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"}) r6 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) connect$inet6(r6, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) getsockopt$IP_VS_SO_GET_SERVICES(r3, 0x0, 0x482, &(0x7f0000000300)=""/91, &(0x7f00000001c0)=0x5b) r7 = fcntl$dupfd(r6, 0x0, r6) sendmsg$inet6(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) [ 792.739908] FAULT_INJECTION: forcing a failure. [ 792.739908] name failslab, interval 1, probability 0, space 0, times 0 [ 792.742335] CPU: 0 PID: 6287 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 792.743781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 792.745526] Call Trace: [ 792.746088] dump_stack+0x107/0x167 [ 792.746861] should_fail.cold+0x5/0xa [ 792.747668] ? create_object.isra.0+0x3a/0xa20 [ 792.748635] should_failslab+0x5/0x20 [ 792.749442] kmem_cache_alloc+0x5b/0x310 [ 792.750301] create_object.isra.0+0x3a/0xa20 [ 792.751227] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 792.752290] kmem_cache_alloc+0x159/0x310 [ 792.753184] ? shmem_destroy_inode+0x70/0x70 [ 792.754124] shmem_alloc_inode+0x18/0x40 [ 792.754966] ? shmem_destroy_inode+0x70/0x70 [ 792.755878] alloc_inode+0x63/0x240 [ 792.756645] new_inode+0x23/0x250 [ 792.757381] shmem_get_inode+0x15e/0xbc0 [ 792.758243] __shmem_file_setup+0xb8/0x320 [ 792.759121] ? _copy_from_user+0xfb/0x1b0 [ 792.759994] __do_sys_memfd_create+0x275/0x450 [ 792.760953] ? memfd_file_seals_ptr+0x170/0x170 [ 792.761938] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 792.763038] ? syscall_enter_from_user_mode+0x1d/0x50 [ 792.764131] do_syscall_64+0x33/0x40 [ 792.764917] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 792.765982] RIP: 0033:0x7f9be863bb19 [ 792.766760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 792.770556] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 792.772136] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863bb19 [ 792.773624] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f9be86950fb [ 792.775117] RBP: 0000000000000004 R08: 0000000000000000 R09: ffffffffffffffff [ 792.776609] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000008100000 [ 792.778114] R13: 00000000200000c0 R14: 0000000000000202 R15: 0000000020001840 18:30:25 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:30:25 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:30:25 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 2) 18:30:25 executing program 1: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) r1 = gettid() uselib(&(0x7f00000002c0)='./file0\x00') rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x5, 0xffffffff}, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x2, 0x0, 0x8}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000001780)={{{@in6=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@initdev}}, &(0x7f0000000300)=0xe8) syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x7, 0x8, &(0x7f00000016c0)=[{&(0x7f0000000140)="386a584fdb294873f65adc69aa2ddd8ee05b9f1df32beb27240bb64a597cf1c8ffe274", 0x23, 0x401}, {&(0x7f0000000180)="9c0e78cbbca41ce6846fb509754c3c7afac5d1f5ba5ae3", 0x17, 0x4}, {&(0x7f00000006c0)="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", 0x1000, 0x7f}, {&(0x7f00000001c0)="541d6f5d5c0cbf7369feb720b8621aa241939a528d60eeb1259839366c931470474a69c5f2e33c69025a93413d52fc41e348d71d1557f84c8beecabbb1bd7947396c0eb45861eb5b548a292fdd08b278f6c37afd69b302b9dfa0fcd1a731785bb195430d3e", 0x65}, {&(0x7f0000000240)="5e3ccc54002aa8fe5b73866a886e9a3825c8679bdbf17960191aef0b2f491b256fe3d0871f25488b1f0a152e868ab432c9b556a4cc0ac34da08ed0ca20ca08605bc676eac33e72", 0x47, 0x5}, {&(0x7f00000002c0), 0x0, 0x785c000000}, {&(0x7f0000000380)="34ad9a5cc7705b08b51e60a9142523cb023796d7133ecedea5b789bf0423199b75936a352ed83c134b2f01ee64155c746211d8820d799df3a0e715c581d69ae6da27c033a496b6e3dffddf4a34afd7bff57752ea3b7026066d9867bb6142de8c45b945e3c7f0e2d5247e16461e8240366a163905b85e9de0cbccb0ff6e29fb11025a038610faa7f71e14165f8d6c029628feeb7abbbf21838f718796f2da8e30c7dffc04d5eb639503783a0c6c28d7a0376c41ad86d4eb3a1437d39a0f390dd83fa39b29a4d70cea0d1fbf1d4a0ba573755b62499d4e4e5070c2ce3bcd1ea3bdcf4559cdb591", 0xe6, 0x6}, {&(0x7f0000000500)="4ae2164385a2fe9852ce2536a870655802cdebc920695ed118958f04bad433381977ba0135cd32b599c12531c8e54cbdaccfd20cc9a416e2f67ec8106c494c58eca3f748874b79063301f3be126b9d986ffdedad4701538d525c5590ffb6c90a8b83072111f189e7ba0b5a38a8eda69c198414ad0b83054d8e8b7744620f5fe8c31f23a5ebc182313b70eec5da78c7b5de41bec866013bda6bb6895eeaf68901c32baa886863367b07b30c4c3b8473bc9a2b75ff27b50c331dd9c3c5230bd92353c940555f1832706900d4dd4ee100ff506540a2910082ead8d12d1e5d0ef0af673159632e6d", 0xe6, 0x7}], 0x30, &(0x7f0000001880)={[{@mode={'mode', 0x3d, 0x1d}}, {@huge_advise}, {@mode={'mode', 0x3d, 0xd1}}], [{@pcr={'pcr', 0x3d, 0x39}}, {@measure}, {@euid_eq={'euid', 0x3d, r3}}, {@obj_user={'obj_user', 0x3d, '\\-}}@-'}}, {@appraise_type}, {@euid_eq={'euid', 0x3d, 0xee00}}]}) r4 = gettid() rt_tgsigqueueinfo(r4, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) waitid(0x0, r4, &(0x7f0000001980), 0x1, &(0x7f0000001a00)) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) getdents64(r5, &(0x7f0000001e00)=""/4100, 0x1004) ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f0000000040)={{r0}, 0x8000, 0x6c5, 0x1000}) [ 792.918811] loop0: detected capacity change from 0 to 512 [ 792.933020] FAULT_INJECTION: forcing a failure. [ 792.933020] name failslab, interval 1, probability 0, space 0, times 0 [ 792.935473] CPU: 1 PID: 6302 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 792.936867] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 792.938542] Call Trace: [ 792.939076] dump_stack+0x107/0x167 [ 792.939818] should_fail.cold+0x5/0xa [ 792.940584] ? create_object.isra.0+0x3a/0xa20 [ 792.941522] should_failslab+0x5/0x20 [ 792.942292] kmem_cache_alloc+0x5b/0x310 [ 792.943113] create_object.isra.0+0x3a/0xa20 [ 792.943961] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 792.944988] __kmalloc+0x16e/0x390 [ 792.945675] __do_sys_memfd_create+0xfb/0x450 [ 792.946655] ? ksys_write+0x1a9/0x260 [ 792.947404] ? memfd_file_seals_ptr+0x170/0x170 [ 792.948347] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 792.949406] ? syscall_enter_from_user_mode+0x1d/0x50 [ 792.950442] do_syscall_64+0x33/0x40 [ 792.951189] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 792.952206] RIP: 0033:0x7fd8050b3b19 [ 792.952955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 792.956610] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 792.958149] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 792.959579] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 792.960996] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 792.962383] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 792.963759] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 [ 793.048591] loop1: detected capacity change from 0 to 135266304 [ 793.050692] cgroup2: Unknown parameter 'mode' 18:30:38 executing program 5: r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) 18:30:38 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a79, &(0x7f0000000380), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000080)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @multicast1}}) getsockopt$IP_VS_SO_GET_INFO(r3, 0x0, 0x481, &(0x7f0000000140), &(0x7f0000000180)=0xc) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x9, 0x1, 0x5, 0x2, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x7f8, 0x0, @perf_config_ext={0xb1, 0x8001}, 0x4000, 0x1, 0x4, 0x8, 0x5, 0x80000001, 0xff, 0x0, 0x1, 0x0, 0xfffffffffffff801}, 0x0, 0x4, r4, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x80186803, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0}) r6 = syz_io_uring_complete(0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r7}}, 0x362c) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r6, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r7}}, 0x6) r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000004, 0x100010, r5, 0x10000000) syz_io_uring_submit(0x0, r8, &(0x7f0000000340)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, r4, &(0x7f00000002c0)={0x100c2, 0x119, 0x11}, &(0x7f0000000300)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7ff) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x0) r9 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffffffffffe14, 0x0, 0x0, 0x0, {r9}}, 0x58) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 18:30:38 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xa22c2, 0x1ad) creat(&(0x7f0000000080)='./file1\x00', 0x168) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x1f, 0x0, 0x0, 0x0, 0x2, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x40b0}, 0x0, 0x0, r0, 0x0) 18:30:38 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:30:38 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:30:38 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:30:38 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 3) 18:30:38 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 6) [ 806.615618] FAULT_INJECTION: forcing a failure. [ 806.615618] name failslab, interval 1, probability 0, space 0, times 0 [ 806.618306] CPU: 0 PID: 6330 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 806.619833] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 806.621908] Call Trace: [ 806.622587] dump_stack+0x107/0x167 [ 806.623513] should_fail.cold+0x5/0xa [ 806.624473] ? security_inode_alloc+0x34/0x160 [ 806.625618] should_failslab+0x5/0x20 [ 806.626566] kmem_cache_alloc+0x5b/0x310 [ 806.627602] security_inode_alloc+0x34/0x160 [ 806.628707] inode_init_always+0xa4e/0xd10 [ 806.629781] ? shmem_destroy_inode+0x70/0x70 [ 806.630880] alloc_inode+0x84/0x240 [ 806.631810] new_inode+0x23/0x250 [ 806.632705] shmem_get_inode+0x15e/0xbc0 [ 806.633748] __shmem_file_setup+0xb8/0x320 [ 806.634806] ? _copy_from_user+0xfb/0x1b0 [ 806.635876] __do_sys_memfd_create+0x275/0x450 [ 806.637011] ? memfd_file_seals_ptr+0x170/0x170 [ 806.638205] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 806.639516] ? syscall_enter_from_user_mode+0x1d/0x50 [ 806.640788] do_syscall_64+0x33/0x40 [ 806.641801] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 806.643081] RIP: 0033:0x7f9be863bb19 [ 806.644027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 806.648598] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 806.650513] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863bb19 [ 806.652300] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f9be86950fb [ 806.654093] RBP: 0000000000000004 R08: 0000000000000000 R09: ffffffffffffffff [ 806.655859] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000008100000 [ 806.657631] R13: 00000000200000c0 R14: 0000000000000202 R15: 0000000020001840 [ 806.674042] FAULT_INJECTION: forcing a failure. [ 806.674042] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 806.677420] CPU: 1 PID: 6333 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 806.679332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 806.681661] Call Trace: [ 806.682410] dump_stack+0x107/0x167 [ 806.683459] should_fail.cold+0x5/0xa [ 806.684544] _copy_from_user+0x2e/0x1b0 [ 806.685677] __do_sys_memfd_create+0x16d/0x450 [ 806.686959] ? memfd_file_seals_ptr+0x170/0x170 [ 806.688277] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 806.689735] ? syscall_enter_from_user_mode+0x1d/0x50 [ 806.691193] do_syscall_64+0x33/0x40 [ 806.692252] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 806.693726] RIP: 0033:0x7fd8050b3b19 [ 806.694769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 806.699811] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 806.702049] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 806.704039] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 806.706048] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 806.708006] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 806.710010] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 [ 806.721585] audit: type=1400 audit(1739817039.060:21): avc: denied { execute } for pid=6332 comm="syz-executor.1" path="pipe:[23463]" dev="pipefs" ino=23463 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1 18:30:39 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 7) 18:30:39 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:30:39 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x800454cf, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/l2cap\x00') setsockopt$inet_tcp_int(r1, 0x6, 0x7, &(0x7f0000000040)=0xfff, 0x4) [ 806.936671] FAULT_INJECTION: forcing a failure. [ 806.936671] name failslab, interval 1, probability 0, space 0, times 0 [ 806.939097] CPU: 1 PID: 6345 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 806.940518] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 806.942549] Call Trace: [ 806.943213] dump_stack+0x107/0x167 [ 806.944123] should_fail.cold+0x5/0xa [ 806.945081] ? create_object.isra.0+0x3a/0xa20 [ 806.946252] should_failslab+0x5/0x20 [ 806.947193] kmem_cache_alloc+0x5b/0x310 [ 806.948205] create_object.isra.0+0x3a/0xa20 [ 806.949320] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 806.950580] kmem_cache_alloc+0x159/0x310 [ 806.951623] security_inode_alloc+0x34/0x160 [ 806.952708] inode_init_always+0xa4e/0xd10 [ 806.953780] ? shmem_destroy_inode+0x70/0x70 [ 806.954884] alloc_inode+0x84/0x240 [ 806.955787] new_inode+0x23/0x250 [ 806.956654] shmem_get_inode+0x15e/0xbc0 [ 806.957689] __shmem_file_setup+0xb8/0x320 [ 806.958721] ? _copy_from_user+0xfb/0x1b0 [ 806.959740] __do_sys_memfd_create+0x275/0x450 [ 806.960856] ? memfd_file_seals_ptr+0x170/0x170 [ 806.962055] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 806.963340] ? syscall_enter_from_user_mode+0x1d/0x50 [ 806.964608] do_syscall_64+0x33/0x40 [ 806.965548] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 806.966796] RIP: 0033:0x7f9be863bb19 [ 806.967703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 806.972245] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 806.974126] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863bb19 [ 806.975851] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f9be86950fb [ 806.977605] RBP: 0000000000000004 R08: 0000000000000000 R09: ffffffffffffffff [ 806.979325] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000008100000 [ 806.981051] R13: 00000000200000c0 R14: 0000000000000202 R15: 0000000020001840 18:30:39 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 4) 18:30:39 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:30:39 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r5 = syz_io_uring_complete(r3) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r6}}, 0x362c) syz_io_uring_submit(r2, r4, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r5, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r6}}, 0x6) ioctl$PERF_EVENT_IOC_RESET(r5, 0x2403, 0x9) rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) [ 807.046722] FAULT_INJECTION: forcing a failure. [ 807.046722] name failslab, interval 1, probability 0, space 0, times 0 [ 807.049526] CPU: 1 PID: 6351 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 807.051115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 807.053042] Call Trace: [ 807.053695] dump_stack+0x107/0x167 [ 807.054565] should_fail.cold+0x5/0xa [ 807.055496] ? shmem_alloc_inode+0x18/0x40 [ 807.056498] should_failslab+0x5/0x20 [ 807.057421] kmem_cache_alloc+0x5b/0x310 [ 807.058360] ? shmem_destroy_inode+0x70/0x70 [ 807.059377] shmem_alloc_inode+0x18/0x40 [ 807.060308] ? shmem_destroy_inode+0x70/0x70 [ 807.061354] alloc_inode+0x63/0x240 [ 807.062186] new_inode+0x23/0x250 [ 807.062980] shmem_get_inode+0x15e/0xbc0 [ 807.063914] __shmem_file_setup+0xb8/0x320 [ 807.064882] ? _copy_from_user+0xfb/0x1b0 [ 807.065871] __do_sys_memfd_create+0x275/0x450 [ 807.066912] ? memfd_file_seals_ptr+0x170/0x170 [ 807.067971] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 807.069175] ? syscall_enter_from_user_mode+0x1d/0x50 [ 807.070367] do_syscall_64+0x33/0x40 [ 807.071209] entry_SYSCALL_64_after_hwframe+0x67/0xd1 18:30:39 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 807.072366] RIP: 0033:0x7fd8050b3b19 [ 807.073416] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 807.077594] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 807.079304] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 807.080896] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 807.082546] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 807.084145] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 807.085795] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 [ 807.105016] loop0: detected capacity change from 0 to 512 18:30:39 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a79, &(0x7f0000000380), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000080)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @multicast1}}) getsockopt$IP_VS_SO_GET_INFO(r3, 0x0, 0x481, &(0x7f0000000140), &(0x7f0000000180)=0xc) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x9, 0x1, 0x5, 0x2, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x7f8, 0x0, @perf_config_ext={0xb1, 0x8001}, 0x4000, 0x1, 0x4, 0x8, 0x5, 0x80000001, 0xff, 0x0, 0x1, 0x0, 0xfffffffffffff801}, 0x0, 0x4, r4, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x80186803, &(0x7f00000000c0)={'ip6tnl0\x00', 0x0}) r6 = syz_io_uring_complete(0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r7}}, 0x362c) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r6, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r7}}, 0x6) r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000004, 0x100010, r5, 0x10000000) syz_io_uring_submit(0x0, r8, &(0x7f0000000340)=@IORING_OP_OPENAT2={0x1c, 0x3, 0x0, r4, &(0x7f00000002c0)={0x100c2, 0x119, 0x11}, &(0x7f0000000300)='./file0\x00', 0x18, 0x0, 0x12345}, 0x7ff) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x0) r9 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffffffffffe14, 0x0, 0x0, 0x0, {r9}}, 0x58) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 18:30:53 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:30:53 executing program 4: open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x100, 0x800, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000002c0)='./file1\x00', 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x80400, 0x0) r2 = syz_open_dev$vcsn(0x0, 0x0, 0x0) stat(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', &(0x7f0000000540)) fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', r0, r1, 0x100) r3 = open(&(0x7f0000000400)='./file1/file0\x00', 0x100, 0x40) ioctl$BTRFS_IOC_QGROUP_ASSIGN(0xffffffffffffffff, 0x40189429, &(0x7f0000000140)={0x1, 0x8, 0x6}) sendmsg$nl_generic(r3, &(0x7f0000000500)={&(0x7f0000000340), 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000021d00140d29bd7000ffdbdf2501000000"], 0x14}}, 0x4040000) openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000380)={'vxcan1\x00'}) r4 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') openat(r4, &(0x7f0000000100)='./cgroup/cgroup.procs\x00', 0x80001, 0x1) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xa, 0xffffffffffffffff, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000880)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x0) 18:30:53 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="3400000010000100060000000000000000004d7ed6d75dfd7db2f07e1996967c00000500000000000000150000809be149f8326500000ad022cea3b590fbac71604114ae634a1d3f5b42332fdb1ddff6c996d594f336ad93897a4c7c7d052c951ff3b19a2ae8dfe7daae4433b91e5be24f079e43a9064d68a1d688cb564c5100107341e4376c1319a3cb91015718c602f3acaab637ceb7852dafdf71f385cfa97aa0b4888bc38b88bda6372e3668ad38b7f74f5579af15893a0d5ecb611c48d698f5ab174fbc688112a84bc0f1ed5b30c723ba82fe7b97990c195cdd6e5a3ec6986122d762e9332637b26db43c04d57f6347516027000000"], 0x34}}, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002}, 0x362c) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd, 0x7f, 0x0, 0x10000}, 0x6) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f00000000c0)={{}, 0x6, 0x17, 0x5}) r2 = syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000340)=0x0) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r6 = dup2(r5, r5) r7 = io_uring_setup(0x3, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x3, 0x31f, 0x0, r2}) syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f00000001c0)=@sco}, 0x0) r8 = eventfd2(0x8, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r8, 0xc010f508, &(0x7f0000000040)={0x3, 0x2}) io_uring_enter(r2, 0x76d3, 0x80, 0x1, 0x0, 0x0) r9 = fsmount(r6, 0x0, 0x8) execveat(r9, &(0x7f0000000180)='./file0\x00', &(0x7f00000005c0)=[&(0x7f0000000400)='\x00', &(0x7f0000000bc0)='\x00\x80C\x107\xa64\xee\xbd*\xd4o\x8a?[\x98\xf29\xee\xc7\x90\x97\xaa\xc3\xc8Zq\xf3\x91\x04[S\\B2m=V\x89\x99\x96Q\xcaA\x18\xaf\xaf:\xf1\xab\x80\"\x7f\xb3\x18\xfe\xd7\xbd\xcd\xcdIf\xae\xb5\x87\xb8#\xe1\xbe\xec\xf0\t\xa1\xf7\xa7\xb1\x9d\xc7\xc2\xf0\x02\xaf\xc4\xd0@\xc2\x12\'\xb9\x9a\xea\x90e%\xe6\xd2E\x19E/\xc6\x17gB0Qim\x82u\x0fZ\xa9\x14\xf5\xc7X\xa9\x00\xb7\xaf\xcfouN\xbd\xb2\t^\xbe&~\xa7l\xfa\x036\x1c\"\x80\xfc/\x9b\x95\xf1!K\xc5{\xe7\xfdB[\xca\x87\x9bc\x98dg\x1a\xa1\xaa\xb4\x19\x7f\xa7\x90y\x9fq\xf5\x8a\xa9 \xa6\xdd\xf0+gb\xa6g\\\xec\tz\x06\xdf\x1a\x9c\xc9\xf7\xcc\x85\xb4G\xe9\xd3D\xf4\x8c\n\x17\xd5\x00\xf18\xb3T', &(0x7f0000000480)='\x00', &(0x7f0000000ac0)='\x00\x83\x9f\x0f\xd0\xbd\xb4[\b\x11B\\\xa4\xd7\xbbn\x0e\xf9]j\xdd=\xa5\xc5#j\xf9\"Rw\x17\x1aq\xb5Y>\xfd\x97\xe2\x9eJX\xeb\x174\xe1\x1eY\'\xf3\x9bj \x1d\x9b\x1b\x1c\xb8\x16tB\x16\xe3\xcc\xeeS;t[\xabz,\xaf^=f\xb3q\xae\xdd#\x14\\\xf6\xf8sh\xe5\xe9\x0es\x9b\xb3\"\xc6w\x18[\x18\xd0\xc3|\x8aOfZ\x90\xa3\xa9]\xc0q\xb6\xb1\x90\xb0sE\x8aF\xd3\f\x10\xcd\xaeC\xdb\xc4\xaf\x127\x1f\xa0\xd3\xaa,\x9a\x91[O0U\xee~N\xe7\b\x1c\xff\x11\xb7O0HHt*xp\xcc\xc1\x1d\xa6\x14\x02\xbc|v\x90?6&\xe2\xe3\x163', &(0x7f0000000500)='\x00', &(0x7f0000000540)='\x00', &(0x7f0000000a00)='\x009\x1c\xaf\x14\xe6\xeb\xe9\xf1\xccO@\xbd\xfc\xbdN\xfa\x93Z\x94\xfd\xc6]\xc3\x81g\x95\'\xb7\xf2\xe8\xbf\xd3\xf3\"\xf0Z\x93T\xa1\xc6\x10\x01\xba\xf0\x11\x01 \x94X\x7fQ\xa6\v\xfa\xc2\\$\xad\x96A\xd6\xdf|\x0e,c\xc4\x13\xfb\x91\xc5|{\xde\'xb\xcd\xb2\x177\x83\'\xdb\xf6y_\x10\x87\x01\xd4\xb1\x9b\xe4\xac\xf0D4\xe6v\x86\x02^bt\xbf!b\xd4k\x11\xf5Nj\x97P\b\xf2\xdd\r\xaa,g\xfc\x8f*\bq\x10wl\xe0\x02HG)\xa0\xb9%\x12\x9fx]\xf8Gz`\xfd\x00l\xe9<\xa5\xbd\x9f\x80\xa5\x0f\xd3\xf7\xc8\x98'], &(0x7f0000000840)=[&(0x7f0000000600)='[*\x00', &(0x7f0000000000)='\xff\xb1\xc2k\xc9\xbf1Q\x9e^\x9a\x9dOW\xa5\x0el\xd2~\xa7%\xa5 \rZ\x81l\xa6\x97\xc6\xb90S\x04\x9b\xcb', &(0x7f0000000680)='\x00', &(0x7f0000000940)=']\xadt\xe0\r\xa3\xd7\xe8\x91\x90\n\x03_\x85\xa9\'E\xae\"\xeb]DE\xa3w\x8b\x94\xf7Yf\x03\x00\xd2:-\xab7\xd0\xf6\x0e\x903U\xe1\xe2\x8cS*HC\x17\xa0}@\xf4.\x87]\xed\x1f\x1e\xe8;\xfd\xee$\x8f\xba\xa5@\"\x93\xf7yR\x95z\x95\xc4\x03{\x11\xbe\xb3e\xb8B\x13\xa3uh\xcf\x11\xc7{Y\x0fp\x031\xb1/b_mq\x96\xccc\xa7\xbb\xb4T\x00J\xd7\xb8\n\xd4\xd9B\xa9\xec\xc5\xb5\x0e\xf1Q\x03\xbcX\x8d\xb2\xf6^\xb9\xc8\xa5\xdc\xa5\xcb\xde\xd3\xd03\xcc\xbe\xed\x9b\xbd\xcbb\x91\x98\x80\xe1X(t\xda\xd3F\x02\xa9\xa0\x81\xce;{\xfa\xba\xa3,{\xe87\xf6\x0f\xf9M\xb5mz', &(0x7f0000000700)='\x00', &(0x7f0000000740)='\x00', &(0x7f0000000100)='!\x00', &(0x7f00000007c0)='\x00', &(0x7f0000000800)='\x00'], 0x1000) openat(r6, &(0x7f0000000240)='./file0\x00', 0x200, 0x2) dup2(r7, r6) 18:30:53 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r0, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x40034, 0x0, 0x0, 0x2, 0x0, 0x200008, 0x0, 0x0, 0x10000000, 0x0, 0x7}, 0x0, 0x0, r0, 0x0) r3 = gettid() rt_tgsigqueueinfo(r3, r3, 0x11, &(0x7f0000000640)={0x0, 0x0, 0x3}) 18:30:53 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 5) 18:30:53 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:30:53 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 8) 18:30:53 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 821.177281] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 821.183731] FAULT_INJECTION: forcing a failure. [ 821.183731] name failslab, interval 1, probability 0, space 0, times 0 [ 821.185994] CPU: 1 PID: 6380 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 821.187321] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 821.188926] Call Trace: [ 821.189442] dump_stack+0x107/0x167 [ 821.190177] should_fail.cold+0x5/0xa [ 821.190927] ? __d_alloc+0x2a/0x990 [ 821.191647] should_failslab+0x5/0x20 [ 821.192382] kmem_cache_alloc+0x5b/0x310 [ 821.193172] ? trace_hardirqs_on+0x5b/0x180 [ 821.194038] __d_alloc+0x2a/0x990 [ 821.194599] FAULT_INJECTION: forcing a failure. [ 821.194599] name failslab, interval 1, probability 0, space 0, times 0 [ 821.194717] d_alloc_pseudo+0x19/0x70 [ 821.196632] alloc_file_pseudo+0xce/0x250 [ 821.197438] ? alloc_file+0x5a0/0x5a0 [ 821.198194] ? shmem_get_inode+0x55c/0xbc0 [ 821.199030] __shmem_file_setup+0x144/0x320 [ 821.199875] ? _copy_from_user+0xfb/0x1b0 [ 821.200686] __do_sys_memfd_create+0x275/0x450 [ 821.201565] ? memfd_file_seals_ptr+0x170/0x170 [ 821.202485] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 821.203514] ? syscall_enter_from_user_mode+0x1d/0x50 [ 821.204518] do_syscall_64+0x33/0x40 [ 821.205229] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 821.206243] RIP: 0033:0x7f9be863bb19 [ 821.206974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 821.210553] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 821.212038] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863bb19 [ 821.213415] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f9be86950fb [ 821.214804] RBP: 0000000000000004 R08: 0000000000000000 R09: ffffffffffffffff [ 821.216190] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000008100000 [ 821.217570] R13: 00000000200000c0 R14: 0000000000000202 R15: 0000000020001840 [ 821.218991] CPU: 0 PID: 6385 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 821.219749] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 821.220644] Call Trace: [ 821.220940] dump_stack+0x107/0x167 [ 821.221343] should_fail.cold+0x5/0xa [ 821.221776] ? create_object.isra.0+0x3a/0xa20 [ 821.222270] should_failslab+0x5/0x20 [ 821.222682] kmem_cache_alloc+0x5b/0x310 [ 821.223138] create_object.isra.0+0x3a/0xa20 [ 821.223606] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 821.224203] kmem_cache_alloc+0x159/0x310 [ 821.224744] ? shmem_destroy_inode+0x70/0x70 [ 821.225267] shmem_alloc_inode+0x18/0x40 [ 821.225787] ? shmem_destroy_inode+0x70/0x70 [ 821.226544] alloc_inode+0x63/0x240 [ 821.227068] new_inode+0x23/0x250 [ 821.227468] shmem_get_inode+0x15e/0xbc0 [ 821.228057] __shmem_file_setup+0xb8/0x320 [ 821.228660] ? _copy_from_user+0xfb/0x1b0 [ 821.229258] __do_sys_memfd_create+0x275/0x450 [ 821.230197] ? memfd_file_seals_ptr+0x170/0x170 [ 821.231222] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 821.232365] ? syscall_enter_from_user_mode+0x1d/0x50 [ 821.233492] do_syscall_64+0x33/0x40 [ 821.234329] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 821.235444] RIP: 0033:0x7fd8050b3b19 [ 821.236257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 821.240258] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 821.241974] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 821.243807] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 821.245495] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 821.247028] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 821.248514] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 18:30:53 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 821.308885] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. 18:30:53 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) creat(&(0x7f0000000000)='./file0\x00', 0xb0) 18:30:53 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 9) 18:30:53 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="3400000010000100060000000000000000004d7ed6d75dfd7db2f07e1996967c00000500000000000000150000809be149f8326500000ad022cea3b590fbac71604114ae634a1d3f5b42332fdb1ddff6c996d594f336ad93897a4c7c7d052c951ff3b19a2ae8dfe7daae4433b91e5be24f079e43a9064d68a1d688cb564c5100107341e4376c1319a3cb91015718c602f3acaab637ceb7852dafdf71f385cfa97aa0b4888bc38b88bda6372e3668ad38b7f74f5579af15893a0d5ecb611c48d698f5ab174fbc688112a84bc0f1ed5b30c723ba82fe7b97990c195cdd6e5a3ec6986122d762e9332637b26db43c04d57f6347516027000000"], 0x34}}, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002}, 0x362c) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd, 0x7f, 0x0, 0x10000}, 0x6) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f00000000c0)={{}, 0x6, 0x17, 0x5}) r2 = syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000340)=0x0) r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r6 = dup2(r5, r5) r7 = io_uring_setup(0x3, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x3, 0x31f, 0x0, r2}) syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f00000001c0)=@sco}, 0x0) r8 = eventfd2(0x8, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r8, 0xc010f508, &(0x7f0000000040)={0x3, 0x2}) io_uring_enter(r2, 0x76d3, 0x80, 0x1, 0x0, 0x0) r9 = fsmount(r6, 0x0, 0x8) execveat(r9, &(0x7f0000000180)='./file0\x00', &(0x7f00000005c0)=[&(0x7f0000000400)='\x00', &(0x7f0000000bc0)='\x00\x80C\x107\xa64\xee\xbd*\xd4o\x8a?[\x98\xf29\xee\xc7\x90\x97\xaa\xc3\xc8Zq\xf3\x91\x04[S\\B2m=V\x89\x99\x96Q\xcaA\x18\xaf\xaf:\xf1\xab\x80\"\x7f\xb3\x18\xfe\xd7\xbd\xcd\xcdIf\xae\xb5\x87\xb8#\xe1\xbe\xec\xf0\t\xa1\xf7\xa7\xb1\x9d\xc7\xc2\xf0\x02\xaf\xc4\xd0@\xc2\x12\'\xb9\x9a\xea\x90e%\xe6\xd2E\x19E/\xc6\x17gB0Qim\x82u\x0fZ\xa9\x14\xf5\xc7X\xa9\x00\xb7\xaf\xcfouN\xbd\xb2\t^\xbe&~\xa7l\xfa\x036\x1c\"\x80\xfc/\x9b\x95\xf1!K\xc5{\xe7\xfdB[\xca\x87\x9bc\x98dg\x1a\xa1\xaa\xb4\x19\x7f\xa7\x90y\x9fq\xf5\x8a\xa9 \xa6\xdd\xf0+gb\xa6g\\\xec\tz\x06\xdf\x1a\x9c\xc9\xf7\xcc\x85\xb4G\xe9\xd3D\xf4\x8c\n\x17\xd5\x00\xf18\xb3T', &(0x7f0000000480)='\x00', &(0x7f0000000ac0)='\x00\x83\x9f\x0f\xd0\xbd\xb4[\b\x11B\\\xa4\xd7\xbbn\x0e\xf9]j\xdd=\xa5\xc5#j\xf9\"Rw\x17\x1aq\xb5Y>\xfd\x97\xe2\x9eJX\xeb\x174\xe1\x1eY\'\xf3\x9bj \x1d\x9b\x1b\x1c\xb8\x16tB\x16\xe3\xcc\xeeS;t[\xabz,\xaf^=f\xb3q\xae\xdd#\x14\\\xf6\xf8sh\xe5\xe9\x0es\x9b\xb3\"\xc6w\x18[\x18\xd0\xc3|\x8aOfZ\x90\xa3\xa9]\xc0q\xb6\xb1\x90\xb0sE\x8aF\xd3\f\x10\xcd\xaeC\xdb\xc4\xaf\x127\x1f\xa0\xd3\xaa,\x9a\x91[O0U\xee~N\xe7\b\x1c\xff\x11\xb7O0HHt*xp\xcc\xc1\x1d\xa6\x14\x02\xbc|v\x90?6&\xe2\xe3\x163', &(0x7f0000000500)='\x00', &(0x7f0000000540)='\x00', &(0x7f0000000a00)='\x009\x1c\xaf\x14\xe6\xeb\xe9\xf1\xccO@\xbd\xfc\xbdN\xfa\x93Z\x94\xfd\xc6]\xc3\x81g\x95\'\xb7\xf2\xe8\xbf\xd3\xf3\"\xf0Z\x93T\xa1\xc6\x10\x01\xba\xf0\x11\x01 \x94X\x7fQ\xa6\v\xfa\xc2\\$\xad\x96A\xd6\xdf|\x0e,c\xc4\x13\xfb\x91\xc5|{\xde\'xb\xcd\xb2\x177\x83\'\xdb\xf6y_\x10\x87\x01\xd4\xb1\x9b\xe4\xac\xf0D4\xe6v\x86\x02^bt\xbf!b\xd4k\x11\xf5Nj\x97P\b\xf2\xdd\r\xaa,g\xfc\x8f*\bq\x10wl\xe0\x02HG)\xa0\xb9%\x12\x9fx]\xf8Gz`\xfd\x00l\xe9<\xa5\xbd\x9f\x80\xa5\x0f\xd3\xf7\xc8\x98'], &(0x7f0000000840)=[&(0x7f0000000600)='[*\x00', &(0x7f0000000000)='\xff\xb1\xc2k\xc9\xbf1Q\x9e^\x9a\x9dOW\xa5\x0el\xd2~\xa7%\xa5 \rZ\x81l\xa6\x97\xc6\xb90S\x04\x9b\xcb', &(0x7f0000000680)='\x00', &(0x7f0000000940)=']\xadt\xe0\r\xa3\xd7\xe8\x91\x90\n\x03_\x85\xa9\'E\xae\"\xeb]DE\xa3w\x8b\x94\xf7Yf\x03\x00\xd2:-\xab7\xd0\xf6\x0e\x903U\xe1\xe2\x8cS*HC\x17\xa0}@\xf4.\x87]\xed\x1f\x1e\xe8;\xfd\xee$\x8f\xba\xa5@\"\x93\xf7yR\x95z\x95\xc4\x03{\x11\xbe\xb3e\xb8B\x13\xa3uh\xcf\x11\xc7{Y\x0fp\x031\xb1/b_mq\x96\xccc\xa7\xbb\xb4T\x00J\xd7\xb8\n\xd4\xd9B\xa9\xec\xc5\xb5\x0e\xf1Q\x03\xbcX\x8d\xb2\xf6^\xb9\xc8\xa5\xdc\xa5\xcb\xde\xd3\xd03\xcc\xbe\xed\x9b\xbd\xcbb\x91\x98\x80\xe1X(t\xda\xd3F\x02\xa9\xa0\x81\xce;{\xfa\xba\xa3,{\xe87\xf6\x0f\xf9M\xb5mz', &(0x7f0000000700)='\x00', &(0x7f0000000740)='\x00', &(0x7f0000000100)='!\x00', &(0x7f00000007c0)='\x00', &(0x7f0000000800)='\x00'], 0x1000) openat(r6, &(0x7f0000000240)='./file0\x00', 0x200, 0x2) dup2(r7, r6) 18:30:53 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 821.497380] FAULT_INJECTION: forcing a failure. [ 821.497380] name failslab, interval 1, probability 0, space 0, times 0 [ 821.499673] CPU: 0 PID: 6405 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 821.501009] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 821.502662] Call Trace: [ 821.503199] dump_stack+0x107/0x167 [ 821.503924] should_fail.cold+0x5/0xa [ 821.504676] ? create_object.isra.0+0x3a/0xa20 [ 821.505574] should_failslab+0x5/0x20 [ 821.506342] kmem_cache_alloc+0x5b/0x310 [ 821.507147] create_object.isra.0+0x3a/0xa20 [ 821.507211] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'. [ 821.507987] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 821.508020] kmem_cache_alloc+0x159/0x310 [ 821.508054] __d_alloc+0x2a/0x990 [ 821.508086] d_alloc_pseudo+0x19/0x70 [ 821.512825] alloc_file_pseudo+0xce/0x250 [ 821.513635] ? alloc_file+0x5a0/0x5a0 [ 821.514404] ? shmem_get_inode+0x55c/0xbc0 [ 821.515243] __shmem_file_setup+0x144/0x320 [ 821.516085] ? _copy_from_user+0xfb/0x1b0 [ 821.516904] __do_sys_memfd_create+0x275/0x450 [ 821.517825] ? memfd_file_seals_ptr+0x170/0x170 [ 821.518749] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 821.519779] ? syscall_enter_from_user_mode+0x1d/0x50 [ 821.520788] do_syscall_64+0x33/0x40 [ 821.521520] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 821.522523] RIP: 0033:0x7f9be863bb19 [ 821.523248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 821.526803] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 821.528270] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863bb19 [ 821.529656] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f9be86950fb [ 821.531027] RBP: 0000000000000004 R08: 0000000000000000 R09: ffffffffffffffff [ 821.532405] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000008100000 [ 821.533786] R13: 00000000200000c0 R14: 0000000000000202 R15: 0000000020001840 18:30:53 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:30:53 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() r0 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) dup(r0) 18:30:53 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:30:53 executing program 1: r0 = syz_io_uring_setup(0xb54, &(0x7f0000000040), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0) io_uring_enter(r0, 0x6134, 0xd8e7, 0x0, &(0x7f0000000000)={[0x10001]}, 0x8) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x28, 0x13, 0x1, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x1a, 0x0, 0x0, @fd=r1}]}]}, 0x28}}, 0x0) [ 821.646193] loop0: detected capacity change from 0 to 512 18:30:54 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 6) 18:30:54 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) [ 821.811243] FAULT_INJECTION: forcing a failure. [ 821.811243] name failslab, interval 1, probability 0, space 0, times 0 [ 821.814150] CPU: 0 PID: 6425 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 821.815845] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 821.817895] Call Trace: [ 821.818551] dump_stack+0x107/0x167 [ 821.819457] should_fail.cold+0x5/0xa [ 821.820400] ? security_inode_alloc+0x34/0x160 [ 821.821512] should_failslab+0x5/0x20 [ 821.822472] kmem_cache_alloc+0x5b/0x310 [ 821.823490] security_inode_alloc+0x34/0x160 [ 821.824570] inode_init_always+0xa4e/0xd10 [ 821.825603] ? shmem_destroy_inode+0x70/0x70 [ 821.826734] alloc_inode+0x84/0x240 [ 821.827638] new_inode+0x23/0x250 [ 821.828491] shmem_get_inode+0x15e/0xbc0 [ 821.829503] __shmem_file_setup+0xb8/0x320 [ 821.830567] ? _copy_from_user+0xfb/0x1b0 [ 821.831602] __do_sys_memfd_create+0x275/0x450 [ 821.832721] ? memfd_file_seals_ptr+0x170/0x170 [ 821.833881] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 821.835165] ? syscall_enter_from_user_mode+0x1d/0x50 [ 821.836438] do_syscall_64+0x33/0x40 [ 821.837344] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 821.838601] RIP: 0033:0x7fd8050b3b19 [ 821.839514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 821.844014] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 821.845870] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 821.847592] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 821.849323] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 821.851102] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 821.852849] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 [ 823.288044] Bluetooth: hci7: command 0x0405 tx timeout 18:31:11 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 10) 18:31:11 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:31:11 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x8042, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x6}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180)={0x0, 0x4ac1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @ipv4, 0xffffffff}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a64485f108d23b76be1cc06a8682449c18157c739b4f25f709", 0x19}, {0x0}, {0x0}], 0x3}, 0x0, 0x4000000}, 0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8c00428c}, 0xc, &(0x7f0000000400)={&(0x7f0000000940)=ANY=[@ANYBLOB="74020000000801022bbd7000fcdbdf25050000080c00658008001d0014d9eb3507b14373afb7bd17f6091674090dc919e67eb11790dc57c2d5a277233b363b814b534b4d6cb3ca4a72ed9ddcc4f048841d762348200be28027e7d37899a7f1aabe49df685d0d4b30ff49fe4040724d0d881f520160144c29a3331c60e04c13c2b08350e33e42fb7c14f70804046d019baba8080c84aa5ea2bf4e928581002f3027b8bd69f907693e712cefcd69afe8a0d50cb61c5aacf7fa27c36303f63cacba507f3bb7ca54534cd2d80fc8ae2fc052ae79c1a91a3330dbb0f26bf50c24d4db8523c1f8dda7ea98e2c17ef472f2512c7036aa7e7429", @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYBLOB="0000170929e56bebbbe423dee4f7362e63d2552c7c90c3a7f006da19d43c9b0e3e139d56ab253ea7a351e79b3257a379c2e989c6fb568c2c43433ca7979aea50a84fa22bbab21a0f1519eaebc526d228aae5db73bcba1617385715857a166be62a1dde9108dfda5a8850fe8438ecc26daab02861678d8981bd5e9dd4a956242f17d563ee191557a700decb37a590bfa49e74ea68586e8a759a7b773d58b24039451b9b7b0b6fbd7fb38cb894161e31faeea92ae0d95ad15443a785831ebe1670604fdd000000"], 0x274}, 0x1, 0x0, 0x0, 0x4004890}, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="041f003dcf60f0ecb90000008d6df69af408b1a603050200010758"], 0x108) setsockopt$inet6_opts(r4, 0x29, 0x36, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) fcntl$getownex(r3, 0x10, &(0x7f0000000040)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r0, 0x67b4, 0xa39b, 0x3, &(0x7f0000000080), 0x8) 18:31:11 executing program 1: r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = add_key(&(0x7f00000000c0)='asymmetric\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb) add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGSOFTCAR(r3, 0x560b, 0x0) creat(&(0x7f0000000340)='./file0/file0\x00', 0x44) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGSOFTCAR(r4, 0x560b, 0x0) ioctl$FIDEDUPERANGE(r3, 0xc0189436, &(0x7f00000004c0)={0x4, 0x1, 0x3, 0x0, 0x0, [{{r4}}, {{}, 0x4}, {{r2}, 0x3}]}) r5 = perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x1f, 0x0, 0xff, 0x0, 0x0, 0x9, 0x28000, 0x4, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x6, 0x1, @perf_bp={&(0x7f0000000180), 0x9}, 0x80, 0x4bd, 0x6, 0x9, 0x7d0e9dee, 0x6, 0x80, 0x0, 0x6, 0x0, 0x7}, 0xffffffffffffffff, 0xfeffffffffffffff, r2, 0x8) add_key$keyring(&(0x7f0000000140), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, r1) r6 = dup2(r5, r0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000380)={{0x1, 0x1, 0x18, r6, {0xfff}}, './file0/file1\x00'}) write$binfmt_elf64(r6, &(0x7f00000016c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x1, 0x8, 0x20, 0x800, 0x3, 0x0, 0x7, 0x28a, 0x40, 0x38f, 0x1f, 0x5, 0x38, 0x1, 0x20, 0x9, 0x8}, [{0x1, 0x9, 0xff, 0x1000, 0x100000001, 0xfffffffffffffff7, 0xfffffffffffffff7, 0x3ff}, {0x6, 0x2e03f232, 0x1, 0x4, 0x70, 0x400, 0x6, 0xffff}], "8353ecf0c941ae3b93dbd3371fac3cabb973bf84183cf738a47f5930543ba8d1baede4f81e8084e80dc4d9ca92a78d3cce52c8b728343332791389de0485ab6a05ce0566b9abe525822a6ed174ba4cce7888ca0803819d2d581a8c956630f561da6cf5ca11de3f8ae8b584b7eb5aa3831859f2ad6532afc32de82347fd7ae53da2a1812533319bae9081cf37f73bd1017992d47eb54d31cbce23c2b3da0e37f83bd77a52478af1bd467251244b85c2cac0459752e752802c7a8ee77a4030a2b3292c66f3a127d82c3d4dd9d35a70d68b82b1a2b5f50794ecb8d8eefc478bfd4ab611aaed6e3da9a9fb10ecaeb5976d84e5d432385bf334bdf76a72a80738a53c5e25977094136e3befa0fa3f8eb2c3e0f3dae5d61d5106578abef1a41e57bf45b441845bfa8a5372202d52f6ec0b98350151170b3654e37f756bfd00b4d043eba4a65c5f13d660d753f23b97524f31d4a9ed9cccb60ed6a52a0a052581ef46942b6d68870fd67fec89012c23078d10f6ff251265b47923a63116775911c8a558140ade001f366d7010968538c3d431bf63a6fe1663d638819c4e733fccd0d5c6e703344ce2ba7c0a73c9d4d479c9b93e465781845ca2dc9bb1838138e71b78108cc5c6f490747be5497f91d3f9dd7fc370716f05fc29a659a581378de457c95095091c843bd465e33399d5e923446dcc585f4b194108cf98b97a11eac5c3be132607d37f789a5d619fdc2fe359964588c6c91e17745ab6237e72a98b5112865e340bc366f5c34b5c1359f396b8271f8c7b60b0df091654cfedc7144e6c76a4bdf7ab96b2bb50d51c11b3bdc14757519671e9e7893a2f45736de02435ddcc39b42896de660e64496a80fd4125d1be9aff07eaf180c4060f236be232815eaf5fcae4e41e31e63961306b0ae10a019e0573abddc107355269e7849a7489bd6e3e368d690cb7c148fcbbab0a1fe7fa199e4e4fb10b37cd80e7d524ff5f3a056f2a93aa3b2193629b2dc551363a6d938b9e916a7e732c263f37a9ce6dc78f4edf1b2165f197a33798d736da74b92fc9b65843e36a87d1d16c9f3306f64db0f75a3ca8a4d3b292a433c6150a0a9f5c6f888e7f58be5abad1f8c7d7ef86577013fc4a6eb52dbcc03e4d87f370584604fc279e080fd6c0b96e8aaf043401553b22b572d59d264e1e1db3bf4fdfda76cae5d9fa8a912ae4f2a5ef0dcc86845bc5f9ec94b0bb095a7c9ca96b34136720b2e7a1ad2c8f0d6cfbb715bbd32971a2607c91044e418c45eb0b17792f51bed91e8cf7e5601cfbef5485c9b8d79c680b95db4489a91a073cd5dd9629bddabf31c7d9ef43e8232a36c2c698ed26c6b02fa1d641adcabbb7391b0d4d6c71d7512366c815662ab9bda1d60c85425fdcc88f4c3538e4b39b497e926294b0484054a58a63809e7fc86407fb79701973844eb486ff9e7c404617b66a8b4e7612fcdacbc77ab099830025570e3581cf77998c438778e8991a441fb2ea2f4dde1157815a514d92c0bae02533b9e9e5a62c75a8e52a5bc67834122c5afb8dd36de39e0aea787f8f82ca35e9408f27ec4b79caf0c43c8ea3ed219264a95c8c0251aca9b667b55c3f755a79da20ced652cce9a6bdf371c56dffe138537462bf0371ce2c1c085a889b1d80aef16b4f025fe766f6650c459531b4dc0cb2adaaa45ae5ca8a5a2a52ed2cdafb92029176042209979dfef40e9312a46b7f0190452710036e2408d500607141b5b5ac38fd221c70d8530ad2821627e04a0ed7ee87106eb6ad6abdd390ea3aac8f905c50b4e4cc7c34e2b4de63f9a2b62ce9d51cc943752bc47da436af9f9eedcbf1524f84eb73239b125b15d036a44443bf22b8b9aa624720aed4f9d61217790398b84bd92966f6ac7e1e10a83169b425ac78c86a51c01b80a02ed7aee1b4095b9e9afd2c682c0674d9ecbae2d3bb38269de87be5c3ed025684694d34c41c2245dfec1f7b5553da403301267bb1a7ae2a88369a5f1b5d463c42ecc1f09964760eb7f80ce3ec6e07a5cf82572a10fa71bba6fd0f8802c1afc6406d30f11e8fbc4607f0a5529ab2276c4fe61f233f81dd9604ec7e2d1f6f571cfebdb1dcb0403f3379ecfd485ae2e32cdfc668529264bf8241fa9843159b4cc1972d285f79fb88fc46fe2b7451c84552167552aed574e4c697cc322e4a0e8956f4147cb7533d8bda572097e262319cf175ad460df04c69a8832b6e5dd158e4faed35c2dde69dcffd0160f9c43eecc123e93d202f0ff6ca144d174bae6edaaf360024a97329d0e87d8ab47342da6b34a0cf55b5d74d5df450735505897adf3f034ea5b335936d3f384cf4f6b06692659ce2c7f0c51c5e36676592d64fc8336432c28e53740e71628e50bbef8344c18abbe527171cb61198893a12f499b65a52a5b0bafbd6ba92c5a6a4e78d37754d3b79b705a9be950bb04eabb14d3155eb5fd122b69b7b62b4dc567025bb5580ec59fdd9f22f7649af227786ed4ebd4ccbb11048e821f0edafe46e73ad4a9aa3fc014327a372be902ed894aff3a8d0cf3693cfac40c83fdbb06f76c92843375153a52754e92310c9f7a90adce865bef2659fc1f94baea67e31021e55bb28907942303804c0b7d805c6e7ded5f0e70932f4992be1bcce0a6abb865b719dcb307bea0f92ebde87a315e0fcd152a67db7b7062fb245050454763a29e6a3c2daf0fd9d7a525f6475eadad7b1fe5b04ada013adb31370dc9e03dc9561cf20b16c00b5bfe0e351d23684ddc3970e06182641435f422beabcd6f8d1c06d3723383e5dc6bdce2c916b9ccf92f2b9628e20cc502477a4bfe2043a6edab8518f3aca2ca285302c92d249324d2210df648c0a84d6b3c6289be99ae2c8dac0bed97093d03b2b537181939f1231eb5e6b8b6b83364c5c52c342b05795914d4c75df8455464282f6a3e2b6cc6307c1b8467463475563a7a86fa4e505c5d351092b22f7da31bfa1d6917f88629d400a3eb44318eefe3e2bc503c7652d1f31d38dc32ddc016438d27847afa1336ba37e4e821d28a3cc163e044003a66896dae1a1ba54f1ea89e0e854f8a55f8b12f5a1dfe3ac11121fab48e198688721425b87a9d5b25e54c9ec8dd4d19c51910badf9a7aaaee76b5fdada65f6e107fb466054c64021c37a5a00ac770011809f942355c510e08c29c2b83c06c11dd145a02f3cd12b055785d032e28a148686d3ca57cc1120b7221119f4d6ea62ee2125bd41bf849f2f207c8dc8983d820dc301b798da7349f9eb652d87957df9213b8e76cdc4b0050f72f8baab9a97cb7a485a162a9dfd9b2090d1869b2de1c8c5995147c6bb9d0eb6991e9cd54f01a64996147c0f837381b21045977d8a53e7da67a9538bf0efac28f16388a13a2d092b6bd8ebb060ac21732184d1336f6548f3ef69734653eec44b456cda1e69e32c95edca7860d28aab973c56a97b458815f2f00e319127a3fd396739a299ee791a9c283ff947226f87aaa2465dfce02600b2591f9c756880021b4cb29bdbc5eaf7e2c08f9f5c40519893c741311206db2a451784f40b5e7eabb4a36619bf56b7592081462f7a07edd0860a0526e3e0959e846325d6a7ed2ee040688e11cfb4b6cdb4c058aa9a045693a64746bdd128da686cca99f9885847aa6d322ac2f44563a98b8dd85d08bf7d1393303e49df233e56ae7f82c9f0e3ef8dd5ebbc740ccb59749b0fcc9f6ad79a029bc11df5509c789c90e478dc57d0414df245e081c3d1fcd47a7a7adb3eea5b7a18ab27b0e5f4fe6fb983006939fdd58ba6c867c7542a1348febf537134fe996228939bcf82c7d988119ab39ec969feaca2726d164a52d7079e548e4e3ccfdbe716276577cd5ff2417fca4871cdd4e69c64ac067f2f7427d6a2e6c4c21bc4eb9d2bbf19c9dae005ee9e4a566a80fdfba5897d51211a66fe8189d0297a96ea422bbcc6c31262a1ee1fe141c4a2b624dc9f2edbd3f1b3b8b232ef166fd2d04e97ddc7abc769ec34aa97d5af06b8fe6145785620a247694929ece80c5fbd4f4e69283696f4e2fffa06817bd02d0899daeb836a1900712b6a37c5dd8149d9950103a6b0e605b14af62e4895c1cc0d5eef77ca22184fe68d8d1e8660919c11b6ca193a385773681641ca1e1008f0479feeef6bed1166d24a7dbf79b713992b063698f51c784f03f536f2d9e150071a2dd10c4ffb4630701f836d231e2516c2213debb0bce80aeaa09d39b16f47a7193f2b7c03d979b007b2fb681dac57b5f8d179f659bee97e3aef94bd1bc50c5a0a16098836e2979a3833be0c9adb68c3b63d0aa892e1e026cc66a27bf0719702bba13ae77b92f6695c00dbbb8a48203b0bc426ab87427538d0d1dab9658c0eb2e43b5051b32a7a47a22ed62c8d57654e63f850f9d8409752b44d45736e036d016a1bcdfa1ecc9db0b438b6542703c100a70f86aa728d6f3fe452c108bc280258f1c7c4e2430e3ef8d56500c4e208ed6b6711b5831d1268d5200f67f58b51f98a2569fe74876d631a67ae7aea56abe866f9071d01839b2c5a46f689d36ef83add890ef6c46de1d9ec5ccf4faa8de8adef72f2c8d3a811193b800d9820fd0796026d93638addf69d69cdbb9d72b42ce923e6039aa695af002995fbb16a22a0adc1eef5a6059c2225b0d26402dcbbdb197d8e09af6cb0c97d671cff0c461d358e068c1f3bb64b054ff6711f3eaa1945ffe63e8a7c21fea2f86e37bcf21c3b55909109e0aac2103449f56745f9b05b4b50d1cda826ed7c724343218333c4cad7adcfce60f3f5825591b96c1b4cc6fd3f2de797545df9b6e58faf125627d63568c763b7cbec25d94d6060f39d05f4f7d297d5283f5ea1aaefd6a7e40a10989a920fa56ac8562dda3eb4af3f6a3854de97b1b6d973d327ab1d62451962b5fb6526d8f0ffd4f2a06c9c9c9e86b02e4eb1f04214728b129c7454e68b3753fd97404eb4ba4d626992f6c06000c80d2b1f808fa3a8b938ad9ec3346906800e86bb82bd1d31c2d4f30694a716d37412bb2a223639d9c8258d9c22147228a60856dbbe0be234aa6015ff67f7f9ee869f6d2f64434c5128c90beb72340f3a970f59f01961ed19266a0780fb78520021322410c8930a886383d60480f9b283e4fc02157667a65be7d6315dd0130c7b76df8fcea0329a630cd80886d7637b5d200e973d389541e889d13cd88bad4eecb0ed12b11e55a4d328dd7773684e863132cd566a8006857c10789111cc243779d5ba369def00e0729ebac12f6d719069fd85dea7574c981bd2a76df1f348cd167ecfb6dcff27268000857e652ddbdc81f148b9ea77b44833db376e55aab34cbbf13818e09f2eba1bcc02e587a45f9681103003b6707a19c811b7ac340b264ed0b4fbf9dc666b231738dfd676a1c0025ccafde62a235d13c3e8beeafb7dfb01cef7f5b3e4c36cfa55267234be1081337afb1fbf6b37fb45bae58b53e8e2109dddf534810d1c0384d31cc1109c30fba1e7fbd29c46b17654f97e09887326a6aa84e7e7d9bdf08fe435649643e2264d7a297b8326ad042e392783488f548b265aec7d5eb9b183387c807306f33b7b841b85a8a30a4e07afe7adb3d29f88a7b143ee762c7db1b6d1d7522537660d840f6859fc097f00759dd0afd291af4484fe2bfd854a4cdce68534307030a024d683f8e06da5a6eb45c68bde4cecab57b38e3ccf1ef63cb0bd0f89717339d91845805a30c501d0b272afd424e42330bfc5590fd6eb4984e24e2131f23ce5df57526d6b683269f75f033e5c23eb2b7f42133e5f880df84c971a6671854ffa5a5f4f64", ['\x00']}, 