu+0xa0/0x100
[ 1901.052455]  pcpu_alloc+0x4e2/0x1240
[ 1901.053318]  __kmem_cache_create+0x35a/0x520
[ 1901.054333]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 1901.055476]  p9_client_create+0xc6a/0x1230
[ 1901.056468]  ? p9_client_flush+0x430/0x430
[ 1901.057450]  ? trace_hardirqs_on+0x5b/0x180
[ 1901.058450]  ? lockdep_init_map_type+0x2c7/0x780
[ 1901.059532]  ? __raw_spin_lock_init+0x36/0x110
[ 1901.060566]  v9fs_session_init+0x1dd/0x1680
[ 1901.061563]  ? lock_release+0x680/0x680
[ 1901.062483]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1901.063581]  ? v9fs_show_options+0x690/0x690
[ 1901.064613]  ? trace_hardirqs_on+0x5b/0x180
[ 1901.065607]  ? kasan_unpoison_shadow+0x33/0x50
[ 1901.066649]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1901.067817]  v9fs_mount+0x79/0x8f0
[ 1901.068623]  ? v9fs_write_inode+0x60/0x60
[ 1901.069569]  legacy_get_tree+0x105/0x220
[ 1901.070489]  vfs_get_tree+0x8e/0x300
[ 1901.071351]  path_mount+0x1429/0x2120
[ 1901.072226]  ? strncpy_from_user+0x9e/0x470
[ 1901.073210]  ? finish_automount+0xa90/0xa90
[ 1901.074200]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1901.075261]  ? _copy_from_user+0xfb/0x1b0
[ 1901.076216]  __x64_sys_mount+0x282/0x300
[ 1901.077150]  ? copy_mnt_ns+0xa00/0xa00
[ 1901.078052]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1901.079251]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1901.080426]  do_syscall_64+0x33/0x40
[ 1901.081287]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1901.082446] RIP: 0033:0x7f5c6f844b19
[ 1901.083286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1901.087460] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1901.089184] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1901.090810] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1901.092443] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1901.094077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1901.095699] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:37:04 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2010, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x48de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010001000000000002000400", @ANYRES32=0xee00, @ANYBLOB="040003000000000008000100", @ANYRES32=0xee01, @ANYBLOB="08000200", @ANYRES32=0xee00, @ANYBLOB="76a50008000000002000050000000000"], 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
r1 = socket$inet(0x2, 0x3, 0x80)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2e}}, 0x10)
setsockopt$inet_int(r1, 0x0, 0x1, &(0x7f0000000000)=0x6, 0x4)
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:37:04 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x6c00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x16e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:04 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e733d668385be7f646e6f3d", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',afid=0x0000000000000345,\x00'])
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
write$binfmt_elf64(r2, &(0x7f0000000400)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
process_madvise(r2, &(0x7f0000000540)=[{&(0x7f0000000200)="8b578566e1834a446dc0cf36619d2c96fafd02a714c767262bc349a54669ea98fb7a39ddafdc5f00226d8d7ecad8d0524e6af8926ba3d6a44d9d89f8ef498ad078963a6b1c30bea94dc458c90366dd28432ba3a607853c887e23acdfd710aba6a14de2d63e0cbfdbe9244d8449cc9308c7b1d4f5290550a3a2111ca66b15e08326b9be1a0aa7fde34bd01a03c28a1f38f31def5c5cc2df1594ec2a2170e062390a17b186184916ea158451d296dd8f475bb5a0ddf86d0b5ebf29b1c335e886811a34ce11249ac05304be70f496dda4c6c60e4061f18fa2739d2bf9d2b6879e25dea7813f31eb781a", 0xe8}, {&(0x7f0000000300)="fddbfbeafa92201ad6d750a5c85e88c09ed366a6766243e5e96b04498a22cb55e35c0ed40befe5fc5a6dcf11d7b9b5fb4d8f105fca0406eb38dd6dc24020b81a079b33ae88a8d65a9028b47ce7ff699428f57e2a488c515acd8a092a745c5adea7fcf5d44ae978c15a25629792d12a841bd9a18e8544bc200af62995c1a09226b2833c10e64ae9e2dd900a696d768c46ae5ef598a4efb57ce24b015a3b24dc3a7500eb998018ccfadd4b0734", 