0x11b0) add_key$fscrypt_v1(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) r7 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$link(0x8, r7, r7) creat(&(0x7f0000001680)='./file0/file0\x00', 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d4100000000416d03000000000000030000000000000000000000000000000054461a010e7809140b2a3a087809140b2a3a087809140b2a3a0843451c0119000000000000190000000000000000ed000000000000ed6600170000000000001700080000000008007809140b2a3a080200000100000101015252050181505824016d4100000000416d020000000000000200000000", 0xc7, 0x2000000000b800}], 0x0, &(0x7f00000003c0)={[{@iocharset={'iocharset', 0x3d, 'iso8859-4'}}], [{@permit_directio}, {@euid_gt}, {@permit_directio}]}) 18:31:11 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:31:11 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() syz_open_procfs$namespace(r0, &(0x7f0000000080)='ns/mnt\x00') rt_sigqueueinfo(r0, 0x39, &(0x7f0000000000)={0x28, 0x1, 0x1}) rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) 18:31:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:31:11 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 7) [ 839.376873] FAULT_INJECTION: forcing a failure. [ 839.376873] name failslab, interval 1, probability 0, space 0, times 0 [ 839.380187] CPU: 0 PID: 6443 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 839.381142] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 839.382297] Call Trace: [ 839.382696] dump_stack+0x107/0x167 [ 839.383216] should_fail.cold+0x5/0xa [ 839.383754] ? create_object.isra.0+0x3a/0xa20 [ 839.384402] should_failslab+0x5/0x20 [ 839.384930] kmem_cache_alloc+0x5b/0x310 [ 839.385496] create_object.isra.0+0x3a/0xa20 [ 839.386103] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 839.386814] kmem_cache_alloc+0x159/0x310 [ 839.387413] security_inode_alloc+0x34/0x160 [ 839.388034] inode_init_always+0xa4e/0xd10 [ 839.388627] ? shmem_destroy_inode+0x70/0x70 [ 839.389241] alloc_inode+0x84/0x240 [ 839.389745] new_inode+0x23/0x250 [ 839.390235] shmem_get_inode+0x15e/0xbc0 [ 839.390817] __shmem_file_setup+0xb8/0x320 [ 839.391408] ? _copy_from_user+0xfb/0x1b0 [ 839.391980] __do_sys_memfd_create+0x275/0x450 [ 839.392607] ? memfd_file_seals_ptr+0x170/0x170 [ 839.393251] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 839.393983] ? syscall_enter_from_user_mode+0x1d/0x50 [ 839.394706] do_syscall_64+0x33/0x40 [ 839.395226] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 839.395936] RIP: 0033:0x7fd8050b3b19 [ 839.396454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 839.398111] FAULT_INJECTION: forcing a failure. [ 839.398111] name failslab, interval 1, probability 0, space 0, times 0 [ 839.399006] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 839.399023] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 839.399041] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 839.404418] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 839.405381] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 839.406360] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 [ 839.407370] CPU: 1 PID: 6451 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 839.408846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 839.410620] Call Trace: [ 839.411183] dump_stack+0x107/0x167 [ 839.411959] should_fail.cold+0x5/0xa [ 839.412769] ? __alloc_file+0x21/0x320 [ 839.413603] should_failslab+0x5/0x20 [ 839.414426] kmem_cache_alloc+0x5b/0x310 [ 839.415296] __alloc_file+0x21/0x320 [ 839.416085] alloc_empty_file+0x6d/0x170 [ 839.416945] alloc_file+0x5e/0x5a0 [ 839.417703] alloc_file_pseudo+0x16a/0x250 [ 839.418605] ? alloc_file+0x5a0/0x5a0 [ 839.419423] ? shmem_get_inode+0x55c/0xbc0 [ 839.420334] __shmem_file_setup+0x144/0x320 [ 839.421256] ? _copy_from_user+0xfb/0x1b0 [ 839.422143] __do_sys_memfd_create+0x275/0x450 [ 839.423126] ? memfd_file_seals_ptr+0x170/0x170 [ 839.424121] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 839.425233] ? syscall_enter_from_user_mode+0x1d/0x50 [ 839.426341] do_syscall_64+0x33/0x40 [ 839.427135] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 839.428224] RIP: 0033:0x7f9be863bb19 [ 839.429015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 839.432951] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 839.434586] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863bb19 [ 839.436107] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f9be86950fb [ 839.437631] RBP: 0000000000000004 R08: 0000000000000000 R09: ffffffffffffffff [ 839.439157] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000008100000 [ 839.440676] R13: 00000000200000c0 R14: 0000000000000202 R15: 0000000020001840 [ 839.528773] loop1: detected capacity change from 0 to 135266304 18:31:11 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f0000000000)={0x100, 0xa9, 0x8}, &(0x7f0000000040)='./file0\x00', 0x18, 0x0, 0x23456}, 0x100) rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) fcntl$getownex(r0, 0x10, &(0x7f00000000c0)) 18:31:27 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 8) 18:31:27 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:31:27 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:31:27 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x3, 0xfa, 0x8, 0x2, 0x0, 0xb65, 0x2201, 0x10, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0x1000, 0xffffffffffff7629}, 0x4, 0x7fffffff, 0x0, 0x0, 0x2, 0x3ff, 0xd9, 0x0, 0x1ff, 0x0, 0x10000}, 0xffffffffffffffff, 0x0, r0, 0x8) rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x82000, 0x0) perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x40, 0x40, 0x5, 0x20, 0x0, 0x8, 0x82000, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80, 0x1, @perf_config_ext={0x370e, 0x5}, 0x4c660, 0x3, 0xc0dd, 0x5, 0x69, 0x114a, 0x3, 0x0, 0xc3, 0x0, 0x2cf}, r1, 0x7, r2, 0x8) 18:31:27 executing program 4: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:31:27 executing program 1: r0 = perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = add_key(&(0x7f00000000c0)='asymmetric\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb) add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGSOFTCAR(r3, 0x560b, 0x0) creat(&(0x7f0000000340)='./file0/file0\x00', 0x44) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGSOFTCAR(r4, 0x560b, 0x0) ioctl$FIDEDUPERANGE(r3, 0xc0189436, &(0x7f00000004c0)={0x4, 0x1, 0x3, 0x0, 0x0, [{{r4}}, {{}, 0x4}, {{r2}, 0x3}]}) r5 = perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x1f, 0x0, 0xff, 0x0, 0x0, 0x9, 0x28000, 0x4, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x6, 0x1, @perf_bp={&(0x7f0000000180), 0x9}, 0x80, 0x4bd, 0x6, 0x9, 0x7d0e9dee, 0x6, 0x80, 0x0, 0x6, 0x0, 0x7}, 0xffffffffffffffff, 0xfeffffffffffffff, r2, 0x8) add_key$keyring(&(0x7f0000000140), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, r1) r6 = dup2(r5, r0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000380)={{0x1, 0x1, 0x18, r6, {0xfff}}, './file0/file1\x00'}) write$binfmt_elf64(r6, &(0x7f00000016c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x1, 0x8, 0x20, 0x800, 0x3, 0x0, 0x7, 0x28a, 0x40, 0x38f, 0x1f, 0x5, 0x38, 0x1, 0x20, 0x9, 0x8}, [{0x1, 0x9, 0xff, 0x1000, 0x100000001, 0xfffffffffffffff7, 0xfffffffffffffff7, 0x3ff}, {0x6, 0x2e03f232, 0x1, 0x4, 0x70, 0x400, 0x6, 0xffff}], "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", ['\x00']}, 0x11b0) add_key$fscrypt_v1(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) r7 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$link(0x8, r7, r7) creat(&(0x7f0000001680)='./file0/file0\x00', 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d4100000000416d03000000000000030000000000000000000000000000000054461a010e7809140b2a3a087809140b2a3a087809140b2a3a0843451c0119000000000000190000000000000000ed000000000000ed6600170000000000001700080000000008007809140b2a3a080200000100000101015252050181505824016d4100000000416d020000000000000200000000", 0xc7, 0x2000000000b800}], 0x0, &(0x7f00000003c0)={[{@iocharset={'iocharset', 0x3d, 'iso8859-4'}}], [{@permit_directio}, {@euid_gt}, {@permit_directio}]}) 18:31:27 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:31:27 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 11) [ 855.399556] FAULT_INJECTION: forcing a failure. [ 855.399556] name failslab, interval 1, probability 0, space 0, times 0 [ 855.401159] CPU: 1 PID: 6479 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 855.402113] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 855.403297] Call Trace: [ 855.403672] dump_stack+0x107/0x167 [ 855.404194] should_fail.cold+0x5/0xa [ 855.404739] ? create_object.isra.0+0x3a/0xa20 [ 855.405392] should_failslab+0x5/0x20 [ 855.405977] kmem_cache_alloc+0x5b/0x310 [ 855.406592] create_object.isra.0+0x3a/0xa20 [ 855.407226] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 855.407946] kmem_cache_alloc+0x159/0x310 [ 855.408535] __alloc_file+0x21/0x320 [ 855.409079] alloc_empty_file+0x6d/0x170 [ 855.409648] alloc_file+0x5e/0x5a0 [ 855.410155] alloc_file_pseudo+0x16a/0x250 [ 855.410799] ? alloc_file+0x5a0/0x5a0 [ 855.411279] ? shmem_get_inode+0x55c/0xbc0 [ 855.411764] __shmem_file_setup+0x144/0x320 [ 855.412259] ? _copy_from_user+0xfb/0x1b0 [ 855.412730] __do_sys_memfd_create+0x275/0x450 [ 855.413247] ? memfd_file_seals_ptr+0x170/0x170 [ 855.413787] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 855.414384] ? syscall_enter_from_user_mode+0x1d/0x50 [ 855.414976] do_syscall_64+0x33/0x40 [ 855.415400] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 855.415981] RIP: 0033:0x7f9be863bb19 [ 855.416408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 855.418496] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 855.419372] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863bb19 [ 855.420182] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f9be86950fb [ 855.420991] RBP: 0000000000000004 R08: 0000000000000000 R09: ffffffffffffffff [ 855.421807] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000008100000 [ 855.422619] R13: 00000000200000c0 R14: 0000000000000202 R15: 0000000020001840 [ 855.431156] Zero length message leads to an empty skb [ 855.442684] FAULT_INJECTION: forcing a failure. [ 855.442684] name failslab, interval 1, probability 0, space 0, times 0 [ 855.445679] CPU: 0 PID: 6489 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 855.447437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 855.449544] Call Trace: [ 855.450223] dump_stack+0x107/0x167 [ 855.451178] should_fail.cold+0x5/0xa [ 855.452071] ? __d_alloc+0x2a/0x990 [ 855.452899] should_failslab+0x5/0x20 [ 855.453758] kmem_cache_alloc+0x5b/0x310 [ 855.454662] ? trace_hardirqs_on+0x5b/0x180 [ 855.455663] __d_alloc+0x2a/0x990 [ 855.456462] d_alloc_pseudo+0x19/0x70 [ 855.457325] alloc_file_pseudo+0xce/0x250 [ 855.458263] ? alloc_file+0x5a0/0x5a0 [ 855.459148] ? shmem_get_inode+0x55c/0xbc0 [ 855.460127] __shmem_file_setup+0x144/0x320 [ 855.461102] ? _copy_from_user+0xfb/0x1b0 [ 855.462049] __do_sys_memfd_create+0x275/0x450 [ 855.463095] ? memfd_file_seals_ptr+0x170/0x170 [ 855.464153] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 855.465337] ? syscall_enter_from_user_mode+0x1d/0x50 [ 855.466510] do_syscall_64+0x33/0x40 [ 855.467358] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 855.468510] RIP: 0033:0x7fd8050b3b19 [ 855.469348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 855.473499] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 855.475221] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 855.476824] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 855.478424] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 855.480034] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 855.481636] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 [ 855.511718] loop0: detected capacity change from 0 to 512 [ 855.526425] loop1: detected capacity change from 0 to 135266304 18:31:27 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:31:27 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x2c, 0x28, 0xc21, 0x0, 0x0, {}, [@typed={0x4}, @typed={0x8, 0x1, 0x0, 0x0, @fd}, @typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x2c}}, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r2, 0x4) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r5, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r2, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r6 = syz_io_uring_complete(r4) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r7}}, 0x362c) syz_io_uring_submit(r3, r5, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r6, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r7}}, 0x6) writev(r6, &(0x7f0000000000)=[{&(0x7f00000006c0)="58e49bbdc5eca5abdcb6ef7914ec31e547e00d75d0ede17da02da37c38671dc79aaea73173408a74d3205f7b24928553e6ed06dbde49f30f7c4f82a55cd128494755cfcea64ce3e723768bf12b9317c116407899f03ed88c47df190889d38799eab2d6d493e5e3fcdfa73d614b55a9e2afebccdd6b72507561a8865d0d0cea22b6cdac521c9bee6eb2f24ecd4924aa04543d3645134cd33ffadb0866d569e0c8e1d17e1675a0a37cdef3df1756d613e80febab9181cacc48c4df93a597a0d16d86d713035feb335cd14d1e3d26ca46b648fcf53d73bdc55b690e6ce47cffceb6bc2e88590092cef0f256f44831fbd7a729b01d5dc74b704de1d970d1121002508e543e67962a97da4ec07c87bd58c7b7046ba196b5a7f37e1f9a11f98a8596a769277340afb754b9089ebac6abd98cbc3b13bd4cc6c1452dc6121c1231f1a0cf11210b83038c1306e2ccf141cdc3e59e277a94fd3443d6e42051fe42f264b47cb36add81477307199cea88529e6cacd5259441d504192b8c90d5b52beb4e6ccac33162ee27d04d72bb48b91a9e03ce54d10d553a92ca86b35b3fe90f25b5691edba19cf87f95718b81eb28ead1e9ccb6f10790de2345a82f7d51e065e4ef5c5f592533a4e35df88d01e284d80fd0e9513b5f564546048928344d112862666068272116b687e8cd5a0511fd90ce171431cd425c7cc8689b3151f22e6e84d23019dcf40b641f6cad0f81667bfaffb4ef67997cac3fae309bd32768fc961c7ceb4367afe7dccde6ebf78f79c03ef1d1569da27bf1708413545c582ecb9d7691080c4268f70c059008258911614756e5b5b80927b9a77d8690ebaa578c0525a5a53d82c33859e9d9efb39b0fca132f234afb5dc0dfad6f29f0a8474066c1babc344684cdc5b5158f8effacf051dabe71a153b8ca0c41381bdfc9c23dee15ebc64c15a9a1dbfc8775b1a92ae63114a33d767f5f543a8c375822b86a9bf4b1bd5882b668c7dc24c3064288d6bab32bba8dd20b4a26029e1734d25a35884092e4f9f29f1ee7b272e034723b1b831a5a4d0d6ab5a65d6729035a28c8350d77d3f9afdff5024b59d21c6be47a25300a844497ba3f0587868c2eecb471ef150c139ad122763fad7f0c2ae18c6c2145a52360633234405ced5b9993425405fc5d3c3dc08813cb2bd5f102530347b34c76fd994d3831bc60c5be5776deeafff9e273575835430d488f50d21560deac27df495ded5daaa9235aed01dd580e4dac095499c5cab322d0018e64c4e2f9460107129a47786f5a411a8b765bbd5511c80382cb5f41b274c44e10cd4b21c295b37fbbd8d06474903d9e10405d59d2fa2829237857b929e93cd682ff3e72bfa3f3ed921e6a2ea84baa9ce03eef93d35d8ce69f792758963cad152a6f64a68da2efa2de95b34dc4ad7422443d67e8cd7b04934010b62c46564256e6bf74e6a9b45df849bcc666d0fd93297c18c59b62cc0596ee74a0f71465382b6aea2779b65474ed1be483225ed595f2c610b40ac1ba326e0889c0cb5a555613744367ed4765038c2c5352f1555628a79d5a9e84543ae2bbfbcfc9671425c8c4e42a058660507af4e22846c0cfbfb9873e806de98746a9bdfbc64930c45991ff28d4ecd4e8880deafa25ef636c2f144086a2b9203a27129f7da4a253bad8514e201c7e8046667210596780174ada2e6ccc965d37cc1a22b8a4607e0ee738c89788ea2f10f5e2c43c5847c35316eac9ea45abf0e7b9ff09b4a84e52b0b376115fb16fccee3fc4ae66a4101a7a116049ee4d464f2e68cb90048ea4e1c9f7658871a9b9ef1012b4ad19367d86368b9b90ce8d3fe22d5044a80fb5a13f7ccf98d9b7ed835b4d721c7f30507c47ac413b67d7429ebc81af3f9407d214d62341468708d3fb83ef2544d58dbc16f47671b8bc8016cf6b2f2254ddd786dc3347f3a1affbc4093e19a9854467ff938a096c9cac55f3d1df7675755d8e8eb34abcff7c3fc6b11f0cd90acdeccc1e5ef97d702146ec99bb1641d9e4e64a28baae032e98040543d9a501d4879e0f38cbddd40f1a9d0fa696fa687f3f48e667b29dc42492697e3ee2f73ce3f3f96c1692be28b80b92b59866423e5da1eb19d51e117675e7ec584f098de92dbb061c4eefc7c20af4909dd60d2d22ff08c731320352cdefd5af59bc986811c31c4b4cdc5e095659350499b10613c10a3bded1928e37b020c87112ceccb1a1d044323a2d1fd0e7c77a34baf5dc162eaafe031faa78d4dde9ef509246a7454a249ee1729c85629ad0b668cb453ae3516b2ad7169d72423bccb40fa33f8bb515e3804c27944c42044587cb2c1389a4a0e5ae1b32dba08a9f6ea5c7163f1a4b96cbe963787212d6a892946f05d7662acd943d3cf556de2a53d3c734bb3000a85da7dd70129d7aac035a573fa160e15efa3bb74299df0233f2fad7df823aab1c5ab9fa342b0eae736d83de19a7feabcb7f838db1f53260c38282490bba89853a2ac66b8ce63fc5817ea6892873fa092ac810405a84c0f142819a5b43b0b9558d738871182199b21b9ca71d417bf019cf342ce6d5f0ad5a6df08e22cc8d83e01708a3cf77371855e14e9aeab3b7bdbeb36aa1daf8da8980d0835ed8d9e62ac2cb55f25965a730c5f3e53e33dd9ed995d5ae16b5a36f167e4e590059281185354af50519430e9323a9cdd65c839ce322b9065a8b9002c8d3c8129c1e3eb8af6ed617bd65df6caf234dccdad67c0ab4fc9cfad55ff0368d493618ee199d42005a55501269caf80b4b559c0b8f474a8a9b30cbb185b4f6eed1c2a0a4095203ab9ffa077f7f1e422d6a0b9f8ea62cd2541a2192d01688c3df596b72e9c2a5cbc70b85d64c6f5acf542cdd33a3c935a476a0c6140eacb5b4a0edc9b016ab8f6b4ca00aff50af50924f9dc5529c386be947b4be0db3d15880d437763f2f119b7f5de756b3282653ec826b8325fb21d865f3c61e75aa8ee84d552acc5636874202c04ba7e126a8f647ca5042da78ee76b0f357e4ca5eb98b97ab8293e2bbed8d993741a799cb610180ce20d4a88e04f3d91898f65531e4ead59ccbd4c996486f516994c38a4a8cc6be2299bb908cd0d83495c59d8116c0848ae4830037bb2b69c2b1fa46c099b7d28dbbefe307ce57e5e37de3abc17aea7f686b4d8721501a3387d63fb1134cfeac484231d607277036668d4f3fe0b69bb2fae3b8097a4556bc6ced9fb0ed7c348ffad6b502fd0759c87c31f1d919138965b1ae7f7fb1fbd88465a51ffd6ef17fbf532e4df12307564def4caa9a45b692493094828fbf297cbba694640e7707e7fc662e47a4fa1e48b99a2b2966d941d91b854c45ee056e06db62ea2df0e5e036752713d6a972e05efa3d0ceb14b822802cb7380cd2dd36bb9f2f0680cb6d3c77db254ac71e3afffc697db30776d37fa051afdb3c1162ca5b9177ba30a19924a81b032b7e1a6eb449ff2d101dff64644367503ef21c196965b703f6611b8fdb7b68b44fd7693f6b99c9425886a85c753d27e90c0a49e461f7696a18c7d9b1dabdf8138c141b5e7ed3b716a98f460b9fdd00751c0b4372266529e5d46467fd459608611d3184e451c1607168899a864c6d6a1c430ccdf117a49bc9d78741eb83de8170fd031b8b4143230f01d5eaaff3a675ad24f1ed962d5a5af88e47b21ac5d5d5769aa0221e65564f0fc0b6f6df8e90aadbbf9ab98ebdc31481a5b0ffb3499ba86fb22a7992cea4ab5202b142ff9196eb1614dc87c01e70ca47de17ea646772127c54fe5e6f16a2a4e7e3c48e7e3e94f7af5cc1064e4c9b7cc7650aba9ef9d28dd31a5e610c83a3c0853dd9a54c280cf6702df7d550f6f74cbf78b8fe250d5b8b32a181cd9408df16aa5adb2b7a4967121436e2ba242df8330184ff1f73be77bdf609e0b3d8e955d081030e1c0a96c59395df60deb1a6ed2521ab6d199098669b230ed79bcf43ff9abeab72e57dbeca20ede51e684010ba84126bae4a333e1efa260b27149c48fd8718ad8248bcd60346edbe84246ca674cbf94fb2e937ad9feeb8dffaf8140663c0e748ce2768b678cfb82ea41b677422c23cae71a372131d8a8191c198c1e7863f45727fca123cae4c56ef31db746a53095071ff1f337e50e9196305ff8e176b6017f1785da0f7b1a3a7ffe4bd88ebd248384bf23c95663bfb26f601bb25960635a7f0cce3fc781558da190964d0135f05abb22ebe86829d330947d769b5aef03458aa8d7021a63913c43e745f0450a70f1c2b254868f1248c5cdb551db9209776e708fad29f140f2698321a437e337acc8bb2a5a840b3b1c8be13f9cf92faa51b353eabd27ed400b7da152bf10535fa02901fc601c1f8277e70c54e5ed4dadafddc99140bc07165070630550c7693b167a0e086342379cf17d202dae2a33f5e8b748995be8914ae150bc3226d1e7a2f48954bafcc6cffbedaedeab3896d29d5932ac648f8f0df7e3ace8d5fb2b065834f16ccb46b4df0be1f495a0abd1db78d620a265caf12daf4fe0e0b509b2ce87163ef5ea4932276cc273d48220223df3ae109ee42d2cb251117bac0af9079e8ab87db58f07f2c9720850a04929b3375bfb2075cf52d501d6db348e6cf9787267837126f95f1d894b9b667c29de376a6f48ef2e1b9a487fce9d3e91de2a36a559d5edcf1c399cc72a1e341f69427c721f400096458f1d14daa22f6b5e949c589466594ed3dd1dfda5f32595ce3c0f9e44ca55c6c4b414a280b3cb5527f728bcd0ddb81dcb988ca372e5b11e7e42df5cb64336baefd91cae80d64f633e18b8891647f37e2a22557f0afd123e25ff2b11d14eef407312c8b371fabbf0b53f39928aee7ffd9107c360fdaa446f6a2fbfbaded9cfc991571415137abdece7f7663918287b1bd0f935db2c8acde090364a28fa859abbd850c499b458556e264897645a177907b92b4e6e8b092a87c597178ff28f0fa5a2203bcdbe477743ce00706867e1023077c29aca10687174ee55daef3868f298bcc36e9893761b54c8025cf48ef2cdae51d4f0bc3f70fc9ead9083a708a454fa8d5bf11e1cb7bfc4b5a653b27269fb23722df746f80b36acd1f9ff8b6be9f10215e5e7719ed2371cdbbe710a0f468d082b5b3326fb467180b7039932243f5e37caf599cd95ec68e2b2a62606f97efe511573e457cb1cb78f00274862eac9abee2b421f958a78ae74fd36527ac1fa50dbb08f325b2b58f700d6927cd74258a8113e5d0ed9c16e0d59b02188fac158d7c82ce39ea10680aaeb8b022b6c21df710477c99a70bc7d370007622ded1d83ea45b8af20b07753270096bd1b34cd9cc3ed973829464237f20082f09d6fc4e3fbdaec570f47afa2dd27efafdbe94e989367fb68f03a09f159267e91246205675eecd1eefacb5b174a9d74ea404092af91b1cb7e8751ddab2d0797b52f0e5f7669e402702563266d6808fe68edafad92efca86572fce223c8993965a7c571eed10ea51337f230cf55e60eb0318e042fe6498a273cb01b429e85faafda8e318120e6a6157bcb3ebda0bc2252f284556fa0533d02298bef9ea781623ac8fdcd934088fbb494fb598b00e6ca0fcd4a73517c1159fc531b30ef6be2f07ff5f4db4fa7673a9baf081bf828c8b9c8f7e3f4e0803c7a149921f8755f3d8f4339b31b4154dab36cd48957ddebb6d0f3283ff2bfcc45d68715292bb3343ec3fd05f96134d8a64e56aa916e096975c3042ab6c4984ad9d31f07c12b26d9fc51f55d8f411b9b4746121341cc4d7d1e96cb8ca1ef79023374da678af13b07570e61c5eaa6", 0x1000}, {&(0x7f0000000080)="aed09ed125b0832f29eaf45219d6f1c1c043e4dd3baadb126196ed14580afd3578d11113036a3a167f97149a4b00175ddbdbfcc1299184a166347f7a7e3109cc67d933ffa82b0c895f03e94a1976d1c8bc66265d96bab9eb17878e1aaaf422d8761c77980ba30975a001327ebc6ca361e75a2bad", 0x74}], 0x2) rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) 18:31:27 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 9) 18:31:27 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 12) 18:31:27 executing program 1: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) [ 855.607094] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 18:31:27 executing program 6: unshare(0x68000280) unshare(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) [ 855.635291] FAULT_INJECTION: forcing a failure. [ 855.635291] name failslab, interval 1, probability 0, space 0, times 0 [ 855.636652] CPU: 1 PID: 6505 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 855.637428] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 855.638365] Call Trace: [ 855.638673] dump_stack+0x107/0x167 [ 855.639098] should_fail.cold+0x5/0xa [ 855.639534] ? security_file_alloc+0x34/0x170 [ 855.640059] should_failslab+0x5/0x20 [ 855.640495] kmem_cache_alloc+0x5b/0x310 [ 855.640966] security_file_alloc+0x34/0x170 [ 855.641459] __alloc_file+0xb7/0x320 [ 855.641887] alloc_empty_file+0x6d/0x170 [ 855.642350] alloc_file+0x5e/0x5a0 [ 855.642760] alloc_file_pseudo+0x16a/0x250 [ 855.643255] ? alloc_file+0x5a0/0x5a0 [ 855.643696] ? shmem_get_inode+0x55c/0xbc0 [ 855.644186] __shmem_file_setup+0x144/0x320 [ 855.644681] ? _copy_from_user+0xfb/0x1b0 [ 855.645159] __do_sys_memfd_create+0x275/0x450 [ 855.645682] ? memfd_file_seals_ptr+0x170/0x170 [ 855.646216] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 855.646818] ? syscall_enter_from_user_mode+0x1d/0x50 [ 855.647416] do_syscall_64+0x33/0x40 [ 855.647843] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 855.648428] RIP: 0033:0x7f9be863bb19 [ 855.648856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 855.650962] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 855.651831] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863bb19 [ 855.652638] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f9be86950fb [ 855.653450] RBP: 0000000000000004 R08: 0000000000000000 R09: ffffffffffffffff [ 855.654262] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000008100000 [ 855.655077] R13: 00000000200000c0 R14: 0000000000000202 R15: 0000000020001840 18:31:27 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 855.664313] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 855.668539] FAULT_INJECTION: forcing a failure. [ 855.668539] name failslab, interval 1, probability 0, space 0, times 0 [ 855.670360] CPU: 0 PID: 6506 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 855.671464] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 855.672789] Call Trace: [ 855.673232] dump_stack+0x107/0x167 [ 855.673820] should_fail.cold+0x5/0xa 18:31:28 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 855.674447] ? create_object.isra.0+0x3a/0xa20 [ 855.675289] should_failslab+0x5/0x20 [ 855.675907] kmem_cache_alloc+0x5b/0x310 [ 855.676558] create_object.isra.0+0x3a/0xa20 [ 855.677249] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 855.678088] kmem_cache_alloc+0x159/0x310 [ 855.678744] ? trace_hardirqs_on+0x5b/0x180 [ 855.679453] __d_alloc+0x2a/0x990 [ 855.680021] d_alloc_pseudo+0x19/0x70 [ 855.680621] alloc_file_pseudo+0xce/0x250 [ 855.681276] ? alloc_file+0x5a0/0x5a0 [ 855.681883] ? shmem_get_inode+0x55c/0xbc0 [ 855.682569] __shmem_file_setup+0x144/0x320 [ 855.683260] ? _copy_from_user+0xfb/0x1b0 [ 855.683919] __do_sys_memfd_create+0x275/0x450 [ 855.684641] ? memfd_file_seals_ptr+0x170/0x170 [ 855.685379] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 855.686203] ? syscall_enter_from_user_mode+0x1d/0x50 [ 855.687027] do_syscall_64+0x33/0x40 [ 855.687614] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 855.688419] RIP: 0033:0x7fd8050b3b19 [ 855.689013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 855.691892] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 855.693099] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 855.694220] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 855.695344] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 855.696465] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 855.697581] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 18:31:28 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="00ef0000", @ANYRES16=0x0, @ANYBLOB="000128bd7000fedbdf254c0000000c00a60006000000000000000c00a7000000000001000000"], 0x2c}, 0x1, 0x0, 0x0, 0x400c080}, 0x40004) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) r3 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_complete(r2) syz_io_uring_submit(r2, r5, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f00000002c0)={r1, 0xde, 0x4, 0x80000001}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x10, r6, 0x8000000) r7 = syz_io_uring_complete(r4) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r8}}, 0x362c) syz_io_uring_submit(r2, r5, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r7, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r8}}, 0x6) r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), r0) ioctl$BTRFS_IOC_GET_FEATURES(r3, 0x80189439, &(0x7f0000000280)) sendmsg$TIPC_CMD_RESET_LINK_STATS(r7, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="000001000000000c410000000c00ffff797a3100000000"], 0x28}, 0x1, 0x0, 0x0, 0x40884}, 0x4000) syz_mount_image$tmpfs(&(0x7f0000000980), &(0x7f00000009c0)='./file1\x00', 0x0, 0x0, 0x0, 0xc0ed0000, &(0x7f0000000300)=ANY=[@ANYBLOB="1a57f5921e1d953e1c3c1c10"]) [ 855.760846] tmpfs: Unknown parameter 'Wõ’•><' 18:31:28 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x0, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:31:28 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) fcntl$setpipe(r1, 0x407, 0x9) 18:31:28 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 13) 18:31:28 executing program 4: setsockopt(0xffffffffffffffff, 0x22, 0xffffffff, &(0x7f00000002c0)="1b56596160db6d8132cb3adb196cd18ad4e854092efe1f38b253833229ccf683d632b77cd4ec0caa8dbcbe859ef148f547f6f6b8fa9dbfee5639375375c015d785cd72b3f5ffa71c72f8ebcdec714e41a07325273d3d0c7c68dcff2f50eb205b001673aef9f162d88d0dcac4ff1137e92681f36b80bbef758d1b9d35f1351fcd24d446395017e20eb065cc09e885bdf3761b24ad5c0e264bc1d10b1b38a17fb4ec5dc26a38d041762e7eaf159b698dafe7aafa63ad16c343612020f98fca68ad7c63da", 0xc3) r0 = syz_io_uring_setup(0x12a8, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x20000000}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f0000000140)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x541, 0x1}, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x676aa827}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) io_uring_enter(r0, 0x7e66, 0x9014, 0x0, 0x0, 0x0) [ 855.828170] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6530 comm=syz-executor.2 [ 855.849559] FAULT_INJECTION: forcing a failure. [ 855.849559] name failslab, interval 1, probability 0, space 0, times 0 [ 855.850967] CPU: 1 PID: 6532 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 855.851742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 855.852704] Call Trace: [ 855.853011] dump_stack+0x107/0x167 [ 855.853431] should_fail.cold+0x5/0xa [ 855.853875] ? create_object.isra.0+0x3a/0xa20 [ 855.854407] should_failslab+0x5/0x20 [ 855.854847] kmem_cache_alloc+0x5b/0x310 [ 855.855317] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 855.855957] create_object.isra.0+0x3a/0xa20 [ 855.856462] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 855.857047] kmem_cache_alloc+0x159/0x310 [ 855.857527] security_file_alloc+0x34/0x170 [ 855.858025] __alloc_file+0xb7/0x320 [ 855.858447] alloc_empty_file+0x6d/0x170 [ 855.858924] alloc_file+0x5e/0x5a0 [ 855.859332] alloc_file_pseudo+0x16a/0x250 [ 855.859821] ? alloc_file+0x5a0/0x5a0 [ 855.860265] ? shmem_get_inode+0x55c/0xbc0 [ 855.860758] __shmem_file_setup+0x144/0x320 [ 855.861261] ? _copy_from_user+0xfb/0x1b0 [ 855.861741] __do_sys_memfd_create+0x275/0x450 [ 855.862271] ? memfd_file_seals_ptr+0x170/0x170 [ 855.862821] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 855.863436] ? syscall_enter_from_user_mode+0x1d/0x50 [ 855.864035] do_syscall_64+0x33/0x40 [ 855.864463] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 855.865058] RIP: 0033:0x7f9be863bb19 [ 855.865482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 855.867604] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 855.868475] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863bb19 [ 855.869294] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007f9be86950fb [ 855.870110] RBP: 0000000000000004 R08: 0000000000000000 R09: ffffffffffffffff [ 855.870931] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000008100000 [ 855.871748] R13: 00000000200000c0 R14: 0000000000000202 R15: 0000000020001840 18:31:28 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 10) 18:31:28 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x7, 0x8, 0x8, 0x3f, 0x0, 0xca3e, 0x1000, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8000, 0x1, @perf_config_ext={0xffffffffffffff01, 0x4}, 0x20, 0x39696301, 0x3, 0x1, 0x1, 0x400, 0x8, 0x0, 0x4, 0x0, 0x200}, r0, 0xc, 0xffffffffffffffff, 0x8) r1 = gettid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) rt_sigqueueinfo(r1, 0x21, &(0x7f0000000040)={0x33, 0x10001, 0x12}) pidfd_send_signal(0xffffffffffffffff, 0xd, &(0x7f00000000c0)={0x2d, 0x6, 0x5}, 0x0) ptrace$peek(0x2, r1, &(0x7f0000000000)) 18:31:28 executing program 6: unshare(0x68000280) unshare(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) [ 855.960815] FAULT_INJECTION: forcing a failure. [ 855.960815] name failslab, interval 1, probability 0, space 0, times 0 [ 855.962709] CPU: 0 PID: 6537 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 855.963672] loop0: detected capacity change from 0 to 512 [ 855.963809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 855.963816] Call Trace: [ 855.963841] dump_stack+0x107/0x167 [ 855.966748] should_fail.cold+0x5/0xa [ 855.967368] ? __alloc_file+0x21/0x320 [ 855.968000] should_failslab+0x5/0x20 [ 855.968617] kmem_cache_alloc+0x5b/0x310 [ 855.969271] __alloc_file+0x21/0x320 [ 855.969867] alloc_empty_file+0x6d/0x170 [ 855.970523] alloc_file+0x5e/0x5a0 [ 855.971111] alloc_file_pseudo+0x16a/0x250 [ 855.971789] ? alloc_file+0x5a0/0x5a0 [ 855.972396] ? shmem_get_inode+0x55c/0xbc0 [ 855.973097] __shmem_file_setup+0x144/0x320 [ 855.973778] ? _copy_from_user+0xfb/0x1b0 [ 855.974451] __do_sys_memfd_create+0x275/0x450 [ 855.975187] ? memfd_file_seals_ptr+0x170/0x170 [ 855.975938] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 855.976766] ? syscall_enter_from_user_mode+0x1d/0x50 [ 855.977603] do_syscall_64+0x33/0x40 [ 855.978193] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 855.979030] RIP: 0033:0x7fd8050b3b19 [ 855.979628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 855.982548] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 855.983768] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 855.984903] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 855.986031] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 855.987168] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 855.988297] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 18:31:42 executing program 6: unshare(0x68000280) unshare(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:31:42 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 11) 18:31:42 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:31:42 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r4 = syz_io_uring_complete(r2) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r5}}, 0x362c) setxattr$incfs_id(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001780), &(0x7f00000017c0)={'0000000000000000000000000000000', 0x33}, 0x20, 0x1) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r4, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r5}}, 0x6) sendmsg$OSF_MSG_ADD(r4, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x1508, 0x0, 0x5, 0x401, 0x0, 0x0, {0x0, 0x0, 0x8}, [{{0x254, 0x1, {{0x0, 0x3}, 0x7, 0xac, 0x80, 0xac21, 0x12, 'syz1\x00', "9b88a8f88e8861304a5b9e4a6bb6e2c315899e87c43ad0abfbbc1fe559ab6928", "da5b4b4e9e0ea85f41186e672478d3c2abcc958705d883e820c7ca0dcd02e985", [{0x40, 0x8000, {0x1, 0x1}}, {0x0, 0x0, {0x3, 0x7ff}}, {0x0, 0x4, {0x3, 0x7}}, {0x6ea, 0x1, {0x2, 0x7}}, {0x1, 0x8, {0x3, 0x9}}, {0x1f, 0x8, {0x3, 0x56b8cc43}}, {0xc9af, 0x9, {0x2, 0x1}}, {0x20, 0x2, {0x2, 0x7ff}}, {0x9, 0xffff, {0x3, 0x9}}, {0x8, 0x4c8b, {0x2, 0x73}}, {0xe2d, 0x8, {0x0, 0x8}}, {0x7fff, 0x6, {0x1, 0x3}}, {0x7587, 0x7ff, {0x0, 0x401}}, {0x5, 0x5, {0x1, 0x6}}, {0x3, 0x80, {0x0, 0x6}}, {0x2, 0x7ff, {0x0, 0x6194}}, {0x1ff, 0x9, {0x0, 0x8}}, {0xff81, 0x9, {0x1, 0x5}}, {0xfff7, 0x2, {0x0, 0xb00}}, {0xdb, 0x8, {0x2, 0x7fff}}, {0x4, 0x7, {0x1, 0x9}}, {0x1, 0x400, {0x0, 0x2}}, {0x6, 0x4, {0x3, 0xcf08}}, {0x1, 0x800, {0x0, 0x1}}, {0xff, 0x4, {0x2, 0x7}}, {0x1, 0x81, {0x0, 0x1}}, {0x5260, 0x2, {0x2, 0x400}}, {0x1f, 0x7, {0x3, 0x400}}, {0x5, 0x8, {0x2, 0x1ff}}, {0x3f, 0xfc01, {0x1, 0x1}}, {0x2, 0x6, {0x1, 0x8000}}, {0x9, 0x2, {0x1, 0xff}}, {0x80, 0x2, {0x0, 0x400}}, {0x9, 0x4, {0x3, 0x2}}, {0x5, 0x4, {0x3, 0x400}}, {0xfffb, 0x8, {0x1, 0x1ff}}, {0xfffe, 0x0, {0x2, 0x101}}, {0x1, 0x3, {0x2}}, {0x2, 0x2, {0x1, 0x1000}}, {0x4, 0x3, {0x2, 0x2}}]}}}, {{0x254, 0x1, {{0x2, 0x9}, 0x3, 0x2, 0x401, 0x6, 0x23, 'syz1\x00', "bad4e3eeedfa6674911e06f44964de2022d4749d5d6a51e376b61c0912a3810b", "4ea81ad4253eaa5e607bba26d7c3672b0c2c5671cb793efbefd1a46193d9abe0", [{0x6, 0x7, {0x1, 0x8}}, {0x1f, 0xf730, {0x1, 0x6}}, {0x6, 0x0, {0x2, 0x5}}, {0x7, 0x5e, {0x0, 0x80000000}}, {0x1f, 0xffe1}, {0x4, 0x1, {0x2, 0x9}}, {0x0, 0x2, {0x2, 0x6}}, {0x8000, 0x2, {0x0, 0x2}}, {0x100, 0x9, {0x3, 0x6}}, {0x5, 0xe000, {0x0, 0x4000000}}, {0xb7, 0x2, {0x2, 0x3}}, {0xc99b, 0x1, {0x2, 0x6}}, {0x20, 0xfffa, {0x1, 0x4}}, {0x0, 0xff, {0x0, 0xffff7fff}}, {0x7ff, 0x7ff, {0x3, 0x40}}, {0xfff9, 0x7, {0x0, 0x2}}, {0x1f, 0x0, {0x1, 0x4}}, {0x7ff, 0xff, {0x3, 0x3}}, {0x5, 0x8, {0x2, 0x4}}, {0x3, 0x4, {0x3, 0x6}}, {0x8000, 0xf386, {0x2, 0x8001}}, {0x1ff, 0x78, {0x2, 0x8}}, {0x9, 0x400, {0x3, 0x7}}, {0x2, 0xfffd, {0x3, 0x8}}, {0xddc, 0x4, {0x0, 0x100}}, {0xb8ce, 0x18fb, {0x0, 0x3}}, {0x9, 0x20, {0x2, 0x1}}, {0x1, 0x4}, {0xfff9, 0x2, {0x0, 0x4}}, {0x5, 0x0, {0x4249de60e4b8fd74, 0x10000}}, {0x2b61, 0xc501, {0x0, 0x9}}, {0x2, 0x1, {0x0, 0x5}}, {0xfff9, 0x9, {0x2, 0x2}}, {0x4b20, 0x1ff, {0x0, 0x2}}, {0x81, 0x9, {0x0, 0x8}}, {0x5, 0x1, {0xf428391b6eb0d2, 0x7ff}}, {0x1, 0x1, {0x2, 0x4a4}}, {0x6, 0xff, {0x3, 0x4}}, {0x32, 0x7fff, {0x3, 0x4}}, {0x2, 0x86, {0x3, 0xfffffffd}}]}}}, {{0x254, 0x1, {{0x3, 0x3fc00000}, 0x4, 0x6, 0x1f, 0x100, 0x20, 'syz0\x00', "90510b9c69049688f183f3db15be21fc922aaec952f0f47abb465ee37e5b87c0", "b7d06baa4523053990328113f5a38ab10e225bcb82a943cbc9ee6434eee7c87f", [{0x845, 0x6, {0x2, 0x800}}, {0x0, 0x8000, {0x1, 0x4}}, {0x1, 0x200, {0x0, 0x5}}, {0x6a, 0x8001, {0x3, 0x50ff}}, {0x3, 0x200, {0x1, 0x401}}, {0x6, 0x81, {0x3, 0x3}}, {0x3ff, 0x101, {0x3, 0x87}}, {0x1, 0x200, {0x1, 0xffffffff}}, {0x3, 0x0, {0x2, 0x80000001}}, {0x0, 0x6, {0x0, 0x3}}, {0x19, 0x7, {0x3, 0x8}}, {0x1, 0x7, {0x2, 0x4}}, {0x6, 0x0, {0x3, 0xbe8}}, {0x6, 0x101, {0x2, 0xc8b}}, {0x0, 0x8000, {0x0, 0x80000001}}, {0x101, 0x5, {0x0, 0xfff}}, {0xd4d, 0x1000, {0x0, 0x5}}, {0x9, 0x7, {0x0, 0x8}}, {0x9, 0x5, {0x3, 0x80000001}}, {0x8b8, 0x9, {0x2, 0x4}}, {0x9295, 0x3, {0x3, 0xc469}}, {0x6, 0x1ff, {0x2, 0x9}}, {0x5, 0x8, {0x3, 0x7}}, {0x81, 0x7f, {0x3, 0x80000000}}, {0xdfe1, 0x1, {0x0, 0x3}}, {0x4, 0x9, {0x3, 0x5}}, {0x9, 0x8, {0x1, 0xffff}}, {0x0, 0x4, {0x2, 0x10001}}, {0x1, 0x94c, {0x3, 0x9}}, {0x0, 0x7, {0x0, 0xffff}}, {0x9, 0x43, {0x3, 0x1}}, {0x4, 0xff, {0x0, 0x1000}}, {0x3, 0xbbd, {0x0, 0xd1}}, {0x4, 0x1, {0x3, 0x63}}, {0x1, 0x0, {0x3, 0x1}}, {0x73, 0x9, {0x1, 0x5}}, {0x5, 0x551, {0x0, 0x6f5}}, {0x8, 0x3, {0x3, 0x4}}, {0x7ff, 0x0, {0x3, 0x3f}}, {0x7fff, 0x3, {0x2, 0x6}}]}}}, {{0x254, 0x1, {{}, 0x4, 0x6, 0xfff, 0x1, 0x28, 'syz1\x00', "c2b8ca1dca4828fdbeffc5c6de00e83ffe877a3e23834ea9f9270bc5909eef6c", "0c6868e35221d45706ef5367d8361289341429cf768095e525244b93707211b3", [{0x7, 0x9b9d, {0x1}}, {0x9, 0x0, {0x2, 0x7}}, {0x7, 0x6, {0x2, 0x401}}, {0x4, 0x2, {0x3, 0x8001}}, {0x2, 0x200, {0x1}}, {0x2e34, 0x6, {0x1, 0xcc}}, {0x2, 0xcb40, {0x1, 0x4235}}, {0x6, 0xcc, {0x1, 0x800}}, {0x8, 0x3ff, {0x1, 0xfffffffe}}, {0x5, 0x8, {0x3, 0x4}}, {0x40, 0x3, {0x2, 0x8}}, {0xe59, 0x1ff, {0x3, 0x2}}, {0xfffc, 0x2, {0x3, 0x396}}, {0x2, 0x3f, {0x3, 0xffff}}, {0x5, 0x2, {0x2, 0xfffffeff}}, {0x0, 0x4772, {0x3}}, {0x0, 0xf14, {0x0, 0x4ce}}, {0x20, 0xffe0, {0x0, 0xff}}, {0x6, 0xfffe, {0x1}}, {0x5c1f, 0x574, {0x3, 0x3be2}}, {0x3ff, 0x0, {0x0, 0x3}}, {0x7fff, 0x8, {0x0, 0x4}}, {0x400, 0xfff8, {0x2, 0x1}}, {0x2, 0x5, {0x3, 0x81}}, {0x7, 0x0, {0x3, 0x80000001}}, {0x13, 0x3, {0x1, 0x9}}, {0x0, 0x7fff, {0x0, 0x10000}}, {0x7f, 0x9, {0x0, 0x7}}, {0x6, 0x5, {0x2, 0x80000000}}, {0x8001, 0x31, {0x0, 0x4}}, {0x9, 0x1000, {0x1, 0x1ff}}, {0x9, 0x1, {0x2, 0x7}}, {0x2, 0x8, {0x2, 0xf994}}, {0x0, 0xa0, {0x2, 0x9}}, {0x6, 0x6a, {0x1, 0xffffffff}}, {0x5, 0xaef1, {0x3, 0xffff}}, {0x5c6a, 0x0, {0x2}}, {0x41c, 0x169, {0x3, 0xff}}, {0x1, 0x4, {0x2, 0x5}}, {0x9, 0x8, {0x3, 0x80000001}}]}}}, {{0x254, 0x1, {{0x3, 0x9}, 0x65, 0x7, 0x1000, 0xfffd, 0x24, 'syz0\x00', "d2656a462d01423fb222541207321c97be91105d9fea584b8479556589dc3cb8", "3ad9bf21c7bab2909233f734e6ba4bd70efa2685c753cf8dd0a349a18f1fb7a7", [{0x7, 0x6, {0x1, 0x1000}}, {0x5, 0x8001, {0x1, 0x7}}, {0x7, 0x1, {0x0, 0x9}}, {0x740, 0x0, {0x3, 0x8001}}, {0x2, 0x448b, {0x2, 0x2}}, {0x5, 0x8000, {0x2, 0x8}}, {0x20, 0x1, {0x0, 0xfff}}, {0x7fff, 0x7f, {0x3, 0x5}}, {0x7, 0x3, {0x1, 0x8a2}}, {0x401, 0x101, {0x3, 0x1}}, {0x1, 0x3, {0x0, 0x5f6a}}, {0xcf7c, 0xff, {0x1, 0x7ff}}, {0x9, 0x1e6, {0x0, 0x6}}, {0x7f, 0x0, {0x0, 0x10001}}, {0x7, 0x5, {0x2, 0x1ff}}, {0x80, 0x1, {0x3, 0x6}}, {0x2, 0x8, {0x3, 0x8001}}, {0x81, 0x7, {0x2, 0x5dd1}}, {0xfd4, 0x7, {0x0, 0xfffff801}}, {0x6, 0xad, {0x0, 0x3}}, {0x401, 0x400, {0x2, 0x6474}}, {0x3a, 0x3, {0x1, 0x2}}, {0x6bff, 0x4, {0x0, 0x1000}}, {0xb3a7, 0x5, {0x1}}, {0x9, 0x5, {0x3, 0x5}}, {0x4, 0xc000, {0x2, 0x1ff}}, {0x7c9, 0x6, {0x1}}, {0x8000, 0x5, {0x0, 0x18}}, {0x400, 0xe0, {0x3, 0x8}}, {0xce7, 0x400, {0x1}}, {0x4, 0x3bbd, {0x1, 0xffffffc0}}, {0x4, 0x2b, {0x3, 0xe}}, {0x0, 0x1ff, {0x3, 0x4}}, {0x20, 0x80, {0x0, 0x3}}, {0x8, 0x0, {0x3, 0x7}}, {0xd36, 0x9, {0x2, 0x7fffffff}}, {0x2, 0x8001, {0x3, 0xb5b3}}, {0x7, 0x1ff, {0x1, 0x8}}, {0xff, 0x3, {0x0, 0x400}}, {0xbe88, 0xe3, {0x1, 0x9}}]}}}, {{0x254, 0x1, {{0x3, 0x2}, 0xff, 0x5, 0x0, 0x3, 0x8, 'syz1\x00', "81eefa60b534e1a79acf392f804ef8880ad506b76858f2f05b8925dccf7bbfe2", "de4eba1af8c14622fa64833957a0ba41fca46e0b4e6e537180e0620ab9242d48", [{0x1, 0x2, {0x0, 0x3ff}}, {0xff4e, 0x3f, {0x0, 0xc2}}, {0x3, 0x0, {0x3, 0xffff272c}}, {0x1, 0xa7fa, {0x3, 0x8000}}, {0x8001, 0x4, {0x1, 0x80000000}}, {0xe4c1, 0xa31, {0x3, 0x2}}, {0x7, 0x40, {0x3, 0x2}}, {0x81, 0x4, {0x2}}, {0x6, 0x6, {0x3, 0x8000}}, {0x400, 0x5c66, {0x3, 0xfffff38e}}, {0x1, 0x2, {0x0, 0x80000001}}, {0x8000, 0x1f, {0x1}}, {0x81, 0x20, {0x1, 0x24afbf4f}}, {0x9d3c, 0x81, {0x1, 0x4}}, {0x1, 0x6, {0x1}}, {0x4, 0x6, {0x0, 0x400}}, {0x5842, 0x1, {0x1, 0x5}}, {0x3, 0x1, {0x1, 0xfff}}, {0xe000, 0x8990, {0x0, 0x6}}, {0x1ff, 0xd7, {0x0, 0x6}}, {0x7, 0x4e3f, {0x1}}, {0x742, 0x3, {0x3, 0x5}}, {0x418f, 0x3f, {0x2, 0x2}}, {0x22d7, 0x101, {0x1, 0x520}}, {0xff, 0x4, {0x0, 0x8}}, {0xff, 0x3, {0x2, 0x4}}, {0x9, 0xffe1, {0x0, 0x1ef6}}, {0xffff, 0x7, {0x1, 0xed0b}}, {0x4, 0x0, {0x1, 0x600}}, {0x1, 0x3f, {0x1, 0xffffff81}}, {0x8001, 0x0, {0x2, 0x7}}, {0x6, 0x7, {0x1, 0x3}}, {0x1, 0x3f, {0x1, 0xd4}}, {0x7fff, 0x2f, {0x3, 0x6}}, {0x3f, 0xd53c, {0x0, 0x345}}, {0xfff, 0x1f, {0x3, 0xb2af}}, {0x67b, 0x8, {0x1, 0x5}}, {0x3f, 0xffff, {0x1, 0x1}}, {0x6, 0x4, {0x0, 0x5}}, {0xff, 0x0, {0x3, 0x1}}]}}}, {{0x254, 0x1, {{0x3, 0xffffffff}, 0x9, 0x2, 0x800, 0x7fff, 0x1e, 'syz0\x00', "0308bd0acdeb96cbd2c07b96050aee00796aa5b7b90fd100d862d025982ffaff", "07514db158315080ecc7f751ca33eb81f7b614300810ff36fa95e7b3fb478329", [{0x1, 0x3, {0x0, 0x10000}}, {0x1f, 0x2, {0x2, 0xe000000}}, {0x79f6, 0x6, {0x3, 0x2}}, {0x0, 0x34e4, {0x2, 0x5}}, {0x40, 0x70, {0x3, 0x8c}}, {0x1c, 0x7ff, {0x3, 0x4}}, {0x6, 0x6, {0x1, 0x50000}}, {0x53, 0x0, {0x3, 0x6}}, {0x0, 0x800, {0x1, 0x8}}, {0x3, 0xd5, {0x2, 0x2}}, {0xffe1, 0x0, {0x3, 0x3ff}}, {0x698, 0xe04, {0x2, 0x1f}}, {0x7, 0xffff, {0x1, 0x1}}, {0x6, 0x5, {0x0, 0x1}}, {0xef31, 0x3ff, {0x3, 0x20}}, {0x6d43, 0x7, {0x1, 0x800}}, {0x8, 0x1, {0x0, 0x74838744}}, {0x1, 0x1e60, {0x1, 0x7fff}}, {0xff, 0x3, {0x0, 0xffff8d4d}}, {0xf000, 0xe23, {0x2, 0xfffeffff}}, {0x7ff, 0x9, {0x0, 0xc9}}, {0x3, 0x0, {0x2, 0xff}}, {0x5, 0x7fff, {0x2, 0x401}}, {0x7, 0x7, {0x2, 0x4}}, {0x8001, 0x0, {0x2, 0x7}}, {0x101, 0x6, {0x1, 0xe0b}}, {0x8, 0x2, {0x3, 0x6}}, {0x7, 0x6, {0x3, 0x81}}, {0x66d7, 0x0, {0x2, 0x200}}, {0x1000, 0xfffc, {0x3, 0x7}}, {0x200, 0xfffc, {0x2, 0x2}}, {0x1, 0x42, {0x2, 0x5}}, {0x7, 0x7, {0x3, 0x9}}, {0xa6f, 0x5, {0x3, 0x97c3}}, {0x401, 0x9, {0x0, 0x80}}, {0x1000, 0x8, {0x0, 0x8}}, {0x3, 0x5, {0x2, 0x5}}, {0x89d, 0x800, {0x1, 0xff}}, {0x1, 0xfff, {0x1, 0x7}}, {0x0, 0x1ff, {0x3, 0x97f9}}]}}}, {{0x254, 0x1, {{0x2, 0x3}, 0xe5, 0x1, 0x2, 0x9, 0x1c, 'syz0\x00', "8ffcf44e9a787d91254f645bb833d0d8e6dc7f32064209ea56e2364f62c33329", "9aff06a907fdbd6f38d2eb37a188056d1f5331290b1bf17ea3f4a0f187c59b38", [{0x200, 0x0, {0x1, 0x8001}}, {0x3, 0x1, {0x2, 0x501}}, {0x5, 0x220, {0x1, 0x3f}}, {0xfffa, 0x37d, {0x2, 0x7}}, {0x857a, 0xa6, {0x3, 0x9}}, {0x2, 0x400, {0x1, 0xffffff81}}, {0x0, 0x9, {0x3, 0x5}}, {0x1, 0x7ff, {0x3, 0xfffffffc}}, {0x4, 0x3f, {0x2, 0xfffffffc}}, {0x200, 0xfff7, {0x3, 0x80000000}}, {0x8, 0x3, {0x1, 0x5}}, {0x80, 0x1, {0x0, 0x2}}, {0x3, 0x3, {0x3, 0x5}}, {0x0, 0xfbff, {0x2, 0x5635}}, {0x8, 0x6c37, {0x3, 0x1000}}, {0x0, 0x9, {0x2, 0x7f}}, {0xbf95, 0x0, {0x2, 0xffffffff}}, {0x80, 0x8, {0x3, 0x8}}, {0x3, 0x1f, {0x3, 0x1}}, {0x9, 0x5, {0x1, 0xa3}}, {0x1f, 0xe79, {0x0, 0x1}}, {0x6, 0x2, {0x1, 0x10000}}, {0x7ff, 0x1, {0x1, 0x2}}, {0x9, 0x7f, {0x0, 0x1000}}, {0xffff, 0x1f, {0x3, 0x9}}, {0x382, 0x7, {0x0, 0x4}}, {0x2, 0x7, {0x1, 0x4}}, {0x5, 0xcd46, {0x0, 0x9}}, {0x3, 0x101, {0x1, 0xbb0}}, {0x3, 0x4, {0x2, 0x9}}, {0x4a, 0x196, {0x1, 0x4}}, {0x6, 0x9, {0x1, 0x7}}, {0x9, 0xffff, {0x1, 0x80}}, {0xa8b4, 0x80, {0x3, 0x8000}}, {0xff, 0x0, {0x0, 0x5}}, {0xeeeb, 0x81, {0x2, 0xa92d}}, {0x400, 0x6, {0x0, 0x2}}, {0x168, 0x8001, {0x1, 0xecb}}, {0x0, 0x2, {0x1, 0x1}}, {0x20, 0xfffc, {0x3, 0xeec9}}]}}}, {{0x254, 0x1, {{0x1, 0x10000}, 0x3, 0x7, 0x0, 0x7f, 0x19, 'syz1\x00', "32fe4f98fdfa5ba48b1136d37017d4bacb397f396a2356587488ae6f4d5e1400", "871c6c44cdf12e98d84ebae5650636d0fb9886cd824298b04e0f80a9720ea035", [{0x6, 0x2, {0x0, 0x8}}, {0x8001, 0x1, {0x1}}, {0x4, 0x7ff, {0x2, 0x8}}, {0x7ff, 0x0, {0x2, 0x3}}, {0x9, 0x0, {0x1, 0x7fff}}, {0x8009, 0x6, {0x1}}, {0x7, 0x3f, {0x1, 0xfffffffe}}, {0x5, 0x8}, {0x41, 0x1, {0x3, 0x9}}, {0x0, 0x7, {0x1, 0x10}}, {0x20, 0x101, {0x1, 0x2}}, {0x1ff, 0x7fff, {0x0, 0x133}}, {0x1f, 0x4, {0x1, 0x6}}, {0x0, 0x1e9, {0x2, 0x6}}, {0x5, 0xfffa, {0x1, 0x2}}, {0x4, 0x3ff, {0x1, 0x10001}}, {0x4, 0x1354, {0x3, 0x8}}, {0x6, 0xf44, {0x1, 0x4}}, {0xfff8, 0x3471}, {0x9, 0x100, {0x1, 0x7fffffff}}, {0xb, 0x1f, {0x1, 0x7ff}}, {0x0, 0x7, {0x2, 0x6}}, {0x4, 0x8}, {0x0, 0x400, {0x0, 0xfffffffe}}, {0x9, 0x0, {0x0, 0x4}}, {0x1000, 0x6, {0x0, 0x100}}, {0x2, 0x7, {0x2, 0x10ec}}, {0x9, 0x2, {0x2, 0xd5d}}, {0x401, 0xfffd, {0x1, 0x3}}, {0x1, 0x5, {0x2, 0x8001}}, {0x8754, 0xcc7, {0x3, 0xfffffff8}}, {0x800, 0x2, {0x0, 0x9}}, {0x5, 0x7fff, {0x3, 0x7}}, {0x6, 0x8, {0x3, 0x9}}, {0x6d1, 0x3, {0x2, 0x40}}, {0x1, 0x7ff, {0x0, 0x5}}, {0x7, 0x1, {0x1, 0x5}}, {0x5, 0x3, {0x3, 0x8}}, {0x5, 0x6, {0x0, 0x7}}, {0x81, 0x1ff, {0x2, 0xe501}}]}}}]}, 0x1508}, 0x1, 0x0, 0x0, 0x801}, 0xd4) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655b0100ffff53ef010001000000dff4655f000000000000000001", 0x4d, 0x400}], 0x0, &(0x7f00000000c0)) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r6, r8, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r9 = syz_io_uring_complete(r7) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r10}}, 0x362c) syz_io_uring_submit(r6, r8, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r9, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r10}}, 0x6) syz_io_uring_setup(0x3745, &(0x7f0000001800)={0x0, 0xbe9f, 0x0, 0x2, 0x262, 0x0, r9}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000001880), &(0x7f00000018c0)) 18:31:42 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 14) 18:31:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x0, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:31:42 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) fcntl$setpipe(r1, 0x407, 0x9) [ 870.172740] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6568 comm=syz-executor.2 [ 870.179845] FAULT_INJECTION: forcing a failure. [ 870.179845] name failslab, interval 1, probability 0, space 0, times 0 [ 870.182140] CPU: 1 PID: 6567 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 870.182151] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 870.182157] Call Trace: [ 870.182179] dump_stack+0x107/0x167 [ 870.182206] should_fail.cold+0x5/0xa [ 870.182226] ? getname_flags.part.0+0x50/0x4f0 [ 870.185563] should_failslab+0x5/0x20 [ 870.185586] kmem_cache_alloc+0x5b/0x310 [ 870.185604] ? new_sync_write+0x499/0x660 [ 870.185628] getname_flags.part.0+0x50/0x4f0 [ 870.186915] getname+0x8e/0xd0 [ 870.191705] FAULT_INJECTION: forcing a failure. [ 870.191705] name failslab, interval 1, probability 0, space 0, times 0 [ 870.192045] do_sys_openat2+0xf9/0x4d0 [ 870.192068] ? build_open_flags+0x6f0/0x6f0 [ 870.192101] ? rcu_read_lock_any_held+0x75/0xa0 [ 870.197712] __x64_sys_openat+0x13f/0x1f0 [ 870.198576] ? __ia32_sys_open+0x1c0/0x1c0 [ 870.199486] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 870.200583] ? syscall_enter_from_user_mode+0x1d/0x50 [ 870.201831] do_syscall_64+0x33/0x40 [ 870.202620] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 870.203738] RIP: 0033:0x7f9be85eea04 [ 870.204530] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 870.208518] RSP: 002b:00007f9be5bb0ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 870.210163] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be85eea04 [ 870.211716] RDX: 0000000000000002 RSI: 00007f9be5bb1000 RDI: 00000000ffffff9c [ 870.213254] RBP: 00007f9be5bb1000 R08: 0000000000000000 R09: ffffffffffffffff [ 870.214791] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 870.216339] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 870.217925] CPU: 0 PID: 6561 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 870.219456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 870.221276] Call Trace: [ 870.221865] dump_stack+0x107/0x167 [ 870.222670] should_fail.cold+0x5/0xa [ 870.223538] ? create_object.isra.0+0x3a/0xa20 [ 870.224552] should_failslab+0x5/0x20 [ 870.225392] kmem_cache_alloc+0x5b/0x310 [ 870.226311] create_object.isra.0+0x3a/0xa20 [ 870.227278] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 870.228421] kmem_cache_alloc+0x159/0x310 [ 870.229350] __alloc_file+0x21/0x320 [ 870.230181] alloc_empty_file+0x6d/0x170 [ 870.231082] alloc_file+0x5e/0x5a0 [ 870.231956] alloc_file_pseudo+0x16a/0x250 [ 870.232890] ? alloc_file+0x5a0/0x5a0 [ 870.233747] ? shmem_get_inode+0x55c/0xbc0 [ 870.234698] __shmem_file_setup+0x144/0x320 [ 870.235662] ? _copy_from_user+0xfb/0x1b0 [ 870.236580] __do_sys_memfd_create+0x275/0x450 [ 870.237613] ? memfd_file_seals_ptr+0x170/0x170 [ 870.238711] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 870.239892] ? syscall_enter_from_user_mode+0x1d/0x50 [ 870.241034] do_syscall_64+0x33/0x40 [ 870.241850] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 870.243024] RIP: 0033:0x7fd8050b3b19 [ 870.243859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 870.247868] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 870.249531] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 870.251084] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 870.252646] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 870.254200] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 870.255765] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 18:31:42 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() r2 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r2, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000006c0)={0x126c, 0x28, 0x103, 0x70bd2d, 0x25dfdbfb, {0xe}, [@generic="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", @nested={0x14, 0x7a, 0x0, 0x1, [@typed={0xf, 0x4f, 0x0, 0x0, @str='\',&:)\x01\'-%\xa1\x00'}]}, @nested={0x230, 0x94, 0x0, 0x1, [@generic="2fabe2fd9f25ac14903aeb2c2f71372e8281b89e00fe739726d9fcdef806cf29416a3ca557ebc6b75a5c0f4661b93869739f32a4ecc753560e0bbeb86956100f0a6bedadeaea1809de4f345059ae8326a62f6c7c1daaf7750ee8d832f775cd3ab3967204c94f36b2a58c62b16a412f819f198ce4d4eb90e121d838030acb2de3eeca787ad5929fa3b09e16fc4d26308a7990dafd5250b6", @typed={0x8, 0x64, 0x0, 0x0, @u32}, @typed={0x8, 0x43, 0x0, 0x0, @fd=r0}, @typed={0x8, 0x8f, 0x0, 0x0, @str='!^\\\x00'}, @generic="0589cf268559c0c05fe369700d6193ad", @generic="7f7ec23b68ead4d8710bb7dd47a7c74114857c25b4c99cf495064e0d76d7e6bb31abb0207544805504f8ef4a43d1b56d1f997edad1fb70f4b0401c6723b0bcdcc20ad086f4f592d81ab872408e6dfdd45d18f2954181a5fd9dfbe137ce34db49329a0927e8629eff95", @generic="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", @typed={0x8, 0x3, 0x0, 0x0, @pid=r1}]}, @typed={0x8, 0x7d, 0x0, 0x0, @ipv4=@remote}, @nested={0xc, 0x3a, 0x0, 0x1, [@typed={0x8, 0x3e, 0x0, 0x0, @ipv4=@local}]}]}, 0x126c}, 0x1, 0x0, 0x0, 0x54}, 0x4001) rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) rt_sigqueueinfo(0x0, 0x17, &(0x7f0000000000)={0x31, 0x4, 0x4}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x4, 0xff}}, './file0\x00'}) waitid$P_PIDFD(0x3, r3, &(0x7f0000000180), 0x8, &(0x7f0000000200)) waitid(0x2, r1, 0x0, 0x40000000, &(0x7f0000000080)) 18:31:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x0, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:31:42 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000000)={0x0, 0x5, 0x5, 0xffffffff7fffffff}) [ 870.319867] loop1: detected capacity change from 0 to 2048 [ 870.332007] EXT4-fs (loop1): invalid first ino: 0 [ 870.369475] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6581 comm=syz-executor.2 18:32:00 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:32:00 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) fcntl$setpipe(r1, 0x407, 0x9) 18:32:00 executing program 1: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) io_submit(0x0, 0x1, &(0x7f0000000400)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, &(0x7f0000000540)="4fa961a32c46292c4c203b03c6cfcb7f41a36b2033c451524efa095f3259d324fe60cf5baa606c7c29d5626c6a425a3357a6ef9b122793056fe62dc737af44a1070dcbaede3f1a1a803aeec79b506e019ba9a0faad0ffeddee88e9c7f880a2b88dd7ec8a16c3670691b02178a9efe72a78122fdafe8be129a52b1b4d82cc8adf2f88522df22ee2ca034bd40b6be1e2b77c7b9594a599c877", 0x98, 0x0, 0x0, 0x3}]) syz_usb_connect$cdc_ecm(0x4, 0x0, 0x0, 0x0) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x9}, 0x0, 0x1, 0x6}, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) clock_gettime(0x0, &(0x7f00000003c0)={0x0, 0x0}) timer_settime(0x0, 0x0, &(0x7f0000000440)={{}, {r0, r1+60000000}}, &(0x7f0000000700)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @thr={&(0x7f0000000600)="1a90741b478736dcb3b315064fc9e72c4608370b13bc2cb637529112fc303e1776468566db550164e33a10b0631194d0c525a6de03dea72ca7919d9f8026f6731bde01f3232df675dccf6cfdc168550c74433af885e6c95d44c46a6227103177f847898edf0b69b5bb4ce7cb18c9b532190cab9007de662870fd202b7c55fc84576b9e25c32997e5ebfb4bf56dacbc75625e461c5efcef9c8d5ad29e03c5acb0699a5bf8fca88e223ab1b91bd8b79f91aeddb32d54049112fa", &(0x7f00000006c0)="d268db7656a375b39a1a8696902ef074b8ab"}}, &(0x7f0000000340)) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) clock_gettime(0x0, &(0x7f00000000c0)) clock_gettime(0x0, &(0x7f0000000100)) timer_gettime(r3, &(0x7f0000000080)) timer_create(0x6, &(0x7f0000000240)={0x0, 0x4, 0x4, @tid=r2}, &(0x7f00000002c0)) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 18:32:00 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x23}, 0x0, 0x7, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) 18:32:00 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 15) 18:32:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0x0, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:32:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:32:00 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 12) [ 888.087384] FAULT_INJECTION: forcing a failure. [ 888.087384] name failslab, interval 1, probability 0, space 0, times 0 [ 888.089856] CPU: 0 PID: 6600 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 888.091297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 888.093049] Call Trace: [ 888.093610] dump_stack+0x107/0x167 [ 888.094392] should_fail.cold+0x5/0xa [ 888.095202] ? security_file_alloc+0x34/0x170 [ 888.096165] should_failslab+0x5/0x20 [ 888.096983] kmem_cache_alloc+0x5b/0x310 [ 888.097853] security_file_alloc+0x34/0x170 [ 888.098770] __alloc_file+0xb7/0x320 [ 888.099568] alloc_empty_file+0x6d/0x170 [ 888.100441] alloc_file+0x5e/0x5a0 [ 888.101210] alloc_file_pseudo+0x16a/0x250 [ 888.102104] ? alloc_file+0x5a0/0x5a0 [ 888.102926] ? shmem_get_inode+0x55c/0xbc0 [ 888.103841] __shmem_file_setup+0x144/0x320 [ 888.104790] ? _copy_from_user+0xfb/0x1b0 [ 888.105678] __do_sys_memfd_create+0x275/0x450 [ 888.106648] ? memfd_file_seals_ptr+0x170/0x170 [ 888.107640] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 888.108769] ? syscall_enter_from_user_mode+0x1d/0x50 [ 888.109866] do_syscall_64+0x33/0x40 [ 888.110656] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 888.111739] RIP: 0033:0x7fd8050b3b19 [ 888.112562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 888.116447] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 888.118058] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 888.119569] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 888.121093] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 888.122596] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 888.124116] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 [ 888.140618] FAULT_INJECTION: forcing a failure. [ 888.140618] name failslab, interval 1, probability 0, space 0, times 0 [ 888.143101] CPU: 0 PID: 6610 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 888.144561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 888.146318] Call Trace: [ 888.146877] dump_stack+0x107/0x167 [ 888.147656] should_fail.cold+0x5/0xa [ 888.148480] ? create_object.isra.0+0x3a/0xa20 [ 888.149451] should_failslab+0x5/0x20 [ 888.150267] kmem_cache_alloc+0x5b/0x310 [ 888.151152] create_object.isra.0+0x3a/0xa20 [ 888.152093] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 888.153186] kmem_cache_alloc+0x159/0x310 [ 888.154066] ? new_sync_write+0x499/0x660 [ 888.155007] getname_flags.part.0+0x50/0x4f0 [ 888.156143] getname+0x8e/0xd0 [ 888.156835] do_sys_openat2+0xf9/0x4d0 [ 888.157674] ? build_open_flags+0x6f0/0x6f0 [ 888.158614] ? rcu_read_lock_any_held+0x75/0xa0 [ 888.159611] __x64_sys_openat+0x13f/0x1f0 [ 888.160503] ? __ia32_sys_open+0x1c0/0x1c0 [ 888.161417] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 888.162534] ? syscall_enter_from_user_mode+0x1d/0x50 [ 888.163632] do_syscall_64+0x33/0x40 [ 888.164432] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 888.165513] RIP: 0033:0x7f9be85eea04 [ 888.166339] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 888.170290] RSP: 002b:00007f9be5bb0ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 888.171908] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be85eea04 [ 888.173423] RDX: 0000000000000002 RSI: 00007f9be5bb1000 RDI: 00000000ffffff9c [ 888.174931] RBP: 00007f9be5bb1000 R08: 0000000000000000 R09: ffffffffffffffff [ 888.176442] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 888.177951] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:32:00 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_cancel(0x0, 0x0, 0x0) rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) 18:32:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0x0, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:32:00 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) fcntl$setpipe(r1, 0x407, 0x9) 18:32:00 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 13) 18:32:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) chdir(&(0x7f0000000040)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 888.308152] loop0: detected capacity change from 0 to 512 [ 888.371813] FAULT_INJECTION: forcing a failure. [ 888.371813] name failslab, interval 1, probability 0, space 0, times 0 [ 888.374282] CPU: 1 PID: 6626 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 888.375716] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 888.377468] Call Trace: [ 888.378025] dump_stack+0x107/0x167 [ 888.378792] should_fail.cold+0x5/0xa [ 888.379596] ? create_object.isra.0+0x3a/0xa20 [ 888.380575] should_failslab+0x5/0x20 [ 888.381380] kmem_cache_alloc+0x5b/0x310 [ 888.382237] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 888.383396] create_object.isra.0+0x3a/0xa20 [ 888.384328] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 888.385396] kmem_cache_alloc+0x159/0x310 [ 888.386273] security_file_alloc+0x34/0x170 [ 888.387176] __alloc_file+0xb7/0x320 [ 888.387956] alloc_empty_file+0x6d/0x170 [ 888.388810] alloc_file+0x5e/0x5a0 [ 888.389558] alloc_file_pseudo+0x16a/0x250 [ 888.390442] ? alloc_file+0x5a0/0x5a0 [ 888.391244] ? shmem_get_inode+0x55c/0xbc0 [ 888.392145] __shmem_file_setup+0x144/0x320 [ 888.393052] ? _copy_from_user+0xfb/0x1b0 [ 888.393923] __do_sys_memfd_create+0x275/0x450 [ 888.394881] ? memfd_file_seals_ptr+0x170/0x170 [ 888.395860] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 888.396972] ? syscall_enter_from_user_mode+0x1d/0x50 [ 888.398055] do_syscall_64+0x33/0x40 [ 888.398836] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 888.399915] RIP: 0033:0x7fd8050b3b19 [ 888.400699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 888.404578] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 888.406173] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b3b19 [ 888.407674] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007fd80510d0fb [ 888.409184] RBP: 0000000000000003 R08: 0000000000000000 R09: ffffffffffffffff [ 888.410679] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000008100000 [ 888.412184] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020001840 18:32:00 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:32:00 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 16) 18:32:00 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) lseek(r0, 0x0, 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r5 = syz_io_uring_complete(r3) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r6}}, 0x362c) syz_io_uring_submit(r2, r4, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r5, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r6}}, 0x6) r7 = syz_open_dev$tty1(0xc, 0x4, 0x2) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000080)={{{@in=@broadcast, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@dev}}, &(0x7f0000000180)=0xe8) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r9, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x20, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@access_uid={'access', 0x3d, r8}}, {@version_L}, {@cachetag}, {@nodevmap}, {@mmap}, {@nodevmap}, {@access_user}, {@nodevmap}, {@cache_mmap}], [{@func={'func', 0x3d, 'FILE_CHECK'}}, {@uid_eq={'uid', 0x3d, r9}}]}}) r10 = gettid() rt_tgsigqueueinfo(r10, r10, 0x0, &(0x7f0000000640)) [ 888.500198] FAULT_INJECTION: forcing a failure. [ 888.500198] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 888.502834] CPU: 0 PID: 6636 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 888.504290] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 888.506026] Call Trace: [ 888.506597] dump_stack+0x107/0x167 [ 888.507372] should_fail.cold+0x5/0xa [ 888.508205] strncpy_from_user+0x34/0x470 [ 888.509089] getname_flags.part.0+0x95/0x4f0 [ 888.510032] getname+0x8e/0xd0 [ 888.510723] do_sys_openat2+0xf9/0x4d0 [ 888.511561] ? build_open_flags+0x6f0/0x6f0 [ 888.512510] ? rcu_read_lock_any_held+0x75/0xa0 [ 888.513513] __x64_sys_openat+0x13f/0x1f0 [ 888.514389] ? __ia32_sys_open+0x1c0/0x1c0 [ 888.515300] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 888.516423] ? syscall_enter_from_user_mode+0x1d/0x50 [ 888.517512] do_syscall_64+0x33/0x40 [ 888.518295] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 888.519382] RIP: 0033:0x7f9be85eea04 [ 888.520172] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 888.524039] RSP: 002b:00007f9be5bb0ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 888.525647] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be85eea04 [ 888.527140] RDX: 0000000000000002 RSI: 00007f9be5bb1000 RDI: 00000000ffffff9c [ 888.528649] RBP: 00007f9be5bb1000 R08: 0000000000000000 R09: ffffffffffffffff [ 888.530145] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 888.531647] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:32:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0x0, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:32:00 executing program 1: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_cancel(0x0, 0x0, 0x0) rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) 18:32:00 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:32:00 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:32:01 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 14) 18:32:01 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() r2 = getpgrp(r1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r3, 0x4) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r3, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r3, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) perf_event_open(&(0x7f0000000080)={0x4, 0x80, 0x6d, 0x7f, 0x1b, 0xf5, 0x0, 0x0, 0x0, 0xc, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0xa7e0, 0x4, @perf_config_ext={0x20, 0x8}, 0x57240, 0x7f, 0x2, 0x7, 0x40, 0x2, 0xfffe, 0x0, 0x1, 0x0, 0xfe6}, r2, 0x6, r3, 0x3) perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x27, 0x5, 0x7, 0x1f, 0x0, 0x100000001, 0x2081c, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xfff, 0x4, @perf_config_ext={0x1, 0xffffffff80000001}, 0x19050, 0xd2ad, 0x1, 0x7, 0x100000001, 0x5, 0x401, 0x0, 0x2, 0x0, 0x101}, r1, 0x0, r0, 0x27f903829fd1bcb3) rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) 18:32:01 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) sendmsg$NL80211_CMD_AUTHENTICATE(r0, 0x0, 0x20000004) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x10800, 0x0) sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, 0x0, 0x200, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x9}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0xb6}]}, 0x24}, 0x1, 0x0, 0x0, 0x44004}, 0x40880) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00'}) sendmsg$NL80211_CMD_GET_COALESCE(r2, 0x0, 0x0) sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000400)={&(0x7f00000017c0)={0x64, 0x0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xd}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_USER_PRIO={0x5}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x801) syz_open_dev$tty1(0xc, 0x4, 0x1) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000740), 0x0, 0x0, 0x0, 0xfffffffffffffffa) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') unshare(0x48020200) [ 888.817786] FAULT_INJECTION: forcing a failure. [ 888.817786] name failslab, interval 1, probability 0, space 0, times 0 [ 888.820549] CPU: 0 PID: 6653 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 888.822083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 888.823916] Call Trace: [ 888.824544] dump_stack+0x107/0x167 [ 888.825368] should_fail.cold+0x5/0xa [ 888.826232] ? getname_flags.part.0+0x50/0x4f0 [ 888.827264] should_failslab+0x5/0x20 [ 888.828131] kmem_cache_alloc+0x5b/0x310 [ 888.829045] ? new_sync_write+0x499/0x660 [ 888.829990] getname_flags.part.0+0x50/0x4f0 [ 888.830993] getname+0x8e/0xd0 [ 888.831722] do_sys_openat2+0xf9/0x4d0 [ 888.832630] ? build_open_flags+0x6f0/0x6f0 [ 888.833608] ? rcu_read_lock_any_held+0x75/0xa0 [ 888.834671] __x64_sys_openat+0x13f/0x1f0 [ 888.835607] ? __ia32_sys_open+0x1c0/0x1c0 [ 888.836598] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 888.837764] ? syscall_enter_from_user_mode+0x1d/0x50 [ 888.838934] do_syscall_64+0x33/0x40 [ 888.839761] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 888.840934] RIP: 0033:0x7fd805066a04 [ 888.841763] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 888.845876] RSP: 002b:00007fd802628ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 888.847593] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd805066a04 [ 888.849199] RDX: 0000000000000002 RSI: 00007fd802629000 RDI: 00000000ffffff9c [ 888.850789] RBP: 00007fd802629000 R08: 0000000000000000 R09: ffffffffffffffff [ 888.852393] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 888.854000] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 888.869375] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 889.101788] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 18:32:19 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) sendmsg$NL80211_CMD_AUTHENTICATE(r0, 0x0, 0x20000004) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x10800, 0x0) sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, 0x0, 0x200, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x9}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0xb6}]}, 0x24}, 0x1, 0x0, 0x0, 0x44004}, 0x40880) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00'}) sendmsg$NL80211_CMD_GET_COALESCE(r2, 0x0, 0x0) sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000400)={&(0x7f00000017c0)={0x64, 0x0, 0x10, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xd}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_USER_PRIO={0x5}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x64}, 0x1, 0x0, 0x0, 0x8000}, 0x801) syz_open_dev$tty1(0xc, 0x4, 0x1) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000740), 0x0, 0x0, 0x0, 0xfffffffffffffffa) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') unshare(0x48020200) 18:32:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) chdir(&(0x7f0000000040)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 906.893044] FAULT_INJECTION: forcing a failure. [ 906.893044] name failslab, interval 1, probability 0, space 0, times 0 [ 906.895690] CPU: 1 PID: 6671 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 906.897169] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 906.898930] Call Trace: [ 906.899505] dump_stack+0x107/0x167 [ 906.900286] should_fail.cold+0x5/0xa [ 906.901113] ? __alloc_file+0x21/0x320 [ 906.901955] should_failslab+0x5/0x20 [ 906.902771] kmem_cache_alloc+0x5b/0x310 [ 906.903652] __alloc_file+0x21/0x320 [ 906.904455] alloc_empty_file+0x6d/0x170 [ 906.905339] path_openat+0xe6/0x2770 [ 906.906136] ? __lock_acquire+0x1657/0x5b00 [ 906.907070] ? path_lookupat+0x860/0x860 [ 906.907941] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 906.909061] ? SOFTIRQ_verbose+0x10/0x10 [ 906.909923] ? find_held_lock+0x2c/0x110 [ 906.910808] do_filp_open+0x190/0x3e0 [ 906.911625] ? may_open_dev+0xf0/0xf0 18:32:19 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:32:19 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 17) 18:32:19 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:32:19 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:32:19 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x4, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) 18:32:19 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 15) [ 906.912455] ? alloc_fd+0x2e7/0x670 [ 906.913513] ? lock_downgrade+0x6d0/0x6d0 [ 906.914427] ? do_raw_spin_lock+0x121/0x260 [ 906.915352] ? rwlock_bug.part.0+0x90/0x90 [ 906.916269] ? _raw_spin_unlock+0x1a/0x30 [ 906.917177] ? alloc_fd+0x2e7/0x670 [ 906.917971] do_sys_openat2+0x171/0x4d0 [ 906.918825] ? build_open_flags+0x6f0/0x6f0 [ 906.919759] ? rcu_read_lock_any_held+0x75/0xa0 [ 906.920766] __x64_sys_openat+0x13f/0x1f0 [ 906.921650] ? __ia32_sys_open+0x1c0/0x1c0 [ 906.922562] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 906.923682] ? syscall_enter_from_user_mode+0x1d/0x50 [ 906.924811] do_syscall_64+0x33/0x40 [ 906.925612] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 906.926712] RIP: 0033:0x7f9be85eea04 [ 906.927509] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 906.931403] RSP: 002b:00007f9be5bb0ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 906.933017] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be85eea04 [ 906.934514] RDX: 0000000000000002 RSI: 00007f9be5bb1000 RDI: 00000000ffffff9c [ 906.935056] FAULT_INJECTION: forcing a failure. [ 906.935056] name failslab, interval 1, probability 0, space 0, times 0 [ 906.936014] RBP: 00007f9be5bb1000 R08: 0000000000000000 R09: ffffffffffffffff [ 906.936028] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 906.936038] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 906.942827] CPU: 0 PID: 6678 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 906.944200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 906.945865] Call Trace: [ 906.946402] dump_stack+0x107/0x167 [ 906.947144] should_fail.cold+0x5/0xa [ 906.947921] ? create_object.isra.0+0x3a/0xa20 [ 906.948856] should_failslab+0x5/0x20 [ 906.949626] kmem_cache_alloc+0x5b/0x310 [ 906.950462] create_object.isra.0+0x3a/0xa20 [ 906.951342] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 906.952371] kmem_cache_alloc+0x159/0x310 [ 906.953228] getname_flags.part.0+0x50/0x4f0 [ 906.954123] getname+0x8e/0xd0 [ 906.954772] do_sys_openat2+0xf9/0x4d0 [ 906.955560] ? build_open_flags+0x6f0/0x6f0 [ 906.956482] ? rcu_read_lock_any_held+0x75/0xa0 [ 906.957493] __x64_sys_openat+0x13f/0x1f0 [ 906.958329] ? __ia32_sys_open+0x1c0/0x1c0 [ 906.959199] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 906.960248] ? syscall_enter_from_user_mode+0x1d/0x50 [ 906.961341] do_syscall_64+0x33/0x40 [ 906.962148] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 906.963172] RIP: 0033:0x7fd805066a04 [ 906.963969] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 906.967957] RSP: 002b:00007fd802628ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 906.969763] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd805066a04 [ 906.971321] RDX: 0000000000000002 RSI: 00007fd802629000 RDI: 00000000ffffff9c [ 906.972929] RBP: 00007fd802629000 R08: 0000000000000000 R09: ffffffffffffffff [ 906.974490] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 906.976015] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 906.995479] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 18:32:19 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000000, 0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0xa) r1 = gettid() write$binfmt_script(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="2321202e2f66696c65302020201359208c7b202a200ade8a895b5e83e99e8ae8fcafeb7144248c52d4d1bf55924b86ac4d81216121ee92a1ae63ea3d51d0d3ac94f15513c30b3ebbe1f7465c604d8493117650d093df5ea8c703db42fe30db9291b102fc8d6790814e67ff7f3009fbbe854e5c9d5489503f607b71327987155d835b21a35d4c2f981a23dce19b49fb622aa9bdcba33a617f38dde1cc6f98c4c6055bfb4a932a0c0a37f568e984a0da02a6f80112a5111d04c9fb517c8aadab5328c7bdd46eb2"], 0xc6) r2 = fork() perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x20, 0x5, 0x6, 0x6, 0x0, 0x0, 0x10400, 0x3, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1b, 0x1, @perf_config_ext={0x2, 0x7}, 0x40000, 0xfffffffffffffffd, 0x9, 0x2, 0x0, 0x1f, 0x9, 0x0, 0x8, 0x0, 0x1}, r2, 0xc, r0, 0x9) rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) 18:32:19 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:32:19 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 18) [ 907.207647] FAULT_INJECTION: forcing a failure. [ 907.207647] name failslab, interval 1, probability 0, space 0, times 0 [ 907.209847] CPU: 1 PID: 6697 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 907.211074] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 907.212549] Call Trace: [ 907.213034] dump_stack+0x107/0x167 [ 907.213687] should_fail.cold+0x5/0xa [ 907.214373] ? create_object.isra.0+0x3a/0xa20 [ 907.215206] should_failslab+0x5/0x20 [ 907.215888] kmem_cache_alloc+0x5b/0x310 [ 907.216631] create_object.isra.0+0x3a/0xa20 [ 907.217428] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 907.218338] kmem_cache_alloc+0x159/0x310 [ 907.219082] __alloc_file+0x21/0x320 [ 907.219756] alloc_empty_file+0x6d/0x170 [ 907.220486] path_openat+0xe6/0x2770 [ 907.221166] ? __lock_acquire+0x1657/0x5b00 [ 907.221950] ? path_lookupat+0x860/0x860 [ 907.222677] ? perf_trace_lock+0xac/0x490 [ 907.223418] ? SOFTIRQ_verbose+0x10/0x10 [ 907.224142] ? find_held_lock+0x2c/0x110 [ 907.224878] ? __lockdep_reset_lock+0x180/0x180 [ 907.225721] do_filp_open+0x190/0x3e0 [ 907.226393] ? may_open_dev+0xf0/0xf0 [ 907.227075] ? alloc_fd+0x2e7/0x670 [ 907.227716] ? lock_downgrade+0x6d0/0x6d0 [ 907.228446] ? do_raw_spin_lock+0x121/0x260 [ 907.229228] ? rwlock_bug.part.0+0x90/0x90 [ 907.229983] ? _raw_spin_unlock+0x1a/0x30 [ 907.230726] ? alloc_fd+0x2e7/0x670 [ 907.231382] do_sys_openat2+0x171/0x4d0 [ 907.232102] ? build_open_flags+0x6f0/0x6f0 [ 907.232896] ? rcu_read_lock_any_held+0x75/0xa0 [ 907.233740] __x64_sys_openat+0x13f/0x1f0 [ 907.234477] ? __ia32_sys_open+0x1c0/0x1c0 [ 907.235230] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 907.236167] ? syscall_enter_from_user_mode+0x1d/0x50 [ 907.237108] do_syscall_64+0x33/0x40 [ 907.237772] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 907.238678] RIP: 0033:0x7f9be85eea04 [ 907.239333] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 907.242602] RSP: 002b:00007f9be5bb0ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 907.243951] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be85eea04 [ 907.245204] RDX: 0000000000000002 RSI: 00007f9be5bb1000 RDI: 00000000ffffff9c [ 907.246456] RBP: 00007f9be5bb1000 R08: 0000000000000000 R09: ffffffffffffffff [ 907.247711] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 907.248994] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 907.312707] loop0: detected capacity change from 0 to 512 18:32:35 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:32:35 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 19) 18:32:35 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:32:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) chdir(&(0x7f0000000040)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:32:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 16) 18:32:35 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:32:35 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000001c0)={0x800, &(0x7f0000000080), &(0x7f00000000c0)=0x0, &(0x7f0000000100), {0x2a}, &(0x7f0000000140)=""/33, 0x21, &(0x7f00000006c0)=""/4096, &(0x7f0000000180)=[0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0], 0x8}, 0x58) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x1f, 0xc7, 0x9, 0x3, 0x0, 0x8b4e, 0x200, 0x9, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_config_ext={0x2, 0x8}, 0x41084, 0x10001, 0x200, 0x5, 0x8, 0xffffffff, 0x0, 0x0, 0x1000000, 0x0, 0x3}, r1, 0xd, r0, 0x2) r2 = gettid() rt_tgsigqueueinfo(r2, r2, 0x0, &(0x7f0000000640)) 18:32:35 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4107, 0x1080c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x60840, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x9) syz_open_dev$vcsu(&(0x7f00000000c0), 0x200, 0x8000) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[], 0xfdef) fallocate(r2, 0x8, 0x0, 0x8000) fchmodat(r0, &(0x7f0000000080)='./file1\x00', 0x18a) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x1, &(0x7f00000001c0)=0x8, 0x4) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r3, 0x6, 0x21, &(0x7f00000000c0)="bd5aea8b8c2fbe2d2d2ebd5b2689660c", 0x10) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_FILES_UPDATE={0x14, 0x4, 0x0, 0x0, 0x81, &(0x7f0000000180)=[r1], 0x1}, 0x2) signalfd(r3, &(0x7f0000000100)={[0x7]}, 0x8) fallocate(r0, 0x0, 0x0, 0x1000002) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x100000f, 0x1f012, r0, 0x0) [ 922.992474] FAULT_INJECTION: forcing a failure. [ 922.992474] name failslab, interval 1, probability 0, space 0, times 0 [ 922.995263] CPU: 0 PID: 6718 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 922.996965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 922.999185] Call Trace: [ 922.999874] dump_stack+0x107/0x167 [ 923.000819] should_fail.cold+0x5/0xa [ 923.001814] ? security_file_alloc+0x34/0x170 [ 923.002934] should_failslab+0x5/0x20 [ 923.003884] kmem_cache_alloc+0x5b/0x310 [ 923.004906] security_file_alloc+0x34/0x170 [ 923.005985] __alloc_file+0xb7/0x320 [ 923.006913] alloc_empty_file+0x6d/0x170 [ 923.007929] path_openat+0xe6/0x2770 [ 923.008220] FAULT_INJECTION: forcing a failure. [ 923.008220] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 923.009003] ? __lock_acquire+0x1657/0x5b00 [ 923.009061] ? path_lookupat+0x860/0x860 [ 923.014178] ? perf_trace_lock+0xac/0x490 [ 923.015182] ? SOFTIRQ_verbose+0x10/0x10 [ 923.016334] ? find_held_lock+0x2c/0x110 [ 923.017365] ? __lockdep_reset_lock+0x180/0x180 [ 923.018514] do_filp_open+0x190/0x3e0 [ 923.019602] ? may_open_dev+0xf0/0xf0 [ 923.020525] ? alloc_fd+0x2e7/0x670 [ 923.021433] ? lock_downgrade+0x6d0/0x6d0 [ 923.022450] ? do_raw_spin_lock+0x121/0x260 [ 923.023508] ? rwlock_bug.part.0+0x90/0x90 [ 923.024589] ? _raw_spin_unlock+0x1a/0x30 [ 923.025624] ? alloc_fd+0x2e7/0x670 [ 923.026558] do_sys_openat2+0x171/0x4d0 [ 923.027519] ? build_open_flags+0x6f0/0x6f0 [ 923.028591] ? rcu_read_lock_any_held+0x75/0xa0 [ 923.029742] __x64_sys_openat+0x13f/0x1f0 [ 923.030753] ? __ia32_sys_open+0x1c0/0x1c0 [ 923.031963] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 923.033230] ? syscall_enter_from_user_mode+0x1d/0x50 [ 923.034710] do_syscall_64+0x33/0x40 [ 923.035644] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 923.037091] RIP: 0033:0x7f9be85eea04 [ 923.038031] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 923.042537] RSP: 002b:00007f9be5bb0ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 923.044391] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be85eea04 [ 923.046117] RDX: 0000000000000002 RSI: 00007f9be5bb1000 RDI: 00000000ffffff9c [ 923.047849] RBP: 00007f9be5bb1000 R08: 0000000000000000 R09: ffffffffffffffff [ 923.049500] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 923.051101] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 923.052779] CPU: 1 PID: 6722 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 923.054604] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 923.056690] Call Trace: [ 923.057402] dump_stack+0x107/0x167 [ 923.058292] should_fail.cold+0x5/0xa [ 923.059668] strncpy_from_user+0x34/0x470 [ 923.060772] getname_flags.part.0+0x95/0x4f0 [ 923.061818] getname+0x8e/0xd0 [ 923.062541] do_sys_openat2+0xf9/0x4d0 [ 923.063397] ? build_open_flags+0x6f0/0x6f0 [ 923.064332] ? rcu_read_lock_any_held+0x75/0xa0 [ 923.065386] __x64_sys_openat+0x13f/0x1f0 [ 923.066308] ? __ia32_sys_open+0x1c0/0x1c0 [ 923.067244] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 923.068376] ? syscall_enter_from_user_mode+0x1d/0x50 [ 923.069564] do_syscall_64+0x33/0x40 [ 923.070482] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 923.071841] RIP: 0033:0x7fd805066a04 [ 923.072737] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 923.077066] RSP: 002b:00007fd802628ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 923.078783] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd805066a04 [ 923.080907] RDX: 0000000000000002 RSI: 00007fd802629000 RDI: 00000000ffffff9c [ 923.082415] RBP: 00007fd802629000 R08: 0000000000000000 R09: ffffffffffffffff [ 923.083796] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 923.085180] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:32:35 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x210}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) 18:32:35 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:32:35 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}]}, 0x1c}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:32:35 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 20) [ 923.250193] FAULT_INJECTION: forcing a failure. [ 923.250193] name failslab, interval 1, probability 0, space 0, times 0 [ 923.252434] CPU: 1 PID: 6736 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 923.253722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 923.255263] Call Trace: [ 923.255757] dump_stack+0x107/0x167 [ 923.256434] should_fail.cold+0x5/0xa [ 923.257141] ? create_object.isra.0+0x3a/0xa20 [ 923.258005] should_failslab+0x5/0x20 [ 923.258706] kmem_cache_alloc+0x5b/0x310 [ 923.259452] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 923.260465] create_object.isra.0+0x3a/0xa20 [ 923.261281] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 923.262227] kmem_cache_alloc+0x159/0x310 [ 923.263001] security_file_alloc+0x34/0x170 [ 923.263796] __alloc_file+0xb7/0x320 [ 923.264482] alloc_empty_file+0x6d/0x170 [ 923.265234] path_openat+0xe6/0x2770 [ 923.265940] ? __lock_acquire+0x1657/0x5b00 [ 923.266811] ? path_lookupat+0x860/0x860 [ 923.267575] ? perf_trace_lock+0xac/0x490 [ 923.268335] ? SOFTIRQ_verbose+0x10/0x10 [ 923.269084] ? find_held_lock+0x2c/0x110 [ 923.269852] ? __lockdep_reset_lock+0x180/0x180 [ 923.270712] do_filp_open+0x190/0x3e0 [ 923.271416] ? may_open_dev+0xf0/0xf0 [ 923.272121] ? alloc_fd+0x2e7/0x670 [ 923.272789] ? lock_downgrade+0x6d0/0x6d0 [ 923.273566] ? do_raw_spin_lock+0x121/0x260 [ 923.274360] ? rwlock_bug.part.0+0x90/0x90 [ 923.275148] ? _raw_spin_unlock+0x1a/0x30 [ 923.275911] ? alloc_fd+0x2e7/0x670 [ 923.276586] do_sys_openat2+0x171/0x4d0 [ 923.277322] ? build_open_flags+0x6f0/0x6f0 [ 923.278163] ? rcu_read_lock_any_held+0x75/0xa0 [ 923.279026] __x64_sys_openat+0x13f/0x1f0 [ 923.279781] ? __ia32_sys_open+0x1c0/0x1c0 [ 923.280557] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 923.281525] ? syscall_enter_from_user_mode+0x1d/0x50 [ 923.282476] do_syscall_64+0x33/0x40 [ 923.283159] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 923.284099] RIP: 0033:0x7f9be85eea04 [ 923.284783] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 923.288190] RSP: 002b:00007f9be5bb0ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 923.289591] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be85eea04 [ 923.290894] RDX: 0000000000000002 RSI: 00007f9be5bb1000 RDI: 00000000ffffff9c [ 923.292193] RBP: 00007f9be5bb1000 R08: 0000000000000000 R09: ffffffffffffffff [ 923.293505] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 923.294804] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:32:35 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6034, 0x100}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) 18:32:35 executing program 4: gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:32:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r1 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r6 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:32:35 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r1, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) syncfs(r1) r4 = gettid() dup(r0) rt_tgsigqueueinfo(r4, r4, 0x0, &(0x7f0000000640)) 18:32:35 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:32:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 17) [ 923.436716] loop0: detected capacity change from 0 to 512 [ 923.601880] FAULT_INJECTION: forcing a failure. [ 923.601880] name failslab, interval 1, probability 0, space 0, times 0 [ 923.604320] CPU: 1 PID: 6752 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 923.605751] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 923.607590] Call Trace: [ 923.608256] dump_stack+0x107/0x167 [ 923.609038] should_fail.cold+0x5/0xa [ 923.609871] ? __alloc_file+0x21/0x320 [ 923.610709] should_failslab+0x5/0x20 [ 923.611525] kmem_cache_alloc+0x5b/0x310 [ 923.612397] __alloc_file+0x21/0x320 [ 923.613188] alloc_empty_file+0x6d/0x170 [ 923.614064] path_openat+0xe6/0x2770 [ 923.614858] ? __lock_acquire+0x1657/0x5b00 [ 923.615847] ? path_lookupat+0x860/0x860 [ 923.616804] ? perf_trace_lock+0xac/0x490 [ 923.617780] ? SOFTIRQ_verbose+0x10/0x10 [ 923.618717] ? find_held_lock+0x2c/0x110 [ 923.619643] ? __lockdep_reset_lock+0x180/0x180 [ 923.620739] do_filp_open+0x190/0x3e0 [ 923.621635] ? may_open_dev+0xf0/0xf0 [ 923.622530] ? alloc_fd+0x2e7/0x670 [ 923.623374] ? lock_downgrade+0x6d0/0x6d0 [ 923.624340] ? do_raw_spin_lock+0x121/0x260 [ 923.625344] ? rwlock_bug.part.0+0x90/0x90 [ 923.626339] ? _raw_spin_unlock+0x1a/0x30 [ 923.627287] ? alloc_fd+0x2e7/0x670 [ 923.628132] do_sys_openat2+0x171/0x4d0 [ 923.629050] ? build_open_flags+0x6f0/0x6f0 [ 923.630064] ? rcu_read_lock_any_held+0x75/0xa0 [ 923.631159] __x64_sys_openat+0x13f/0x1f0 [ 923.632117] ? __ia32_sys_open+0x1c0/0x1c0 [ 923.633102] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 