0xac}, {&(0x7f0000000940)="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", 0x1000}, {&(0x7f00000004c0)="bd9f554b1c8511f06ddbc0ee1b6cef5245b7642a9af082852c213de53a740b4b1b8c425879e5244cee8b27359e1fba4cc1d5475267df8961ab80acfeb00ea0ecca040aed7391ed5524f346cda8a884f3a0284c5a1bbefb7e54236d", 0x5b}, {&(0x7f0000001940)="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", 0x1000}, {&(0x7f0000002940)="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", 0x1000}, {&(0x7f0000000000)="acec69b7448638f4c0443adee0e39fbdb850e329f38109c84f98dffecfc44813f9e3292ba17e9b3bb8765dc51689f53d7ffce4345eada4", 0x37}, {&(0x7f0000000180)="b8c2a1d41347644b1d90e30834abd57c15c778ca48991c6738ea5ff9f0ad5dd311c2bfb3d87aa128ae9db2f6ea16f7", 0x2f}], 0x8, 0xe, 0x0)

20:37:04 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 57)

[ 1901.350246] FAULT_INJECTION: forcing a failure.
[ 1901.350246] name failslab, interval 1, probability 0, space 0, times 0
[ 1901.351913] CPU: 0 PID: 66617 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1901.352907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1901.354068] Call Trace:
[ 1901.354446]  dump_stack+0x107/0x167
[ 1901.354980]  should_fail.cold+0x5/0xa
[ 1901.355531]  should_failslab+0x5/0x20
[ 1901.356083]  __kmalloc_track_caller+0x79/0x370
[ 1901.356730]  ? kstrdup_const+0x53/0x80
[ 1901.357286]  kstrdup+0x36/0x70
[ 1901.357744]  kstrdup_const+0x53/0x80
[ 1901.358286]  kvasprintf_const+0x10c/0x1a0
[ 1901.358875]  kobject_set_name_vargs+0x56/0x150
[ 1901.359522]  kobject_init_and_add+0xc9/0x160
[ 1901.360161]  ? kobject_create_and_add+0xb0/0xb0
[ 1901.360849]  ? wait_for_completion_io+0x270/0x270
[ 1901.361528]  ? kernfs_name_hash+0xe7/0x110
[ 1901.362151]  ? kernfs_find_ns+0x256/0x380
[ 1901.362765]  sysfs_slab_add+0x172/0x200
[ 1901.363353]  __kmem_cache_create+0x3db/0x520
[ 1901.364020]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 1901.364760]  p9_client_create+0xc6a/0x1230
[ 1901.365389]  ? p9_client_flush+0x430/0x430
[ 1901.366032]  ? trace_hardirqs_on+0x5b/0x180
[ 1901.366664]  ? lockdep_init_map_type+0x2c7/0x780
[ 1901.367370]  ? __raw_spin_lock_init+0x36/0x110
[ 1901.368050]  v9fs_session_init+0x1dd/0x1680
[ 1901.368690]  ? lock_release+0x680/0x680
[ 1901.369272]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1901.369954]  ? v9fs_show_options+0x690/0x690
[ 1901.370577]  ? trace_hardirqs_on+0x5b/0x180
[ 1901.371201]  ? kasan_unpoison_shadow+0x33/0x50
[ 1901.371867]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1901.372596]  v9fs_mount+0x79/0x8f0
[ 1901.373111]  ? v9fs_write_inode+0x60/0x60
[ 1901.373707]  legacy_get_tree+0x105/0x220
[ 1901.374298]  vfs_get_tree+0x8e/0x300
[ 1901.374822]  path_mount+0x1429/0x2120
[ 1901.375364]  ? strncpy_from_user+0x9e/0x470
[ 1901.376023]  ? finish_automount+0xa90/0xa90
[ 1901.376624]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1901.377287]  ? _copy_from_user+0xfb/0x1b0
[ 1901.377890]  __x64_sys_mount+0x282/0x300
[ 1901.378472]  ? copy_mnt_ns+0xa00/0xa00
[ 1901.379038]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1901.379792]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1901.380539]  do_syscall_64+0x33/0x40
[ 1901.381080]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1901.381802] RIP: 0033:0x7f5c6f844b19
[ 1901.382327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1901.384954] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1901.386023] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1901.387040] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1901.388058] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1901.389074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1901.390071] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1901.392257] kobject: can not set name properly!