923.634326] ? syscall_enter_from_user_mode+0x1d/0x50 [ 923.635535] do_syscall_64+0x33/0x40 [ 923.636390] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 923.637573] RIP: 0033:0x7fd805066a04 [ 923.638428] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 923.642679] RSP: 002b:00007fd802628ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 923.644426] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd805066a04 [ 923.646680] RDX: 0000000000000002 RSI: 00007fd802629000 RDI: 00000000ffffff9c [ 923.648264] RBP: 00007fd802629000 R08: 0000000000000000 R09: ffffffffffffffff [ 923.649861] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 923.651360] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:32:54 executing program 1: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:32:54 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}]}, 0x1c}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:32:54 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:32:54 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 18) 18:32:54 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 21) 18:32:54 executing program 4: gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:32:54 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0) fstat(r2, &(0x7f0000000040)) rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) 18:32:54 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r1 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r6 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 941.948547] FAULT_INJECTION: forcing a failure. [ 941.948547] name failslab, interval 1, probability 0, space 0, times 0 [ 941.951306] CPU: 0 PID: 6769 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 941.952806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 941.954598] Call Trace: [ 941.955183] dump_stack+0x107/0x167 [ 941.955998] should_fail.cold+0x5/0xa [ 941.956843] ? __kthread_create_on_node+0xd1/0x400 [ 941.957934] should_failslab+0x5/0x20 [ 941.958747] kmem_cache_alloc_trace+0x55/0x320 [ 941.959759] ? loop_info64_to_compat+0x5f0/0x5f0 [ 941.960783] __kthread_create_on_node+0xd1/0x400 [ 941.961790] ? __kthread_parkme+0x1d0/0x1d0 [ 941.962749] ? __mutex_lock+0x4fe/0x10b0 [ 941.963618] ? loop_configure+0xc8a/0x1410 [ 941.964531] ? do_raw_spin_unlock+0x4f/0x220 [ 941.965523] ? loop_info64_to_compat+0x5f0/0x5f0 [ 941.966570] kthread_create_on_node+0xbb/0x100 [ 941.967539] ? __kthread_create_on_node+0x400/0x400 [ 941.968807] ? lockdep_init_map_type+0x2c7/0x780 [ 941.969817] ? lockdep_init_map_type+0x2c7/0x780 [ 941.970865] loop_configure+0x3e7/0x1410 [ 941.971765] lo_ioctl+0xa57/0x16b0 [ 941.972528] ? avc_has_extended_perms+0x7f1/0xf40 [ 941.973559] ? loop_set_status_old+0x250/0x250 [ 941.974563] ? avc_ss_reset+0x180/0x180 [ 941.975410] ? find_held_lock+0x2c/0x110 [ 941.976303] ? __lock_acquire+0xbb1/0x5b00 [ 941.977313] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 941.978460] ? generic_block_fiemap+0x60/0x60 [ 941.979413] ? lock_downgrade+0x6d0/0x6d0 [ 941.980317] ? build_open_flags+0x6f0/0x6f0 [ 941.981261] ? loop_set_status_old+0x250/0x250 [ 941.982260] blkdev_ioctl+0x291/0x710 [ 941.983085] ? blkdev_common_ioctl+0x1930/0x1930 [ 941.984105] ? selinux_file_ioctl+0xb6/0x270 [ 941.985082] block_ioctl+0xf9/0x140 [ 941.985848] ? blkdev_read_iter+0x1c0/0x1c0 [ 941.986775] __x64_sys_ioctl+0x19a/0x210 [ 941.987672] do_syscall_64+0x33/0x40 [ 941.988387] FAULT_INJECTION: forcing a failure. [ 941.988387] name failslab, interval 1, probability 0, space 0, times 0 [ 941.988487] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 941.990938] RIP: 0033:0x7f9be863b8d7 [ 941.991756] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 941.995764] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 941.997433] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 941.998991] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 942.000544] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 942.002077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 942.003618] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 942.005185] CPU: 1 PID: 6781 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 942.006055] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 942.007040] Call Trace: [ 942.007354] dump_stack+0x107/0x167 [ 942.007777] should_fail.cold+0x5/0xa [ 942.008227] ? create_object.isra.0+0x3a/0xa20 [ 942.008775] should_failslab+0x5/0x20 [ 942.009224] kmem_cache_alloc+0x5b/0x310 [ 942.009704] create_object.isra.0+0x3a/0xa20 [ 942.010229] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 942.010818] kmem_cache_alloc+0x159/0x310 [ 942.011298] __alloc_file+0x21/0x320 [ 942.011730] alloc_empty_file+0x6d/0x170 [ 942.012200] path_openat+0xe6/0x2770 [ 942.012630] ? __lock_acquire+0x1657/0x5b00 [ 942.013137] ? path_lookupat+0x860/0x860 [ 942.013605] ? perf_trace_lock+0xac/0x490 [ 942.014094] ? SOFTIRQ_verbose+0x10/0x10 [ 942.014568] ? find_held_lock+0x2c/0x110 [ 942.015041] ? __lockdep_reset_lock+0x180/0x180 [ 942.015599] do_filp_open+0x190/0x3e0 [ 942.016060] ? may_open_dev+0xf0/0xf0 [ 942.016533] ? alloc_fd+0x2e7/0x670 [ 942.016970] ? lock_downgrade+0x6d0/0x6d0 [ 942.017474] ? do_raw_spin_lock+0x121/0x260 [ 942.018004] ? rwlock_bug.part.0+0x90/0x90 [ 942.018508] ? _raw_spin_unlock+0x1a/0x30 [ 942.018999] ? alloc_fd+0x2e7/0x670 [ 942.019440] do_sys_openat2+0x171/0x4d0 [ 942.019906] ? build_open_flags+0x6f0/0x6f0 [ 942.020410] ? rcu_read_lock_any_held+0x75/0xa0 [ 942.020959] __x64_sys_openat+0x13f/0x1f0 [ 942.021438] ? __ia32_sys_open+0x1c0/0x1c0 [ 942.021941] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 942.022560] ? syscall_enter_from_user_mode+0x1d/0x50 [ 942.023153] do_syscall_64+0x33/0x40 [ 942.023585] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 942.024179] RIP: 0033:0x7fd805066a04 [ 942.024608] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 942.026748] RSP: 002b:00007fd802628ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 942.027627] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd805066a04 [ 942.028448] RDX: 0000000000000002 RSI: 00007fd802629000 RDI: 00000000ffffff9c [ 942.029277] RBP: 00007fd802629000 R08: 0000000000000000 R09: ffffffffffffffff [ 942.030110] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 942.030939] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:32:54 executing program 4: gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:32:54 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 22) 18:32:54 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) r1 = fork() rt_sigqueueinfo(r1, 0x3c, &(0x7f0000000000)={0x15, 0x5, 0x7}) 18:32:54 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}]}, 0x1c}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 942.246366] FAULT_INJECTION: forcing a failure. [ 942.246366] name failslab, interval 1, probability 0, space 0, times 0 [ 942.248862] CPU: 0 PID: 6799 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 942.250349] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 942.252103] Call Trace: [ 942.252665] dump_stack+0x107/0x167 [ 942.253451] should_fail.cold+0x5/0xa [ 942.254303] ? create_object.isra.0+0x3a/0xa20 [ 942.255282] should_failslab+0x5/0x20 [ 942.256099] kmem_cache_alloc+0x5b/0x310 [ 942.256982] create_object.isra.0+0x3a/0xa20 [ 942.257909] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 942.259038] kmem_cache_alloc_trace+0x151/0x320 [ 942.260040] ? loop_info64_to_compat+0x5f0/0x5f0 [ 942.261048] __kthread_create_on_node+0xd1/0x400 [ 942.262092] ? __kthread_parkme+0x1d0/0x1d0 [ 942.263050] ? __mutex_lock+0x4fe/0x10b0 [ 942.263924] ? loop_configure+0xc8a/0x1410 [ 942.264831] ? do_raw_spin_unlock+0x4f/0x220 [ 942.265765] ? loop_info64_to_compat+0x5f0/0x5f0 [ 942.266820] kthread_create_on_node+0xbb/0x100 [ 942.267802] ? __kthread_create_on_node+0x400/0x400 [ 942.268882] ? lockdep_init_map_type+0x2c7/0x780 [ 942.269888] ? lockdep_init_map_type+0x2c7/0x780 [ 942.270951] loop_configure+0x3e7/0x1410 [ 942.271856] lo_ioctl+0xa57/0x16b0 [ 942.272616] ? avc_has_extended_perms+0x7f1/0xf40 [ 942.273649] ? loop_set_status_old+0x250/0x250 [ 942.274658] ? avc_ss_reset+0x180/0x180 [ 942.275503] ? find_held_lock+0x2c/0x110 [ 942.276401] ? __lock_acquire+0xbb1/0x5b00 [ 942.277417] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 942.278561] ? generic_block_fiemap+0x60/0x60 [ 942.279524] ? lock_downgrade+0x6d0/0x6d0 [ 942.280416] ? build_open_flags+0x6f0/0x6f0 [ 942.281345] ? loop_set_status_old+0x250/0x250 [ 942.282347] blkdev_ioctl+0x291/0x710 [ 942.283168] ? blkdev_common_ioctl+0x1930/0x1930 [ 942.284187] ? selinux_file_ioctl+0xb6/0x270 [ 942.285134] block_ioctl+0xf9/0x140 [ 942.285910] ? blkdev_read_iter+0x1c0/0x1c0 [ 942.286881] __x64_sys_ioctl+0x19a/0x210 [ 942.287746] do_syscall_64+0x33/0x40 [ 942.288533] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 942.289612] RIP: 0033:0x7f9be863b8d7 [ 942.290429] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 942.294351] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 942.295967] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 942.297484] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 942.299017] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 942.300523] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 942.302056] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 942.343636] loop0: detected capacity change from 0 to 512 18:33:10 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)=ANY=[@ANYBLOB="0e00eaff0000400018002000", @ANYRES32=0xffffffffffffffff, @ANYRES32=0xee00, @ANYRES32=0xee00, @ANYBLOB='./file0\x00']) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000800)=ANY=[]) r2 = socket$netlink(0x10, 0x3, 0x0) fallocate(r0, 0x30, 0xffffffffffffff75, 0x10001) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000"], 0x24}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB='e1\x00']) r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x200000, 0x0) openat(r4, &(0x7f0000000400)='./file1\x00', 0x0, 0x4) read(r3, &(0x7f00000006c0)=""/135, 0x87) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x90}, 0x0, 0x10, 0xffffffffffffffff, 0x2) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) preadv(0xffffffffffffffff, &(0x7f00000002c0), 0x0, 0x6a96, 0x1004) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46800) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20000001}, 0xc, &(0x7f0000000640)={&(0x7f0000000940)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0300000075650020d2450c0004000000010000800000080001000000000000000100000000000c0001000b2c50d8a7302f00000000000f000c000300090000000000efff00000000000000dcee83670b66e44bdfb1f15a3ad985ed4b703a91d791cb68a6"], 0x54}, 0x1, 0x0, 0x0, 0x4000091}, 0x30004840) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)={0xac, 0x1, 0x2, 0x101, 0x0, 0x0, {0xa6ec5e4bc01b8d34, 0x0, 0x6}, [@CTA_EXPECT_HELP_NAME={0xe, 0x6, 'sip-20000\x00'}, @CTA_EXPECT_HELP_NAME={0x9, 0x6, 'syz1\x00'}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0xffffff80}, @CTA_EXPECT_ZONE={0x6}, @CTA_EXPECT_TUPLE={0x5c, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x35}}}}]}, @CTA_EXPECT_FN={0x8, 0xb, 'sip\x00'}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}]}, 0xac}, 0x1, 0x0, 0x0, 0x8081}, 0x10) 18:33:10 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:33:10 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 23) 18:33:10 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:33:10 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 19) 18:33:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:33:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r1 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r6 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:33:10 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34b18ab379c0e185, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x110, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) [ 958.083885] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 958.085499] FAULT_INJECTION: forcing a failure. [ 958.085499] name failslab, interval 1, probability 0, space 0, times 0 [ 958.087243] CPU: 0 PID: 6825 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 958.088214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 958.089372] Call Trace: [ 958.089750] dump_stack+0x107/0x167 [ 958.090258] should_fail.cold+0x5/0xa [ 958.090836] ? __kernfs_new_node+0xd4/0x860 [ 958.091456] should_failslab+0x5/0x20 [ 958.091997] kmem_cache_alloc+0x5b/0x310 [ 958.092580] __kernfs_new_node+0xd4/0x860 [ 958.093177] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 958.093826] ? perf_trace_lock+0xac/0x490 [ 958.094381] ? perf_trace_lock+0xac/0x490 [ 958.094953] ? lock_chain_count+0x20/0x20 [ 958.095533] ? __lockdep_reset_lock+0x180/0x180 [ 958.096179] ? __lockdep_reset_lock+0x180/0x180 [ 958.096824] ? task_rq_lock+0xab/0x270 [ 958.097369] ? lock_release+0x680/0x680 [ 958.097899] ? find_held_lock+0x2c/0x110 [ 958.098467] kernfs_new_node+0x18d/0x250 [ 958.099038] kernfs_create_dir_ns+0x49/0x160 [ 958.099657] internal_create_group+0x793/0xb30 [ 958.100298] ? set_user_nice.part.0+0x2fd/0x760 [ 958.100948] ? sysfs_remove_group+0x170/0x170 [ 958.101596] ? lockdep_init_map_type+0x2c7/0x780 [ 958.102264] ? blk_queue_flag_set+0x22/0x30 [ 958.102892] ? __loop_update_dio+0x2d2/0x690 [ 958.103514] loop_configure+0x953/0x1410 [ 958.104109] lo_ioctl+0xa57/0x16b0 [ 958.104608] ? avc_has_extended_perms+0x7f1/0xf40 [ 958.105289] ? loop_set_status_old+0x250/0x250 [ 958.105934] ? avc_ss_reset+0x180/0x180 [ 958.106532] ? find_held_lock+0x2c/0x110 [ 958.107128] ? __lock_acquire+0xbb1/0x5b00 [ 958.107798] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 958.108542] ? generic_block_fiemap+0x60/0x60 [ 958.109136] ? lock_downgrade+0x6d0/0x6d0 [ 958.109689] ? build_open_flags+0x6f0/0x6f0 [ 958.110269] ? loop_set_status_old+0x250/0x250 [ 958.110885] blkdev_ioctl+0x291/0x710 [ 958.111402] ? blkdev_common_ioctl+0x1930/0x1930 [ 958.112063] ? selinux_file_ioctl+0xb6/0x270 [ 958.112670] block_ioctl+0xf9/0x140 [ 958.113159] ? blkdev_read_iter+0x1c0/0x1c0 [ 958.113752] __x64_sys_ioctl+0x19a/0x210 [ 958.114327] do_syscall_64+0x33/0x40 [ 958.114829] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 958.115531] RIP: 0033:0x7f9be863b8d7 [ 958.116053] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 958.118528] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 958.119561] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 958.120536] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 958.121543] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 958.122608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 958.123639] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:33:10 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() [ 958.140158] FAULT_INJECTION: forcing a failure. [ 958.140158] name failslab, interval 1, probability 0, space 0, times 0 [ 958.141767] CPU: 0 PID: 6829 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 958.142687] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 958.143774] Call Trace: [ 958.144127] dump_stack+0x107/0x167 [ 958.144612] should_fail.cold+0x5/0xa [ 958.145130] ? security_file_alloc+0x34/0x170 [ 958.145711] should_failslab+0x5/0x20 [ 958.146250] kmem_cache_alloc+0x5b/0x310 [ 958.146864] security_file_alloc+0x34/0x170 [ 958.147443] __alloc_file+0xb7/0x320 [ 958.147936] alloc_empty_file+0x6d/0x170 [ 958.148475] path_openat+0xe6/0x2770 [ 958.148958] ? __lock_acquire+0x1657/0x5b00 [ 958.149551] ? path_lookupat+0x860/0x860 [ 958.150106] ? perf_trace_lock+0xac/0x490 [ 958.150713] ? SOFTIRQ_verbose+0x10/0x10 [ 958.151274] ? find_held_lock+0x2c/0x110 [ 958.151807] ? __lockdep_reset_lock+0x180/0x180 [ 958.152444] do_filp_open+0x190/0x3e0 [ 958.152961] ? may_open_dev+0xf0/0xf0 [ 958.153470] ? alloc_fd+0x2e7/0x670 [ 958.153948] ? lock_downgrade+0x6d0/0x6d0 [ 958.154550] ? do_raw_spin_lock+0x121/0x260 [ 958.155147] ? rwlock_bug.part.0+0x90/0x90 [ 958.155762] ? _raw_spin_unlock+0x1a/0x30 [ 958.156312] ? alloc_fd+0x2e7/0x670 [ 958.156819] do_sys_openat2+0x171/0x4d0 [ 958.157362] ? build_open_flags+0x6f0/0x6f0 [ 958.157991] ? rcu_read_lock_any_held+0x75/0xa0 [ 958.158672] __x64_sys_openat+0x13f/0x1f0 [ 958.159229] ? __ia32_sys_open+0x1c0/0x1c0 [ 958.159803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 958.160475] ? syscall_enter_from_user_mode+0x1d/0x50 [ 958.161166] do_syscall_64+0x33/0x40 [ 958.161662] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 958.162337] RIP: 0033:0x7fd805066a04 [ 958.162821] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 958.165207] RSP: 002b:00007fd802628ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 958.166191] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd805066a04 [ 958.167127] RDX: 0000000000000002 RSI: 00007fd802629000 RDI: 00000000ffffff9c [ 958.168056] RBP: 00007fd802629000 R08: 0000000000000000 R09: ffffffffffffffff [ 958.168993] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 958.169846] loop0: detected capacity change from 0 to 512 [ 958.169938] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:33:10 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:33:10 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 24) 18:33:10 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 20) [ 958.268477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 958.269382] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 958.270353] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 18:33:10 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc88, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r0, &(0x7f0000000200), &(0x7f0000000100)=@v3={0x3000000, [{0x7fffffff, 0x7fffffff}, {0x1, 0x3f}], 0xee00}, 0x18, 0x1) ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0xffff) r3 = gettid() rt_tgsigqueueinfo(r3, r3, 0x0, &(0x7f0000000640)) [ 958.313120] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 18:33:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r6 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 958.331790] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 958.332648] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 958.333554] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 958.337405] FAULT_INJECTION: forcing a failure. [ 958.337405] name failslab, interval 1, probability 0, space 0, times 0 [ 958.338901] CPU: 0 PID: 6841 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 958.339690] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 958.340655] Call Trace: [ 958.340975] dump_stack+0x107/0x167 [ 958.341414] should_fail.cold+0x5/0xa [ 958.341864] ? create_object.isra.0+0x3a/0xa20 [ 958.342403] should_failslab+0x5/0x20 [ 958.342876] kmem_cache_alloc+0x5b/0x310 [ 958.343359] create_object.isra.0+0x3a/0xa20 [ 958.343867] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 958.344471] kmem_cache_alloc+0x159/0x310 [ 958.344977] __kernfs_new_node+0xd4/0x860 [ 958.345465] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 958.346016] ? perf_trace_lock+0xac/0x490 [ 958.346512] ? perf_trace_lock+0xac/0x490 [ 958.346999] ? lock_chain_count+0x20/0x20 [ 958.347493] ? __lockdep_reset_lock+0x180/0x180 [ 958.348040] ? __lockdep_reset_lock+0x180/0x180 [ 958.348584] ? task_rq_lock+0xab/0x270 [ 958.349051] ? lock_release+0x680/0x680 [ 958.349512] ? find_held_lock+0x2c/0x110 [ 958.349990] kernfs_new_node+0x18d/0x250 [ 958.350469] kernfs_create_dir_ns+0x49/0x160 [ 958.350995] internal_create_group+0x793/0xb30 [ 958.351538] ? set_user_nice.part.0+0x2fd/0x760 [ 958.352078] ? sysfs_remove_group+0x170/0x170 [ 958.352610] ? lockdep_init_map_type+0x2c7/0x780 [ 958.353173] ? blk_queue_flag_set+0x22/0x30 [ 958.353676] ? __loop_update_dio+0x2d2/0x690 [ 958.354190] loop_configure+0x953/0x1410 [ 958.354686] lo_ioctl+0xa57/0x16b0 [ 958.355107] ? avc_has_extended_perms+0x7f1/0xf40 [ 958.355664] ? loop_set_status_old+0x250/0x250 [ 958.356203] ? avc_ss_reset+0x180/0x180 [ 958.356666] ? find_held_lock+0x2c/0x110 [ 958.357159] ? __lock_acquire+0xbb1/0x5b00 [ 958.357713] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 958.358324] ? generic_block_fiemap+0x60/0x60 [ 958.358860] ? lock_downgrade+0x6d0/0x6d0 [ 958.359338] ? build_open_flags+0x6f0/0x6f0 [ 958.359851] ? loop_set_status_old+0x250/0x250 [ 958.360379] blkdev_ioctl+0x291/0x710 [ 958.360821] ? blkdev_common_ioctl+0x1930/0x1930 [ 958.361378] ? selinux_file_ioctl+0xb6/0x270 [ 958.361895] block_ioctl+0xf9/0x140 [ 958.362318] ? blkdev_read_iter+0x1c0/0x1c0 [ 958.362826] __x64_sys_ioctl+0x19a/0x210 [ 958.363303] do_syscall_64+0x33/0x40 [ 958.363733] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 958.364334] RIP: 0033:0x7f9be863b8d7 [ 958.364767] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 958.366883] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 958.367766] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 958.368582] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 958.369401] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 958.370219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 958.371051] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 958.380875] FAULT_INJECTION: forcing a failure. [ 958.380875] name failslab, interval 1, probability 0, space 0, times 0 [ 958.382481] CPU: 0 PID: 6846 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 958.383273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 18:33:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:33:10 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) [ 958.384216] Call Trace: [ 958.384732] dump_stack+0x107/0x167 [ 958.385240] should_fail.cold+0x5/0xa [ 958.385686] ? create_object.isra.0+0x3a/0xa20 [ 958.386330] should_failslab+0x5/0x20 [ 958.386808] kmem_cache_alloc+0x5b/0x310 [ 958.387383] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 958.388152] create_object.isra.0+0x3a/0xa20 [ 958.388763] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 958.389478] kmem_cache_alloc+0x159/0x310 [ 958.390076] security_file_alloc+0x34/0x170 [ 958.390693] __alloc_file+0xb7/0x320 [ 958.391212] alloc_empty_file+0x6d/0x170 [ 958.391786] path_openat+0xe6/0x2770 [ 958.392303] ? __lock_acquire+0x1657/0x5b00 [ 958.392925] ? path_lookupat+0x860/0x860 [ 958.393490] ? perf_trace_lock+0xac/0x490 [ 958.394061] ? SOFTIRQ_verbose+0x10/0x10 [ 958.394633] ? find_held_lock+0x2c/0x110 [ 958.395207] ? __lockdep_reset_lock+0x180/0x180 [ 958.395867] do_filp_open+0x190/0x3e0 [ 958.396405] ? may_open_dev+0xf0/0xf0 [ 958.396954] ? alloc_fd+0x2e7/0x670 [ 958.397463] ? lock_downgrade+0x6d0/0x6d0 [ 958.398045] ? do_raw_spin_lock+0x121/0x260 [ 958.398646] ? rwlock_bug.part.0+0x90/0x90 [ 958.399253] ? _raw_spin_unlock+0x1a/0x30 [ 958.399824] ? alloc_fd+0x2e7/0x670 [ 958.400352] do_sys_openat2+0x171/0x4d0 [ 958.400919] ? build_open_flags+0x6f0/0x6f0 [ 958.401537] ? rcu_read_lock_any_held+0x75/0xa0 [ 958.402198] __x64_sys_openat+0x13f/0x1f0 [ 958.402786] ? __ia32_sys_open+0x1c0/0x1c0 [ 958.403386] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 958.404123] ? syscall_enter_from_user_mode+0x1d/0x50 [ 958.404848] do_syscall_64+0x33/0x40 [ 958.405373] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 958.406084] RIP: 0033:0x7fd805066a04 [ 958.406612] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 958.409151] RSP: 002b:00007fd802628ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 958.410208] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd805066a04 [ 958.411193] RDX: 0000000000000002 RSI: 00007fd802629000 RDI: 00000000ffffff9c [ 958.412187] RBP: 00007fd802629000 R08: 0000000000000000 R09: ffffffffffffffff [ 958.413177] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 958.414171] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 958.437510] loop0: detected capacity change from 0 to 512 18:33:25 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r6 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:33:25 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) r2 = gettid() perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x9, 0x3, 0x0, 0x9, 0x0, 0x5, 0x80000, 0x5, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x7fff, 0x0, @perf_config_ext={0xcd, 0x6}, 0x48100, 0x100000001, 0x4, 0x2, 0x7ff, 0x0, 0x3, 0x0, 0x6, 0x0, 0x7}, r1, 0x2, r0, 0x9) rt_tgsigqueueinfo(r2, r2, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffff9}) sched_setaffinity(r2, 0x8, &(0x7f0000000000)=0x9) 18:33:25 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:33:25 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:33:25 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 25) 18:33:25 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x28, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @uid}, @typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x28}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:33:25 executing program 4: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:33:25 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 21) [ 973.666442] FAULT_INJECTION: forcing a failure. [ 973.666442] name failslab, interval 1, probability 0, space 0, times 0 [ 973.667938] CPU: 0 PID: 6877 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 973.668891] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 973.670053] Call Trace: [ 973.670431] dump_stack+0x107/0x167 [ 973.670947] should_fail.cold+0x5/0xa [ 973.671497] ? create_object.isra.0+0x3a/0xa20 [ 973.672148] should_failslab+0x5/0x20 [ 973.672688] kmem_cache_alloc+0x5b/0x310 [ 973.673279] create_object.isra.0+0x3a/0xa20 [ 973.673894] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 973.674619] kmem_cache_alloc+0x159/0x310 [ 973.675223] __kernfs_new_node+0xd4/0x860 [ 973.675812] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 973.676481] ? perf_trace_lock+0xac/0x490 [ 973.677060] ? perf_trace_lock+0xac/0x490 [ 973.677645] ? lock_chain_count+0x20/0x20 [ 973.678232] ? __lockdep_reset_lock+0x180/0x180 [ 973.678882] ? __lockdep_reset_lock+0x180/0x180 [ 973.679532] ? task_rq_lock+0xab/0x270 [ 973.680082] ? lock_release+0x680/0x680 [ 973.680640] ? find_held_lock+0x2c/0x110 [ 973.681220] kernfs_new_node+0x18d/0x250 [ 973.681800] kernfs_create_dir_ns+0x49/0x160 [ 973.682421] internal_create_group+0x793/0xb30 [ 973.683081] ? set_user_nice.part.0+0x2fd/0x760 [ 973.683738] ? sysfs_remove_group+0x170/0x170 [ 973.684370] ? lockdep_init_map_type+0x2c7/0x780 [ 973.685036] ? blk_queue_flag_set+0x22/0x30 [ 973.685641] ? __loop_update_dio+0x2d2/0x690 [ 973.686272] loop_configure+0x953/0x1410 [ 973.686862] lo_ioctl+0xa57/0x16b0 [ 973.687374] ? avc_has_extended_perms+0x7f1/0xf40 [ 973.688055] ? loop_set_status_old+0x250/0x250 [ 973.688705] ? avc_ss_reset+0x180/0x180 [ 973.689267] ? find_held_lock+0x2c/0x110 [ 973.689855] ? __lock_acquire+0xbb1/0x5b00 [ 973.690500] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 973.691236] ? generic_block_fiemap+0x60/0x60 [ 973.691863] ? lock_downgrade+0x6d0/0x6d0 [ 973.692439] ? build_open_flags+0x6f0/0x6f0 [ 973.693057] ? loop_set_status_old+0x250/0x250 [ 973.693697] blkdev_ioctl+0x291/0x710 [ 973.694239] ? blkdev_common_ioctl+0x1930/0x1930 [ 973.694907] ? selinux_file_ioctl+0xb6/0x270 [ 973.695532] block_ioctl+0xf9/0x140 [ 973.696040] ? blkdev_read_iter+0x1c0/0x1c0 [ 973.696646] __x64_sys_ioctl+0x19a/0x210 [ 973.697217] do_syscall_64+0x33/0x40 [ 973.697740] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 973.698463] RIP: 0033:0x7f9be863b8d7 [ 973.698990] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 973.701553] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 973.702616] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 973.703483] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 973.704244] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 973.704997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 973.705752] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:33:26 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r5 = syz_io_uring_complete(r3) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r6}}, 0x362c) syz_io_uring_submit(r2, r4, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r5, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r6}}, 0x6) fchmodat(r5, &(0x7f0000000100)='./file1\x00', 0xe8) r7 = syz_io_uring_complete(0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r8}}, 0x362c) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r7, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r8}}, 0x6) fchmodat(r7, &(0x7f00000001c0)='./file0\x00', 0x80) openat(r0, &(0x7f0000000040)='./file1\x00', 0x6000, 0x142) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) 18:33:26 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = timerfd_create(0x6, 0x80800) ioctl$EXT4_IOC_GETSTATE(r0, 0x40046629, &(0x7f0000000000)) r1 = gettid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) setpriority(0x0, r1, 0x7) 18:33:26 executing program 4: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:33:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 973.753347] loop0: detected capacity change from 0 to 512 [ 973.756078] FAULT_INJECTION: forcing a failure. [ 973.756078] name failslab, interval 1, probability 0, space 0, times 0 [ 973.758478] CPU: 1 PID: 6878 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 973.759907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 973.761631] Call Trace: [ 973.762186] dump_stack+0x107/0x167 [ 973.762945] should_fail.cold+0x5/0xa [ 973.763758] ? __kthread_create_on_node+0xd1/0x400 [ 973.764786] should_failslab+0x5/0x20 [ 973.765579] kmem_cache_alloc_trace+0x55/0x320 [ 973.766547] ? loop_info64_to_compat+0x5f0/0x5f0 [ 973.767558] __kthread_create_on_node+0xd1/0x400 [ 973.768565] ? __kthread_parkme+0x1d0/0x1d0 [ 973.769480] ? __mutex_lock+0x4fe/0x10b0 [ 973.770325] ? loop_configure+0xc8a/0x1410 [ 973.771217] ? do_raw_spin_unlock+0x4f/0x220 [ 973.772137] ? loop_info64_to_compat+0x5f0/0x5f0 [ 973.773135] kthread_create_on_node+0xbb/0x100 [ 973.774089] ? __kthread_create_on_node+0x400/0x400 [ 973.775137] ? lockdep_init_map_type+0x2c7/0x780 [ 973.776136] ? lockdep_init_map_type+0x2c7/0x780 [ 973.777141] loop_configure+0x3e7/0x1410 [ 973.778014] lo_ioctl+0xa57/0x16b0 [ 973.778899] ? avc_has_extended_perms+0x7f1/0xf40 [ 973.780340] ? loop_set_status_old+0x250/0x250 [ 973.781539] ? avc_ss_reset+0x180/0x180 [ 973.782546] ? find_held_lock+0x2c/0x110 [ 973.783580] ? __lock_acquire+0xbb1/0x5b00 [ 973.784744] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 973.786104] ? generic_block_fiemap+0x60/0x60 [ 973.787277] ? lock_downgrade+0x6d0/0x6d0 [ 973.788167] ? build_open_flags+0x6f0/0x6f0 [ 973.789113] ? loop_set_status_old+0x250/0x250 [ 973.790120] blkdev_ioctl+0x291/0x710 [ 973.791010] ? blkdev_common_ioctl+0x1930/0x1930 [ 973.792310] ? selinux_file_ioctl+0xb6/0x270 [ 973.793356] block_ioctl+0xf9/0x140 [ 973.794215] ? blkdev_read_iter+0x1c0/0x1c0 [ 973.795252] __x64_sys_ioctl+0x19a/0x210 [ 973.796203] do_syscall_64+0x33/0x40 [ 973.797091] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 973.798364] RIP: 0033:0x7fd8050b38d7 [ 973.799296] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 973.803491] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 973.805067] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 973.806530] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 973.808007] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 973.809490] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 973.810976] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 973.871149] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:33:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r6 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:33:26 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 22) 18:33:26 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:33:26 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r1, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x7f}}, './file0\x00'}) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r4) r5 = gettid() rt_tgsigqueueinfo(r5, r5, 0x0, &(0x7f0000000640)) 18:33:26 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 26) 18:33:26 executing program 4: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) [ 974.013173] FAULT_INJECTION: forcing a failure. [ 974.013173] name failslab, interval 1, probability 0, space 0, times 0 [ 974.014619] CPU: 0 PID: 6907 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 974.015420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 974.016423] Call Trace: [ 974.016745] dump_stack+0x107/0x167 [ 974.017175] should_fail.cold+0x5/0xa [ 974.017621] ? create_object.isra.0+0x3a/0xa20 [ 974.018164] should_failslab+0x5/0x20 [ 974.018605] kmem_cache_alloc+0x5b/0x310 [ 974.019104] create_object.isra.0+0x3a/0xa20 [ 974.019613] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 974.020198] kmem_cache_alloc+0x159/0x310 [ 974.020701] __kernfs_new_node+0xd4/0x860 [ 974.021193] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 974.021732] ? kernfs_add_one+0x36e/0x4d0 [ 974.022232] ? mutex_lock_io_nested+0xf30/0xf30 [ 974.022775] ? perf_trace_lock+0xac/0x490 [ 974.023273] ? __mutex_unlock_slowpath+0xe1/0x600 [ 974.023833] kernfs_new_node+0x18d/0x250 [ 974.024313] __kernfs_create_file+0x51/0x350 [ 974.024836] sysfs_add_file_mode_ns+0x221/0x560 [ 974.025391] internal_create_group+0x324/0xb30 [ 974.025936] ? sysfs_remove_group+0x170/0x170 [ 974.026454] ? lockdep_init_map_type+0x2c7/0x780 [ 974.027014] ? blk_queue_flag_set+0x22/0x30 [ 974.027519] ? __loop_update_dio+0x2d2/0x690 [ 974.028037] loop_configure+0x953/0x1410 [ 974.028522] lo_ioctl+0xa57/0x16b0 [ 974.028937] ? avc_has_extended_perms+0x7f1/0xf40 [ 974.029498] ? loop_set_status_old+0x250/0x250 [ 974.030043] ? avc_ss_reset+0x180/0x180 [ 974.030507] ? find_held_lock+0x2c/0x110 [ 974.031004] ? __lock_acquire+0xbb1/0x5b00 [ 974.031564] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 974.032175] ? generic_block_fiemap+0x60/0x60 [ 974.032690] ? lock_downgrade+0x6d0/0x6d0 [ 974.033173] ? build_open_flags+0x6f0/0x6f0 [ 974.033681] ? loop_set_status_old+0x250/0x250 [ 974.034218] blkdev_ioctl+0x291/0x710 [ 974.034662] ? blkdev_common_ioctl+0x1930/0x1930 [ 974.035234] ? selinux_file_ioctl+0xb6/0x270 [ 974.035749] block_ioctl+0xf9/0x140 [ 974.036175] ? blkdev_read_iter+0x1c0/0x1c0 [ 974.036676] __x64_sys_ioctl+0x19a/0x210 [ 974.037146] do_syscall_64+0x33/0x40 [ 974.037571] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 974.038175] RIP: 0033:0x7f9be863b8d7 [ 974.038603] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 974.040749] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 974.041636] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 974.042453] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 974.043278] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 974.044108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 974.044925] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:33:26 executing program 1: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(0x0, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:33:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:33:26 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:33:26 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) accept(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @empty}}}, &(0x7f0000000080)=0x80) readahead(r0, 0x1, 0x1000) r1 = gettid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) write$binfmt_script(0xffffffffffffffff, &(0x7f00000000c0)={'#! ', './file0', [{}, {0x20, '@$}*$'}, {0x20, '}'}, {0x20, '-'}, {}, {0x20, ',\xf4'}, {0x20, '[--*$,:^/\\'}], 0xa, "9a9ee5632ece19fe461926142e1ba21d7f2242fc32ab4d35be3ab600ad24cf863297be1bb1d88c1fd1a7ba2c748dcf5e1303b1e2d6748ffdcf42dbc692acbf0ef7331c752de800576ba740c1f4ca390d3c658467d279ad3e56c6d970dc478668bdf3398009b87c82105f62f78f790647ff7d4fbe901066e4cd01c6dc9da3000d1364a21a2020542bc41e48"}, 0xb0) [ 974.129275] loop0: detected capacity change from 0 to 512 [ 974.130438] FAULT_INJECTION: forcing a failure. [ 974.130438] name failslab, interval 1, probability 0, space 0, times 0 [ 974.133281] CPU: 1 PID: 6906 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 974.134932] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 974.137553] Call Trace: [ 974.138407] dump_stack+0x107/0x167 [ 974.139482] should_fail.cold+0x5/0xa [ 974.140576] ? create_object.isra.0+0x3a/0xa20 [ 974.141842] should_failslab+0x5/0x20 [ 974.142810] kmem_cache_alloc+0x5b/0x310 [ 974.143860] create_object.isra.0+0x3a/0xa20 [ 974.144968] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 974.146057] kmem_cache_alloc_trace+0x151/0x320 [ 974.147067] ? loop_info64_to_compat+0x5f0/0x5f0 [ 974.148075] __kthread_create_on_node+0xd1/0x400 [ 974.149092] ? __kthread_parkme+0x1d0/0x1d0 [ 974.150024] ? __mutex_lock+0x4fe/0x10b0 [ 974.150895] ? loop_configure+0xc8a/0x1410 [ 974.151796] ? do_raw_spin_unlock+0x4f/0x220 [ 974.152738] ? loop_info64_to_compat+0x5f0/0x5f0 [ 974.153741] kthread_create_on_node+0xbb/0x100 [ 974.154706] ? __kthread_create_on_node+0x400/0x400 [ 974.155780] ? lockdep_init_map_type+0x2c7/0x780 [ 974.156774] ? lockdep_init_map_type+0x2c7/0x780 [ 974.157796] loop_configure+0x3e7/0x1410 [ 974.158677] lo_ioctl+0xa57/0x16b0 [ 974.159452] ? avc_has_extended_perms+0x7f1/0xf40 [ 974.160488] ? loop_set_status_old+0x250/0x250 [ 974.161460] ? avc_ss_reset+0x180/0x180 [ 974.162309] ? find_held_lock+0x2c/0x110 [ 974.163204] ? __lock_acquire+0xbb1/0x5b00 [ 974.164170] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 974.165282] ? generic_block_fiemap+0x60/0x60 [ 974.166233] ? lock_downgrade+0x6d0/0x6d0 [ 974.167111] ? build_open_flags+0x6f0/0x6f0 [ 974.168035] ? loop_set_status_old+0x250/0x250 [ 974.169002] blkdev_ioctl+0x291/0x710 [ 974.169808] ? blkdev_common_ioctl+0x1930/0x1930 [ 974.170820] ? selinux_file_ioctl+0xb6/0x270 [ 974.171757] block_ioctl+0xf9/0x140 [ 974.172528] ? blkdev_read_iter+0x1c0/0x1c0 [ 974.173442] __x64_sys_ioctl+0x19a/0x210 [ 974.174304] do_syscall_64+0x33/0x40 [ 974.175102] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 974.176196] RIP: 0033:0x7fd8050b38d7 [ 974.176984] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 974.180890] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 974.182513] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 974.184031] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 974.185544] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 974.187059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 974.188567] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 974.242764] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:33:43 executing program 1: r0 = syz_io_uring_setup(0x4419, &(0x7f00000002c0)={0x0, 0x3cd6, 0x0, 0x3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f0000000040), 0x0) ioctl$BTRFS_IOC_QGROUP_ASSIGN(0xffffffffffffffff, 0x40189429, &(0x7f00000001c0)={0x0, 0x2, 0x7}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ftruncate(r3, 0x1) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) io_uring_enter(0xffffffffffffffff, 0x370e, 0x98df, 0x2, &(0x7f0000000180)={[0x5]}, 0x8) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xacf4ac9b71142221}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 18:33:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:33:43 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:33:43 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 23) 18:33:43 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 27) 18:33:43 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:33:43 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r0, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r3, 0x4) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r3, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r6, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r3, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r7 = syz_io_uring_complete(r5) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r8}}, 0x362c) syz_io_uring_submit(r4, r6, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r7, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r8}}, 0x6) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x8, 0x1010, r7, 0x8000000) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x3, 0x6, 0x20, 0x4, 0x0, 0x80000000, 0x98010, 0x7, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x10000, 0x4, @perf_config_ext={0x9, 0x835}, 0x48000, 0x9, 0x2, 0x9, 0x7fffffff, 0x6, 0x6, 0x0, 0x7, 0x0, 0x81}, 0x0, 0x5, r0, 0x0) r9 = gettid() rt_tgsigqueueinfo(r9, r9, 0x0, &(0x7f0000000640)) 18:33:43 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) [ 990.938331] FAULT_INJECTION: forcing a failure. [ 990.938331] name failslab, interval 1, probability 0, space 0, times 0 [ 990.940825] CPU: 0 PID: 6939 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 990.942259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 990.943970] Call Trace: [ 990.944532] dump_stack+0x107/0x167 [ 990.945304] should_fail.cold+0x5/0xa [ 990.946112] ? __kernfs_new_node+0xd4/0x860 [ 990.947027] should_failslab+0x5/0x20 [ 990.947826] kmem_cache_alloc+0x5b/0x310 [ 990.948684] __kernfs_new_node+0xd4/0x860 [ 990.949561] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 990.950539] ? perf_trace_lock+0xac/0x490 [ 990.951395] ? perf_trace_lock+0xac/0x490 [ 990.952261] ? lock_chain_count+0x20/0x20 [ 990.953127] ? __lockdep_reset_lock+0x180/0x180 [ 990.954082] ? __lockdep_reset_lock+0x180/0x180 [ 990.955038] ? task_rq_lock+0xab/0x270 [ 990.955881] ? lock_release+0x680/0x680 [ 990.956706] ? find_held_lock+0x2c/0x110 [ 990.957559] kernfs_new_node+0x18d/0x250 [ 990.958420] kernfs_create_dir_ns+0x49/0x160 [ 990.959336] internal_create_group+0x793/0xb30 [ 990.960306] ? set_user_nice.part.0+0x2fd/0x760 [ 990.961391] ? sysfs_remove_group+0x170/0x170 [ 990.962343] ? lockdep_init_map_type+0x2c7/0x780 [ 990.963352] ? blk_queue_flag_set+0x22/0x30 [ 990.964270] ? __loop_update_dio+0x2d2/0x690 [ 990.965203] loop_configure+0x953/0x1410 [ 990.966089] lo_ioctl+0xa57/0x16b0 [ 990.966848] ? avc_has_extended_perms+0x7f1/0xf40 [ 990.968001] ? loop_set_status_old+0x250/0x250 [ 990.968983] ? avc_ss_reset+0x180/0x180 [ 990.969906] ? find_held_lock+0x2c/0x110 [ 990.970792] ? __lock_acquire+0xbb1/0x5b00 [ 990.971815] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 990.972921] ? generic_block_fiemap+0x60/0x60 [ 990.973865] ? lock_downgrade+0x6d0/0x6d0 [ 990.974738] ? build_open_flags+0x6f0/0x6f0 [ 990.975678] ? loop_set_status_old+0x250/0x250 [ 990.976638] blkdev_ioctl+0x291/0x710 [ 990.977441] ? blkdev_common_ioctl+0x1930/0x1930 [ 990.978451] ? selinux_file_ioctl+0xb6/0x270 [ 990.979391] block_ioctl+0xf9/0x140 [ 990.980165] ? blkdev_read_iter+0x1c0/0x1c0 [ 990.981079] __x64_sys_ioctl+0x19a/0x210 [ 990.981944] do_syscall_64+0x33/0x40 [ 990.982733] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 990.983858] RIP: 0033:0x7fd8050b38d7 [ 990.984644] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 990.988513] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 990.990115] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 990.991614] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 990.993153] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 990.994644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 990.996158] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 991.008674] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 991.018243] FAULT_INJECTION: forcing a failure. [ 991.018243] name failslab, interval 1, probability 0, space 0, times 0 [ 991.021166] CPU: 1 PID: 6952 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 991.022602] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 991.024752] Call Trace: [ 991.025315] dump_stack+0x107/0x167 [ 991.025338] should_fail.cold+0x5/0xa [ 991.025367] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 991.027041] should_failslab+0x5/0x20 [ 991.027060] kmem_cache_alloc+0x5b/0x310 [ 991.027091] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 991.031424] idr_get_free+0x4b5/0x8f0 [ 991.032244] idr_alloc_u32+0x170/0x2d0 [ 991.033053] ? __fprop_inc_percpu_max+0x130/0x130 [ 991.034046] ? lock_acquire+0x197/0x470 [ 991.034867] ? __kernfs_new_node+0xff/0x860 [ 991.035788] idr_alloc_cyclic+0x102/0x230 [ 991.036643] ? idr_alloc+0x130/0x130 [ 991.037404] ? rwlock_bug.part.0+0x90/0x90 [ 991.038291] __kernfs_new_node+0x117/0x860 [ 991.039170] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 991.040162] ? perf_trace_lock+0xac/0x490 [ 991.041020] ? perf_trace_lock+0xac/0x490 [ 991.041874] ? lock_chain_count+0x20/0x20 [ 991.042728] ? __lockdep_reset_lock+0x180/0x180 [ 991.043701] ? __lockdep_reset_lock+0x180/0x180 [ 991.044676] ? update_load_avg+0x162/0x1870 [ 991.045557] ? find_held_lock+0x2c/0x110 [ 991.046395] kernfs_new_node+0x18d/0x250 [ 991.047235] kernfs_create_dir_ns+0x49/0x160 [ 991.048171] internal_create_group+0x793/0xb30 [ 991.049115] ? set_user_nice.part.0+0x2fd/0x760 [ 991.050072] ? sysfs_remove_group+0x170/0x170 [ 991.050991] ? lockdep_init_map_type+0x2c7/0x780 [ 991.051987] ? blk_queue_flag_set+0x22/0x30 [ 991.052860] ? __loop_update_dio+0x2d2/0x690 [ 991.053764] loop_configure+0x953/0x1410 [ 991.054610] lo_ioctl+0xa57/0x16b0 [ 991.055344] ? avc_has_extended_perms+0x7f1/0xf40 [ 991.056353] ? loop_set_status_old+0x250/0x250 [ 991.057294] ? avc_ss_reset+0x180/0x180 [ 991.057316] ? find_held_lock+0x2c/0x110 [ 991.057352] ? __lock_acquire+0xbb1/0x5b00 [ 991.057430] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 991.061569] ? generic_block_fiemap+0x60/0x60 [ 991.062481] ? lock_downgrade+0x6d0/0x6d0 [ 991.063334] ? build_open_flags+0x6f0/0x6f0 [ 991.064242] ? loop_set_status_old+0x250/0x250 [ 991.065181] blkdev_ioctl+0x291/0x710 [ 991.065961] ? blkdev_common_ioctl+0x1930/0x1930 [ 991.066938] ? selinux_file_ioctl+0xb6/0x270 [ 991.067872] block_ioctl+0xf9/0x140 [ 991.068613] ? blkdev_read_iter+0x1c0/0x1c0 [ 991.069518] __x64_sys_ioctl+0x19a/0x210 [ 991.070365] do_syscall_64+0x33/0x40 [ 991.071125] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 991.072195] RIP: 0033:0x7f9be863b8d7 [ 991.072968] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 991.076753] RSP: 002b:00007f9be5b8ff48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 991.078313] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 991.079793] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 991.081257] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 991.082713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 991.084186] R13: 0000000000000004 R14: 00000000200017a0 R15: 0000000000000004 [ 991.095694] loop0: detected capacity change from 0 to 512 18:33:43 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 24) [ 991.283125] FAULT_INJECTION: forcing a failure. [ 991.283125] name failslab, interval 1, probability 0, space 0, times 0 [ 991.285577] CPU: 1 PID: 6965 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 991.287027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 991.288800] Call Trace: [ 991.289366] dump_stack+0x107/0x167 [ 991.290147] should_fail.cold+0x5/0xa [ 991.290960] ? create_object.isra.0+0x3a/0xa20 [ 991.291942] should_failslab+0x5/0x20 [ 991.292752] kmem_cache_alloc+0x5b/0x310 [ 991.293621] create_object.isra.0+0x3a/0xa20 [ 991.294557] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 991.295612] kmem_cache_alloc+0x159/0x310 [ 991.296515] __kernfs_new_node+0xd4/0x860 [ 991.297404] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 991.298421] ? perf_trace_lock+0xac/0x490 [ 991.299295] ? perf_trace_lock+0xac/0x490 [ 991.300188] ? lock_chain_count+0x20/0x20 [ 991.301073] ? __lockdep_reset_lock+0x180/0x180 [ 991.302064] ? __lockdep_reset_lock+0x180/0x180 [ 991.303056] ? task_rq_lock+0xab/0x270 [ 991.303892] ? lock_release+0x680/0x680 [ 991.304714] ? find_held_lock+0x2c/0x110 [ 991.305580] kernfs_new_node+0x18d/0x250 [ 991.306434] kernfs_create_dir_ns+0x49/0x160 [ 991.307381] internal_create_group+0x793/0xb30 [ 991.308333] ? set_user_nice.part.0+0x2fd/0x760 [ 991.309323] ? sysfs_remove_group+0x170/0x170 [ 991.310259] ? lockdep_init_map_type+0x2c7/0x780 [ 991.311281] ? blk_queue_flag_set+0x22/0x30 [ 991.312186] ? __loop_update_dio+0x2d2/0x690 [ 991.313124] loop_configure+0x953/0x1410 [ 991.313991] lo_ioctl+0xa57/0x16b0 [ 991.314751] ? avc_has_extended_perms+0x7f1/0xf40 [ 991.315781] ? loop_set_status_old+0x250/0x250 [ 991.316769] ? avc_ss_reset+0x180/0x180 [ 991.317600] ? find_held_lock+0x2c/0x110 [ 991.318494] ? __lock_acquire+0xbb1/0x5b00 [ 991.319443] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 991.320577] ? generic_block_fiemap+0x60/0x60 [ 991.321511] ? lock_downgrade+0x6d0/0x6d0 [ 991.322395] ? build_open_flags+0x6f0/0x6f0 [ 991.323305] ? loop_set_status_old+0x250/0x250 [ 991.324280] blkdev_ioctl+0x291/0x710 [ 991.325113] ? blkdev_common_ioctl+0x1930/0x1930 [ 991.326142] ? selinux_file_ioctl+0xb6/0x270 [ 991.327066] block_ioctl+0xf9/0x140 [ 991.327865] ? blkdev_read_iter+0x1c0/0x1c0 [ 991.328770] __x64_sys_ioctl+0x19a/0x210 [ 991.329640] do_syscall_64+0x33/0x40 [ 991.330421] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 991.331516] RIP: 0033:0x7fd8050b38d7 [ 991.332301] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 991.336242] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 991.337829] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 991.339355] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 991.340868] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 991.342385] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 991.343923] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:33:59 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) 18:33:59 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) r1 = gettid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r2, 0x4) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r5, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r2, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r6 = syz_io_uring_complete(r4) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r7}}, 0x362c) syz_io_uring_submit(r3, r5, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r6, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r7}}, 0x6) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x0, 0x8, 0x80, 0x5, 0x0, 0xfffffffffffffffb, 0x818, 0xd, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffff0642, 0x2, @perf_config_ext={0x8, 0x4}, 0x2000, 0x10001, 0x8, 0x8, 0x7ff, 0x0, 0xff, 0x0, 0x2, 0x0, 0x1}, r1, 0xe, r6, 0x8) 18:33:59 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 25) 18:33:59 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:33:59 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:33:59 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:33:59 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 28) 18:33:59 executing program 1: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/protocols\x00') sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x40000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x0, 0x0, 0x1000002) ftruncate(0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x1, 0x0, 0x1, 0xff, 0x0, 0x7, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x7, 0x6}, 0x80, 0x4710, 0x7, 0x4, 0x20, 0x8, 0x3, 0x0, 0x1, 0x0, 0x1}, 0xffffffffffffffff, 0x6, r1, 0x0) mkdirat(r0, &(0x7f0000000140)='./file1\x00', 0x100) lseek(r1, 0x20000000000000, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0200028100010000000000000002000000000006000400000000ff"], 0x1c}}, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r2, 0xf501, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002}, 0x362c) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd, 0x7f, 0x0, 0x10000}, 0x6) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000f0000000000", @ANYRES32, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="8c00000000000000"]) fstat(r1, 0x0) sendfile(r1, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) [ 1007.565467] FAULT_INJECTION: forcing a failure. [ 1007.565467] name failslab, interval 1, probability 0, space 0, times 0 [ 1007.566955] CPU: 0 PID: 6977 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1007.567832] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1007.568899] Call Trace: [ 1007.569254] dump_stack+0x107/0x167 [ 1007.569717] should_fail.cold+0x5/0xa [ 1007.570208] ? create_object.isra.0+0x3a/0xa20 [ 1007.570790] should_failslab+0x5/0x20 [ 1007.571320] kmem_cache_alloc+0x5b/0x310 [ 1007.571830] ? mark_held_locks+0x9e/0xe0 [ 1007.572413] create_object.isra.0+0x3a/0xa20 [ 1007.573001] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1007.573661] kmem_cache_alloc+0x159/0x310 [ 1007.574210] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1007.574924] idr_get_free+0x4b5/0x8f0 [ 1007.575445] idr_alloc_u32+0x170/0x2d0 [ 1007.575941] ? __fprop_inc_percpu_max+0x130/0x130 [ 1007.576572] ? lock_acquire+0x197/0x470 [ 1007.577074] ? __kernfs_new_node+0xff/0x860 [ 1007.577636] idr_alloc_cyclic+0x102/0x230 [ 1007.578173] ? idr_alloc+0x130/0x130 [ 1007.578643] ? rwlock_bug.part.0+0x90/0x90 [ 1007.579191] __kernfs_new_node+0x117/0x860 [ 1007.579739] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1007.580348] ? perf_trace_lock+0xac/0x490 [ 1007.580861] ? perf_trace_lock+0xac/0x490 [ 1007.581387] ? lock_chain_count+0x20/0x20 [ 1007.581906] ? __lockdep_reset_lock+0x180/0x180 [ 1007.582492] ? __lockdep_reset_lock+0x180/0x180 [ 1007.583068] ? task_rq_lock+0xab/0x270 [ 1007.583579] ? lock_release+0x680/0x680 [ 1007.584075] ? find_held_lock+0x2c/0x110 [ 1007.584609] kernfs_new_node+0x18d/0x250 [ 1007.585127] kernfs_create_dir_ns+0x49/0x160 [ 1007.585688] internal_create_group+0x793/0xb30 [ 1007.586276] ? set_user_nice.part.0+0x2fd/0x760 [ 1007.586853] ? sysfs_remove_group+0x170/0x170 [ 1007.587430] ? lockdep_init_map_type+0x2c7/0x780 [ 1007.588030] ? blk_queue_flag_set+0x22/0x30 [ 1007.588591] ? __loop_update_dio+0x2d2/0x690 [ 1007.589145] loop_configure+0x953/0x1410 [ 1007.589689] lo_ioctl+0xa57/0x16b0 [ 1007.590135] ? avc_has_extended_perms+0x7f1/0xf40 [ 1007.590744] ? loop_set_status_old+0x250/0x250 [ 1007.591331] ? avc_ss_reset+0x180/0x180 [ 1007.591827] ? find_held_lock+0x2c/0x110 [ 1007.592369] ? __lock_acquire+0xbb1/0x5b00 [ 1007.592958] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1007.593612] ? generic_block_fiemap+0x60/0x60 [ 1007.594164] ? lock_downgrade+0x6d0/0x6d0 [ 1007.594682] ? build_open_flags+0x6f0/0x6f0 [ 1007.595240] ? loop_set_status_old+0x250/0x250 [ 1007.595806] blkdev_ioctl+0x291/0x710 [ 1007.596304] ? blkdev_common_ioctl+0x1930/0x1930 [ 1007.596895] ? selinux_file_ioctl+0xb6/0x270 [ 1007.597454] block_ioctl+0xf9/0x140 [ 1007.597907] ? blkdev_read_iter+0x1c0/0x1c0 [ 1007.598453] __x64_sys_ioctl+0x19a/0x210 [ 1007.598962] do_syscall_64+0x33/0x40 [ 1007.599450] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1007.600080] RIP: 0033:0x7f9be863b8d7 [ 1007.600564] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1007.602809] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1007.603750] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1007.604636] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1007.605513] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1007.606389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1007.607272] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1007.612559] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:33:59 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, 0x0, 0x1, 0x0) [ 1007.689487] loop0: detected capacity change from 0 to 512 [ 1007.699803] FAULT_INJECTION: forcing a failure. [ 1007.699803] name failslab, interval 1, probability 0, space 0, times 0 [ 1007.701512] CPU: 0 PID: 6990 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1007.702530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1007.703784] Call Trace: [ 1007.704192] dump_stack+0x107/0x167 [ 1007.704755] should_fail.cold+0x5/0xa [ 1007.705342] ? __kernfs_new_node+0xd4/0x860 [ 1007.705999] should_failslab+0x5/0x20 [ 1007.706577] kmem_cache_alloc+0x5b/0x310 [ 1007.707204] __kernfs_new_node+0xd4/0x860 [ 1007.707827] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1007.708531] ? kernfs_add_one+0x36e/0x4d0 [ 1007.709176] ? mutex_lock_io_nested+0xf30/0xf30 [ 1007.709872] ? perf_trace_lock+0xac/0x490 [ 1007.710501] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1007.711225] kernfs_new_node+0x18d/0x250 [ 1007.711845] __kernfs_create_file+0x51/0x350 [ 1007.712526] sysfs_add_file_mode_ns+0x221/0x560 [ 1007.713238] internal_create_group+0x324/0xb30 [ 1007.713935] ? sysfs_remove_group+0x170/0x170 [ 1007.714620] ? lockdep_init_map_type+0x2c7/0x780 [ 1007.715344] ? blk_queue_flag_set+0x22/0x30 [ 1007.715996] ? __loop_update_dio+0x2d2/0x690 [ 1007.716666] loop_configure+0x953/0x1410 [ 1007.717294] lo_ioctl+0xa57/0x16b0 [ 1007.717824] ? avc_has_extended_perms+0x7f1/0xf40 [ 1007.718546] ? loop_set_status_old+0x250/0x250 [ 1007.719230] ? avc_ss_reset+0x180/0x180 [ 1007.719834] ? find_held_lock+0x2c/0x110 [ 1007.720476] ? __lock_acquire+0xbb1/0x5b00 [ 1007.721172] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1007.721959] ? generic_block_fiemap+0x60/0x60 [ 1007.722630] ? lock_downgrade+0x6d0/0x6d0 [ 1007.723241] ? build_open_flags+0x6f0/0x6f0 [ 1007.723900] ? loop_set_status_old+0x250/0x250 [ 1007.724582] blkdev_ioctl+0x291/0x710 [ 1007.725159] ? blkdev_common_ioctl+0x1930/0x1930 [ 1007.725875] ? selinux_file_ioctl+0xb6/0x270 [ 1007.726536] block_ioctl+0xf9/0x140 [ 1007.727076] ? blkdev_read_iter+0x1c0/0x1c0 [ 1007.727726] __x64_sys_ioctl+0x19a/0x210 [ 1007.728344] do_syscall_64+0x33/0x40 [ 1007.728902] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1007.729657] RIP: 0033:0x7fd8050b38d7 [ 1007.730201] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1007.732878] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1007.733999] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1007.735043] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1007.736103] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1007.737156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1007.738199] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:34:00 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) openat(r2, &(0x7f0000000040)='./file0\x00', 0x2a0000, 0xf6) 18:34:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:34:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:34:00 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, 0x0, 0x1, 0x0) 18:34:00 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 26) 18:34:00 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, 0x0, 0x1, 0x0) 18:34:00 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 29) [ 1007.946710] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:34:00 executing program 5: getgid() perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) 18:34:00 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) [ 1007.998223] FAULT_INJECTION: forcing a failure. [ 1007.998223] name failslab, interval 1, probability 0, space 0, times 0 [ 1007.999572] CPU: 0 PID: 7017 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1008.000362] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1008.001299] Call Trace: [ 1008.001613] dump_stack+0x107/0x167 [ 1008.002029] should_fail.cold+0x5/0xa [ 1008.002471] ? create_object.isra.0+0x3a/0xa20 [ 1008.003004] should_failslab+0x5/0x20 [ 1008.003444] kmem_cache_alloc+0x5b/0x310 [ 1008.003925] create_object.isra.0+0x3a/0xa20 [ 1008.004434] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1008.005035] kmem_cache_alloc+0x159/0x310 [ 1008.005526] __kernfs_new_node+0xd4/0x860 [ 1008.006015] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1008.006524] ? kernfs_add_one+0x36e/0x4d0 [ 1008.007023] ? mutex_lock_io_nested+0xf30/0xf30 [ 1008.007704] ? perf_trace_lock+0xac/0x490 [ 1008.008290] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1008.008849] kernfs_new_node+0x18d/0x250 [ 1008.009325] __kernfs_create_file+0x51/0x350 [ 1008.009841] sysfs_add_file_mode_ns+0x221/0x560 [ 1008.010387] internal_create_group+0x324/0xb30 [ 1008.010922] ? sysfs_remove_group+0x170/0x170 [ 1008.011442] ? lockdep_init_map_type+0x2c7/0x780 [ 1008.012000] ? blk_queue_flag_set+0x22/0x30 [ 1008.012472] ? __loop_update_dio+0x2d2/0x690 [ 1008.012986] loop_configure+0x953/0x1410 [ 1008.013470] lo_ioctl+0xa57/0x16b0 [ 1008.013886] ? avc_has_extended_perms+0x7f1/0xf40 [ 1008.014443] ? loop_set_status_old+0x250/0x250 [ 1008.014978] ? avc_ss_reset+0x180/0x180 [ 1008.015437] ? find_held_lock+0x2c/0x110 [ 1008.015921] ? __lock_acquire+0xbb1/0x5b00 [ 1008.016486] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1008.017090] ? generic_block_fiemap+0x60/0x60 [ 1008.017606] ? lock_downgrade+0x6d0/0x6d0 [ 1008.018080] ? build_open_flags+0x6f0/0x6f0 [ 1008.018584] ? loop_set_status_old+0x250/0x250 [ 1008.019107] blkdev_ioctl+0x291/0x710 [ 1008.019543] ? blkdev_common_ioctl+0x1930/0x1930 [ 1008.020093] ? selinux_file_ioctl+0xb6/0x270 [ 1008.020616] block_ioctl+0xf9/0x140 [ 1008.021032] ? blkdev_read_iter+0x1c0/0x1c0 [ 1008.021530] __x64_sys_ioctl+0x19a/0x210 [ 1008.022002] do_syscall_64+0x33/0x40 [ 1008.022429] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1008.023016] RIP: 0033:0x7fd8050b38d7 [ 1008.023444] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1008.025557] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1008.026430] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1008.027244] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1008.028055] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1008.028875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1008.029688] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:34:00 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:34:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1008.152484] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:34:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1008.199286] FAULT_INJECTION: forcing a failure. [ 1008.199286] name failslab, interval 1, probability 0, space 0, times 0 [ 1008.200787] CPU: 0 PID: 7029 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1008.201744] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1008.202884] Call Trace: [ 1008.203261] dump_stack+0x107/0x167 [ 1008.203771] should_fail.cold+0x5/0xa [ 1008.204329] ? __kernfs_new_node+0xd4/0x860 [ 1008.204937] should_failslab+0x5/0x20 [ 1008.205468] kmem_cache_alloc+0x5b/0x310 [ 1008.206049] __kernfs_new_node+0xd4/0x860 [ 1008.206638] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1008.207293] ? kernfs_add_one+0x36e/0x4d0 [ 1008.207892] ? mutex_lock_io_nested+0xf30/0xf30 [ 1008.208556] ? perf_trace_lock+0xac/0x490 [ 1008.209146] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1008.209708] kernfs_new_node+0x18d/0x250 [ 1008.210164] __kernfs_create_file+0x51/0x350 [ 1008.210678] sysfs_add_file_mode_ns+0x221/0x560 [ 1008.211208] internal_create_group+0x324/0xb30 [ 1008.211749] ? sysfs_remove_group+0x170/0x170 [ 1008.212238] ? lockdep_init_map_type+0x2c7/0x780 [ 1008.212798] ? blk_queue_flag_set+0x22/0x30 [ 1008.213267] ? __loop_update_dio+0x2d2/0x690 [ 1008.213779] loop_configure+0x953/0x1410 [ 1008.214239] lo_ioctl+0xa57/0x16b0 [ 1008.214658] ? avc_has_extended_perms+0x7f1/0xf40 [ 1008.215186] ? loop_set_status_old+0x250/0x250 [ 1008.215714] ? avc_ss_reset+0x180/0x180 [ 1008.216153] ? find_held_lock+0x2c/0x110 [ 1008.216666] ? __lock_acquire+0xbb1/0x5b00 [ 1008.217197] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1008.217805] ? generic_block_fiemap+0x60/0x60 [ 1008.218290] ? lock_downgrade+0x6d0/0x6d0 [ 1008.218767] ? build_open_flags+0x6f0/0x6f0 [ 1008.219245] ? loop_set_status_old+0x250/0x250 [ 1008.219769] blkdev_ioctl+0x291/0x710 [ 1008.220190] ? blkdev_common_ioctl+0x1930/0x1930 [ 1008.220748] ? selinux_file_ioctl+0xb6/0x270 [ 1008.221232] block_ioctl+0xf9/0x140 [ 1008.221649] ? blkdev_read_iter+0x1c0/0x1c0 [ 1008.222120] __x64_sys_ioctl+0x19a/0x210 [ 1008.222590] do_syscall_64+0x33/0x40 [ 1008.222996] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1008.223581] RIP: 0033:0x7f9be863b8d7 [ 1008.223986] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1008.226090] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1008.226911] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1008.227737] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1008.228568] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1008.229394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1008.230208] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1008.243559] loop0: detected capacity change from 0 to 512 18:34:19 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 27) 18:34:19 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) 18:34:19 executing program 1: ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000006c0)=ANY=[@ANYBLOB="1c2c2e761fd0604993dff83a5df6969d4c513cc51e3b61aca6f4ce9cd2eba16b", @ANYRES32, @ANYRES32, @ANYBLOB="000000002e2f66696c653100dba816d12e959e48b7e88a714e4188a90b4306a940929f5dcad4fce4f0bbe12fdc5012c7136aa99abe381e6007a627d22712ee49d47f0a555626c63e0eb3f6c70000000000000000000000c2974d730186a7cf62adaf1f26aa4515c8414d821c4b8dcd0198a2069ea081d4472bb9990a0a25b23df8ae3973b4d632bcd82fac38f73424f9983f2bffe918371cb22912e28826ea807ee2cec1de6642e64ce873561e2931f2c8ea44b718fcdcbd0beab3d12e238e1afdc7b787da1f3a6173795169896e45aed92220f5c9404ba7"]) r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) statx(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x800, 0x77baea28dc8b509d, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000002c0)='./file1\x00', 0x0) r3 = syz_open_dev$vcsn(0x0, 0x2, 0x121041) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) fchownat(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', r1, r2, 0x1000) socket$inet_udplite(0x2, 0x2, 0x88) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000400), 0x303242, 0x0) r4 = syz_open_dev$vcsa(&(0x7f0000000040), 0x5, 0x4001c0) socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000004c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000380)={'vxcan1\x00'}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x3000000, 0x110, r4, 0x8000000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000002480), 0x800, 0x0) ioctl$CDROMREADAUDIO(r5, 0x530e, &(0x7f0000000ac0)={@msf, 0x1, 0x1, &(0x7f0000000a80)=""/1}) dup3(0xffffffffffffffff, r5, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 18:34:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:34:19 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:34:19 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 30) 18:34:19 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:34:19 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r4 = syz_io_uring_complete(r2) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r5}}, 0x362c) syz_io_uring_submit(r1, r3, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r4, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r5}}, 0x6) openat(r0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0) r6 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000000)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) ioctl$BTRFS_IOC_SEND(r4, 0x40489426, &(0x7f0000000080)={{r6}, 0x3, &(0x7f0000000040)=[0x2, 0x1, 0x0], 0x6, 0x3, [0x4, 0x0, 0x6, 0x3ff]}) perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0xa) r7 = gettid() rt_tgsigqueueinfo(r7, r7, 0x0, &(0x7f0000000640)) [ 1026.946549] FAULT_INJECTION: forcing a failure. [ 1026.946549] name failslab, interval 1, probability 0, space 0, times 0 [ 1026.949499] CPU: 0 PID: 7054 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1026.950983] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1026.952748] Call Trace: [ 1026.953363] dump_stack+0x107/0x167 [ 1026.954220] should_fail.cold+0x5/0xa [ 1026.955014] ? create_object.isra.0+0x3a/0xa20 [ 1026.955910] should_failslab+0x5/0x20 [ 1026.956652] kmem_cache_alloc+0x5b/0x310 [ 1026.957510] create_object.isra.0+0x3a/0xa20 [ 1026.958407] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1026.959459] kmem_cache_alloc+0x159/0x310 [ 1026.960335] __kernfs_new_node+0xd4/0x860 [ 1026.961203] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1026.962170] ? kernfs_add_one+0x36e/0x4d0 [ 1026.963049] ? mutex_lock_io_nested+0xf30/0xf30 [ 1026.963989] ? perf_trace_lock+0xac/0x490 [ 1026.964848] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1026.965874] kernfs_new_node+0x18d/0x250 [ 1026.966729] __kernfs_create_file+0x51/0x350 [ 1026.967647] sysfs_add_file_mode_ns+0x221/0x560 [ 1026.968665] internal_create_group+0x324/0xb30 [ 1026.969658] ? sysfs_remove_group+0x170/0x170 [ 1026.970639] ? lockdep_init_map_type+0x2c7/0x780 [ 1026.971624] ? blk_queue_flag_set+0x22/0x30 [ 1026.972496] ? __loop_update_dio+0x2d2/0x690 [ 1026.973431] loop_configure+0x953/0x1410 [ 1026.974295] lo_ioctl+0xa57/0x16b0 [ 1026.975031] ? avc_has_extended_perms+0x7f1/0xf40 [ 1026.976030] ? loop_set_status_old+0x250/0x250 [ 1026.976989] ? avc_ss_reset+0x180/0x180 [ 1026.977801] ? find_held_lock+0x2c/0x110 [ 1026.978665] ? __lock_acquire+0xbb1/0x5b00 [ 1026.979614] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1026.980681] ? generic_block_fiemap+0x60/0x60 [ 1026.981592] ? lock_downgrade+0x6d0/0x6d0 [ 1026.982442] ? build_open_flags+0x6f0/0x6f0 [ 1026.983322] ? loop_set_status_old+0x250/0x250 [ 1026.984243] blkdev_ioctl+0x291/0x710 [ 1026.985024] ? blkdev_common_ioctl+0x1930/0x1930 [ 1026.986001] ? selinux_file_ioctl+0xb6/0x270 [ 1026.986896] block_ioctl+0xf9/0x140 [ 1026.987633] ? blkdev_read_iter+0x1c0/0x1c0 [ 1026.988504] __x64_sys_ioctl+0x19a/0x210 [ 1026.989352] do_syscall_64+0x33/0x40 [ 1026.990102] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1026.991140] RIP: 0033:0x7f9be863b8d7 [ 1026.991899] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1026.995626] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 18:34:19 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) [ 1026.997183] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1026.998757] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1027.000217] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1027.001638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1027.003096] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1027.008681] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1027.013426] loop0: detected capacity change from 0 to 512 [ 1027.026516] FAULT_INJECTION: forcing a failure. [ 1027.026516] name failslab, interval 1, probability 0, space 0, times 0 [ 1027.028986] CPU: 1 PID: 7057 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1027.030371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1027.032065] Call Trace: [ 1027.032605] dump_stack+0x107/0x167 [ 1027.033353] should_fail.cold+0x5/0xa [ 1027.034129] ? __kernfs_new_node+0xd4/0x860 [ 1027.035007] should_failslab+0x5/0x20 [ 1027.035781] kmem_cache_alloc+0x5b/0x310 [ 1027.036616] __kernfs_new_node+0xd4/0x860 [ 1027.037473] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1027.038428] ? kernfs_add_one+0x36e/0x4d0 [ 1027.039272] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1027.040260] ? wait_for_completion_io+0x270/0x270 [ 1027.041251] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1027.042322] kernfs_new_node+0x18d/0x250 [ 1027.043158] __kernfs_create_file+0x51/0x350 [ 1027.044066] sysfs_add_file_mode_ns+0x221/0x560 [ 1027.045027] internal_create_group+0x324/0xb30 [ 1027.045962] ? sysfs_remove_group+0x170/0x170 [ 1027.046873] ? lockdep_init_map_type+0x2c7/0x780 [ 1027.047837] ? blk_queue_flag_set+0x22/0x30 [ 1027.048716] ? __loop_update_dio+0x2d2/0x690 [ 1027.049619] loop_configure+0x953/0x1410 [ 1027.050474] lo_ioctl+0xa57/0x16b0 [ 1027.051214] ? avc_has_extended_perms+0x7f1/0xf40 [ 1027.052205] ? loop_set_status_old+0x250/0x250 [ 1027.053144] ? avc_ss_reset+0x180/0x180 [ 1027.053973] ? find_held_lock+0x2c/0x110 [ 1027.054816] ? __lock_acquire+0xbb1/0x5b00 [ 1027.055739] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1027.056812] ? generic_block_fiemap+0x60/0x60 [ 1027.057720] ? lock_downgrade+0x6d0/0x6d0 [ 1027.058575] ? build_open_flags+0x6f0/0x6f0 [ 1027.059458] ? loop_set_status_old+0x250/0x250 [ 1027.060397] blkdev_ioctl+0x291/0x710 [ 1027.061193] ? blkdev_common_ioctl+0x1930/0x1930 [ 1027.062164] ? selinux_file_ioctl+0xb6/0x270 [ 1027.063058] block_ioctl+0xf9/0x140 [ 1027.063801] ? blkdev_read_iter+0x1c0/0x1c0 [ 1027.064679] __x64_sys_ioctl+0x19a/0x210 [ 1027.065521] do_syscall_64+0x33/0x40 [ 1027.066278] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1027.067313] RIP: 0033:0x7fd8050b38d7 [ 1027.068068] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1027.071801] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1027.073353] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1027.074796] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1027.076244] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1027.077689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1027.079134] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:34:19 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() syz_io_uring_setup(0x4704, &(0x7f00000000c0)={0x0, 0xa421, 0x8, 0x0, 0x85}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=0x0) rt_sigqueueinfo(r1, 0x40, &(0x7f0000000040)={0xe, 0x4, 0x408}) 18:34:19 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 31) 18:34:19 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:34:19 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 28) [ 1027.304176] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1027.315456] FAULT_INJECTION: forcing a failure. [ 1027.315456] name failslab, interval 1, probability 0, space 0, times 0 [ 1027.317941] CPU: 1 PID: 7079 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1027.319350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1027.321076] Call Trace: [ 1027.321640] dump_stack+0x107/0x167 [ 1027.322406] should_fail.cold+0x5/0xa [ 1027.323206] ? __kernfs_new_node+0xd4/0x860 [ 1027.324106] should_failslab+0x5/0x20 [ 1027.325083] kmem_cache_alloc+0x5b/0x310 [ 1027.325973] __kernfs_new_node+0xd4/0x860 [ 1027.326844] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1027.328061] ? kernfs_add_one+0x36e/0x4d0 [ 1027.328963] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1027.330238] ? wait_for_completion_io+0x270/0x270 [ 1027.331249] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1027.332597] kernfs_new_node+0x18d/0x250 [ 1027.333510] __kernfs_create_file+0x51/0x350 [ 1027.334653] sysfs_add_file_mode_ns+0x221/0x560 [ 1027.335640] internal_create_group+0x324/0xb30 [ 1027.336817] ? sysfs_remove_group+0x170/0x170 [ 1027.337772] ? lockdep_init_map_type+0x2c7/0x780 [ 1027.338985] ? blk_queue_flag_set+0x22/0x30 [ 1027.339923] ? __loop_update_dio+0x2d2/0x690 [ 1027.341075] loop_configure+0x953/0x1410 [ 1027.341947] lo_ioctl+0xa57/0x16b0 [ 1027.342861] ? avc_has_extended_perms+0x7f1/0xf40 [ 1027.343878] ? loop_set_status_old+0x250/0x250 [ 1027.345044] ? avc_ss_reset+0x180/0x180 [ 1027.345926] ? find_held_lock+0x2c/0x110 [ 1027.346973] ? __lock_acquire+0xbb1/0x5b00 [ 1027.347946] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1027.349281] ? generic_block_fiemap+0x60/0x60 [ 1027.350238] ? lock_downgrade+0x6d0/0x6d0 [ 1027.351310] ? build_open_flags+0x6f0/0x6f0 [ 1027.352220] ? loop_set_status_old+0x250/0x250 [ 1027.353385] blkdev_ioctl+0x291/0x710 [ 1027.354216] ? blkdev_common_ioctl+0x1930/0x1930 [ 1027.355423] ? selinux_file_ioctl+0xb6/0x270 [ 1027.356373] block_ioctl+0xf9/0x140 [ 1027.357312] ? blkdev_read_iter+0x1c0/0x1c0 [ 1027.358229] __x64_sys_ioctl+0x19a/0x210 [ 1027.359257] do_syscall_64+0x33/0x40 [ 1027.360117] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1027.361428] RIP: 0033:0x7f9be863b8d7 [ 1027.362223] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1027.366109] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1027.367712] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1027.369227] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1027.370731] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1027.372237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1027.373752] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1027.477604] loop0: detected capacity change from 0 to 512 [ 1027.491444] FAULT_INJECTION: forcing a failure. [ 1027.491444] name failslab, interval 1, probability 0, space 0, times 0 [ 1027.494243] CPU: 1 PID: 7082 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1027.495722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1027.497533] Call Trace: [ 1027.498118] dump_stack+0x107/0x167 [ 1027.498910] should_fail.cold+0x5/0xa [ 1027.499750] ? create_object.isra.0+0x3a/0xa20 [ 1027.500776] should_failslab+0x5/0x20 [ 1027.501619] kmem_cache_alloc+0x5b/0x310 [ 1027.502504] ? __lockdep_reset_lock+0x180/0x180 [ 1027.503525] create_object.isra.0+0x3a/0xa20 [ 1027.504471] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1027.505594] kmem_cache_alloc+0x159/0x310 [ 1027.506509] __kernfs_new_node+0xd4/0x860 [ 1027.507417] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1027.508432] ? kernfs_add_one+0x36e/0x4d0 [ 1027.509366] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1027.510419] ? wait_for_completion_io+0x270/0x270 [ 1027.511478] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1027.512618] kernfs_new_node+0x18d/0x250 [ 1027.513529] __kernfs_create_file+0x51/0x350 [ 1027.514500] sysfs_add_file_mode_ns+0x221/0x560 [ 1027.515528] internal_create_group+0x324/0xb30 [ 1027.516529] ? sysfs_remove_group+0x170/0x170 [ 1027.517518] ? lockdep_init_map_type+0x2c7/0x780 [ 1027.518554] ? blk_queue_flag_set+0x22/0x30 [ 1027.519484] ? __loop_update_dio+0x2d2/0x690 [ 1027.520444] loop_configure+0x953/0x1410 [ 1027.521416] lo_ioctl+0xa57/0x16b0 [ 1027.522192] ? avc_has_extended_perms+0x7f1/0xf40 [ 1027.523243] ? loop_set_status_old+0x250/0x250 [ 1027.524235] ? avc_ss_reset+0x180/0x180 [ 1027.525108] ? find_held_lock+0x2c/0x110 [ 1027.526028] ? __lock_acquire+0xbb1/0x5b00 [ 1027.527019] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1027.528150] ? generic_block_fiemap+0x60/0x60 [ 1027.529144] ? lock_downgrade+0x6d0/0x6d0 [ 1027.530045] ? build_open_flags+0x6f0/0x6f0 [ 1027.530985] ? loop_set_status_old+0x250/0x250 [ 1027.531971] blkdev_ioctl+0x291/0x710 [ 1027.532800] ? blkdev_common_ioctl+0x1930/0x1930 [ 1027.533850] ? selinux_file_ioctl+0xb6/0x270 [ 1027.534809] block_ioctl+0xf9/0x140 [ 1027.535592] ? blkdev_read_iter+0x1c0/0x1c0 [ 1027.536521] __x64_sys_ioctl+0x19a/0x210 [ 1027.537424] do_syscall_64+0x33/0x40 [ 1027.538233] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1027.539343] RIP: 0033:0x7fd8050b38d7 [ 1027.540150] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1027.544106] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1027.545753] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1027.547280] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1027.548811] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1027.550367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1027.551907] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1027.604290] perf: interrupt took too long (19656 > 19640), lowering kernel.perf_event_max_sample_rate to 10000 [ 1042.874817] tmpfs: Unknown parameter 'ÿÿ000000000000000000000040xffffffffffffffff0xffffffffffffffff' [ 1042.885134] tmpfs: Unknown parameter 'ÿÿ000000000000000000000040xffffffffffffffff0xffffffffffffffff' 18:34:35 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:34:35 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 32) 18:34:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 29) 18:34:35 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r5 = syz_io_uring_complete(r3) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r6}}, 0x362c) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r7 = syz_io_uring_complete(0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r8}}, 0x362c) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r7, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r8}}, 0x6) io_cancel(0x0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x5, 0x1, r5, &(0x7f0000002780)="d683778675eed29ee3b0e01c67b7ea269ad2b8b11ab5328125400e500a97ee8fcea9403702d4ed0ced911daa3f75a024f81e18cb5d81a0c81b22e11fbc60b768926f8286615e91b7f36d7b839b0ad3ef1dac0e5c51e78c5a768dc5dcd95c46997657441206bad7836abbe85878280b04beafbc8bf57b9b2ab645b3994998f500f6f916d7a4f0aa7cf6509566069f675cea4726fbb9403d0cf859231e10f56262af93830d7a3a80857d69c129fabbc098949e1d4622d2b7267b8c3b645d56276182f56bb1aaf48d5cd21368843e7fb0d56eb66a9a055575d3a5f157ec2c220516a2085f2e4f4e186e91a34146c02f62d78ddfd5090c9ed6fa6b288e395dbaf2836fe58d2cba8180ead6af51e2852894f67756df68fe7f204986e54a030275717cf4b4d58652d6b0f403bbc50c474b45f8fee0ce5dc36bd25de25daae2911f830f0ac1e3f03d632dd1f6d99750d2974d5ca0c9b070cb7b85efdb2fb86453e038555493b6855d0e3119488e1f11b266e7559116aa07d06d6466faba4acb263496b6654e1b927d73253427ba5bf3a875d2579630866662a02f93ae301bfc4c64b87fa93db750a3b7f3ccf55b02ec76c2fa992cef99d82119beac6b464cac70df3579f074ea71adfa2c54219934d8f4900e405eb7c9df7bafdde87812f7021009526e32940d0a15adf9eef6a4d942d624a9ba895044165f892d8eb29e24d3ddde6e5d2a0782129e5c8c301a438fb23b603ff0906d40bbf5f7bbbaa8579fb8105b4ba296f04bf5bbd1ff9244a3b94ffa464904614065bf4c5c483d21d37b0b2b62d39566e48334a8d2708a2878f84c9fa307c54b123c629fe04fad77665a8d44158a24e0184f265f9e19699fbc4c1f1b3e06d3280d44d13b908f575a57df2aa8a0f6b5ffd24dacdcbe7951f817648a40c7588ed57d1a79131e3c405708d917535fdd64c618b7e7c5f457230129b3b7071f54d52cb79a083730126959ba37db48bc5b70f17001a092f89c2868549ec5d47be3f328acffdfed4924e29ad4327e71ea910439758e6dcf252bd4390d79fda178653cb6598fc74a52baf1471ac2e9383986584e0d5ebe50e00eaaf773c81e8e9e7603fc484da5e5568308bc55a8ec0863c2c2e5fb1eeab083548dcd11dbdd37c130b959018b504b30a5a5839c8fe572ff5ceb0dc16fb50d64cbdae1631a3b3b8e3961753ced8fd27fccdbb2b6b25507912677aad93ff6e420ca255cc948e0b6d90b017ac0804ea57fe79f4feabf4f958dbafa88fe9497a7eb85931320632676ed98f496cd2f1018ae1b5bafa2f9f6aac4d7624fb86d58dc40f0331aef58abaea1bc7d2e768982634be33352ba8e07974075a969e33cf717684a5af879ccea422f12ec869b78d10ef65e96e2b21fc5fa6a324842443e7d53127e4b9df5c7daf343412734bfdbf10dffb9da05540ac56259f70e7a6da9337e3e1faf4d490639ab32d2b348e7e57fd80e8d7af0442039fdc3176777e6bafb9f11aaa4a1f12e9c7d17a32179aeda9a998d6bcda0c513ece68a2f634e670ba0fd441e9c495cde66091bbae63c52d7cf3f3bf27d790636f81aa9ec6369f74e8cec5fafe71f4268edb64681b6e5ea9534ee9fdb737cfb82593b017ba1f2c6b53c20a4122b43083ab995de911b3bedbee0f3f029a6678e2c8e894a83ffd81901d8e3893943d4a7ef9999b18923758c1a0d392cee6899757d9cc039c59c957e9ce8207cb483ef9fdaaa459d139eb6adb47788a7bfa4b1d7a4748b38e511bed4485590874857ae473d608c52f907c55dbe529c8f52d554770c1a3ad0a8073feba7a0e56522ba03b80b11e5b72f24c51475e06490a7796a85254ff607a3c323498877777437f5cf8f0af4b4e1b7401377c6a744c4f44478d4709f870e1bdd96071baac0c561a4db19c3b4644cc7e5bcde2e56f3b73666b70c46179f907408f39b1027b04ee5eaf14124c49690ace8acb69d34e26f676c3cc82f7151790867b203d545b7422ca98458d9ba1a6cbbd4a37d16016cc54995c8d3edacb9f2ca9fdcaba3cc45bfcb0b0a81ca671dc2abf93bc6a9d357b065ecfa86fdf62bbf2934fcb482ff2d04514a31e2553375cc3a405d16cc4268081c036dafee6f3700989b9c4b445b630d3ad3c415fe1a62232c7bdfeee46004abe3f7faa83de72463b549bf33b59b928cc26dc5ac22bbbcf74dd67ec96e0aebc898757492c0a2515a609907020c8d49aeeb9ff3366f677e08f32a5f9c1b966ed60b1aa8ee54045fe629f98552f519b9c210923940af63e3c835509c72f829a9799f66f9e5df250e5c5a41526512ac94126783afbe45f2497243bcf0d91ae8363dc8d62e117b2287adf724cf66b13c468d13095e6a65ac89f59a82168d9e6fd2230fcc6e9744bf4449cf0a3cae1d14468b6293f2a639f7c774d807f2b37ae307373d44114079e410092614f08a5295330797842e6374b43dad760e1f91e9719e0877cd46b43b9134f16e2d061352ece77a335f0ba768834ec91bd3895a2b384c8db4a261f1a48765e6230594e0c7c7ea3defb89ee941d699ad862bd5d940efc781f45be24248e3f48294e3541bb18f879f4c88144e3c064064f91646bb79943409539d7797abfa9f641ab2fea7f1ab1eb62eb961e64fe15759eeef5743a492a80c986409465bea348bd0753c4412de8ecc33a31f04f7c4dc3e802056c846763d3b8bd209d40d3cf9ec3567067950925d6d33986539062f033fed0b9b950df6013ad18cddce0aecbaa4d2318932375e3434c7eae6314ca90c0c2f8ce96a0410cc7cf219a039bdd9873b7ccca202db2a31ec222e8636050f75bcf1d2cb8dbe35059a73d34d5dd5c62d46142912f4d6a1b3cbb1fb251f6e55fdf0c611aa1d14bfb23110fb32f95322751969f87f2c2671f81798be232b58c14911df5ecb3eb41e774f2ae93f9be06c96c3e283df58d96df319cb263d3875beb02fc2f1f9215d1997a3a2ba3702bd7306d80096618b17dda26fdc18b375b20d1eccdff9a1e208f55702ad28629fce73450ca2ad220ddf371e6a7a5d102c0117e182624f3eaa4efda72741a735e0a7491f3dd7882262558f2429db7e09783c8c44ed169403220fbe696887db87ba3d66162d39725e91afc7b812cc0bcd8c31edb5f0f56ea3825be1d7d49ac1d0c5575b06664d81f1fb1799233400a1d7e52b074ccbf86da5bdeb1168fac3514001588dbd6ce0c1387dca04c219a3d13eb3095ebbc8c82bb6b163a8c4c3981f936adfb39fcdfa02bfc8325b4b14c403a26cf01b964e205bacf90f2ea9355ca9ff9d0f68cb7026cfe91ed4e7250ed3594db44f1d190dd20114c9c977766ae612da79c9aab01e5cc9044c0d4593cb03ae62a0850c3d22ac89f08dc4646a56113d0957fd17f341d274da68aaf23346bb4b11a3766821cc37788763fca7b813c65c9f5910f6997565b76af03ad59df3af56f672e6e8ae18531e439cf78a9978c75316b473dcf05fa0153bf4cd2e749722e9c2d69b94bf051c90b6032358d45076d65128766679856631b2b560eaad0a77bac6c78933998786a44a387255d5af060976e52124f48132ffe6f650497f9b92288a47315cccaa787c574673cc3f93a581a0499fc4038df9525dee0f98dc8cae7e50df13ebbfce59e46cc4d9ffd83d2e643c60467757131ac35d8724411bcb63e2e004ad8425bc42f15da853d98299e221b6227a7d642e36e5f6ea6b7d4227650c3249cfc79a762f07e7190bbf76a4c635a7b5c2fb25a61a2bb617febc7b0315356961184728d2a09db28e8721415d30fae7f2100d2b034f17d160d1efc0843a04941418c0255c675fd8c809d17940ade759b4e6ecc0aeaeb5a95b7999f975907ac9c8c191a9cf5941f744ea253121bf8488904ae1a162b23f9e963b42c34ead8702534058e8dcd4a4dc01b30712eeb2ad9a6d11a971710fa8069fc7977eb12e0f82b27166120b163521f6b4b9b1067719e2c8ad488a051dd70d060d2bde0c9f730dd13754b4f8fc9cd4b9cfe76c774d7f44a73b1a520d504bdf835dfc33d9de064a686792424f81c08049998c3bde1ca4e438916af1057d7a6e28ad16f3266b21d4c08036452d59ec965a932f41da47f97612fc6e949578eed0197556d43aa769a298d159494601c725c546a7f1d8ad14d279c9e3b74fa289bb8676ac3015b67daf3710291afe0564e19ad7475aa697157d5ebec8de82266cabe60d9d9c7cef0f87dec0230f6d379f436ebfe4f00ab399d1c6e0b5d37b4334aaa1361d6bec6dd128fff86badd8da39a39a3df45689aa4de11249dace4d933f9416d651fbc145a81f8055bfc1c48f5245fe29600f460444c4f58e61c6b220522aef252951d4f039ef7e5c6d4da795d3da315fe17c55e2f09b8437b0da1a2aaf5235a37cf2e4321346cddbd5a1d9b19a8351d932ac3ae354eb6c8c5c14754e67b6d0931927ce06a7eb16955d146a82d5c0e1f4ecaa99a70b6b748584c33e7fb6daa6f270bcef5997d88afdbb3dee79e5b3a9184d94029fe3c9e910286d64095f4f4907617355bb8d1980feefa0f94000310f60f84613366d9f29b4745750e3fb4f4c181a6ec0b3c95e4c25593e0d8a0d86b7a6834163b296c54adae6c92a98edb7422a3be8053f1cfaea0d09887318f5c231c3787b9be655c3380c246ffdf0ab99748afd79918e3f61fad26f3635ad6c079ee75092a9a99e5d056d166d707a39aebe9723d69fc0cd0d8687373020f417961514564b105879c93a5ffdcfffe63369167322302adde443dcdc208daebf06b0063db56ba492cc8157774c46b082b83a4be858e3da4a65075cd39f672aaa705e6b8a441f9ee7e96f995e1f63324190dbce0dd2f8490cb4dda2c83a7dbfdb546fa98d5fe80a6e9d3f14a550c88e39596910a64c267208ea4b317b5278ee258aa8e8d5423f90f99fc6aaeaf0f41e74af28df26531fb1350a2e205ff9a1b13d7a55e27c59f5b5b92adb5bbbbaefb7fc5a27fb0e7abee8cc552e97a4232ccaf1bdb3fdea1c13951a1296c4cec5582afdd47c39def48d3219958cd36126227561d14671bbe5a410a60b9d20c2b1f15ca15853153b84cc81b8317d1d287c83a410bea76da3882d89389293ee3b5ab274549eb9cd338042b8e28078c2a60dd6aa398acea70acaacdb77bff78db6aa6e20ee541d87583877b04db14dd7163911d603c7b664abf79ee81e0e5b95be9a51877cd55f8394db1910d8d768cb06abc6f8061cc13ab08a28da39a8391553a354a76e2e8a13267f441a1eb56b1be946297929bcab4243528609c7f357d88d90c8c755db5b3c01fc114637e5b55b08ff5a77f335911ccbd0ecc6bda07eb3a4233821671720485338484e4d92b5d916f9a8699caf044048a27c5ecc963e3ebf118836294006ba5e5d71ce22339294b36fbe992a2fe4dd322408c4a0b8bf4048b9770670b01d5e8b2aa557da0557c37a01be7c6a2810f9987de77e177e7b5703f2a61c91c700d2a88b8d6da6327da1f7c3cecb6a17cf7d45ae1c290da6b985e7150bc655d2fe59a4835b3a1ad9b9c9fcece01b8df5f204d7eae1204eabb7baed84a98c10b1864d8782975fb52c94e2cdefba459f12ea73dae0ec7289a211c8c9d5abad2c7033355de0b405bf7d841535e05214ae1f35c7c99124d6e69f0de26830f7ab316307939a272cd06fce502a77f5ba7237b447e581219bf830a77e147b6b319c07cf039eefc419f87b9a4247ed21e21476d7c1aea83b43b7eb8da65a29df87e2c205c0ab8c6f15844817c8ba9138ffadc0d229dbfd9eee6b6ee9de7d85a88e334852", 0x1000, 0x3, 0x0, 0x0, r7}, &(0x7f0000000600)) syz_io_uring_submit(r2, r4, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r5, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r6}}, 0x6) preadv(r5, &(0x7f00000026c0)=[{&(0x7f0000000080)=""/46, 0x2e}, {&(0x7f00000000c0)=""/57, 0x39}, {&(0x7f0000000100)=""/128, 0x80}, {&(0x7f0000000180)=""/46, 0x2e}, {&(0x7f00000001c0)=""/13, 0xd}, {&(0x7f0000000200)=""/244, 0xf4}, {&(0x7f0000000300)=""/211, 0xd3}, {&(0x7f00000004c0)=""/251, 0xfb}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/4096, 0x1000}], 0xa, 0x0, 0xdf64) r9 = gettid() rt_tgsigqueueinfo(r9, r9, 0x0, &(0x7f0000000640)) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x1f, 0x6, 0x81, 0xfa, 0x0, 0x200000000000100, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000400), 0x4}, 0x40, 0x5, 0x2, 0x6, 0x2, 0x2, 0x1, 0x0, 0x3db, 0x0, 0xffffffff}, 0xffffffffffffffff, 0x7, r0, 0xa) 18:34:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:34:35 executing program 1: r0 = gettid() process_vm_readv(0x0, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7c}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xb7}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000000180)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0) ptrace$peek(0x1, r0, &(0x7f0000000280)) timer_create(0x4, &(0x7f00000000c0)={0x0, 