[ 1901.393256] kmem_cache_create(9p-fcall-cache-743) failed with error -12
[ 1901.394232] CPU: 0 PID: 66617 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1901.395206] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1901.396393] Call Trace:
[ 1901.396764]  dump_stack+0x107/0x167
[ 1901.397286]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 1901.398039]  p9_client_create+0xc6a/0x1230
[ 1901.398652]  ? p9_client_flush+0x430/0x430
[ 1901.399261]  ? trace_hardirqs_on+0x5b/0x180
[ 1901.399900]  ? lockdep_init_map_type+0x2c7/0x780
[ 1901.400560]  ? __raw_spin_lock_init+0x36/0x110
[ 1901.401205]  v9fs_session_init+0x1dd/0x1680
[ 1901.401808]  ? lock_release+0x680/0x680
[ 1901.402374]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1901.403051]  ? v9fs_show_options+0x690/0x690
[ 1901.403684]  ? trace_hardirqs_on+0x5b/0x180
[ 1901.404292]  ? kasan_unpoison_shadow+0x33/0x50
[ 1901.404931]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1901.405659]  v9fs_mount+0x79/0x8f0
[ 1901.406156]  ? v9fs_write_inode+0x60/0x60
[ 1901.406753]  legacy_get_tree+0x105/0x220
[ 1901.407322]  vfs_get_tree+0x8e/0x300
[ 1901.407850]  path_mount+0x1429/0x2120
[ 1901.408384]  ? strncpy_from_user+0x9e/0x470
[ 1901.408992]  ? finish_automount+0xa90/0xa90
[ 1901.409599]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1901.410266]  ? _copy_from_user+0xfb/0x1b0
[ 1901.410858]  __x64_sys_mount+0x282/0x300
[ 1901.411425]  ? copy_mnt_ns+0xa00/0xa00
[ 1901.411990]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1901.412727]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1901.413451]  do_syscall_64+0x33/0x40
[ 1901.413974]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1901.414690] RIP: 0033:0x7f5c6f844b19
[ 1901.415207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1901.417785] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1901.418848] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1901.419856] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1901.420856] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1901.421854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1901.422855] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:37:04 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[ 1901.432236] 9pnet: Could not find request transport: fƒ…¾dno=0x0000000000000005
20:37:04 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x7400, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:20 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c2000000aaaaaa5ceb0086dd6096153f00082f0020010078000000000000000000000000ff0200000000000000000000000000018f009078bc92630f3c0c94f18d000000a9d3b75e15ed901f02a62676d001ff205fc6de9848ce6afa1d804c3baeb17312f47b4516c2b98468edcecd36bd029cb4e16a27ddece5dd7eccfe96040071dedc9c9d5ba6c87b120300000000000020c2a569b689aa23d757b7b4280301000000b39f5bd9dc78864a952c58519b542364823a3b6cb04eeae71035a8446ef221d39d3504136905c2a5870000000000000000000000002bd7ac3ed1729147deb3c30899b33d03f9717825930d8a0b5f9e7c141846dc7c945c9b03118ddbafcab7c5c140f1c8d1ee2c1a2d05686aadd5b8eb372e2a3c355c0ab01bc2683e"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:37:20 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x49de, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:20 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 58)

20:37:20 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000340)="36de2dd3de1dffa7bf307d4818fc3bcc7af8127e08287ab1084e52ac3272e83da4aea40b58d6bc3072626bbcb35cb809853bb69b1cdf551593ee2ef579d9d4a21ac318d6859945a91264765ea3d26f4f990546f7e553610febb9997973d9df1b308bb890ff428304ab4d4248c4add1970b418d56c4b77a627159ba8fcb69d8f3f2ef13bb97")
openat$hpet(0xffffffffffffff9c, &(0x7f0000000280), 0x200000, 0x0)
mknodat$loop(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x20, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:37:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x17e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x7a00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:20 executing program 0:
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000200)={0x0, 0x41000000, 0x20, 0x2, 0x256}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
lstat(&(0x7f0000000080)='./file1/../file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="7472733d66642c7266646e6f3de450fb914b3bfaf66129e90f33a08794569561161393b70a2b8e70da67b0b176d560da2dbedf68a7cc2fa1dbf8", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cache=mmap,cache=fscache,debug=0x0000000000000924,nodevmap,noextend,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB="2c616669643d3078303030303030303030303030303334352c6673636f6e746578743d73746166665f752c6f626a5f747970653dd52c736d61636b66737472616e736d7574653d2c646f6e745f61707072616973652c726f6f74636f6e746578743d756e636f6e66696e65645f752c6f626a5f747970653d64656275672c657569643c", @ANYRESDEC=r2, @ANYBLOB=',\x00'])

20:37:20 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x2e00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1916.816075] FAULT_INJECTION: forcing a failure.
[ 1916.816075] name failslab, interval 1, probability 0, space 0, times 0
[ 1916.817805] CPU: 1 PID: 67305 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1916.818786] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1916.819975] Call Trace:
[ 1916.820350]  dump_stack+0x107/0x167
[ 1916.820865]  should_fail.cold+0x5/0xa
[ 1916.821405]  ? create_object.isra.0+0x3a/0xa20
[ 1916.822050]  should_failslab+0x5/0x20
[ 1916.822598]  kmem_cache_alloc+0x5b/0x310
[ 1916.823172]  ? lock_release+0x680/0x680
[ 1916.823742]  create_object.isra.0+0x3a/0xa20
[ 1916.824366]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1916.825087]  __kmalloc_track_caller+0x177/0x370
[ 1916.825744]  ? kstrdup_const+0x53/0x80
[ 1916.826303]  kstrdup+0x36/0x70
[ 1916.826759]  kstrdup_const+0x53/0x80
[ 1916.827286]  kvasprintf_const+0x10c/0x1a0
[ 1916.827889]  kobject_set_name_vargs+0x56/0x150
[ 1916.828533]  kobject_init_and_add+0xc9/0x160
[ 1916.829182]  ? kobject_create_and_add+0xb0/0xb0
[ 1916.829845]  ? wait_for_completion_io+0x270/0x270
[ 1916.830539]  ? kernfs_name_hash+0xe7/0x110
[ 1916.831156]  ? kernfs_find_ns+0x256/0x380
[ 1916.831758]  sysfs_slab_add+0x172/0x200
[ 1916.832332]  __kmem_cache_create+0x3db/0x520
[ 1916.832959]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 1916.833673]  p9_client_create+0xc6a/0x1230
[ 1916.834277]  ? p9_client_flush+0x430/0x430
[ 1916.834877]  ? trace_hardirqs_on+0x5b/0x180
[ 1916.835499]  ? lockdep_init_map_type+0x2c7/0x780
[ 1916.836201]  ? __raw_spin_lock_init+0x36/0x110
[ 1916.836873]  v9fs_session_init+0x1dd/0x1680
[ 1916.837498]  ? lock_release+0x680/0x680
[ 1916.838079]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1916.838769]  ? v9fs_show_options+0x690/0x690
[ 1916.839424]  ? trace_hardirqs_on+0x5b/0x180
[ 1916.840041]  ? kasan_unpoison_shadow+0x33/0x50
[ 1916.840702]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1916.841432]  v9fs_mount+0x79/0x8f0
[ 1916.841945]  ? v9fs_write_inode+0x60/0x60
[ 1916.842535]  legacy_get_tree+0x105/0x220
[ 1916.843112]  vfs_get_tree+0x8e/0x300
[ 1916.843648]  path_mount+0x1429/0x2120
[ 1916.844214]  ? strncpy_from_user+0x9e/0x470
[ 1916.844822]  ? finish_automount+0xa90/0xa90