0x27, 0x2, @tid=r0}, &(0x7f0000000100)) getpriority(0x1, r0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='sysv\x00', 0x0, 0x0) r1 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x1163868, &(0x7f0000000900)=ANY=[]) mkdirat(r1, 0x0, 0x2) umount2(&(0x7f0000000080)='./file0\x00', 0x4) lseek(r1, 0xfa2b, 0x0) unlinkat(r1, &(0x7f00000004c0)='./file0\x00', 0x200) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = open(&(0x7f0000000180)='./file0\x00', 0x240880, 0x0) stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000500)) mkdirat(r2, &(0x7f0000000200)='./file0\x00', 0x86) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f00000002c0)=ANY=[@ANYRES16, @ANYRESOCT=r2, @ANYRESHEX, @ANYRESHEX]) unlinkat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x200) chown(&(0x7f0000000040)='./file0\x00', 0xee00, 0xffffffffffffffff) syz_open_procfs(0xffffffffffffffff, &(0x7f0000001300)='smaps_rollup\x00') getresuid(&(0x7f0000000340), &(0x7f00000003c0), &(0x7f0000000400)) 18:34:35 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1042.915539] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1042.920942] FAULT_INJECTION: forcing a failure. [ 1042.920942] name failslab, interval 1, probability 0, space 0, times 0 [ 1042.922397] CPU: 1 PID: 7097 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1042.923264] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1042.924295] Call Trace: [ 1042.924629] dump_stack+0x107/0x167 [ 1042.925086] should_fail.cold+0x5/0xa [ 1042.925591] ? __kernfs_new_node+0xd4/0x860 [ 1042.926137] should_failslab+0x5/0x20 [ 1042.926614] kmem_cache_alloc+0x5b/0x310 [ 1042.927130] __kernfs_new_node+0xd4/0x860 [ 1042.927655] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1042.928243] ? kernfs_add_one+0x36e/0x4d0 [ 1042.928767] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1042.929384] ? wait_for_completion_io+0x270/0x270 [ 1042.930003] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1042.930665] kernfs_new_node+0x18d/0x250 [ 1042.931174] __kernfs_create_file+0x51/0x350 [ 1042.931724] sysfs_add_file_mode_ns+0x221/0x560 [ 1042.932311] internal_create_group+0x324/0xb30 [ 1042.932885] ? sysfs_remove_group+0x170/0x170 [ 1042.933450] ? lockdep_init_map_type+0x2c7/0x780 [ 1042.934056] ? blk_queue_flag_set+0x22/0x30 [ 1042.934590] ? __loop_update_dio+0x2d2/0x690 [ 1042.935138] loop_configure+0x953/0x1410 [ 1042.935657] lo_ioctl+0xa57/0x16b0 [ 1042.936099] ? avc_has_extended_perms+0x7f1/0xf40 [ 1042.936704] ? loop_set_status_old+0x250/0x250 [ 1042.937273] ? avc_ss_reset+0x180/0x180 [ 1042.937788] ? find_held_lock+0x2c/0x110 [ 1042.938306] ? __lock_acquire+0xbb1/0x5b00 [ 1042.938865] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1042.939518] ? generic_block_fiemap+0x60/0x60 [ 1042.940074] ? lock_downgrade+0x6d0/0x6d0 [ 1042.940727] ? build_open_flags+0x6f0/0x6f0 [ 1042.941287] ? loop_set_status_old+0x250/0x250 [ 1042.941876] blkdev_ioctl+0x291/0x710 [ 1042.942363] ? blkdev_common_ioctl+0x1930/0x1930 [ 1042.942968] ? selinux_file_ioctl+0xb6/0x270 [ 1042.943535] block_ioctl+0xf9/0x140 [ 1042.944006] ? blkdev_read_iter+0x1c0/0x1c0 [ 1042.944571] __x64_sys_ioctl+0x19a/0x210 [ 1042.945111] do_syscall_64+0x33/0x40 [ 1042.945617] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1042.946436] RIP: 0033:0x7fd8050b38d7 [ 1042.946910] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1042.949262] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1042.950271] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1042.951161] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1042.952051] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1042.952940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1042.953856] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:34:35 executing program 5: perf_event_open(&(0x7f0000000740)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000001200)={0x88318d00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) symlinkat(0x0, 0xffffffffffffffff, 0x0) keyctl$set_reqkey_keyring(0xe, 0x1) request_key(&(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x1, 0x5}, &(0x7f0000000000)=':\x15\x00U\x1bT;\xfa4\x8dd\xa0\x9d&\xb0Z\xdfv\x8b\x84\x87\xa8K\xff\xb5\xce\xb4\xa7\xab\xc6\xf1\a\xdb\xc2m\xb2w\b\xb7*v\xfdo\x83\'\xd9[\xee|4P\xa7\xe8\xad\x82,\xf5\xd1\xea\xdb\xf4\xf5F\xc0H\v\x8d\xbc\x9e)&nH\x032\x15\x80\x19\xc0\fn\xdc\x8dk\xf2\xe4\x80\x9aJ\xe7\xdb\x8e\xd3\x80*i\x82CT\xb3j%\x94\x15\xc6\xc1\xc2\x82\x83\xdc\xf6sqF\x9cX', 0x0) keyctl$set_reqkey_keyring(0xe, 0x0) keyctl$set_reqkey_keyring(0xe, 0x0) syz_io_uring_setup(0x5a1b, &(0x7f0000000140)={0x0, 0x9e80, 0x1, 0x1, 0x94}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)=0x0) r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000200)='/proc/thread-self/attr/keycreate\x00', 0x2, 0x0) syz_io_uring_submit(0x0, r0, &(0x7f0000000700)=@IORING_OP_WRITEV={0x2, 0x5, 0x2007, @fd=r1, 0x29cd, &(0x7f0000000240)=[{&(0x7f00000002c0)="386d864b814ea7c968cc6d2fe6cbc293de023450fd62cc9f5072ee788067be05bd8b18fdc40fbdda2cfb6acd3bae247e90e2e8c8823a9f847cdd751bb9bdd9ac984b87fff375ba2bfdca071b5d0eadf11cfcd1a477ebb571b17c488ce3833d1b212f25157449174865257e9d37a0619a02a594322bb8e00f28297e9b50b22c6bea30a6b466a4ffe1db11b9cebb73ef07db50d4dd4befd04302e8ea8d07116d0fa4f7bc6fa5b231f510323a65078366b400683383ee58c8ad0644e9c029f3eb7f8dda9cdc0878ec680465f8921b247e8e3720721f", 0xd4}, {&(0x7f00000003c0)="5843b8d2dbe2b8893103c8af788d89f6e122a9ad099087f626dcff1c808f700336519d6dd336777a8a695ad7ee53931df24bbb8fd8207057c315860248dc29bcf4b6746fba4b0ffa9c85efaaf778b7f0386ed7b8230c797a793ec57d81dac2142ad6eeb7737bf296ef076a5e66d509c322e22bbd94940322032fba7e7b813170af9d1e8b6c06d1dd73992b04e135149cd50c8b308a8835223f7a", 0x9a}, {&(0x7f0000000500)="6a06e9a6246979776f6a85eba93ff053d82fe8b10f005df0b0c1fcfb4c7718bdd5d66fba3ae24fc2ece44d13f9386f674f974498820a18c46a63051c670d6443d16f8715b984bb0ce44a9c2ea24475a3d32dc7ed2ffeca33516a3e6824d0e8dd7d47bd70ebe4189075a779aa38205a1338d434b9c315ec643ced156ad99515091ba9e4d4d2d6a8d9d9b60b775ac482f92da4cc0a55adda166a15bb7a27366c37cd9eab90a50ab338c240f78ffcea895dae775ceb67df9a22987d41a9115739d8de8ccecfcc1e68935b604593b19ae90b9dd27b09ae2262fdc31288", 0xdb}, {&(0x7f0000000600)="5e9180bb3b9a853d9ae345f0d75b70b60500c929fbd97c0b4e7138c865bc75cd7b024402b3ec47fa03b0f1473be0ca92f773ea27e115a18e36b42593e915cd9207728e78b3648e841b16ad8a6d9446d3770c3290016c8541fdacd09ad56a0fcadce6530509f514cb96fb48a87e264c8d23d98ce9b7ed3a3821f3ad46e49fd43677a15bb43df017ae9a1be57dd52899cb854f827d289982a4b2d40465af55fa0cfea602091737a1ada3f375aafdba619505babb4c9ff4060c3baf5c406a0ce08e487051f651d24f3f6e", 0xc9}], 0x4, 0x19, 0x1, {0x1}}, 0x6) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) keyctl$set_reqkey_keyring(0xe, 0x4) perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = gettid() rt_tgsigqueueinfo(r2, r2, 0x0, &(0x7f0000000640)) 18:34:35 executing program 1: r0 = creat(&(0x7f0000000080)='./file1\x00', 0x190) write$binfmt_elf64(r0, &(0x7f0000000000)=ANY=[], 0xfdef) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0x105142, 0x0) fallocate(r1, 0x10, 0x0, 0x1f) fallocate(r0, 0x3, 0x8102, 0x8000) 18:34:35 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 1) [ 1043.039337] FAULT_INJECTION: forcing a failure. [ 1043.039337] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.040945] CPU: 0 PID: 7113 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1043.041893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1043.043036] Call Trace: [ 1043.043421] dump_stack+0x107/0x167 [ 1043.043940] should_fail.cold+0x5/0xa [ 1043.044473] ? getname_flags.part.0+0x50/0x4f0 [ 1043.045123] should_failslab+0x5/0x20 [ 1043.045660] kmem_cache_alloc+0x5b/0x310 [ 1043.046248] getname_flags.part.0+0x50/0x4f0 [ 1043.046880] getname+0x8e/0xd0 [ 1043.047339] do_sys_openat2+0xf9/0x4d0 [ 1043.047889] ? build_open_flags+0x6f0/0x6f0 [ 1043.048491] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1043.049167] ? wait_for_completion_io+0x270/0x270 [ 1043.049863] __x64_sys_openat+0x13f/0x1f0 [ 1043.050448] ? __ia32_sys_open+0x1c0/0x1c0 [ 1043.051036] ? ksys_write+0x1a9/0x260 [ 1043.051588] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1043.052315] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1043.053040] do_syscall_64+0x33/0x40 [ 1043.053576] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1043.054292] RIP: 0033:0x7f1ecf0f5b19 [ 1043.054811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1043.057357] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1043.058431] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1043.059430] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1043.060417] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1043.061398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1043.062393] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1043.074357] FAULT_INJECTION: forcing a failure. [ 1043.074357] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.075944] CPU: 0 PID: 7108 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1043.076884] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1043.078032] Call Trace: [ 1043.078406] dump_stack+0x107/0x167 [ 1043.078913] should_fail.cold+0x5/0xa [ 1043.079445] ? __kernfs_new_node+0xd4/0x860 [ 1043.080040] should_failslab+0x5/0x20 [ 1043.080556] kmem_cache_alloc+0x5b/0x310 [ 1043.081120] __kernfs_new_node+0xd4/0x860 [ 1043.081705] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1043.082352] ? kernfs_add_one+0x36e/0x4d0 [ 1043.082933] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1043.083593] ? wait_for_completion_io+0x270/0x270 [ 1043.084257] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1043.084985] kernfs_new_node+0x18d/0x250 [ 1043.085574] __kernfs_create_file+0x51/0x350 [ 1043.086194] sysfs_add_file_mode_ns+0x221/0x560 [ 1043.086845] internal_create_group+0x324/0xb30 [ 1043.087485] ? sysfs_remove_group+0x170/0x170 [ 1043.088099] ? lockdep_init_map_type+0x2c7/0x780 [ 1043.088758] ? blk_queue_flag_set+0x22/0x30 [ 1043.089343] ? __loop_update_dio+0x2d2/0x690 [ 1043.089967] loop_configure+0x953/0x1410 [ 1043.090550] lo_ioctl+0xa57/0x16b0 [ 1043.091050] ? avc_has_extended_perms+0x7f1/0xf40 [ 1043.091708] ? loop_set_status_old+0x250/0x250 [ 1043.092346] ? avc_ss_reset+0x180/0x180 [ 1043.092891] ? find_held_lock+0x2c/0x110 [ 1043.093479] ? __lock_acquire+0xbb1/0x5b00 [ 1043.094155] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1043.094872] ? generic_block_fiemap+0x60/0x60 [ 1043.095477] ? lock_downgrade+0x6d0/0x6d0 [ 1043.096038] ? build_open_flags+0x6f0/0x6f0 [ 1043.096638] ? loop_set_status_old+0x250/0x250 [ 1043.097263] blkdev_ioctl+0x291/0x710 [ 1043.097792] ? blkdev_common_ioctl+0x1930/0x1930 [ 1043.098441] ? selinux_file_ioctl+0xb6/0x270 [ 1043.099054] block_ioctl+0xf9/0x140 [ 1043.099565] ? blkdev_read_iter+0x1c0/0x1c0 [ 1043.100155] __x64_sys_ioctl+0x19a/0x210 [ 1043.100718] do_syscall_64+0x33/0x40 [ 1043.101225] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1043.101928] RIP: 0033:0x7f9be863b8d7 [ 1043.102433] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1043.105096] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1043.106167] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1043.107157] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1043.108166] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1043.109148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1043.110232] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1043.136981] loop0: detected capacity change from 0 to 512 18:34:35 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:34:35 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:34:35 executing program 3: ftruncate(0xffffffffffffffff, 0x4) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:34:35 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 2) [ 1043.230060] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1043.237429] FAULT_INJECTION: forcing a failure. [ 1043.237429] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.238641] CPU: 1 PID: 7134 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1043.239603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1043.240495] Call Trace: [ 1043.240784] dump_stack+0x107/0x167 [ 1043.241180] should_fail.cold+0x5/0xa [ 1043.241603] ? create_object.isra.0+0x3a/0xa20 [ 1043.242101] should_failslab+0x5/0x20 [ 1043.242510] kmem_cache_alloc+0x5b/0x310 [ 1043.242946] create_object.isra.0+0x3a/0xa20 [ 1043.243415] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1043.243959] kmem_cache_alloc+0x159/0x310 [ 1043.244407] getname_flags.part.0+0x50/0x4f0 [ 1043.244876] getname+0x8e/0xd0 [ 1043.245220] do_sys_openat2+0xf9/0x4d0 [ 1043.245669] ? build_open_flags+0x6f0/0x6f0 [ 1043.246224] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1043.246833] ? wait_for_completion_io+0x270/0x270 [ 1043.247365] __x64_sys_openat+0x13f/0x1f0 [ 1043.247805] ? __ia32_sys_open+0x1c0/0x1c0 [ 1043.248259] ? ksys_write+0x1a9/0x260 [ 1043.248671] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1043.249229] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1043.249788] do_syscall_64+0x33/0x40 [ 1043.250187] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1043.250734] RIP: 0033:0x7f1ecf0f5b19 [ 1043.251135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1043.253102] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1043.253935] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1043.254697] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1043.255452] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1043.256209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1043.256964] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:34:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 30) 18:34:35 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 33) 18:34:35 executing program 1: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wg2\x00'}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='loginuid\x00') r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="30000000100009040000000000000000000000000500000000000000000000000000004314e35b2c28ec919cea35e87458a699aeebecac63866bdcdd59a3798b3a713b85c0e51951792f7e4b29690a0ecd"], 0x30}, 0x1, 0x0, 0x0, 0x90}, 0x880) sendfile(r0, r2, &(0x7f0000000400)=0x1, 0x10000) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), 0xffffffffffffffff) r3 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r3, 0x107, 0x14, 0x0, &(0x7f0000000100)) r4 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000014c0)='./file0/file0\x00', 0x7, 0x1, &(0x7f0000000340)=[{&(0x7f0000000180)="1d23de7449ee513d0fbbb59dcf0b1bbac60fe6674c12730f11d2e4a1e5f805fa4b51984ac5bc8ca2939f684ddf22e6602e5bd1", 0x33, 0x101}], 0x54041, &(0x7f0000000540)=ANY=[@ANYBLOB="6e6f6a6f6c69657428646d6f64653d307830303030303030303030080000000000000061703d6e4c726d616c2c756e686964652c6f766572726965726f636b7065726d2c6d6561737505002c00001da5c7900598d1304ff13d0e925e50957ed30c3c4c113453924bdbb8e92b84535401a182856333c5406483429fd31f9ac122fc0585bb0caa8a33f2591fd2836d5262f709569bf3d354d3ee30a4df13d3e5453f7602be272587f0960ac2df346428feec03fa50630e6757901c6a65207a7b69526a3862c16b25a2adeadf91c186c9bd3e33d30bcc61a36bd1e73b760afcc5a9c5ec19bbb92d6a"]) dup2(r3, r4) readv(r1, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x70, 0x0, 0x8, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}]}, 0x70}, 0x1, 0x0, 0x0, 0x800}, 0x0) 18:34:35 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x400000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) dup3(r0, 0xffffffffffffffff, 0x80000) r1 = gettid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) [ 1043.403102] FAULT_INJECTION: forcing a failure. [ 1043.403102] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.405979] CPU: 1 PID: 7139 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1043.407715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1043.409933] Call Trace: [ 1043.410682] dump_stack+0x107/0x167 [ 1043.411730] should_fail.cold+0x5/0xa [ 1043.412804] ? create_object.isra.0+0x3a/0xa20 [ 1043.414084] should_failslab+0x5/0x20 [ 1043.415133] kmem_cache_alloc+0x5b/0x310 [ 1043.416259] ? __lockdep_reset_lock+0x180/0x180 [ 1043.417524] create_object.isra.0+0x3a/0xa20 [ 1043.418704] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1043.420077] kmem_cache_alloc+0x159/0x310 [ 1043.420987] __kernfs_new_node+0xd4/0x860 [ 1043.421892] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1043.422878] ? kernfs_add_one+0x36e/0x4d0 [ 1043.423757] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1043.424769] ? wait_for_completion_io+0x270/0x270 [ 1043.425828] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1043.426932] kernfs_new_node+0x18d/0x250 18:34:35 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 3) [ 1043.427781] __kernfs_create_file+0x51/0x350 [ 1043.428968] sysfs_add_file_mode_ns+0x221/0x560 [ 1043.430172] internal_create_group+0x324/0xb30 [ 1043.431325] ? sysfs_remove_group+0x170/0x170 [ 1043.432452] ? lockdep_init_map_type+0x2c7/0x780 [ 1043.433664] ? blk_queue_flag_set+0x22/0x30 [ 1043.434733] ? __loop_update_dio+0x2d2/0x690 [ 1043.435833] loop_configure+0x953/0x1410 [ 1043.436879] lo_ioctl+0xa57/0x16b0 [ 1043.437792] ? avc_has_extended_perms+0x7f1/0xf40 [ 1043.438988] ? loop_set_status_old+0x250/0x250 [ 1043.440145] ? avc_ss_reset+0x180/0x180 [ 1043.441139] ? find_held_lock+0x2c/0x110 [ 1043.442212] ? __lock_acquire+0xbb1/0x5b00 [ 1043.443376] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1043.444695] ? generic_block_fiemap+0x60/0x60 [ 1043.445846] ? lock_downgrade+0x6d0/0x6d0 [ 1043.446890] ? build_open_flags+0x6f0/0x6f0 [ 1043.447985] ? loop_set_status_old+0x250/0x250 [ 1043.449108] blkdev_ioctl+0x291/0x710 [ 1043.450084] ? blkdev_common_ioctl+0x1930/0x1930 [ 1043.451285] ? selinux_file_ioctl+0xb6/0x270 [ 1043.452412] block_ioctl+0xf9/0x140 [ 1043.453312] ? blkdev_read_iter+0x1c0/0x1c0 [ 1043.454410] __x64_sys_ioctl+0x19a/0x210 [ 1043.455434] do_syscall_64+0x33/0x40 [ 1043.456385] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1043.457689] RIP: 0033:0x7fd8050b38d7 [ 1043.458706] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1043.463336] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1043.465243] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1043.467038] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1043.468817] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1043.470625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1043.472411] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1043.528794] FAULT_INJECTION: forcing a failure. [ 1043.528794] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.531835] CPU: 0 PID: 7141 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1043.533645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1043.535817] Call Trace: [ 1043.536530] dump_stack+0x107/0x167 [ 1043.537527] should_fail.cold+0x5/0xa [ 1043.538555] ? __kernfs_new_node+0xd4/0x860 [ 1043.539707] should_failslab+0x5/0x20 [ 1043.540722] kmem_cache_alloc+0x5b/0x310 [ 1043.541876] __kernfs_new_node+0xd4/0x860 [ 1043.543046] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1043.544315] ? kernfs_add_one+0x36e/0x4d0 [ 1043.545444] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1043.546753] ? wait_for_completion_io+0x270/0x270 [ 1043.548047] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1043.549467] kernfs_new_node+0x18d/0x250 [ 1043.550586] __kernfs_create_file+0x51/0x350 [ 1043.551744] sysfs_add_file_mode_ns+0x221/0x560 [ 1043.553015] internal_create_group+0x324/0xb30 [ 1043.554279] ? sysfs_remove_group+0x170/0x170 [ 1043.555481] ? lockdep_init_map_type+0x2c7/0x780 [ 1043.556756] ? blk_queue_flag_set+0x22/0x30 [ 1043.557902] ? __loop_update_dio+0x2d2/0x690 [ 1043.559087] loop_configure+0x953/0x1410 [ 1043.560210] lo_ioctl+0xa57/0x16b0 [ 1043.561167] ? avc_has_extended_perms+0x7f1/0xf40 [ 1043.562473] ? loop_set_status_old+0x250/0x250 18:34:35 executing program 3: ftruncate(0xffffffffffffffff, 0x4) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1043.563694] ? avc_ss_reset+0x180/0x180 [ 1043.565017] ? find_held_lock+0x2c/0x110 [ 1043.566147] ? __lock_acquire+0xbb1/0x5b00 [ 1043.567414] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1043.568788] ? generic_block_fiemap+0x60/0x60 [ 1043.570039] ? lock_downgrade+0x6d0/0x6d0 [ 1043.571124] ? build_open_flags+0x6f0/0x6f0 [ 1043.572293] ? loop_set_status_old+0x250/0x250 [ 1043.573487] blkdev_ioctl+0x291/0x710 [ 1043.574501] ? blkdev_common_ioctl+0x1930/0x1930 [ 1043.575756] ? selinux_file_ioctl+0xb6/0x270 [ 1043.576900] block_ioctl+0xf9/0x140 [ 1043.577868] ? blkdev_read_iter+0x1c0/0x1c0 [ 1043.579000] __x64_sys_ioctl+0x19a/0x210 [ 1043.580088] do_syscall_64+0x33/0x40 [ 1043.581056] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1043.582416] RIP: 0033:0x7f9be863b8d7 [ 1043.583392] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1043.588143] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1043.590162] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1043.592407] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1043.594696] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1043.596557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1043.598363] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1043.606398] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. 18:34:35 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 31) 18:34:36 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1043.719148] loop0: detected capacity change from 0 to 512 [ 1043.740555] FAULT_INJECTION: forcing a failure. [ 1043.740555] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1043.743535] CPU: 0 PID: 7152 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1043.745182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1043.747213] Call Trace: [ 1043.747858] dump_stack+0x107/0x167 [ 1043.748745] should_fail.cold+0x5/0xa [ 1043.749744] strncpy_from_user+0x34/0x470 [ 1043.750847] getname_flags.part.0+0x95/0x4f0 [ 1043.752081] getname+0x8e/0xd0 [ 1043.752942] do_sys_openat2+0xf9/0x4d0 [ 1043.754038] ? build_open_flags+0x6f0/0x6f0 [ 1043.755199] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1043.756482] ? wait_for_completion_io+0x270/0x270 [ 1043.756537] __x64_sys_openat+0x13f/0x1f0 [ 1043.756566] ? __ia32_sys_open+0x1c0/0x1c0 [ 1043.756589] ? ksys_write+0x1a9/0x260 [ 1043.756639] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1043.756666] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1043.756707] do_syscall_64+0x33/0x40 [ 1043.764821] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1043.766185] RIP: 0033:0x7f1ecf0f5b19 [ 1043.767168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1043.771981] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1043.773774] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1043.775639] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1043.777331] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1043.779006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1043.780675] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1043.808623] loop1: detected capacity change from 0 to 512 [ 1043.823042] FAULT_INJECTION: forcing a failure. [ 1043.823042] name failslab, interval 1, probability 0, space 0, times 0 [ 1043.826034] CPU: 0 PID: 7159 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1043.827600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1043.829591] Call Trace: [ 1043.830204] dump_stack+0x107/0x167 [ 1043.831052] should_fail.cold+0x5/0xa [ 1043.831933] ? create_object.isra.0+0x3a/0xa20 [ 1043.833080] should_failslab+0x5/0x20 [ 1043.833996] kmem_cache_alloc+0x5b/0x310 [ 1043.834925] ? __lockdep_reset_lock+0x180/0x180 [ 1043.836006] create_object.isra.0+0x3a/0xa20 [ 1043.837028] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1043.838281] kmem_cache_alloc+0x159/0x310 [ 1043.839255] __kernfs_new_node+0xd4/0x860 [ 1043.840226] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1043.841347] ? kernfs_add_one+0x36e/0x4d0 [ 1043.842409] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1043.843556] ? wait_for_completion_io+0x270/0x270 [ 1043.844703] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1043.845972] kernfs_new_node+0x18d/0x250 [ 1043.846998] __kernfs_create_file+0x51/0x350 [ 1043.848051] sysfs_add_file_mode_ns+0x221/0x560 [ 1043.849175] internal_create_group+0x324/0xb30 [ 1043.850302] ? sysfs_remove_group+0x170/0x170 [ 1043.851409] ? lockdep_init_map_type+0x2c7/0x780 [ 1043.852540] ? blk_queue_flag_set+0x22/0x30 [ 1043.853579] ? __loop_update_dio+0x2d2/0x690 [ 1043.854631] loop_configure+0x953/0x1410 [ 1043.855660] lo_ioctl+0xa57/0x16b0 [ 1043.856532] ? avc_has_extended_perms+0x7f1/0xf40 [ 1043.857702] ? loop_set_status_old+0x250/0x250 [ 1043.858796] ? avc_ss_reset+0x180/0x180 [ 1043.859746] ? find_held_lock+0x2c/0x110 [ 1043.860936] ? __lock_acquire+0xbb1/0x5b00 [ 1043.862106] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1043.863379] ? generic_block_fiemap+0x60/0x60 [ 1043.864465] ? lock_downgrade+0x6d0/0x6d0 [ 1043.865532] ? build_open_flags+0x6f0/0x6f0 [ 1043.866598] ? loop_set_status_old+0x250/0x250 [ 1043.867693] blkdev_ioctl+0x291/0x710 [ 1043.868615] ? blkdev_common_ioctl+0x1930/0x1930 [ 1043.869845] ? selinux_file_ioctl+0xb6/0x270 [ 1043.870941] block_ioctl+0xf9/0x140 [ 1043.871819] ? blkdev_read_iter+0x1c0/0x1c0 [ 1043.872922] __x64_sys_ioctl+0x19a/0x210 [ 1043.873954] do_syscall_64+0x33/0x40 [ 1043.874903] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1043.876154] RIP: 0033:0x7fd8050b38d7 [ 1043.877064] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1043.881618] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1043.883497] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1043.885214] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1043.887042] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1043.888759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1043.890507] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1043.895663] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1044.101453] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1044.115205] loop1: detected capacity change from 0 to 512 [ 1062.537402] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:34:54 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="18000000ff780d380976894a228b15ff0dd1b77dc0bfe5663ada5c8e440ba325787e2c6b0a57379bf409a57a41eebc369f97772460edcd3f58d6ae10c7d0441ea12abc0576aa89a4841e39717665caf75cea42c16e6f89c22a4eb5e8971b7e50173ec42f048ce9bf89f943db58c5c29c7916441f333c3bcd36c539c92d11b18f384dc1d21b5229d15f0d678edffb224e9c59ce3b91953b11e0c8a638bf0b2655d323c0836b75f1f97eef9fdf9d515c1af500000000", @ANYRES16=r1, @ANYBLOB="757f00000000000000000200000004000180"], 0x18}}, 0x0) 18:34:54 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x0, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:34:54 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 32) 18:34:54 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 4) 18:34:54 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) process_vm_readv(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f0000000000)=""/32, 0x20}, {&(0x7f0000000040)=""/7, 0x7}, {&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f0000000080)=""/132, 0x84}], 0x5, &(0x7f00000004c0)=[{&(0x7f00000026c0)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/9, 0x9}, {&(0x7f0000000200)=""/69, 0x45}, {&(0x7f00000036c0)=""/4096, 0x1000}, {&(0x7f0000000280)=""/141, 0x8d}, {&(0x7f0000000340)=""/37, 0x25}, {&(0x7f0000000380)=""/176, 0xb0}], 0x7, 0x0) 18:34:54 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:34:54 executing program 3: ftruncate(0xffffffffffffffff, 0x4) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r1, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r4, &(0x7f0000000240)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:34:54 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 34) [ 1062.606785] FAULT_INJECTION: forcing a failure. [ 1062.606785] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.609253] CPU: 1 PID: 7189 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1062.610755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1062.612511] Call Trace: [ 1062.613070] dump_stack+0x107/0x167 [ 1062.613847] should_fail.cold+0x5/0xa [ 1062.614671] ? __alloc_file+0x21/0x320 [ 1062.615504] should_failslab+0x5/0x20 [ 1062.616324] kmem_cache_alloc+0x5b/0x310 [ 1062.617196] __alloc_file+0x21/0x320 [ 1062.617990] alloc_empty_file+0x6d/0x170 [ 1062.618866] path_openat+0xe6/0x2770 [ 1062.619653] ? __lock_acquire+0x1657/0x5b00 [ 1062.620598] ? path_lookupat+0x860/0x860 [ 1062.621466] ? perf_trace_lock+0xac/0x490 [ 1062.622354] ? SOFTIRQ_verbose+0x10/0x10 [ 1062.623212] ? find_held_lock+0x2c/0x110 [ 1062.624083] ? __lockdep_reset_lock+0x180/0x180 [ 1062.625069] do_filp_open+0x190/0x3e0 [ 1062.625868] ? may_open_dev+0xf0/0xf0 [ 1062.626683] ? alloc_fd+0x2e7/0x670 [ 1062.627449] ? lock_downgrade+0x6d0/0x6d0 [ 1062.628318] ? do_raw_spin_lock+0x121/0x260 [ 1062.629228] ? rwlock_bug.part.0+0x90/0x90 [ 1062.630133] ? _raw_spin_unlock+0x1a/0x30 [ 1062.631028] ? alloc_fd+0x2e7/0x670 [ 1062.631828] do_sys_openat2+0x171/0x4d0 [ 1062.632683] ? build_open_flags+0x6f0/0x6f0 [ 1062.633595] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1062.634633] ? wait_for_completion_io+0x270/0x270 [ 1062.635674] __x64_sys_openat+0x13f/0x1f0 [ 1062.636569] ? __ia32_sys_open+0x1c0/0x1c0 [ 1062.637492] ? ksys_write+0x1a9/0x260 [ 1062.638483] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1062.639761] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1062.641023] do_syscall_64+0x33/0x40 [ 1062.641903] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1062.642988] RIP: 0033:0x7f1ecf0f5b19 [ 1062.643793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1062.647658] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1062.649247] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1062.650753] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1062.652251] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1062.653751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1062.655249] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1062.660326] FAULT_INJECTION: forcing a failure. [ 1062.660326] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.662766] CPU: 1 PID: 7178 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1062.664208] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1062.665952] Call Trace: [ 1062.666526] dump_stack+0x107/0x167 [ 1062.667316] should_fail.cold+0x5/0xa [ 1062.668121] ? create_object.isra.0+0x3a/0xa20 [ 1062.669102] should_failslab+0x5/0x20 [ 1062.669911] kmem_cache_alloc+0x5b/0x310 [ 1062.670785] ? __lockdep_reset_lock+0x180/0x180 [ 1062.671776] create_object.isra.0+0x3a/0xa20 [ 1062.672698] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1062.673779] kmem_cache_alloc+0x159/0x310 [ 1062.674678] __kernfs_new_node+0xd4/0x860 [ 1062.675570] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1062.676564] ? kernfs_add_one+0x36e/0x4d0 [ 1062.677449] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1062.678475] ? wait_for_completion_io+0x270/0x270 [ 1062.679503] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1062.680616] kernfs_new_node+0x18d/0x250 [ 1062.681490] __kernfs_create_file+0x51/0x350 [ 1062.682444] sysfs_add_file_mode_ns+0x221/0x560 [ 1062.683442] internal_create_group+0x324/0xb30 [ 1062.684425] ? sysfs_remove_group+0x170/0x170 [ 1062.685396] ? lockdep_init_map_type+0x2c7/0x780 [ 1062.686421] ? blk_queue_flag_set+0x22/0x30 [ 1062.687345] ? __loop_update_dio+0x2d2/0x690 [ 1062.688260] loop_configure+0x953/0x1410 [ 1062.689112] lo_ioctl+0xa57/0x16b0 [ 1062.689864] ? avc_has_extended_perms+0x7f1/0xf40 [ 1062.690896] ? loop_set_status_old+0x250/0x250 [ 1062.691863] ? avc_ss_reset+0x180/0x180 [ 1062.692708] ? find_held_lock+0x2c/0x110 [ 1062.693581] ? __lock_acquire+0xbb1/0x5b00 [ 1062.694552] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1062.695664] ? generic_block_fiemap+0x60/0x60 [ 1062.696619] ? lock_downgrade+0x6d0/0x6d0 [ 1062.697495] ? build_open_flags+0x6f0/0x6f0 [ 1062.698421] ? loop_set_status_old+0x250/0x250 [ 1062.699396] blkdev_ioctl+0x291/0x710 [ 1062.700209] ? blkdev_common_ioctl+0x1930/0x1930 [ 1062.701217] ? selinux_file_ioctl+0xb6/0x270 [ 1062.702152] block_ioctl+0xf9/0x140 [ 1062.702931] ? blkdev_read_iter+0x1c0/0x1c0 [ 1062.703841] __x64_sys_ioctl+0x19a/0x210 [ 1062.704702] do_syscall_64+0x33/0x40 [ 1062.705488] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1062.706578] RIP: 0033:0x7fd8050b38d7 [ 1062.707379] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1062.711273] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1062.712890] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1062.714404] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1062.715914] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1062.717412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1062.718922] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1062.813029] FAULT_INJECTION: forcing a failure. [ 1062.813029] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.815592] CPU: 1 PID: 7186 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1062.816976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1062.818649] Call Trace: [ 1062.819189] dump_stack+0x107/0x167 [ 1062.819928] should_fail.cold+0x5/0xa [ 1062.820713] ? create_object.isra.0+0x3a/0xa20 [ 1062.821632] should_failslab+0x5/0x20 [ 1062.822414] kmem_cache_alloc+0x5b/0x310 [ 1062.823229] ? __lockdep_reset_lock+0x180/0x180 [ 1062.824162] create_object.isra.0+0x3a/0xa20 [ 1062.825030] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1062.826047] kmem_cache_alloc+0x159/0x310 [ 1062.826909] __kernfs_new_node+0xd4/0x860 [ 1062.827764] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1062.828721] ? kernfs_add_one+0x36e/0x4d0 [ 1062.829587] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1062.830761] ? wait_for_completion_io+0x270/0x270 [ 1062.831904] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1062.833122] kernfs_new_node+0x18d/0x250 [ 1062.834062] __kernfs_create_file+0x51/0x350 [ 1062.835092] sysfs_add_file_mode_ns+0x221/0x560 [ 1062.836220] internal_create_group+0x324/0xb30 [ 1062.837306] ? sysfs_remove_group+0x170/0x170 [ 1062.838472] ? lockdep_init_map_type+0x2c7/0x780 [ 1062.839553] ? blk_queue_flag_set+0x22/0x30 [ 1062.840555] ? __loop_update_dio+0x2d2/0x690 [ 1062.841573] loop_configure+0x953/0x1410 [ 1062.842567] lo_ioctl+0xa57/0x16b0 [ 1062.843331] ? avc_has_extended_perms+0x7f1/0xf40 [ 1062.844311] ? loop_set_status_old+0x250/0x250 [ 1062.845244] ? avc_ss_reset+0x180/0x180 [ 1062.846057] ? find_held_lock+0x2c/0x110 [ 1062.846944] ? __lock_acquire+0xbb1/0x5b00 [ 1062.847856] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1062.848916] ? generic_block_fiemap+0x60/0x60 [ 1062.849829] ? lock_downgrade+0x6d0/0x6d0 [ 1062.850702] ? build_open_flags+0x6f0/0x6f0 [ 1062.851581] ? loop_set_status_old+0x250/0x250 [ 1062.852501] blkdev_ioctl+0x291/0x710 [ 1062.853276] ? blkdev_common_ioctl+0x1930/0x1930 [ 1062.854255] ? selinux_file_ioctl+0xb6/0x270 [ 1062.855164] block_ioctl+0xf9/0x140 [ 1062.855909] ? blkdev_read_iter+0x1c0/0x1c0 [ 1062.856777] __x64_sys_ioctl+0x19a/0x210 [ 1062.857569] do_syscall_64+0x33/0x40 [ 1062.858365] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1062.859421] RIP: 0033:0x7f9be863b8d7 [ 1062.860181] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1062.863847] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1062.865344] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1062.866813] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1062.868247] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1062.869681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1062.871134] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1062.939174] loop0: detected capacity change from 0 to 512 18:35:08 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 35) 18:35:08 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 33) 18:35:08 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 5) 18:35:08 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x2000000000000}, 0x0, 0xe, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r5 = syz_io_uring_complete(r3) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r6}}, 0x362c) syz_io_uring_submit(r2, r4, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r5, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r6}}, 0x6) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x3, 0x2, 0x7, 0x1, 0x0, 0x80, 0x90800, 0x5, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_bp={&(0x7f0000000000), 0xc}, 0x4002, 0x20, 0x8, 0x4, 0xdd7, 0x442fe511, 0x0, 0x0, 0x5bcb, 0x0, 0x8}, 0xffffffffffffffff, 0x5, r5, 0x8) 18:35:08 executing program 1: arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x2) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000004c0)) 18:35:08 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x0, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:35:08 executing program 3: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:35:08 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1076.274768] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1076.282320] FAULT_INJECTION: forcing a failure. [ 1076.282320] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.284796] CPU: 0 PID: 7209 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1076.285713] FAULT_INJECTION: forcing a failure. [ 1076.285713] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.286285] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.286297] Call Trace: [ 1076.286334] dump_stack+0x107/0x167 [ 1076.291945] should_fail.cold+0x5/0xa [ 1076.292787] ? create_object.isra.0+0x3a/0xa20 [ 1076.293794] should_failslab+0x5/0x20 [ 1076.294634] kmem_cache_alloc+0x5b/0x310 [ 1076.295554] create_object.isra.0+0x3a/0xa20 [ 1076.296516] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1076.297639] kmem_cache_alloc+0x159/0x310 [ 1076.298566] __alloc_file+0x21/0x320 [ 1076.299405] alloc_empty_file+0x6d/0x170 [ 1076.300291] path_openat+0xe6/0x2770 [ 1076.301117] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1076.302213] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1076.303326] ? path_lookupat+0x860/0x860 [ 1076.304219] ? perf_trace_lock+0x2bd/0x490 [ 1076.305148] ? SOFTIRQ_verbose+0x10/0x10 [ 1076.306034] ? find_held_lock+0x2c/0x110 [ 1076.306950] ? __lockdep_reset_lock+0x180/0x180 [ 1076.307986] do_filp_open+0x190/0x3e0 [ 1076.308822] ? may_open_dev+0xf0/0xf0 [ 1076.309672] ? alloc_fd+0x2e7/0x670 [ 1076.310476] ? lock_downgrade+0x6d0/0x6d0 [ 1076.311397] ? do_raw_spin_lock+0x121/0x260 [ 1076.312365] ? rwlock_bug.part.0+0x90/0x90 [ 1076.313319] ? _raw_spin_unlock+0x1a/0x30 [ 1076.314226] ? alloc_fd+0x2e7/0x670 [ 1076.315063] do_sys_openat2+0x171/0x4d0 [ 1076.315951] ? build_open_flags+0x6f0/0x6f0 [ 1076.316893] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1076.317953] ? wait_for_completion_io+0x270/0x270 [ 1076.319043] __x64_sys_openat+0x13f/0x1f0 [ 1076.319954] ? __ia32_sys_open+0x1c0/0x1c0 [ 1076.320873] ? ksys_write+0x1a9/0x260 [ 1076.321723] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.322872] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1076.324003] do_syscall_64+0x33/0x40 [ 1076.324820] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1076.325939] RIP: 0033:0x7f1ecf0f5b19 [ 1076.326768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.330743] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1076.332397] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1076.333943] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1076.335503] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1076.337047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1076.338598] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1076.340226] CPU: 1 PID: 7207 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1076.341803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.343628] Call Trace: [ 1076.344222] dump_stack+0x107/0x167 [ 1076.345028] should_fail.cold+0x5/0xa [ 1076.346043] ? __kernfs_new_node+0xd4/0x860 [ 1076.347118] should_failslab+0x5/0x20 [ 1076.347973] kmem_cache_alloc+0x5b/0x310 [ 1076.348885] __kernfs_new_node+0xd4/0x860 [ 1076.349813] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1076.350871] ? kernfs_add_one+0x36e/0x4d0 [ 1076.351795] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1076.352857] ? wait_for_completion_io+0x270/0x270 [ 1076.353916] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1076.355083] kernfs_new_node+0x18d/0x250 [ 1076.355985] __kernfs_create_file+0x51/0x350 [ 1076.356963] sysfs_add_file_mode_ns+0x221/0x560 [ 1076.357997] internal_create_group+0x324/0xb30 [ 1076.359025] ? sysfs_remove_group+0x170/0x170 [ 1076.359997] ? lockdep_init_map_type+0x2c7/0x780 [ 1076.361032] ? blk_queue_flag_set+0x22/0x30 [ 1076.361962] ? __loop_update_dio+0x2d2/0x690 [ 1076.362945] loop_configure+0x953/0x1410 [ 1076.363840] lo_ioctl+0xa57/0x16b0 [ 1076.364622] ? avc_has_extended_perms+0x7f1/0xf40 [ 1076.365666] ? loop_set_status_old+0x250/0x250 [ 1076.366685] ? avc_ss_reset+0x180/0x180 [ 1076.367542] ? find_held_lock+0x2c/0x110 [ 1076.368450] ? __lock_acquire+0xbb1/0x5b00 [ 1076.369419] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1076.370563] ? generic_block_fiemap+0x60/0x60 [ 1076.371534] ? lock_downgrade+0x6d0/0x6d0 [ 1076.372446] ? build_open_flags+0x6f0/0x6f0 [ 1076.373400] ? loop_set_status_old+0x250/0x250 [ 1076.374399] blkdev_ioctl+0x291/0x710 [ 1076.374422] ? blkdev_common_ioctl+0x1930/0x1930 [ 1076.374447] ? selinux_file_ioctl+0xb6/0x270 [ 1076.374473] block_ioctl+0xf9/0x140 [ 1076.374490] ? blkdev_read_iter+0x1c0/0x1c0 [ 1076.374516] __x64_sys_ioctl+0x19a/0x210 [ 1076.376380] do_syscall_64+0x33/0x40 [ 1076.376400] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1076.376413] RIP: 0033:0x7fd8050b38d7 [ 1076.376437] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.378146] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1076.378168] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1076.378179] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1076.378197] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1076.393007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1076.394557] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1076.501198] FAULT_INJECTION: forcing a failure. [ 1076.501198] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.503677] CPU: 0 PID: 7221 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1076.505164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.506980] Call Trace: [ 1076.507572] dump_stack+0x107/0x167 [ 1076.508386] should_fail.cold+0x5/0xa [ 1076.509239] ? create_object.isra.0+0x3a/0xa20 [ 1076.510253] should_failslab+0x5/0x20 [ 1076.511102] kmem_cache_alloc+0x5b/0x310 [ 1076.511994] ? __lockdep_reset_lock+0x180/0x180 [ 1076.513035] create_object.isra.0+0x3a/0xa20 [ 1076.514000] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1076.515137] kmem_cache_alloc+0x159/0x310 [ 1076.516076] __kernfs_new_node+0xd4/0x860 [ 1076.517011] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1076.518049] ? kernfs_add_one+0x36e/0x4d0 [ 1076.518998] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1076.520075] ? wait_for_completion_io+0x270/0x270 [ 1076.521143] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1076.522312] kernfs_new_node+0x18d/0x250 [ 1076.523234] __kernfs_create_file+0x51/0x350 [ 1076.524215] sysfs_add_file_mode_ns+0x221/0x560 [ 1076.525269] internal_create_group+0x324/0xb30 [ 1076.526299] ? sysfs_remove_group+0x170/0x170 [ 1076.527302] ? lockdep_init_map_type+0x2c7/0x780 [ 1076.528356] ? blk_queue_flag_set+0x22/0x30 [ 1076.529301] ? __loop_update_dio+0x2d2/0x690 [ 1076.530280] loop_configure+0x953/0x1410 [ 1076.531219] lo_ioctl+0xa57/0x16b0 [ 1076.532018] ? avc_has_extended_perms+0x7f1/0xf40 [ 1076.533088] ? loop_set_status_old+0x250/0x250 [ 1076.534101] ? avc_ss_reset+0x180/0x180 [ 1076.535004] ? find_held_lock+0x2c/0x110 [ 1076.535932] ? __lock_acquire+0xbb1/0x5b00 [ 1076.536978] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1076.538131] ? generic_block_fiemap+0x60/0x60 [ 1076.539134] ? lock_downgrade+0x6d0/0x6d0 [ 1076.540048] ? build_open_flags+0x6f0/0x6f0 [ 1076.541016] ? loop_set_status_old+0x250/0x250 [ 1076.542017] blkdev_ioctl+0x291/0x710 [ 1076.542874] ? blkdev_common_ioctl+0x1930/0x1930 [ 1076.543935] ? selinux_file_ioctl+0xb6/0x270 [ 1076.544919] block_ioctl+0xf9/0x140 [ 1076.545719] ? blkdev_read_iter+0x1c0/0x1c0 [ 