[ 1916.845441]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1916.846115]  ? _copy_from_user+0xfb/0x1b0
[ 1916.846702]  __x64_sys_mount+0x282/0x300
[ 1916.847276]  ? copy_mnt_ns+0xa00/0xa00
[ 1916.847853]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1916.848600]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1916.849336]  do_syscall_64+0x33/0x40
[ 1916.849875]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1916.850608] RIP: 0033:0x7f5c6f844b19
[ 1916.851140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1916.853778] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1916.854867] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1916.855892] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1916.856919] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1916.857931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1916.858968] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:37:20 executing program 7:
fsmount(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
clone3(0x0, 0x0)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}, {@dfltgid}]}}) (fail_nth: 59)

20:37:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x96db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1916.998152] FAULT_INJECTION: forcing a failure.
[ 1916.998152] name failslab, interval 1, probability 0, space 0, times 0
[ 1916.999804] CPU: 1 PID: 67777 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1917.000789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1917.001970] Call Trace:
[ 1917.002346]  dump_stack+0x107/0x167
[ 1917.002859]  should_fail.cold+0x5/0xa
[ 1917.003406]  should_failslab+0x5/0x20
[ 1917.003950]  __kmalloc_track_caller+0x79/0x370
[ 1917.004596]  ? kstrdup_const+0x53/0x80
[ 1917.005155]  kstrdup+0x36/0x70
[ 1917.005621]  kstrdup_const+0x53/0x80
[ 1917.006160]  __kernfs_new_node+0x9d/0x860
[ 1917.006758]  ? kernfs_dop_revalidate+0x3a0/0x3a0
[ 1917.007433]  ? lock_acquire+0x197/0x470
[ 1917.008024]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[ 1917.008775]  ? lock_release+0x680/0x680
[ 1917.009345]  ? find_held_lock+0x2c/0x110
[ 1917.009924]  kernfs_new_node+0x18d/0x250
[ 1917.010504]  kernfs_create_dir_ns+0x49/0x160
[ 1917.011125]  sysfs_create_dir_ns+0x127/0x290
[ 1917.011749]  ? sysfs_create_mount_point+0xb0/0xb0
[ 1917.013072]  ? rwlock_bug.part.0+0x90/0x90
[ 1917.014148]  ? do_raw_spin_unlock+0x4f/0x220
[ 1917.015255]  kobject_add_internal+0x25e/0xa30
[ 1917.016367]  kobject_init_and_add+0x101/0x160
[ 1917.017325]  ? kobject_create_and_add+0xb0/0xb0
[ 1917.018326]  ? wait_for_completion_io+0x270/0x270
[ 1917.019346]  ? kernfs_name_hash+0xe7/0x110
[ 1917.020248]  ? kernfs_find_ns+0x256/0x380
[ 1917.021124]  sysfs_slab_add+0x172/0x200
[ 1917.021966]  __kmem_cache_create+0x3db/0x520
[ 1917.022894]  kmem_cache_create_usercopy+0x1db/0x2f0
[ 1917.023956]  p9_client_create+0xc6a/0x1230
[ 1917.024850]  ? p9_client_flush+0x430/0x430
[ 1917.025736]  ? trace_hardirqs_on+0x5b/0x180
[ 1917.026653]  ? lockdep_init_map_type+0x2c7/0x780
[ 1917.027648]  ? __raw_spin_lock_init+0x36/0x110
[ 1917.028616]  v9fs_session_init+0x1dd/0x1680
[ 1917.029520]  ? lock_release+0x680/0x680
[ 1917.030360]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1917.031370]  ? v9fs_show_options+0x690/0x690
[ 1917.032310]  ? trace_hardirqs_on+0x5b/0x180
[ 1917.033228]  ? kasan_unpoison_shadow+0x33/0x50
[ 1917.034186]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1917.035249]  v9fs_mount+0x79/0x8f0
[ 1917.036001]  ? v9fs_write_inode+0x60/0x60
[ 1917.036874]  legacy_get_tree+0x105/0x220
[ 1917.037724]  vfs_get_tree+0x8e/0x300
[ 1917.038507]  path_mount+0x1429/0x2120
[ 1917.039311]  ? strncpy_from_user+0x9e/0x470
[ 1917.040222]  ? finish_automount+0xa90/0xa90
[ 1917.041132]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1917.042112]  ? _copy_from_user+0xfb/0x1b0
[ 1917.042992]  __x64_sys_mount+0x282/0x300
[ 1917.043847]  ? copy_mnt_ns+0xa00/0xa00
[ 1917.044673]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1917.045785]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1917.046877]  do_syscall_64+0x33/0x40
[ 1917.047682]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1917.048775] RIP: 0033:0x7f5c6f844b19
[ 1917.049590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1917.053510] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1917.055124] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1917.056671] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1917.058201] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1917.059719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1917.061237] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
[ 1917.064359] kobject_add_internal failed for 9p-fcall-cache-745 (error: -12 parent: slab)
[ 1917.066403] kmem_cache_create(9p-fcall-cache-745) failed with error -12
[ 1917.067902] CPU: 1 PID: 67777 Comm: syz-executor.7 Not tainted 5.10.237 #1
[ 1917.069376] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1917.071149] Call Trace:
[ 1917.071705]  dump_stack+0x107/0x167
[ 1917.072502]  kmem_cache_create_usercopy.cold+0x17/0x65
[ 1917.073628]  p9_client_create+0xc6a/0x1230
[ 1917.074534]  ? p9_client_flush+0x430/0x430
[ 1917.075431]  ? trace_hardirqs_on+0x5b/0x180
[ 1917.076351]  ? lockdep_init_map_type+0x2c7/0x780
[ 1917.077353]  ? __raw_spin_lock_init+0x36/0x110
[ 1917.078323]  v9fs_session_init+0x1dd/0x1680
[ 1917.079235]  ? lock_release+0x680/0x680
[ 1917.080094]  ? kmem_cache_alloc_trace+0x151/0x320
[ 1917.081118]  ? v9fs_show_options+0x690/0x690
[ 1917.082050]  ? trace_hardirqs_on+0x5b/0x180
[ 1917.082968]  ? kasan_unpoison_shadow+0x33/0x50
[ 1917.083938]  ? __kasan_kmalloc.constprop.0+0xc9/0xd0
[ 1917.085012]  v9fs_mount+0x79/0x8f0
[ 1917.085760]  ? v9fs_write_inode+0x60/0x60
[ 1917.086640]  legacy_get_tree+0x105/0x220
[ 1917.087508]  vfs_get_tree+0x8e/0x300
[ 1917.088320]  path_mount+0x1429/0x2120
[ 1917.089129]  ? strncpy_from_user+0x9e/0x470
[ 1917.090043]  ? finish_automount+0xa90/0xa90
[ 1917.090946]  ? getname_flags.part.0+0x1dd/0x4f0
[ 1917.091940]  ? _copy_from_user+0xfb/0x1b0
[ 1917.092817]  __x64_sys_mount+0x282/0x300
[ 1917.093675]  ? copy_mnt_ns+0xa00/0xa00
[ 1917.094502]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[ 1917.095603]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1917.096695]  do_syscall_64+0x33/0x40
[ 1917.097480]  entry_SYSCALL_64_after_hwframe+0x67/0xd1
[ 1917.098557] RIP: 0033:0x7f5c6f844b19
[ 1917.099347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1917.103243] RSP: 002b:00007f5c6cdba188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1917.104863] RAX: ffffffffffffffda RBX: 00007f5c6f957f60 RCX: 00007f5c6f844b19
[ 1917.106419] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000
[ 1917.107925] RBP: 00007f5c6cdba1d0 R08: 0000000020000400 R09: 0000000000000000
[ 1917.109423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1917.110954] R13: 00007ffda96782ff R14: 00007f5c6cdba300 R15: 0000000000022000
20:37:20 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4ade, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x18e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:20 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x3f00, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:20 executing program 1:
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
wait4(0x0, &(0x7f0000000100), 0x2, &(0x7f00000001c0))
fork()
creat(&(0x7f0000000040)='./file0\x00', 0x0)

20:37:20 executing program 0:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000140)=<r1=>0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000180)='./file1\x00', 0x7, 0x0, &(0x7f0000000300), 0x100000a, &(0x7f00000004c0)={[{@usrquota}, {@barrier}, {@nogrpid}, {@nobh}], [{@obj_type}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@measure}]})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r2 = dup3(r0, r0, 0x80000)
getdents64(r2, &(0x7f0000000380)=""/36, 0x24)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r3=>0xffffffffffffffff})
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000004, 0x12, 0xffffffffffffffff, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)=[0xffffffffffffffff], 0x1, 0x0, 0x1, {0x0, r5}}, 0x5)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000004, 0x12, 0xffffffffffffffff, 0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, 0x0, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x2, 0x0, 0x0, 0x1, &(0x7f0000000040)=[0xffffffffffffffff], 0x1, 0x0, 0x1, {0x0, r7}}, 0x5)
syz_io_uring_submit(r4, r1, &(0x7f0000000280)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x2000, 0x44, 0x4}, &(0x7f0000000240)='./file1\x00', 0x18, 0x0, 0xddbe8df5c8b2d195, {0x0, r7}}, 0x401)
r8 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r8, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r8, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=@FILEID_UDF_WITH_PARENT={0x14}, 0x0, 0x0)
name_to_handle_at(r8, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x10058, &(0x7f00000006c0)=ANY=[@ANYRES64=r0, @ANYRESOCT=r4, @ANYRES64=r5, @ANYRESDEC, @ANYRESDEC, @ANYRESDEC=r8, @ANYRESOCT=r3, @ANYRESOCT, @ANYBLOB="edb9b1428cf021c03e5d1f52b4c792c9ad3903395af2e6d7d29372ebcb37d47f9bac316410c6023abb5045169badddeb00fecbab99d2c2926c22a02f54bd1be64cd798bdc0fa6da9b05d331e6d0372a370a130574978e80191dd7c199c9054e00a76fc7d513e1c26e0b8474fccf5ab18e768a5bb30d8f5eb12c7bfe5e8a88f720d17cb19fe406bfd103d8e878ccac97478175ed2dfc77e84e3448747de2330a0e30669ba05b464569996fdcc3dd017f47b0e850607be406f254fc4007a33c119da401c18aa96207924cce9b3a8"])

20:37:20 executing program 2:
fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x1}, [{0x2, 0x4, 0xee00}], {0x4, 0x3}, [{0x8, 0x1, 0xee01}, {0x8, 0x2, 0xee00}], {}, {0x20, 0x5}}, 0x3c, 0x0)
r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[])
mknodat$loop(r0, &(0x7f0000000300)='./file0\x00', 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="140000005200000000000000000600"/28], 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@orangefs={0x14, 0x1, {"03467bf973628adfa0abc7a8eea2b63c"}}, &(0x7f0000000200), 0x0)
read(r0, &(0x7f0000000100)=""/124, 0x7c)
syz_emit_ethernet(0x6e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00013f", 0x38, 0x3c, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @mcast2, {[@routing], @dest_unreach={0x1, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, 'A3t', 0x0, 0x0, 0x0, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000240)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd0a8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
fork()

20:37:20 executing program 4:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x97db, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1917.368999] EXT4-fs (loop0): VFS: Can't find ext4 filesystem
20:37:20 executing program 6:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4bde, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:20 executing program 5:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(0xffffffffffffffff, 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f0000000180)='\x00', &(0x7f00000002c0)='./file1\x00', r0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000280)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4bc4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
mount$9p_fd(0x4000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

20:37:20 executing program 3:
syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pipe(&(0x7f00000003c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mount$9p_fd(0x19e3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@debug={'debug', 0x3d, 0x924}}, {@nodevmap}, {@noextend}, {@dfltgid}, {@afid={'afid', 0x3d, 0x345}}]}})

[ 1932.386089] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
BUG: memory leak
unreferenced object 0xffff888046ec9ac0 (size 32):
  comm "syz-executor.7", pid 67777, jiffies 4296584016 (age 23.123s)
  hex dump (first 32 bytes):
    39 70 2d 66 63 61 6c 6c 2d 63 61 63 68 65 2d 37  9p-fcall-cache-7
    34 35 00 46 80 88 ff ff 00 00 00 00 00 00 00 00  45.F............
  backtrace:
    [<00000000c14fea09>] kstrdup+0x36/0x70
    [<000000005ea228a1>] kstrdup_const+0x53/0x80
    [<000000007ea288f1>] kvasprintf_const+0x10c/0x1a0
    [<00000000d8274b60>] kobject_set_name_vargs+0x56/0x150
    [<00000000bc1f201d>] kobject_init_and_add+0xc9/0x160
    [<000000000b6c2a8c>] sysfs_slab_add+0x172/0x200
    [<000000003ad3b3bb>] __kmem_cache_create+0x3db/0x520
    [<00000000fc87a35c>] kmem_cache_create_usercopy+0x1db/0x2f0
    [<00000000b8a98265>] p9_client_create+0xc6a/0x1230
    [<00000000c0590099>] v9fs_session_init+0x1dd/0x1680
    [<0000000030a57eb5>] v9fs_mount+0x79/0x8f0
    [<00000000bd07f178>] legacy_get_tree+0x105/0x220
    [<000000006452e68c>] vfs_get_tree+0x8e/0x300
    [<00000000c563dfcd>] path_mount+0x1429/0x2120
    [<0000000063cf7812>] __x64_sys_mount+0x282/0x300
    [<000000003ab36c84>] do_syscall_64+0x33/0x40

BUG: leak checking failed

VM DIAGNOSIS:
20:37:49  Registers:
info registers vcpu 0
RAX=ffffffff83e91390 RBX=0000000000000000 RCX=ffffffff83e78f2c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e91998 RBP=0000000000000000 RSP=ffffffff84e07e38
R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001
R12=0000000000000000 R13=ffffffff85678748 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e9139e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffe9f66f9d0 CR3=000000000e516000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=656a626f206465636e6572656665726e
XMM02=3a29323320657a697328203063613963 XMM03=373620646970202c22372e726f747563
XMM04=6c6c6163662d70392020373320643220 XMM05=32206336206336203136203336203636
XMM06=73657479622032332074737269662820 XMM07=2e333220656761282036313034383536
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=ffffffff83e91390 RBX=0000000000000001 RCX=ffffffff83e78f2c RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff83e91998 RBP=0000000000000001 RSP=ffff888008987e70
R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001
R12=0000000000000001 R13=ffffffff85678748 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff83e9139e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fbe814e9020 CR3=000000000e516000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=656a626f206465636e6572656665726e
XMM02=3a29323320657a697328203063613963 XMM03=373620646970202c22372e726f747563
XMM04=6c6c6163662d70392020373320643220 XMM05=32206336206336203136203336203636
XMM06=73657479622032332074737269662820 XMM07=2e333220656761282036313034383536
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000