1076.546690] __x64_sys_ioctl+0x19a/0x210 [ 1076.547601] do_syscall_64+0x33/0x40 [ 1076.548425] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1076.549547] RIP: 0033:0x7f9be863b8d7 [ 1076.550370] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.554363] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1076.556032] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1076.557591] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1076.559178] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1076.560699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1076.562224] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:35:08 executing program 1: r0 = creat(0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) r1 = creat(&(0x7f0000000100)='./file0\x00', 0x0) sendmmsg$unix(r1, &(0x7f0000001800)=[{{&(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001640)=[{&(0x7f0000000380)="e7a4ab1f8e369bf38bba3bb3b817d049392fd7fb6f167fe60db766f09e35b9ed8e742747204d864ed9159257739d4b453b46effd99fff41787fce1663367b198d070061495717a0e126fc1a037a0ad0b29721449ddf880689b371f59acd0a13b183b1f7421e2ddf3ba647a23a557ee6bc0cc61b2836d1e5776a17a3405b4388c976ac8b378d66bed8038d2f65af541b4cdb65bb9fc21e6883e688008244adad083ab62915da4606140e671365720c0dc93e86ca676aa32e42c2797cb4d547f2e221bc7b63917ceb9726526", 0xcb}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000001480)}, {&(0x7f00000014c0)="892d0860efac52e7ed1da485d03d917c6080beb46b8a51847ce067773b96b43b735b3cd9c29edaebc503406496166197dc37a3b9aabb6dc94cd7d5c7f26cbbc0c84a4c94df05324d5f271233a3efadd3e977ed70dedf302441cc03cc44df2b519573b5d0b3076d23b68e670561dedeb9ac3e53f8b61e1b56df451fccce257998917b8121051429478c14994e9b492e64217c2c2f41fe626776a8f68ee67a8e1b307f33e3bd844a6055039147f135e562641433043a692cef0a34057e76c010a396bcfef57850a0bcbb", 0xc9}, {&(0x7f00000015c0)="1a56029ec4aa4415d8f930065cb7e32d1ac1d6d5aef25a28d3b414d6d8de455eba8faef3b6d270292d58b903c013e1d320792327784ad0e96fa336779170f59bb699dae09195320db9f8649ed718c89f1b4e468d303d9ea56d37c2", 0x5b}], 0x5, 0x0, 0x0, 0x4000}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f00000016c0)="153278018182e79bb79ad02026ebc5d483b00f2d3f6cfa7220f3eb7ce1ad936ae1e2fa73a34beba71717b89334850b3ec220fcf4b2de33e1103f42cbfe7de67e058b90cdefcfbe1c9954d66743c29f7d0e2721381f2190621275ad60254f5c16d0f38084cab47a7cf20998ab8a88a80830d6d7f18cd2ca7a98be8f29c9c703fdd4840702fa967ffa437dd8eb4fbea0cc346e7c39a376e5783bb72b53b7f2af6d69bbcb78dcaacc80f5d639180a3090757c2fc8f316badd8a55106037ab5acd443b6b940b1fd9db890e6cf95ee57e28", 0xcf}], 0x1, 0x0, 0x0, 0x40000}}], 0x2, 0x8890) chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x400, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, @perf_config_ext, 0x40406, 0x0, 0x5, 0x7, 0x4, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_int(r2, 0x29, 0x38, &(0x7f0000000000)=0x7, 0x4) fsmount(r0, 0x1, 0x0) r3 = creat(&(0x7f0000000080)='./file0\x00', 0x181) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1, 0x1) creat(&(0x7f00000002c0)='./file0\x00', 0x0) pwrite64(r3, &(0x7f00000000c0)="04", 0x1, 0x3ff03) r4 = dup2(r2, r3) fcntl$getown(r4, 0x9) [ 1076.573828] loop0: detected capacity change from 0 to 512 18:35:08 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 34) 18:35:08 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 6) 18:35:08 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1076.656857] loop1: detected capacity change from 0 to 33559552 18:35:09 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 36) 18:35:09 executing program 5: mq_open(&(0x7f0000000000)='\x00', 0x40, 0x80, &(0x7f0000000040)={0x1, 0x3, 0x6, 0x20000000000}) perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) [ 1076.713307] FAULT_INJECTION: forcing a failure. [ 1076.713307] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.716104] CPU: 0 PID: 7236 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1076.717874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.720017] Call Trace: [ 1076.720730] dump_stack+0x107/0x167 [ 1076.721691] should_fail.cold+0x5/0xa [ 1076.722712] ? security_file_alloc+0x34/0x170 [ 1076.723895] should_failslab+0x5/0x20 [ 1076.724898] kmem_cache_alloc+0x5b/0x310 [ 1076.725986] security_file_alloc+0x34/0x170 [ 1076.727080] __alloc_file+0xb7/0x320 [ 1076.728014] alloc_empty_file+0x6d/0x170 [ 1076.729027] path_openat+0xe6/0x2770 [ 1076.729957] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1076.731256] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1076.732560] ? path_lookupat+0x860/0x860 [ 1076.733501] ? perf_trace_lock+0x2bd/0x490 [ 1076.734589] ? SOFTIRQ_verbose+0x10/0x10 [ 1076.735497] ? find_held_lock+0x2c/0x110 [ 1076.736542] ? __lockdep_reset_lock+0x180/0x180 [ 1076.737767] do_filp_open+0x190/0x3e0 [ 1076.738769] ? may_open_dev+0xf0/0xf0 [ 1076.739777] ? alloc_fd+0x2e7/0x670 [ 1076.740565] ? lock_downgrade+0x6d0/0x6d0 [ 1076.741641] ? do_raw_spin_lock+0x121/0x260 [ 1076.742608] ? rwlock_bug.part.0+0x90/0x90 [ 1076.743744] ? _raw_spin_unlock+0x1a/0x30 [ 1076.744652] ? alloc_fd+0x2e7/0x670 [ 1076.745607] do_sys_openat2+0x171/0x4d0 [ 1076.746486] ? build_open_flags+0x6f0/0x6f0 [ 1076.747585] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1076.748624] ? wait_for_completion_io+0x270/0x270 [ 1076.749900] __x64_sys_openat+0x13f/0x1f0 [ 1076.750842] ? __ia32_sys_open+0x1c0/0x1c0 [ 1076.751930] ? ksys_write+0x1a9/0x260 [ 1076.752790] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.754150] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1076.755484] do_syscall_64+0x33/0x40 [ 1076.756272] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1076.757602] RIP: 0033:0x7f1ecf0f5b19 [ 1076.758569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.763296] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1076.764877] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1076.766740] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1076.768595] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1076.770428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1076.772286] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1076.812694] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:35:09 executing program 3: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1076.854372] FAULT_INJECTION: forcing a failure. [ 1076.854372] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.857359] CPU: 0 PID: 7242 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1076.859047] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.861028] Call Trace: [ 1076.861654] dump_stack+0x107/0x167 [ 1076.862440] should_fail.cold+0x5/0xa [ 1076.863412] ? create_object.isra.0+0x3a/0xa20 [ 1076.864585] should_failslab+0x5/0x20 [ 1076.865551] kmem_cache_alloc+0x5b/0x310 [ 1076.866567] ? __lockdep_reset_lock+0x180/0x180 [ 1076.867784] create_object.isra.0+0x3a/0xa20 [ 1076.868890] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1076.870204] kmem_cache_alloc+0x159/0x310 [ 1076.871314] __kernfs_new_node+0xd4/0x860 [ 1076.872399] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1076.873657] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1076.874901] ? wait_for_completion_io+0x270/0x270 [ 1076.876163] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1076.877504] kernfs_new_node+0x18d/0x250 [ 1076.878601] __kernfs_create_file+0x51/0x350 [ 1076.879747] sysfs_add_file_mode_ns+0x221/0x560 [ 1076.881025] internal_create_group+0x324/0xb30 [ 1076.882218] ? sysfs_remove_group+0x170/0x170 [ 1076.883431] ? lockdep_init_map_type+0x2c7/0x780 [ 1076.884632] ? blk_queue_flag_set+0x22/0x30 [ 1076.885776] ? __loop_update_dio+0x2d2/0x690 [ 1076.886905] loop_configure+0x953/0x1410 [ 1076.888040] lo_ioctl+0xa57/0x16b0 [ 1076.888960] ? avc_has_extended_perms+0x7f1/0xf40 [ 1076.890235] ? loop_set_status_old+0x250/0x250 [ 1076.891443] ? avc_ss_reset+0x180/0x180 [ 1076.892487] ? find_held_lock+0x2c/0x110 [ 1076.893572] ? __lock_acquire+0xbb1/0x5b00 [ 1076.894840] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1076.896176] ? generic_block_fiemap+0x60/0x60 [ 1076.897367] ? lock_downgrade+0x6d0/0x6d0 [ 1076.898420] ? build_open_flags+0x6f0/0x6f0 [ 1076.899565] ? loop_set_status_old+0x250/0x250 [ 1076.900702] blkdev_ioctl+0x291/0x710 [ 1076.901684] ? blkdev_common_ioctl+0x1930/0x1930 18:35:09 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1076.902937] ? selinux_file_ioctl+0xb6/0x270 [ 1076.904256] block_ioctl+0xf9/0x140 [ 1076.905185] ? blkdev_read_iter+0x1c0/0x1c0 [ 1076.906303] __x64_sys_ioctl+0x19a/0x210 [ 1076.907371] do_syscall_64+0x33/0x40 [ 1076.908334] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1076.909647] RIP: 0033:0x7fd8050b38d7 [ 1076.910591] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.915172] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1076.917082] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1076.918879] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1076.920679] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1076.922504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1076.924340] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1077.154836] FAULT_INJECTION: forcing a failure. [ 1077.154836] name failslab, interval 1, probability 0, space 0, times 0 [ 1077.157112] CPU: 0 PID: 7249 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1077.158472] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1077.160132] Call Trace: [ 1077.160671] dump_stack+0x107/0x167 [ 1077.161410] should_fail.cold+0x5/0xa [ 1077.162180] ? create_object.isra.0+0x3a/0xa20 [ 1077.163110] should_failslab+0x5/0x20 [ 1077.163873] kmem_cache_alloc+0x5b/0x310 [ 1077.164692] ? __lockdep_reset_lock+0x180/0x180 [ 1077.165633] create_object.isra.0+0x3a/0xa20 [ 1077.166507] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1077.167539] kmem_cache_alloc+0x159/0x310 [ 1077.168390] __kernfs_new_node+0xd4/0x860 [ 1077.169234] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1077.170181] ? kernfs_add_one+0x36e/0x4d0 [ 1077.171043] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1077.172013] ? wait_for_completion_io+0x270/0x270 [ 1077.172981] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1077.174046] kernfs_new_node+0x18d/0x250 [ 1077.174882] __kernfs_create_file+0x51/0x350 [ 1077.175767] sysfs_add_file_mode_ns+0x221/0x560 [ 1077.176711] internal_create_group+0x324/0xb30 [ 1077.177633] ? sysfs_remove_group+0x170/0x170 [ 1077.178522] ? lockdep_init_map_type+0x2c7/0x780 [ 1077.179475] ? blk_queue_flag_set+0x22/0x30 [ 1077.180327] ? __loop_update_dio+0x2d2/0x690 [ 1077.181211] loop_configure+0x953/0x1410 [ 1077.182044] lo_ioctl+0xa57/0x16b0 [ 1077.182761] ? avc_has_extended_perms+0x7f1/0xf40 [ 1077.183724] ? loop_set_status_old+0x250/0x250 [ 1077.184636] ? avc_ss_reset+0x180/0x180 [ 1077.185432] ? find_held_lock+0x2c/0x110 [ 1077.186270] ? __lock_acquire+0xbb1/0x5b00 [ 1077.187225] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1077.188261] ? generic_block_fiemap+0x60/0x60 [ 1077.189146] ? lock_downgrade+0x6d0/0x6d0 [ 1077.189964] ? build_open_flags+0x6f0/0x6f0 [ 1077.190842] ? loop_set_status_old+0x250/0x250 [ 1077.191745] blkdev_ioctl+0x291/0x710 [ 1077.192506] ? blkdev_common_ioctl+0x1930/0x1930 [ 1077.193453] ? selinux_file_ioctl+0xb6/0x270 [ 1077.194338] block_ioctl+0xf9/0x140 [ 1077.195064] ? blkdev_read_iter+0x1c0/0x1c0 [ 1077.195918] __x64_sys_ioctl+0x19a/0x210 [ 1077.196728] do_syscall_64+0x33/0x40 [ 1077.197457] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1077.198458] RIP: 0033:0x7f9be863b8d7 [ 1077.199197] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1077.202774] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1077.204259] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1077.205648] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1077.207044] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1077.208430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1077.209815] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1077.212471] loop0: detected capacity change from 0 to 512 [ 1077.269176] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:35:27 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:35:27 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 35) 18:35:27 executing program 1: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000100)={0x2, &(0x7f00000000c0)=[{0x0, 0x7f, 0x5, 0x1000}, {0x5, 0x0, 0x1, 0x3}]}) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000800)=ANY=[@ANYBLOB="0010040000000000"]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000240)={0x8, &(0x7f0000000200)=[{0x80, 0x4, 0xc0}, {0x3, 0x6, 0x40, 0x800}, {0x8001, 0x4, 0x3, 0x5}, {0x8f, 0x2, 0x0, 0x5}, {0x5, 0x8f, 0x40, 0x10001}, {0x6, 0x25, 0x86, 0xfff}, {0x3bb, 0x30, 0x80, 0x8}, {0x7, 0xfe, 0x7, 0x9}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000740)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101982, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) ioctl$LOOP_SET_STATUS(r1, 0x4c00, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000280), 0x220000, 0x0) link(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180)='./file2\x00') ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f00000002c0)={0x0, {}, 0x0, {}, 0xfff, 0x9, 0x13, 0x8, "a33ffde15ac5e3597997ca8986bc6d30fb365a162412350d2dbb5f02e4b9158f3b699d557e93639a919a636fc399cb69327ad1688070049903904fc96628577b", "2f87934459fd43a9829984709a2e821126913d74f3d1ad8285ca2e3a4a403d99", [0xffff, 0x80]}) creat(&(0x7f0000000040)='./file1\x00', 0xc8) r3 = accept4$inet6(0xffffffffffffffff, &(0x7f00000003c0)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000500)=0x1c, 0x800) fallocate(r3, 0x1, 0x4b2, 0x9) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000440)=ANY=[@ANYBLOB="9789cdc1c58bb7b4ce6b9173a41ae2f452523a45992fbb476b7ba2f081093dc89803cc6745a634a85feaf8f2cd4ec14543c88d990c72ba873c4073a7537a63495141fd6432925ef7240019f7bd2bc2541505748aaf5c8bad5ffbb966b332d87a3c99b88a0c16f31f280431ef91e6a6158c92a9643ee6e1b81447c6f2f03e6aba8c12fe018d79b56154b6d624afae78ff05fc7dbcdbb69fe2936fa39b81293a5cfb37351e4a07f922504d305c460de00d694eb9c4cbd89bea63afd473f1"]) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000140)='./file2\x00', 0x2000001) acct(&(0x7f00000001c0)='./file1\x00') acct(&(0x7f0000000380)='./file1\x00') 18:35:27 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 7) 18:35:27 executing program 3: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:35:27 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x0, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:35:27 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 37) [ 1094.783561] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1094.788531] FAULT_INJECTION: forcing a failure. [ 1094.788531] name failslab, interval 1, probability 0, space 0, times 0 18:35:27 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0) r2 = openat$incfs(r0, &(0x7f0000000100)='.log\x00', 0x8140, 0x20) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x18, &(0x7f00000001c0)=0x7, 0x4) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r4, 0x6, 0x21, &(0x7f00000000c0)="bd5aea8b8c2fbe2d2d2ebd5b2689660c", 0x10) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r4, 0xffffffffffff56c0, 0x0, 0x1f}, 0x2) sendfile(r0, r4, &(0x7f0000000000)=0x4, 0x0) r5 = gettid() rt_tgsigqueueinfo(r5, r5, 0x0, &(0x7f0000000640)) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r6, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) [ 1094.791470] CPU: 1 PID: 7272 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1094.793473] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.795583] Call Trace: [ 1094.796257] dump_stack+0x107/0x167 [ 1094.797186] should_fail.cold+0x5/0xa [ 1094.798151] ? create_object.isra.0+0x3a/0xa20 [ 1094.799309] ? create_object.isra.0+0x3a/0xa20 [ 1094.800477] should_failslab+0x5/0x20 [ 1094.801444] kmem_cache_alloc+0x5b/0x310 [ 1094.802468] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1094.803907] create_object.isra.0+0x3a/0xa20 [ 1094.805005] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1094.806299] kmem_cache_alloc+0x159/0x310 [ 1094.807355] security_file_alloc+0x34/0x170 [ 1094.808453] __alloc_file+0xb7/0x320 [ 1094.809402] alloc_empty_file+0x6d/0x170 [ 1094.810452] path_openat+0xe6/0x2770 [ 1094.811408] ? __lock_acquire+0x1657/0x5b00 [ 1094.812536] ? path_lookupat+0x860/0x860 [ 1094.813563] ? perf_trace_lock+0xac/0x490 [ 1094.814628] ? SOFTIRQ_verbose+0x10/0x10 [ 1094.815678] ? find_held_lock+0x2c/0x110 [ 1094.816725] ? __lockdep_reset_lock+0x180/0x180 [ 1094.817927] do_filp_open+0x190/0x3e0 [ 1094.818909] ? may_open_dev+0xf0/0xf0 [ 1094.819916] ? alloc_fd+0x2e7/0x670 [ 1094.820859] ? lock_downgrade+0x6d0/0x6d0 [ 1094.821930] ? do_raw_spin_lock+0x121/0x260 [ 1094.823029] ? rwlock_bug.part.0+0x90/0x90 [ 1094.824138] ? _raw_spin_unlock+0x1a/0x30 [ 1094.825190] ? alloc_fd+0x2e7/0x670 [ 1094.826142] do_sys_openat2+0x171/0x4d0 [ 1094.827177] ? build_open_flags+0x6f0/0x6f0 [ 1094.828309] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1094.829568] ? wait_for_completion_io+0x270/0x270 [ 1094.830832] __x64_sys_openat+0x13f/0x1f0 [ 1094.831905] ? __ia32_sys_open+0x1c0/0x1c0 [ 1094.832976] ? ksys_write+0x1a9/0x260 [ 1094.833971] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.835306] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.836772] do_syscall_64+0x33/0x40 [ 1094.837744] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.839075] RIP: 0033:0x7f1ecf0f5b19 [ 1094.840067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.844826] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1094.846803] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1094.847568] Process accounting resumed [ 1094.848665] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1094.848681] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.848696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1094.848712] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1094.855600] FAULT_INJECTION: forcing a failure. [ 1094.855600] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.859130] CPU: 1 PID: 7270 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1094.860913] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.863080] Call Trace: [ 1094.863783] dump_stack+0x107/0x167 [ 1094.864747] should_fail.cold+0x5/0xa [ 1094.865761] ? __kernfs_new_node+0xd4/0x860 [ 1094.866901] should_failslab+0x5/0x20 [ 1094.867924] kmem_cache_alloc+0x5b/0x310 [ 1094.869017] __kernfs_new_node+0xd4/0x860 [ 1094.870117] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1094.871362] ? kernfs_add_one+0x36e/0x4d0 [ 1094.872467] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1094.873732] ? wait_for_completion_io+0x270/0x270 [ 1094.873767] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1094.873808] kernfs_new_node+0x18d/0x250 [ 1094.876251] __kernfs_create_file+0x51/0x350 [ 1094.876289] sysfs_add_file_mode_ns+0x221/0x560 [ 1094.878308] internal_create_group+0x324/0xb30 [ 1094.878354] ? sysfs_remove_group+0x170/0x170 [ 1094.882320] ? lockdep_init_map_type+0x2c7/0x780 [ 1094.883486] ? blk_queue_flag_set+0x22/0x30 [ 1094.884475] ? __loop_update_dio+0x2d2/0x690 [ 1094.885505] loop_configure+0x953/0x1410 [ 1094.886483] lo_ioctl+0xa57/0x16b0 [ 1094.887318] ? avc_has_extended_perms+0x7f1/0xf40 [ 1094.888480] ? loop_set_status_old+0x250/0x250 [ 1094.889614] ? avc_ss_reset+0x180/0x180 [ 1094.890552] ? find_held_lock+0x2c/0x110 [ 1094.891560] ? __lock_acquire+0xbb1/0x5b00 [ 1094.892650] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1094.893877] ? generic_block_fiemap+0x60/0x60 [ 1094.894964] ? lock_downgrade+0x6d0/0x6d0 [ 1094.896082] ? build_open_flags+0x6f0/0x6f0 [ 1094.897092] ? loop_set_status_old+0x250/0x250 [ 1094.898130] blkdev_ioctl+0x291/0x710 [ 1094.898999] ? blkdev_common_ioctl+0x1930/0x1930 [ 1094.900112] ? selinux_file_ioctl+0xb6/0x270 [ 1094.901136] block_ioctl+0xf9/0x140 [ 1094.901937] ? blkdev_read_iter+0x1c0/0x1c0 [ 1094.902888] __x64_sys_ioctl+0x19a/0x210 [ 1094.903837] do_syscall_64+0x33/0x40 [ 1094.904733] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1094.905899] RIP: 0033:0x7fd8050b38d7 [ 1094.906784] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.910690] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1094.912290] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1094.913729] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1094.915170] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1094.916633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1094.918077] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1094.996796] loop0: detected capacity change from 0 to 512 [ 1094.998402] FAULT_INJECTION: forcing a failure. [ 1094.998402] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.000964] CPU: 0 PID: 7284 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1095.002489] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1095.004364] Call Trace: [ 1095.004987] dump_stack+0x107/0x167 [ 1095.005836] should_fail.cold+0x5/0xa [ 1095.006643] ? kobject_uevent_env+0x22b/0xfd0 [ 1095.007658] ? kobject_uevent_env+0x22b/0xfd0 [ 1095.008646] ? dev_uevent_filter+0xd0/0xd0 [ 1095.009554] should_failslab+0x5/0x20 [ 1095.010375] kmem_cache_alloc_trace+0x55/0x320 [ 1095.011394] ? dev_uevent_filter+0xd0/0xd0 [ 1095.012325] kobject_uevent_env+0x22b/0xfd0 [ 1095.013272] ? get_disk_and_module+0xf0/0xf0 [ 1095.014243] ? blk_queue_flag_set+0x22/0x30 [ 1095.015179] ? __loop_update_dio+0x2d2/0x690 [ 1095.016151] loop_configure+0x1118/0x1410 [ 1095.017120] lo_ioctl+0xa57/0x16b0 [ 1095.017879] ? avc_has_extended_perms+0x7f1/0xf40 [ 1095.018934] ? loop_set_status_old+0x250/0x250 [ 1095.019956] ? avc_ss_reset+0x180/0x180 [ 1095.020840] ? find_held_lock+0x2c/0x110 [ 1095.021755] ? __lock_acquire+0xbb1/0x5b00 [ 1095.022816] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1095.024010] ? generic_block_fiemap+0x60/0x60 [ 1095.025018] ? lock_downgrade+0x6d0/0x6d0 [ 1095.025919] ? build_open_flags+0x6f0/0x6f0 [ 1095.026838] ? loop_set_status_old+0x250/0x250 [ 1095.027864] blkdev_ioctl+0x291/0x710 [ 1095.028715] ? blkdev_common_ioctl+0x1930/0x1930 [ 1095.029775] ? selinux_file_ioctl+0xb6/0x270 [ 1095.030755] block_ioctl+0xf9/0x140 [ 1095.031547] ? blkdev_read_iter+0x1c0/0x1c0 [ 1095.032509] __x64_sys_ioctl+0x19a/0x210 [ 1095.033413] do_syscall_64+0x33/0x40 [ 1095.034201] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1095.035326] RIP: 0033:0x7f9be863b8d7 [ 1095.036188] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.040220] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.041897] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1095.043446] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1095.045046] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1095.046657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1095.048312] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1095.086457] Process accounting resumed 18:35:27 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 36) 18:35:27 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x3, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x40000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() r2 = gettid() ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0xfff}}, './file0\x00'}) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x2, 0x40, 0xd0, 0x5, 0x0, 0x1000, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x10000, 0x2, @perf_config_ext={0x3ff, 0x5}, 0x10000, 0x7fffffff, 0x2, 0x3, 0x3, 0x6, 0xf59, 0x0, 0x9, 0x0, 0x101}, r1, 0x0, r3, 0x8) rt_tgsigqueueinfo(r2, r2, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) vmsplice(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)="ce785e2e6ca194a7ba0ecd39a43fdc02e4b46059731c6b9438a54d14b337f9d10a016ac2664b63c61f4ca2948484d9c053c7b8ce75191559eb6370a503b97d685653dec8e68298ad16e1f9742610fa57b4ac4d0bac7cb19565a3ba241db642d05c8c818f88510e8428a9fc18", 0x6c}, {&(0x7f0000000140)="71bcebbf0bae5fd3af2e7d8532dbe992ece0f95454ece2a03ebac5992653b48eed08861d32e6db8884d030bd5d39190866d0de2b21fe0fade2400e9f8287905cd362d2bd091dfc46b7d87835ca20960fd092af962f74831ba8a2845d2615b922722ff6364fee9da1ec8c950aa8b515313670d2899cfce07291003d9ef11058df39a00ebb447eac2daef86a6402", 0x8d}], 0x2, 0x10) r4 = getpgrp(r1) rt_tgsigqueueinfo(r4, r2, 0x0, &(0x7f0000000640)) [ 1095.094235] Process accounting resumed 18:35:27 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 8) 18:35:27 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x0, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) [ 1095.194045] FAULT_INJECTION: forcing a failure. [ 1095.194045] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.196513] CPU: 0 PID: 7296 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1095.197963] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1095.199736] Call Trace: [ 1095.200303] dump_stack+0x107/0x167 [ 1095.201087] should_fail.cold+0x5/0xa [ 1095.201904] ? create_object.isra.0+0x3a/0xa20 [ 1095.202887] should_failslab+0x5/0x20 [ 1095.203719] kmem_cache_alloc+0x5b/0x310 [ 1095.204591] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1095.205776] create_object.isra.0+0x3a/0xa20 [ 1095.206710] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1095.207822] kmem_cache_alloc+0x159/0x310 [ 1095.208722] security_file_alloc+0x34/0x170 [ 1095.209648] __alloc_file+0xb7/0x320 [ 1095.210446] alloc_empty_file+0x6d/0x170 [ 1095.211322] path_openat+0xe6/0x2770 [ 1095.212141] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1095.213209] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1095.214282] ? path_lookupat+0x860/0x860 [ 1095.215142] ? perf_trace_lock+0x2bd/0x490 [ 1095.216061] ? SOFTIRQ_verbose+0x10/0x10 [ 1095.216925] ? find_held_lock+0x2c/0x110 [ 1095.217800] ? __lockdep_reset_lock+0x180/0x180 [ 1095.217986] FAULT_INJECTION: forcing a failure. [ 1095.217986] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.218803] do_filp_open+0x190/0x3e0 [ 1095.218827] ? may_open_dev+0xf0/0xf0 [ 1095.222696] ? alloc_fd+0x2e7/0x670 [ 1095.223504] ? lock_downgrade+0x6d0/0x6d0 [ 1095.224382] ? do_raw_spin_lock+0x121/0x260 [ 1095.225315] ? rwlock_bug.part.0+0x90/0x90 [ 1095.226234] ? _raw_spin_unlock+0x1a/0x30 [ 1095.227128] ? alloc_fd+0x2e7/0x670 [ 1095.227947] do_sys_openat2+0x171/0x4d0 [ 1095.228892] ? build_open_flags+0x6f0/0x6f0 [ 1095.229813] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1095.230875] ? wait_for_completion_io+0x270/0x270 [ 1095.231958] __x64_sys_openat+0x13f/0x1f0 [ 1095.232859] ? __ia32_sys_open+0x1c0/0x1c0 [ 1095.233766] ? ksys_write+0x1a9/0x260 [ 1095.234616] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1095.235744] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1095.236868] do_syscall_64+0x33/0x40 [ 1095.237663] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1095.238778] RIP: 0033:0x7f1ecf0f5b19 [ 1095.239580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.243566] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1095.245179] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1095.246720] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1095.248276] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1095.249821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1095.251371] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1095.252970] CPU: 1 PID: 7292 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1095.254383] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1095.256089] Call Trace: [ 1095.256633] dump_stack+0x107/0x167 [ 1095.257381] should_fail.cold+0x5/0xa [ 1095.258162] ? create_object.isra.0+0x3a/0xa20 [ 1095.259094] should_failslab+0x5/0x20 [ 1095.259878] kmem_cache_alloc+0x5b/0x310 [ 1095.260709] ? __lockdep_reset_lock+0x180/0x180 [ 1095.261667] create_object.isra.0+0x3a/0xa20 [ 1095.262557] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1095.263621] kmem_cache_alloc+0x159/0x310 [ 1095.264476] __kernfs_new_node+0xd4/0x860 [ 1095.265313] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1095.266272] ? kernfs_add_one+0x36e/0x4d0 [ 1095.267125] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1095.268117] ? wait_for_completion_io+0x270/0x270 [ 1095.269101] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1095.270158] kernfs_new_node+0x18d/0x250 [ 1095.270979] __kernfs_create_file+0x51/0x350 [ 1095.271902] sysfs_add_file_mode_ns+0x221/0x560 [ 1095.272853] internal_create_group+0x324/0xb30 [ 1095.273778] ? sysfs_remove_group+0x170/0x170 [ 1095.274663] ? lockdep_init_map_type+0x2c7/0x780 [ 1095.275627] ? blk_queue_flag_set+0x22/0x30 [ 1095.276495] ? __loop_update_dio+0x2d2/0x690 [ 1095.277385] loop_configure+0x953/0x1410 [ 1095.278216] lo_ioctl+0xa57/0x16b0 [ 1095.278934] ? avc_has_extended_perms+0x7f1/0xf40 [ 1095.279917] ? loop_set_status_old+0x250/0x250 [ 1095.280837] ? lock_downgrade+0x6d0/0x6d0 [ 1095.281672] ? avc_ss_reset+0x180/0x180 [ 1095.282483] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1095.283548] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1095.284447] ? trace_hardirqs_on+0x5b/0x180 [ 1095.285313] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1095.286212] ? finish_task_switch+0x126/0x5d0 [ 1095.287109] ? finish_task_switch+0xef/0x5d0 [ 1095.287820] Process accounting resumed [ 1095.287999] ? __switch_to+0x572/0xf70 [ 1095.288014] ? __switch_to_asm+0x3a/0x60 [ 1095.288028] ? __switch_to_asm+0x34/0x60 [ 1095.288058] ? __schedule+0x82c/0x1ea0 [ 1095.292262] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1095.293312] ? generic_block_fiemap+0x60/0x60 [ 1095.294209] ? lock_downgrade+0x6d0/0x6d0 [ 1095.295032] ? build_open_flags+0x6f0/0x6f0 [ 1095.295906] ? loop_set_status_old+0x250/0x250 [ 1095.296816] blkdev_ioctl+0x291/0x710 [ 1095.297570] ? blkdev_common_ioctl+0x1930/0x1930 [ 1095.298520] ? selinux_file_ioctl+0xb6/0x270 [ 1095.299412] block_ioctl+0xf9/0x140 [ 1095.300124] ? blkdev_read_iter+0x1c0/0x1c0 [ 1095.300987] __x64_sys_ioctl+0x19a/0x210 [ 1095.301801] do_syscall_64+0x33/0x40 [ 1095.302539] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1095.303562] RIP: 0033:0x7fd8050b38d7 [ 1095.304301] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.307901] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.309413] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1095.310837] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1095.312261] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1095.313677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1095.315098] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:35:27 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 38) 18:35:27 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:35:27 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() signalfd(r0, &(0x7f0000002880)={[0xe9]}, 0x8) rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=0x0) r3 = fcntl$getown(r0, 0x9) syz_open_procfs(r3, &(0x7f0000000400)='net/ip_tables_matches\x00') process_vm_readv(r2, &(0x7f0000000280)=[{&(0x7f0000000040)=""/181, 0xb5}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f0000000100)=""/128, 0x80}, {&(0x7f0000000180)=""/228, 0xe4}], 0x4, &(0x7f00000005c0)=[{&(0x7f00000016c0)=""/4096, 0x1000}, {&(0x7f00000002c0)=""/181, 0xb5}, {&(0x7f0000000380)=""/57, 0x39}, {&(0x7f00000004c0)=""/195, 0xc3}, {&(0x7f00000003c0)=""/17, 0x11}, {&(0x7f00000026c0)=""/152, 0x98}, {&(0x7f0000002780)=""/238, 0xee}], 0x7, 0x0) 18:35:27 executing program 1: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x8, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x8}, 0x11010, 0x0, 0x80000, 0x0, 0xfffffffffffffffc, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x3) pkey_alloc(0x0, 0x0) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4000, 0x2, &(0x7f0000ffc000/0x4000)=nil) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x20, 0x20, 0xc21, 0x1000, 0x0, {0x2}, [@nested={0x4, 0x96}, @typed={0x8, 0xf, 0x0, 0x0, @ipv4=@local}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x20004004) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2) mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1) munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r1, r0, 0x0, 0x9bbb) mlock2(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1) [ 1095.401090] loop0: detected capacity change from 0 to 512 [ 1095.402267] FAULT_INJECTION: forcing a failure. [ 1095.402267] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.404386] CPU: 1 PID: 7303 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1095.405656] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1095.407195] Call Trace: [ 1095.407699] dump_stack+0x107/0x167 [ 1095.408381] should_fail.cold+0x5/0xa [ 1095.409107] ? create_object.isra.0+0x3a/0xa20 [ 1095.409971] should_failslab+0x5/0x20 [ 1095.410677] kmem_cache_alloc+0x5b/0x310 [ 1095.411452] create_object.isra.0+0x3a/0xa20 [ 1095.412272] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1095.413226] kmem_cache_alloc_trace+0x151/0x320 [ 1095.414108] ? dev_uevent_filter+0xd0/0xd0 [ 1095.414895] kobject_uevent_env+0x22b/0xfd0 [ 1095.415711] ? get_disk_and_module+0xf0/0xf0 [ 1095.416533] ? blk_queue_flag_set+0x22/0x30 [ 1095.417333] ? __loop_update_dio+0x2d2/0x690 [ 1095.418162] loop_configure+0x1118/0x1410 [ 1095.418948] lo_ioctl+0xa57/0x16b0 [ 1095.419642] ? avc_has_extended_perms+0x7f1/0xf40 [ 1095.420531] ? loop_set_status_old+0x250/0x250 [ 1095.421376] ? avc_ss_reset+0x180/0x180 [ 1095.422114] ? find_held_lock+0x2c/0x110 [ 1095.422879] ? __lock_acquire+0xbb1/0x5b00 [ 1095.423733] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1095.424698] ? generic_block_fiemap+0x60/0x60 [ 1095.425520] ? lock_downgrade+0x6d0/0x6d0 [ 1095.426283] ? build_open_flags+0x6f0/0x6f0 [ 1095.427083] ? loop_set_status_old+0x250/0x250 [ 1095.427940] blkdev_ioctl+0x291/0x710 [ 1095.428648] ? blkdev_common_ioctl+0x1930/0x1930 [ 1095.429522] ? selinux_file_ioctl+0xb6/0x270 [ 1095.430336] block_ioctl+0xf9/0x140 [ 1095.431007] ? blkdev_read_iter+0x1c0/0x1c0 [ 1095.431809] __x64_sys_ioctl+0x19a/0x210 [ 1095.432566] do_syscall_64+0x33/0x40 [ 1095.433255] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1095.434204] RIP: 0033:0x7f9be863b8d7 [ 1095.434896] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.438286] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.439695] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1095.441010] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1095.442357] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1095.443671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1095.444977] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:35:27 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 9) 18:35:27 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 37) [ 1095.464481] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:35:27 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 39) 18:35:27 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1095.575163] FAULT_INJECTION: forcing a failure. [ 1095.575163] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.577146] CPU: 1 PID: 7315 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1095.578441] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1095.580162] Call Trace: [ 1095.580717] dump_stack+0x107/0x167 [ 1095.581484] should_fail.cold+0x5/0xa [ 1095.582273] ? create_object.isra.0+0x3a/0xa20 [ 1095.583214] should_failslab+0x5/0x20 [ 1095.583990] kmem_cache_alloc+0x5b/0x310 [ 1095.584824] ? _down_write_nest_lock+0x160/0x160 [ 1095.585797] create_object.isra.0+0x3a/0xa20 [ 1095.586692] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1095.587749] kmem_cache_alloc_trace+0x151/0x320 [ 1095.588709] create_basic_memory_bitmaps+0x99/0x170 [ 1095.589728] snapshot_open+0x239/0x2b0 [ 1095.590523] ? snapshot_release+0x1f0/0x1f0 [ 1095.591421] misc_open+0x375/0x4a0 [ 1095.592154] ? misc_devnode+0x130/0x130 [ 1095.592960] chrdev_open+0x268/0x6e0 [ 1095.593727] ? __unregister_chrdev+0x110/0x110 [ 1095.594667] ? fsnotify_perm.part.0+0x22d/0x620 [ 1095.595652] do_dentry_open+0x4b7/0x1090 [ 1095.596467] ? __unregister_chrdev+0x110/0x110 [ 1095.597379] ? may_open+0x1e4/0x400 [ 1095.598109] path_openat+0x19ba/0x2770 [ 1095.598903] ? path_lookupat+0x860/0x860 [ 1095.599735] ? find_held_lock+0x2c/0x110 [ 1095.600567] ? __lockdep_reset_lock+0x180/0x180 [ 1095.601511] do_filp_open+0x190/0x3e0 [ 1095.602263] ? may_open_dev+0xf0/0xf0 [ 1095.603039] ? do_raw_spin_lock+0x121/0x260 [ 1095.603910] ? rwlock_bug.part.0+0x90/0x90 [ 1095.604764] ? _raw_spin_unlock+0x1a/0x30 [ 1095.605583] ? alloc_fd+0x2e7/0x670 [ 1095.606330] do_sys_openat2+0x171/0x4d0 [ 1095.607107] ? build_open_flags+0x6f0/0x6f0 [ 1095.607978] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1095.608927] ? wait_for_completion_io+0x270/0x270 [ 1095.609884] __x64_sys_openat+0x13f/0x1f0 [ 1095.610713] ? __ia32_sys_open+0x1c0/0x1c0 [ 1095.611555] ? ksys_write+0x1a9/0x260 [ 1095.612317] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1095.613335] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1095.614334] do_syscall_64+0x33/0x40 [ 1095.615076] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1095.616075] RIP: 0033:0x7f1ecf0f5b19 [ 1095.616828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.620328] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1095.621814] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1095.623206] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1095.624615] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1095.626032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1095.627428] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1095.644573] FAULT_INJECTION: forcing a failure. [ 1095.644573] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.647004] CPU: 0 PID: 7318 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1095.648317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 18:35:27 executing program 5: syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x60e3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000002a40)=0x0) r1 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x400, 0x4}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000002a40)) r3 = socket$unix(0x1, 0x2, 0x0) syz_io_uring_submit(r2, r0, &(0x7f00000003c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000100)=@caif=@dgm={0x25, 0xfffffff7, 0xff}}, 0x0) io_uring_enter(r1, 0x76d3, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r6, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r7 = syz_io_uring_complete(r5) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r8}}, 0x362c) syz_io_uring_submit(r4, r6, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r7, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r8}}, 0x6) r9 = syz_open_dev$rtc(&(0x7f00000002c0), 0x1, 0x20000) syz_io_uring_submit(0x0, r6, &(0x7f0000000340)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x8, &(0x7f0000000300)=[r9], 0x1, 0x0, 0x1}, 0x9) gettid() r10 = gettid() rt_tgsigqueueinfo(r10, r10, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) rt_tgsigqueueinfo(r10, r10, 0x7, &(0x7f0000000640)) fstat(0xffffffffffffffff, &(0x7f0000000000)) [ 1095.649943] Call Trace: [ 1095.650745] dump_stack+0x107/0x167 [ 1095.651487] should_fail.cold+0x5/0xa [ 1095.652218] ? kobject_uevent_env+0x22b/0xfd0 [ 1095.653107] ? dev_uevent_filter+0xd0/0xd0 [ 1095.653937] should_failslab+0x5/0x20 [ 1095.654685] kmem_cache_alloc_trace+0x55/0x320 [ 1095.655593] ? dev_uevent_filter+0xd0/0xd0 [ 1095.656426] kobject_uevent_env+0x22b/0xfd0 [ 1095.657299] ? get_disk_and_module+0xf0/0xf0 [ 1095.658189] ? blk_queue_flag_set+0x22/0x30 [ 1095.659068] ? __loop_update_dio+0x2d2/0x690 [ 1095.659967] loop_configure+0x1118/0x1410 [ 1095.660790] lo_ioctl+0xa57/0x16b0 [ 1095.661482] ? avc_has_extended_perms+0x7f1/0xf40 [ 1095.662415] ? loop_set_status_old+0x250/0x250 [ 1095.663303] ? avc_ss_reset+0x180/0x180 [ 1095.664121] ? find_held_lock+0x2c/0x110 [ 1095.664952] ? __lock_acquire+0xbb1/0x5b00 [ 1095.665865] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1095.666876] ? generic_block_fiemap+0x60/0x60 [ 1095.667753] ? lock_downgrade+0x6d0/0x6d0 [ 1095.668561] ? build_open_flags+0x6f0/0x6f0 [ 1095.669391] ? loop_set_status_old+0x250/0x250 [ 1095.670273] blkdev_ioctl+0x291/0x710 [ 1095.671003] ? blkdev_common_ioctl+0x1930/0x1930 [ 1095.671944] ? selinux_file_ioctl+0xb6/0x270 [ 1095.672804] block_ioctl+0xf9/0x140 [ 1095.673513] ? blkdev_read_iter+0x1c0/0x1c0 [ 1095.674337] __x64_sys_ioctl+0x19a/0x210 [ 1095.675125] do_syscall_64+0x33/0x40 [ 1095.675850] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1095.676822] RIP: 0033:0x7fd8050b38d7 [ 1095.677541] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.680943] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.682393] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1095.683785] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1095.685207] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1095.686575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1095.687948] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1095.706811] loop0: detected capacity change from 0 to 512 [ 1095.708336] FAULT_INJECTION: forcing a failure. [ 1095.708336] name failslab, interval 1, probability 0, space 0, times 0 [ 1095.710981] CPU: 0 PID: 7320 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1095.712316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1095.713883] Call Trace: [ 1095.714379] dump_stack+0x107/0x167 [ 1095.715073] should_fail.cold+0x5/0xa [ 1095.715819] ? kobject_uevent_env+0x22b/0xfd0 [ 1095.716664] ? kobject_uevent_env+0x22b/0xfd0 [ 1095.717503] ? dev_uevent_filter+0xd0/0xd0 [ 1095.718285] should_failslab+0x5/0x20 [ 1095.719006] kmem_cache_alloc_trace+0x55/0x320 [ 1095.719895] ? dev_uevent_filter+0xd0/0xd0 [ 1095.720694] kobject_uevent_env+0x22b/0xfd0 [ 1095.721494] ? get_disk_and_module+0xf0/0xf0 [ 1095.722314] ? blk_queue_flag_set+0x22/0x30 [ 1095.723121] ? __loop_update_dio+0x2d2/0x690 [ 1095.723969] loop_configure+0x1118/0x1410 [ 1095.724756] lo_ioctl+0xa57/0x16b0 [ 1095.725432] ? avc_has_extended_perms+0x7f1/0xf40 [ 1095.726330] ? loop_set_status_old+0x250/0x250 [ 1095.727193] ? avc_ss_reset+0x180/0x180 [ 1095.727945] ? find_held_lock+0x2c/0x110 [ 1095.728728] ? __lock_acquire+0xbb1/0x5b00 [ 1095.729595] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1095.730569] ? generic_block_fiemap+0x60/0x60 [ 1095.731388] ? lock_downgrade+0x6d0/0x6d0 [ 1095.732142] ? build_open_flags+0x6f0/0x6f0 [ 1095.732941] ? loop_set_status_old+0x250/0x250 [ 1095.733777] blkdev_ioctl+0x291/0x710 [ 1095.734473] ? blkdev_common_ioctl+0x1930/0x1930 [ 1095.735347] ? selinux_file_ioctl+0xb6/0x270 [ 1095.736176] block_ioctl+0xf9/0x140 [ 1095.736843] ? blkdev_read_iter+0x1c0/0x1c0 [ 1095.737625] __x64_sys_ioctl+0x19a/0x210 [ 1095.738379] do_syscall_64+0x33/0x40 [ 1095.739068] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1095.740021] RIP: 0033:0x7f9be863b8d7 [ 1095.740698] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.744340] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1095.745842] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1095.747191] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1095.748537] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1095.749848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1095.751198] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:35:45 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 38) 18:35:45 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 40) 18:35:45 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1113.265719] FAULT_INJECTION: forcing a failure. [ 1113.265719] name failslab, interval 1, probability 0, space 0, times 0 [ 1113.268695] CPU: 0 PID: 7344 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1113.270250] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1113.272161] Call Trace: [ 1113.272778] dump_stack+0x107/0x167 [ 1113.273630] should_fail.cold+0x5/0xa [ 1113.274515] ? memory_bm_create+0x135/0x930 [ 1113.275529] should_failslab+0x5/0x20 [ 1113.276414] kmem_cache_alloc_trace+0x55/0x320 [ 1113.277473] ? find_first_bit+0x8b/0xb0 [ 1113.278412] memory_bm_create+0x135/0x930 [ 1113.279635] ? trace_hardirqs_on+0x5b/0x180 [ 1113.280711] create_basic_memory_bitmaps+0xb9/0x170 [ 1113.282085] snapshot_open+0x239/0x2b0 [ 1113.282170] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1113.282977] ? snapshot_release+0x1f0/0x1f0 [ 1113.283006] misc_open+0x375/0x4a0 [ 1113.283034] ? misc_devnode+0x130/0x130 [ 1113.283057] chrdev_open+0x268/0x6e0 [ 1113.283084] ? __unregister_chrdev+0x110/0x110 [ 1113.283111] ? fsnotify_perm.part.0+0x22d/0x620 [ 1113.283162] do_dentry_open+0x4b7/0x1090 [ 1113.283190] ? __unregister_chrdev+0x110/0x110 [ 1113.283214] ? may_open+0x1e4/0x400 [ 1113.283248] path_openat+0x19ba/0x2770 [ 1113.295303] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1113.296495] ? path_lookupat+0x860/0x860 [ 1113.297616] ? perf_trace_lock+0x2bd/0x490 [ 1113.298667] ? find_held_lock+0x2c/0x110 [ 1113.299828] ? __lockdep_reset_lock+0x180/0x180 [ 1113.300935] do_filp_open+0x190/0x3e0 [ 1113.301809] ? may_open_dev+0xf0/0xf0 [ 1113.302883] ? do_raw_spin_lock+0x121/0x260 [ 1113.303892] ? rwlock_bug.part.0+0x90/0x90 [ 1113.305090] ? _raw_spin_unlock+0x1a/0x30 [ 1113.306245] ? alloc_fd+0x2e7/0x670 [ 1113.307197] do_sys_openat2+0x171/0x4d0 [ 1113.308147] ? build_open_flags+0x6f0/0x6f0 [ 1113.309181] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1113.310316] ? wait_for_completion_io+0x270/0x270 [ 1113.311488] __x64_sys_openat+0x13f/0x1f0 [ 1113.312523] ? __ia32_sys_open+0x1c0/0x1c0 [ 1113.313537] ? ksys_write+0x1a9/0x260 [ 1113.314445] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1113.315667] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1113.317098] do_syscall_64+0x33/0x40 [ 1113.317980] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1113.319206] RIP: 0033:0x7f1ecf0f5b19 [ 1113.320086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1113.324684] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1113.326563] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1113.328360] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1113.330003] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1113.331647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1113.333302] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:35:45 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x0, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:35:45 executing program 1: syz_emit_ethernet(0x46, &(0x7f0000000400)=ANY=[@ANYBLOB="0180c2000000aaaaaa8de501d1e127951767a9aaaa0086dd6096153f102c0000000000000000000000000000000000ff02d100"/69], 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000000)={0x2, 0x80, 0x0, 0x6, 0x1, 0x83, 0x0, 0x2, 0x10200, 0xd, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x1000, 0x2}, 0x509aa, 0x2, 0xffffffff, 0x9, 0x7fffffff, 0x9, 0x0, 0x0, 0x4, 0x0, 0x8}) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x1, 0x9, 0x8, 0x1, 0x0, 0x0, 0x142, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9, 0x4, @perf_config_ext={0x8, 0x3}, 0x8000, 0x2b2, 0x4, 0x0, 0xd1, 0x1, 0x3ff, 0x0, 0x1, 0x0, 0x10000}, 0x0, 0xc, r0, 0x2) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r2, 0x4) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r2, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r2, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x9, 0x80, 0x6, 0x1, 0x0, 0xfffffffffffffff8, 0x44100, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1a4, 0x1, @perf_config_ext={0x80, 0x7fffffff}, 0x54208, 0x9, 0x3f, 0x2, 0x4a, 0x400, 0x8, 0x0, 0x7, 0x0, 0x2}, 0xffffffffffffffff, 0x0, r2, 0x9) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) r5 = fcntl$dupfd(r1, 0x0, r1) sendmsg$inet6(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) 18:35:45 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 10) 18:35:45 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:35:45 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2ed}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) r5 = syz_io_uring_complete(r3) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r6}}, 0x362c) syz_io_uring_submit(r2, r4, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r5, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r6}}, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_WRITE={0x17, 0x2, 0x6000, @fd=r0, 0x9, &(0x7f0000000080)="152abaad4f6700467a4a5b87b3cd08a26575aa5212097390af58914f4d9b8f8979cf97a54ecca9f916141acaa12bd3c507b381e5f56e8ed9b022aebe4a3327af464ae0690e05452e3f85ba1a1fa4177a8aee526791bc675c3866ed89ee889a45007b0f7047d02512d53ad4c0a0b95f12264998703d25162cc6ef1c73216558e749768a042b1cbab8a8e352606f4c446edf452df73601e4786a221bcd130e6012ef", 0xa1, 0x14, 0x0, {0x0, r6}}, 0x0) r7 = gettid() rt_tgsigqueueinfo(r7, r7, 0x0, &(0x7f0000000640)) rt_sigqueueinfo(0x0, 0x35, &(0x7f0000000000)={0xe, 0x40, 0x7}) [ 1113.424825] loop0: detected capacity change from 0 to 512 [ 1113.426419] FAULT_INJECTION: forcing a failure. [ 1113.426419] name failslab, interval 1, probability 0, space 0, times 0 [ 1113.429372] CPU: 1 PID: 7341 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1113.431073] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1113.433181] Call Trace: [ 1113.433842] dump_stack+0x107/0x167 [ 1113.434759] should_fail.cold+0x5/0xa [ 1113.435714] ? create_object.isra.0+0x3a/0xa20 [ 1113.436871] should_failslab+0x5/0x20 [ 1113.437824] kmem_cache_alloc+0x5b/0x310 [ 1113.438841] create_object.isra.0+0x3a/0xa20 [ 1113.439926] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1113.441200] kmem_cache_alloc_trace+0x151/0x320 [ 1113.442359] ? dev_uevent_filter+0xd0/0xd0 [ 1113.443402] kobject_uevent_env+0x22b/0xfd0 [ 1113.444477] ? get_disk_and_module+0xf0/0xf0 [ 1113.445567] ? blk_queue_flag_set+0x22/0x30 [ 1113.446629] ? __loop_update_dio+0x2d2/0x690 [ 1113.447720] loop_configure+0x1118/0x1410 [ 1113.448772] lo_ioctl+0xa57/0x16b0 [ 1113.449655] ? avc_has_extended_perms+0x7f1/0xf40 [ 1113.450853] ? loop_set_status_old+0x250/0x250 [ 1113.451998] ? avc_ss_reset+0x180/0x180 [ 1113.452987] ? find_held_lock+0x2c/0x110 [ 1113.454000] ? __lock_acquire+0xbb1/0x5b00 [ 1113.455104] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1113.456398] ? generic_block_fiemap+0x60/0x60 [ 1113.457494] ? lock_downgrade+0x6d0/0x6d0 [ 1113.458507] ? build_open_flags+0x6f0/0x6f0 [ 1113.459572] ? loop_set_status_old+0x250/0x250 [ 1113.460700] blkdev_ioctl+0x291/0x710 [ 1113.461632] ? blkdev_common_ioctl+0x1930/0x1930 [ 1113.462794] ? selinux_file_ioctl+0xb6/0x270 [ 1113.463876] block_ioctl+0xf9/0x140 [ 1113.464728] ? blkdev_read_iter+0x1c0/0x1c0 [ 1113.465668] __x64_sys_ioctl+0x19a/0x210 [ 1113.466557] do_syscall_64+0x33/0x40 [ 1113.467368] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1113.468495] RIP: 0033:0x7f9be863b8d7 [ 1113.469308] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1113.473338] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1113.474995] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1113.476549] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1113.478100] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1113.479654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1113.481260] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:35:45 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 11) [ 1113.507790] FAULT_INJECTION: forcing a failure. [ 1113.507790] name failslab, interval 1, probability 0, space 0, times 0 [ 1113.510550] CPU: 1 PID: 7353 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1113.512163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1113.514106] Call Trace: [ 1113.514727] dump_stack+0x107/0x167 [ 1113.515587] should_fail.cold+0x5/0xa [ 1113.516490] ? create_object.isra.0+0x3a/0xa20 [ 1113.517566] should_failslab+0x5/0x20 [ 1113.518465] kmem_cache_alloc+0x5b/0x310 [ 1113.519426] create_object.isra.0+0x3a/0xa20 18:35:45 executing program 1: syz_emit_ethernet(0x46, &(0x7f0000000400)=ANY=[@ANYBLOB="0180c2000000aaaaaa8de501d1e127951767a9aaaa0086dd6096153f102c0000000000000000000000000000000000ff02d100"/69], 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f0000000000)={0x2, 0x80, 0x0, 0x6, 0x1, 0x83, 0x0, 0x2, 0x10200, 0xd, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x1000, 0x2}, 0x509aa, 0x2, 0xffffffff, 0x9, 0x7fffffff, 0x9, 0x0, 0x0, 0x4, 0x0, 0x8}) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x1, 0x9, 0x8, 0x1, 0x0, 0x0, 0x142, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x9, 0x4, @perf_config_ext={0x8, 0x3}, 0x8000, 0x2b2, 0x4, 0x0, 0xd1, 0x1, 0x3ff, 0x0, 0x1, 0x0, 0x10000}, 0x0, 0xc, r0, 0x2) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r2, 0x4) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r2, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r2, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r2, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x9, 0x80, 0x6, 0x1, 0x0, 0xfffffffffffffff8, 0x44100, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1a4, 0x1, @perf_config_ext={0x80, 0x7fffffff}, 0x54208, 0x9, 0x3f, 0x2, 0x4a, 0x400, 0x8, 0x0, 0x7, 0x0, 0x2}, 0xffffffffffffffff, 0x0, r2, 0x9) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) r5 = fcntl$dupfd(r1, 0x0, r1) sendmsg$inet6(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) [ 1113.520466] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1113.521814] kmem_cache_alloc_trace+0x151/0x320 [ 1113.522896] ? dev_uevent_filter+0xd0/0xd0 [ 1113.523870] kobject_uevent_env+0x22b/0xfd0 [ 1113.524857] ? get_disk_and_module+0xf0/0xf0 [ 1113.525855] ? blk_queue_flag_set+0x22/0x30 [ 1113.526829] ? __loop_update_dio+0x2d2/0x690 [ 1113.527826] loop_configure+0x1118/0x1410 [ 1113.528794] lo_ioctl+0xa57/0x16b0 [ 1113.529599] ? avc_has_extended_perms+0x7f1/0xf40 [ 1113.530691] ? loop_set_status_old+0x250/0x250 [ 1113.531728] ? avc_ss_reset+0x180/0x180 [ 1113.532650] ? find_held_lock+0x2c/0x110 [ 1113.533596] ? __lock_acquire+0xbb1/0x5b00 [ 1113.534618] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1113.535799] ? generic_block_fiemap+0x60/0x60 [ 1113.536821] ? lock_downgrade+0x6d0/0x6d0 [ 1113.537745] ? build_open_flags+0x6f0/0x6f0 [ 1113.538716] ? loop_set_status_old+0x250/0x250 [ 1113.539728] blkdev_ioctl+0x291/0x710 [ 1113.540589] ? blkdev_common_ioctl+0x1930/0x1930 [ 1113.541659] ? selinux_file_ioctl+0xb6/0x270 [ 1113.542658] block_ioctl+0xf9/0x140 [ 1113.543469] ? blkdev_read_iter+0x1c0/0x1c0 [ 1113.544447] __x64_sys_ioctl+0x19a/0x210 [ 1113.545366] do_syscall_64+0x33/0x40 [ 1113.546205] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1113.547354] RIP: 0033:0x7fd8050b38d7 [ 1113.548197] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1113.552729] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1113.554826] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1113.556782] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1113.558735] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1113.560700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1113.562655] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:35:45 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) [ 1113.760172] FAULT_INJECTION: forcing a failure. [ 1113.760172] name failslab, interval 1, probability 0, space 0, times 0 [ 1113.763088] CPU: 0 PID: 7370 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1113.764819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1113.766886] Call Trace: [ 1113.767571] dump_stack+0x107/0x167 [ 1113.768562] should_fail.cold+0x5/0xa [ 1113.769659] ? create_object.isra.0+0x3a/0xa20 [ 1113.770975] should_failslab+0x5/0x20 [ 1113.772302] kmem_cache_alloc+0x5b/0x310 [ 1113.773408] create_object.isra.0+0x3a/0xa20 [ 1113.774540] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1113.775876] kmem_cache_alloc_trace+0x151/0x320 [ 1113.777150] memory_bm_create+0x135/0x930 [ 1113.778226] ? trace_hardirqs_on+0x5b/0x180 [ 1113.779388] create_basic_memory_bitmaps+0xb9/0x170 [ 1113.780788] snapshot_open+0x239/0x2b0 [ 1113.781939] ? snapshot_release+0x1f0/0x1f0 [ 1113.783060] misc_open+0x375/0x4a0 [ 1113.783955] ? misc_devnode+0x130/0x130 [ 1113.785022] chrdev_open+0x268/0x6e0 [ 1113.785942] ? __unregister_chrdev+0x110/0x110 [ 1113.787043] ? fsnotify_perm.part.0+0x22d/0x620 [ 1113.788345] do_dentry_open+0x4b7/0x1090 [ 1113.789441] ? __unregister_chrdev+0x110/0x110 [ 1113.790671] ? may_open+0x1e4/0x400 [ 1113.791594] path_openat+0x19ba/0x2770 [ 1113.792564] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1113.793767] ? path_lookupat+0x860/0x860 [ 1113.794788] ? perf_trace_lock+0x2bd/0x490 [ 1113.796023] ? find_held_lock+0x2c/0x110 [ 1113.797201] ? __lockdep_reset_lock+0x180/0x180 [ 1113.798537] do_filp_open+0x190/0x3e0 [ 1113.799554] ? may_open_dev+0xf0/0xf0 [ 1113.800712] ? do_raw_spin_lock+0x121/0x260 [ 1113.801965] ? rwlock_bug.part.0+0x90/0x90 [ 1113.803231] ? _raw_spin_unlock+0x1a/0x30 [ 1113.804432] ? alloc_fd+0x2e7/0x670 [ 1113.805532] do_sys_openat2+0x171/0x4d0 [ 1113.806699] ? build_open_flags+0x6f0/0x6f0 [ 1113.807944] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1113.809359] ? wait_for_completion_io+0x270/0x270 [ 1113.810732] __x64_sys_openat+0x13f/0x1f0 [ 1113.811910] ? __ia32_sys_open+0x1c0/0x1c0 [ 1113.813086] ? ksys_write+0x1a9/0x260 [ 1113.814010] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1113.815246] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1113.816501] do_syscall_64+0x33/0x40 [ 1113.817386] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1113.818601] RIP: 0033:0x7f1ecf0f5b19 [ 1113.819484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1113.823821] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1113.825628] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1113.827301] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1113.828991] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1113.830665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1113.832426] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:35:46 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 39) 18:35:46 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 41) 18:35:46 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:35:46 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1113.903696] loop0: detected capacity change from 0 to 512 [ 1113.905454] FAULT_INJECTION: forcing a failure. [ 1113.905454] name failslab, interval 1, probability 0, space 0, times 0 [ 1113.908050] CPU: 0 PID: 7377 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1113.909445] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1113.911135] Call Trace: [ 1113.911683] dump_stack+0x107/0x167 [ 1113.912635] should_fail.cold+0x5/0xa [ 1113.914027] ? __alloc_skb+0x6d/0x5b0 [ 1113.915045] should_failslab+0x5/0x20 [ 1113.915995] kmem_cache_alloc_node+0x55/0x330 [ 1113.917152] __alloc_skb+0x6d/0x5b0 [ 1113.918088] alloc_uevent_skb+0x7b/0x210 [ 1113.919116] kobject_uevent_env+0x99a/0xfd0 [ 1113.920206] ? blk_queue_flag_set+0x22/0x30 [ 1113.921274] ? __loop_update_dio+0x2d2/0x690 [ 1113.922388] loop_configure+0x1118/0x1410 [ 1113.923465] lo_ioctl+0xa57/0x16b0 [ 1113.924466] ? avc_has_extended_perms+0x7f1/0xf40 [ 1113.925562] ? loop_set_status_old+0x250/0x250 [ 1113.926615] ? avc_ss_reset+0x180/0x180 [ 1113.927521] ? find_held_lock+0x2c/0x110 [ 1113.928478] ? __lock_acquire+0xbb1/0x5b00 [ 1113.929465] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1113.930551] ? generic_block_fiemap+0x60/0x60 [ 1113.931475] ? lock_downgrade+0x6d0/0x6d0 [ 1113.932402] ? build_open_flags+0x6f0/0x6f0 [ 1113.933385] ? loop_set_status_old+0x250/0x250 [ 1113.934444] blkdev_ioctl+0x291/0x710 [ 1113.935290] ? blkdev_common_ioctl+0x1930/0x1930 [ 1113.936276] ? selinux_file_ioctl+0xb6/0x270 [ 1113.937340] block_ioctl+0xf9/0x140 [ 1113.938225] ? blkdev_read_iter+0x1c0/0x1c0 [ 1113.939283] __x64_sys_ioctl+0x19a/0x210 [ 1113.940296] do_syscall_64+0x33/0x40 [ 1113.941198] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1113.942383] RIP: 0033:0x7f9be863b8d7 [ 1113.943256] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1113.947461] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1113.949254] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1113.950928] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1113.952602] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1113.954251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1113.955910] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:35:46 executing program 1: creat(&(0x7f0000000040)='./file0\x00', 0x0) r0 = mq_open(&(0x7f0000000240)='E\\\x00', 0x40, 0x41, &(0x7f0000000180)={0x7, 0x0, 0x7f, 0xfe}) fsetxattr$security_evm(r0, &(0x7f0000000200), &(0x7f00000002c0)=ANY=[@ANYBLOB="0a02ab0fe72f2bdb8a994f0c58919a9272715bd624ec9dd96eb4785e21dfaa102c21328188836cb6a2551d5d7c575d57744bb9929bcff54fab66362e5df28f7ac295393e70617a2b34bbdc57de57a78bc7526d8eae3f2e87ebde3eb11db4416871fb638a8360b2"], 0x2, 0x0) sendmsg$NFT_MSG_GETOBJ_RESET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x1c, 0x15, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) r1 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000000)={0x1, 0x1e5, 0xfffffffb, 0x5}) 18:35:46 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = gettid() rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) r2 = syz_open_procfs(r1, &(0x7f0000000240)='environ\x00') pread64(r2, &(0x7f0000005f40)=""/116, 0x74, 0x5) rt_tgsigqueueinfo(r0, r0, 0x0, &(0x7f0000000640)) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005d80)=[{{&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000000200)=[{&(0x7f0000000080)=""/249, 0xf9}, {&(0x7f0000000180)=""/100, 0x64}], 0x2, &(0x7f0000000240)}}, {{&(0x7f0000000280), 0x6e, &(0x7f00000004c0)=[{&(0x7f0000000300)=""/104, 0x68}, {&(0x7f0000000380)=""/190, 0xbe}], 0x2, &(0x7f0000001ac0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x130}}, {{&(0x7f00000006c0)=@abs, 0x6e, &(0x7f0000000600)=[{&(0x7f0000000740)=""/109, 0x6d}, {&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/194, 0xc2}], 0x3, &(0x7f00000018c0)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}}, {{&(0x7f0000001940)=@abs, 0x6e, &(0x7f0000005cc0)=[{&(0x7f00000019c0)=""/248, 0xf8}, {&(0x7f0000005fc0)=""/4096, 0x1000}, {&(0x7f0000002ac0)=""/4096, 0x1000}, {&(0x7f0000003ac0)=""/18, 0x12}, {&(0x7f0000003b00)=""/93, 0x5d}, {&(0x7f0000003b80)=""/219, 0xdb}, {&(0x7f0000003c80)=""/4096, 0x1000}, {&(0x7f0000004c80)=""/4096, 0x1000}, {&(0x7f0000005c80)=""/12, 0xc}], 0x9}}], 0x4, 0x40000022, &(0x7f0000005e80)={0x0, 0x989680}) waitid(0x2, r3, &(0x7f0000005ec0), 0x4, 0x0) [ 1114.046097] FAULT_INJECTION: forcing a failure. [ 1114.046097] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.049006] CPU: 0 PID: 7380 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1114.050627] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1114.052555] Call Trace: [ 1114.053186] dump_stack+0x107/0x167 [ 1114.054039] should_fail.cold+0x5/0xa [ 1114.054929] ? kobject_get_path+0xc5/0x1f0 [ 1114.055926] should_failslab+0x5/0x20 [ 1114.056849] __kmalloc+0x72/0x390 [ 1114.057682] ? trace_hardirqs_on+0x5b/0x180 [ 1114.058718] kobject_get_path+0xc5/0x1f0 [ 1114.059695] kobject_uevent_env+0x251/0xfd0 [ 1114.060766] ? blk_queue_flag_set+0x22/0x30 [ 1114.061791] ? __loop_update_dio+0x2d2/0x690 [ 1114.062869] loop_configure+0x1118/0x1410 [ 1114.063927] lo_ioctl+0xa57/0x16b0 [ 1114.064809] ? avc_has_extended_perms+0x7f1/0xf40 [ 1114.065978] ? loop_set_status_old+0x250/0x250 [ 1114.067076] ? avc_ss_reset+0x180/0x180 [ 1114.068066] ? find_held_lock+0x2c/0x110 [ 1114.069108] ? __lock_acquire+0xbb1/0x5b00 [ 1114.070311] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1114.071484] ? generic_block_fiemap+0x60/0x60 [ 1114.072574] ? lock_downgrade+0x6d0/0x6d0 [ 1114.073193] ? build_open_flags+0x6f0/0x6f0 [ 1114.073833] ? loop_set_status_old+0x250/0x250 [ 1114.074518] blkdev_ioctl+0x291/0x710 [ 1114.075091] ? blkdev_common_ioctl+0x1930/0x1930 [ 1114.075800] ? selinux_file_ioctl+0xb6/0x270 [ 1114.076443] block_ioctl+0xf9/0x140 [ 1114.076930] ? blkdev_read_iter+0x1c0/0x1c0 [ 1114.077559] __x64_sys_ioctl+0x19a/0x210 [ 1114.078153] do_syscall_64+0x33/0x40 [ 1114.078666] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1114.079410] RIP: 0033:0x7fd8050b38d7 [ 1114.079941] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1114.082700] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1114.083821] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1114.084844] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1114.085875] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1114.086907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1114.087926] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1114.090241] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1114.108416] loop1: detected capacity change from 0 to 41948160 [ 1114.116381] FAT-fs (loop1): Unrecognized mount option "E\" or missing value [ 1114.152925] loop1: detected capacity change from 0 to 41948160 [ 1114.156491] FAT-fs (loop1): Unrecognized mount option "E\" or missing value [ 1131.074978] FAULT_INJECTION: forcing a failure. [ 1131.074978] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 1131.077753] CPU: 0 PID: 7405 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1131.079344] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.081279] Call Trace: [ 1131.081901] dump_stack+0x107/0x167 [ 1131.082760] should_fail.cold+0x5/0xa [ 1131.083666] __alloc_pages_nodemask+0x182/0x600 [ 1131.084771] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1131.086164] ? lock_release+0x680/0x680 [ 1131.087090] ? find_held_lock+0x2c/0x110 [ 1131.088059] ? kmem_cache_alloc_trace+0x151/0x320 [ 1131.089213] alloc_pages_current+0x187/0x280 [ 1131.090254] get_zeroed_page+0x14/0xb0 [ 1131.091160] get_image_page+0x20/0x320 [ 1131.092079] chain_alloc+0x8f/0x100 [ 1131.092948] memory_bm_create+0x292/0x930 [ 1131.093918] ? trace_hardirqs_on+0x5b/0x180 [ 1131.094960] create_basic_memory_bitmaps+0xb9/0x170 [ 1131.096135] snapshot_open+0x239/0x2b0 [ 1131.097046] ? snapshot_release+0x1f0/0x1f0 [ 1131.098054] misc_open+0x375/0x4a0 [ 1131.098886] ? misc_devnode+0x130/0x130 [ 1131.099806] chrdev_open+0x268/0x6e0 [ 1131.100685] ? __unregister_chrdev+0x110/0x110 [ 1131.101749] ? fsnotify_perm.part.0+0x22d/0x620 [ 1131.102850] do_dentry_open+0x4b7/0x1090 [ 1131.103797] ? __unregister_chrdev+0x110/0x110 [ 1131.104862] ? may_open+0x1e4/0x400 [ 1131.105718] path_openat+0x19ba/0x2770 [ 1131.106631] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1131.107798] ? path_lookupat+0x860/0x860 [ 1131.108745] ? perf_trace_lock+0x2bd/0x490 [ 1131.109729] ? find_held_lock+0x2c/0x110 [ 1131.110677] ? __lockdep_reset_lock+0x180/0x180 [ 1131.111772] do_filp_open+0x190/0x3e0 [ 1131.112660] ? may_open_dev+0xf0/0xf0 [ 1131.113751] ? do_raw_spin_lock+0x121/0x260 [ 1131.114756] ? rwlock_bug.part.0+0x90/0x90 [ 1131.115762] ? _raw_spin_unlock+0x1a/0x30 [ 1131.116732] ? alloc_fd+0x2e7/0x670 [ 1131.117611] do_sys_openat2+0x171/0x4d0 [ 1131.118545] ? build_open_flags+0x6f0/0x6f0 [ 1131.119130] FAULT_INJECTION: forcing a failure. [ 1131.119130] name failslab, interval 1, probability 0, space 0, times 0 [ 1131.119538] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1131.119577] ? wait_for_completion_io+0x270/0x270 [ 1131.123068] __x64_sys_openat+0x13f/0x1f0 [ 1131.124034] ? __ia32_sys_open+0x1c0/0x1c0 [ 1131.125020] ? ksys_write+0x1a9/0x260 [ 1131.125924] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1131.127134] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1131.128339] do_syscall_64+0x33/0x40 [ 1131.129208] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.130390] RIP: 0033:0x7f1ecf0f5b19 [ 1131.131251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.135486] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1131.137257] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1131.138909] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1131.140557] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1131.142212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1131.143862] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1131.145572] CPU: 1 PID: 7408 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1131.146408] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.147343] Call Trace: [ 1131.147661] dump_stack+0x107/0x167 [ 1131.148085] should_fail.cold+0x5/0xa [ 1131.148535] ? create_object.isra.0+0x3a/0xa20 [ 1131.149137] should_failslab+0x5/0x20 18:36:03 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 12) 18:36:03 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x0, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:36:03 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x56, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, r2) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(0xffffffffffffffff, 0xc08c5335, 0x0) fallocate(r2, 0x23, 0x7, 0x7) syz_open_dev$vcsa(&(0x7f00000000c0), 0x80000000, 0x8000) fchownat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x8001}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000004c0)) 18:36:03 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 40) 18:36:03 executing program 5: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/pcmcia_socket', 0x400080, 0x30) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xf8, 0xff, 0x2, 0x20, 0x0, 0x4, 0x81104, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000040), 0x3}, 0x1c652, 0x7, 0x8000, 0x7, 0x7, 0x2, 0x81, 0x0, 0x100, 0x0, 0x2}, 0x0, 0xf, r0, 0x8) syz_open_dev$vcsu(&(0x7f00000001c0), 0x800000000000002, 0x8c000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x84, &(0x7f0000000080)={0x0, 0x20000, 0x0, 0xfffffffd, 0x256, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000500)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r1, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x40003e) r4 = gettid() rt_tgsigqueueinfo(0x0, 0x0, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f00000004c0)=ANY=[@ANYBLOB="715a81ba3114ad6285ff22bb3aa8ab01f72be6f8df0997b2f81feec031f53499527559468c", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0@']) clone3(&(0x7f0000000580)={0x20120000, &(0x7f0000000240), &(0x7f0000000280), &(0x7f0000000300), {0x1c}, &(0x7f0000000340)=""/115, 0x73, &(0x7f00000003c0)=""/42, &(0x7f0000000400)=[r4, 0x0, 0x0, r4], 0x4, {r5}}, 0x58) rt_tgsigqueueinfo(r4, r4, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) r6 = pidfd_getfd(r0, r0, 0x0) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x8, 0x5, 0x0, 0x0, 0x9, 0x4040, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000100), 0x1}, 0x4, 0x2, 0x20, 0x1, 0x9, 0xff, 0x7, 0x0, 0x4, 0x0, 0x3}, r4, 0xe, r6, 0x2) r7 = gettid() rt_tgsigqueueinfo(r7, r7, 0x0, &(0x7f0000000640)) 18:36:03 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(0xffffffffffffffff, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:36:03 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:36:03 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 42) [ 1131.149735] kmem_cache_alloc+0x5b/0x310 [ 1131.150277] ? kmem_cache_alloc_trace+0x151/0x320 [ 1131.150855] create_object.isra.0+0x3a/0xa20 [ 1131.151370] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1131.151945] __kmalloc+0x16e/0x390 [ 1131.152369] kobject_get_path+0xc5/0x1f0 [ 1131.152859] kobject_uevent_env+0x251/0xfd0 [ 1131.153371] ? blk_queue_flag_set+0x22/0x30 [ 1131.153876] ? __loop_update_dio+0x2d2/0x690 [ 1131.154396] loop_configure+0x1118/0x1410 [ 1131.154876] lo_ioctl+0xa57/0x16b0 [ 1131.155297] ? avc_has_extended_perms+0x7f1/0xf40 [ 1131.155867] ? loop_set_status_old+0x250/0x250 [ 1131.156495] ? avc_ss_reset+0x180/0x180 [ 1131.157037] ? find_held_lock+0x2c/0x110 [ 1131.157538] ? __lock_acquire+0xbb1/0x5b00 [ 1131.158207] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1131.158954] ? generic_block_fiemap+0x60/0x60 [ 1131.159489] ? lock_downgrade+0x6d0/0x6d0 [ 1131.159995] ? build_open_flags+0x6f0/0x6f0 [ 1131.160516] ? loop_set_status_old+0x250/0x250 [ 1131.161066] blkdev_ioctl+0x291/0x710 [ 1131.161515] ? blkdev_common_ioctl+0x1930/0x1930 [ 1131.162056] ? selinux_file_ioctl+0xb6/0x270 [ 1131.162577] block_ioctl+0xf9/0x140 [ 1131.163005] ? blkdev_read_iter+0x1c0/0x1c0 [ 1131.163503] __x64_sys_ioctl+0x19a/0x210 [ 1131.163986] do_syscall_64+0x33/0x40 [ 1131.164423] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.165035] RIP: 0033:0x7fd8050b38d7 [ 1131.165455] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.167620] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1131.168485] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1131.169333] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1131.170138] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1131.170974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1131.171777] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1131.202151] loop0: detected capacity change from 0 to 512 [ 1131.202903] FAULT_INJECTION: forcing a failure. [ 1131.202903] name failslab, interval 1, probability 0, space 0, times 0 [ 1131.204202] CPU: 1 PID: 7416 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1131.205033] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.206014] Call Trace: [ 1131.206329] dump_stack+0x107/0x167 [ 1131.206770] should_fail.cold+0x5/0xa [ 1131.207222] ? create_object.isra.0+0x3a/0xa20 [ 1131.207765] should_failslab+0x5/0x20 [ 1131.208216] kmem_cache_alloc+0x5b/0x310 [ 1131.208706] ? kmem_cache_alloc_trace+0x151/0x320 [ 1131.209272] create_object.isra.0+0x3a/0xa20 [ 1131.209791] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1131.210398] __kmalloc+0x16e/0x390 [ 1131.210831] kobject_get_path+0xc5/0x1f0 [ 1131.211319] kobject_uevent_env+0x251/0xfd0 [ 1131.211835] ? blk_queue_flag_set+0x22/0x30 [ 1131.212344] ? __loop_update_dio+0x2d2/0x690 [ 1131.212877] loop_configure+0x1118/0x1410 [ 1131.213380] lo_ioctl+0xa57/0x16b0 [ 1131.213809] ? avc_has_extended_perms+0x7f1/0xf40 [ 1131.214386] ? loop_set_status_old+0x250/0x250 [ 1131.214933] ? avc_ss_reset+0x180/0x180 [ 1131.215410] ? find_held_lock+0x2c/0x110 [ 1131.215902] ? __lock_acquire+0xbb1/0x5b00 [ 1131.216441] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1131.217070] ? generic_block_fiemap+0x60/0x60 [ 1131.217602] ? lock_downgrade+0x6d0/0x6d0 [ 1131.218074] ? build_open_flags+0x6f0/0x6f0 [ 1131.218588] ? loop_set_status_old+0x250/0x250 [ 1131.219127] blkdev_ioctl+0x291/0x710 [ 1131.219578] ? blkdev_common_ioctl+0x1930/0x1930 [ 1131.220117] ? selinux_file_ioctl+0xb6/0x270 [ 1131.220650] block_ioctl+0xf9/0x140 [ 1131.221088] ? blkdev_read_iter+0x1c0/0x1c0 [ 1131.221599] __x64_sys_ioctl+0x19a/0x210 [ 1131.222085] do_syscall_64+0x33/0x40 [ 1131.222527] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.223132] RIP: 0033:0x7f9be863b8d7 [ 1131.223574] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.225778] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1131.226693] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1131.227506] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1131.228350] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1131.229170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1131.230022] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:36:03 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 13) [ 1131.251982] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:36:03 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 41) 18:36:03 executing program 1: socket$nl_generic(0x10, 0x3, 0x10) r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) fcntl$setstatus(r1, 0x4, 0xc00) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) open_by_handle_at(r0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x8e880) fcntl$dupfd(r1, 0x406, 0xffffffffffffffff) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00'}) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r3, &(0x7f0000000040)={0x11, 0x1, r5, 0x1, 0x8, 0x6, @broadcast}, 0x14) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00'}) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0x1}], 0x1}, 0x30004001) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'vlan0\x00'}) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) bind$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0xf8, 0x0, 0x1, 0xfd, 0x6, @broadcast}, 0x14) [ 1131.347925] FAULT_INJECTION: forcing a failure. [ 1131.347925] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1131.350781] CPU: 0 PID: 7431 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1131.352366] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.354296] Call Trace: [ 1131.354918] dump_stack+0x107/0x167 [ 1131.355778] should_fail.cold+0x5/0xa [ 1131.356691] __alloc_pages_nodemask+0x182/0x600 [ 1131.357775] ? lock_release+0x680/0x680 [ 1131.358703] ? find_held_lock+0x2c/0x110 18:36:03 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1131.359655] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1131.361261] alloc_pages_current+0x187/0x280 [ 1131.362299] get_zeroed_page+0x14/0xb0 [ 1131.363206] get_image_page+0x20/0x320 [ 1131.364112] ? chain_alloc+0x52/0x100 [ 1131.365016] memory_bm_create+0x50f/0x930 [ 1131.366027] create_basic_memory_bitmaps+0xb9/0x170 [ 1131.367198] snapshot_open+0x239/0x2b0 [ 1131.368099] ? snapshot_release+0x1f0/0x1f0 [ 1131.369113] misc_open+0x375/0x4a0 [ 1131.369946] ? misc_devnode+0x130/0x130 [ 1131.370871] chrdev_open+0x268/0x6e0 [ 1131.371739] ? __unregister_chrdev+0x110/0x110 [ 1131.372808] ? fsnotify_perm.part.0+0x22d/0x620 [ 1131.373911] do_dentry_open+0x4b7/0x1090 [ 1131.374858] ? __unregister_chrdev+0x110/0x110 [ 1131.375918] ? may_open+0x1e4/0x400 [ 1131.376739] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1131.376776] path_openat+0x19ba/0x2770 [ 1131.378682] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1131.379853] ? path_lookupat+0x860/0x860 [ 1131.380809] ? perf_trace_lock+0x2bd/0x490 [ 1131.381799] ? find_held_lock+0x2c/0x110 [ 1131.382749] ? __lockdep_reset_lock+0x180/0x180 [ 1131.383845] do_filp_open+0x190/0x3e0 [ 1131.384744] ? may_open_dev+0xf0/0xf0 [ 1131.385656] ? do_raw_spin_lock+0x121/0x260 [ 1131.386657] ? rwlock_bug.part.0+0x90/0x90 [ 1131.387662] ? _raw_spin_unlock+0x1a/0x30 [ 1131.388633] ? alloc_fd+0x2e7/0x670 [ 1131.389512] do_sys_openat2+0x171/0x4d0 [ 1131.390446] ? build_open_flags+0x6f0/0x6f0 [ 1131.391446] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1131.392580] ? wait_for_completion_io+0x270/0x270 [ 1131.393730] __x64_sys_openat+0x13f/0x1f0 [ 1131.394695] ? __ia32_sys_open+0x1c0/0x1c0 [ 1131.395672] ? ksys_write+0x1a9/0x260 [ 1131.396574] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1131.397794] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1131.399001] do_syscall_64+0x33/0x40 [ 1131.399868] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.401059] RIP: 0033:0x7f1ecf0f5b19 [ 1131.401920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.406168] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1131.407927] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1131.409584] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1131.411231] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1131.412882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1131.414527] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1131.439211] FAULT_INJECTION: forcing a failure. [ 1131.439211] name failslab, interval 1, probability 0, space 0, times 0 [ 1131.440575] CPU: 1 PID: 7437 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1131.441397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.442374] Call Trace: [ 1131.442690] dump_stack+0x107/0x167 [ 1131.443127] should_fail.cold+0x5/0xa [ 1131.443585] ? kobject_get_path+0xc5/0x1f0 [ 1131.444091] should_failslab+0x5/0x20 [ 1131.444546] __kmalloc+0x72/0x390 [ 1131.444966] ? trace_hardirqs_on+0x5b/0x180 [ 1131.445487] kobject_get_path+0xc5/0x1f0 [ 1131.445977] kobject_uevent_env+0x251/0xfd0 [ 1131.446498] ? blk_queue_flag_set+0x22/0x30 [ 1131.447013] ? __loop_update_dio+0x2d2/0x690 [ 1131.447539] loop_configure+0x1118/0x1410 [ 1131.448049] lo_ioctl+0xa57/0x16b0 [ 1131.448482] ? avc_has_extended_perms+0x7f1/0xf40 [ 1131.449070] ? loop_set_status_old+0x250/0x250 [ 1131.449614] ? avc_ss_reset+0x180/0x180 [ 1131.450096] ? find_held_lock+0x2c/0x110 [ 1131.450590] ? __lock_acquire+0xbb1/0x5b00 [ 1131.451150] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1131.451856] ? generic_block_fiemap+0x60/0x60 [ 1131.452476] ? lock_downgrade+0x6d0/0x6d0 [ 1131.452980] ? build_open_flags+0x6f0/0x6f0 [ 1131.453500] ? loop_set_status_old+0x250/0x250 [ 1131.454048] blkdev_ioctl+0x291/0x710 [ 1131.454505] ? blkdev_common_ioctl+0x1930/0x1930 [ 1131.455067] ? selinux_file_ioctl+0xb6/0x270 [ 1131.455595] block_ioctl+0xf9/0x140 [ 1131.456027] ? blkdev_read_iter+0x1c0/0x1c0 [ 1131.456545] __x64_sys_ioctl+0x19a/0x210 [ 1131.457047] do_syscall_64+0x33/0x40 [ 1131.457490] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.458101] RIP: 0033:0x7fd8050b38d7 [ 1131.458545] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.460749] RSP: 002b:00007fd802607f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1131.461657] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1131.462501] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1131.463350] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1131.464203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1131.465058] R13: 0000000000000004 R14: 0000000020001788 R15: 0000000000000003 18:36:03 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(0xffffffffffffffff, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:36:03 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 14) 18:36:03 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0x0, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) [ 1131.528973] FAULT_INJECTION: forcing a failure. [ 1131.528973] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1131.530456] CPU: 1 PID: 7442 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1131.531275] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.532268] Call Trace: [ 1131.532588] dump_stack+0x107/0x167 [ 1131.533037] should_fail.cold+0x5/0xa [ 1131.533498] __alloc_pages_nodemask+0x182/0x600 [ 1131.534055] ? find_held_lock+0x2c/0x110 [ 1131.534541] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1131.535296] alloc_pages_current+0x187/0x280 [ 1131.535826] get_zeroed_page+0x14/0xb0 [ 1131.536298] get_image_page+0x20/0x320 [ 1131.536764] ? chain_alloc+0x52/0x100 [ 1131.537221] memory_bm_create+0x35f/0x930 [ 1131.537730] create_basic_memory_bitmaps+0xb9/0x170 [ 1131.538331] snapshot_open+0x239/0x2b0 [ 1131.538791] ? snapshot_release+0x1f0/0x1f0 [ 1131.539308] misc_open+0x375/0x4a0 [ 1131.539731] ? misc_devnode+0x130/0x130 [ 1131.540206] chrdev_open+0x268/0x6e0 [ 1131.540661] ? __unregister_chrdev+0x110/0x110 [ 1131.541209] ? fsnotify_perm.part.0+0x22d/0x620 [ 1131.541769] do_dentry_open+0x4b7/0x1090 [ 1131.542253] ? __unregister_chrdev+0x110/0x110 [ 1131.542801] ? may_open+0x1e4/0x400 [ 1131.543236] path_openat+0x19ba/0x2770 [ 1131.543707] ? path_lookupat+0x860/0x860 [ 1131.544193] ? find_held_lock+0x2c/0x110 [ 1131.544686] ? __lockdep_reset_lock+0x180/0x180 [ 1131.545244] do_filp_open+0x190/0x3e0 [ 1131.545696] ? may_open_dev+0xf0/0xf0 [ 1131.546156] ? do_raw_spin_lock+0x121/0x260 [ 1131.546670] ? rwlock_bug.part.0+0x90/0x90 [ 1131.547184] ? _raw_spin_unlock+0x1a/0x30 [ 1131.547680] ? alloc_fd+0x2e7/0x670 [ 1131.548124] do_sys_openat2+0x171/0x4d0 [ 1131.548601] ? build_open_flags+0x6f0/0x6f0 [ 1131.549123] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1131.549703] ? wait_for_completion_io+0x270/0x270 [ 1131.550286] __x64_sys_openat+0x13f/0x1f0 [ 1131.550780] ? __ia32_sys_open+0x1c0/0x1c0 [ 1131.551284] ? ksys_write+0x1a9/0x260 [ 1131.551740] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1131.552365] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1131.553004] do_syscall_64+0x33/0x40 [ 1131.553447] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.554055] RIP: 0033:0x7f1ecf0f5b19 [ 1131.554498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.556707] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1131.557614] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1131.558465] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1131.559318] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1131.560164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1131.561023] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:36:03 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 42) [ 1131.671515] FAULT_INJECTION: forcing a failure. [ 1131.671515] name failslab, interval 1, probability 0, space 0, times 0 [ 1131.674335] CPU: 0 PID: 7453 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1131.675924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.677861] Call Trace: [ 1131.678483] dump_stack+0x107/0x167 [ 1131.679344] should_fail.cold+0x5/0xa [ 1131.680244] ? create_object.isra.0+0x3a/0xa20 [ 1131.681326] should_failslab+0x5/0x20 [ 1131.682218] kmem_cache_alloc+0x5b/0x310 [ 1131.683139] ? kmem_cache_alloc_trace+0x151/0x320 [ 1131.684207] create_object.isra.0+0x3a/0xa20 [ 1131.685180] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1131.686304] __kmalloc+0x16e/0x390 [ 1131.687108] kobject_get_path+0xc5/0x1f0 [ 1131.688018] kobject_uevent_env+0x251/0xfd0 [ 1131.688986] ? blk_queue_flag_set+0x22/0x30 [ 1131.689929] ? __loop_update_dio+0x2d2/0x690 [ 1131.690905] loop_configure+0x1118/0x1410 [ 1131.691844] lo_ioctl+0xa57/0x16b0 [ 1131.692637] ? avc_has_extended_perms+0x7f1/0xf40 [ 1131.693709] ? loop_set_status_old+0x250/0x250 [ 1131.694721] ? avc_ss_reset+0x180/0x180 [ 1131.695602] ? find_held_lock+0x2c/0x110 [ 1131.696526] ? __lock_acquire+0xbb1/0x5b00 [ 1131.697573] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1131.698721] ? generic_block_fiemap+0x60/0x60 [ 1131.699699] ? lock_downgrade+0x6d0/0x6d0 [ 1131.700609] ? build_open_flags+0x6f0/0x6f0 [ 1131.701581] ? loop_set_status_old+0x250/0x250 [ 1131.702579] blkdev_ioctl+0x291/0x710 [ 1131.703419] ? blkdev_common_ioctl+0x1930/0x1930 [ 1131.704467] ? selinux_file_ioctl+0xb6/0x270 [ 1131.705452] block_ioctl+0xf9/0x140 [ 1131.706251] ? blkdev_read_iter+0x1c0/0x1c0 [ 1131.707201] __x64_sys_ioctl+0x19a/0x210 [ 1131.708105] do_syscall_64+0x33/0x40 [ 1131.708937] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.710058] RIP: 0033:0x7fd8050b38d7 [ 1131.710873] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.714884] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1131.716546] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1131.718110] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1131.719667] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1131.721230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1131.722785] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:36:20 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 43) 18:36:20 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 43) [ 1148.003500] loop0: detected capacity change from 0 to 512 [ 1148.004817] FAULT_INJECTION: forcing a failure. [ 1148.004817] name failslab, interval 1, probability 0, space 0, times 0 [ 1148.006942] CPU: 0 PID: 7470 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1148.008207] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1148.009745] Call Trace: [ 1148.010254] dump_stack+0x107/0x167 [ 1148.010947] should_fail.cold+0x5/0xa [ 1148.011679] ? __alloc_skb+0x6d/0x5b0 [ 1148.012396] should_failslab+0x5/0x20 [ 1148.013107] kmem_cache_alloc_node+0x55/0x330 [ 1148.013971] __alloc_skb+0x6d/0x5b0 [ 1148.014673] alloc_uevent_skb+0x7b/0x210 [ 1148.015451] kobject_uevent_env+0x99a/0xfd0 [ 1148.016272] ? blk_queue_flag_set+0x22/0x30 [ 1148.017074] ? __loop_update_dio+0x2d2/0x690 [ 1148.017918] loop_configure+0x1118/0x1410 [ 1148.018707] lo_ioctl+0xa57/0x16b0 [ 1148.019375] ? avc_has_extended_perms+0x7f1/0xf40 [ 1148.020267] ? loop_set_status_old+0x250/0x250 [ 1148.021106] ? avc_ss_reset+0x180/0x180 [ 1148.021844] ? find_held_lock+0x2c/0x110 [ 1148.022624] ? __lock_acquire+0xbb1/0x5b00 [ 1148.023509] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1148.024453] ? generic_block_fiemap+0x60/0x60 [ 1148.025261] ? lock_downgrade+0x6d0/0x6d0 [ 1148.026044] ? build_open_flags+0x6f0/0x6f0 [ 1148.026905] ? loop_set_status_old+0x250/0x250 [ 1148.027788] blkdev_ioctl+0x291/0x710 [ 1148.028545] ? blkdev_common_ioctl+0x1930/0x1930 [ 1148.029496] ? selinux_file_ioctl+0xb6/0x270 [ 1148.030580] block_ioctl+0xf9/0x140 [ 1148.031293] ? blkdev_read_iter+0x1c0/0x1c0 [ 1148.032138] __x64_sys_ioctl+0x19a/0x210 [ 1148.032894] do_syscall_64+0x33/0x40 [ 1148.033564] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.034456] RIP: 0033:0x7f9be863b8d7 [ 1148.035115] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.038491] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1148.039243] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1148.039843] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1148.042166] FAULT_INJECTION: forcing a failure. [ 1148.042166] name fail_page_alloc, interval 1, probability 0, space 0, times 0 18:36:20 executing program 1: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) signalfd(0xffffffffffffffff, &(0x7f0000000080)={[0x8]}, 0x8) r1 = dup2(r0, r0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0x0) r2 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0xffffffffffffffff, 0xee01}}, './file0\x00'}) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_mount_image$nfs(&(0x7f0000000240), &(0x7f00000002c0)='./file0/../file0\x00', 0x1, 0x3, &(0x7f0000000500)=[{&(0x7f0000000300)="b09456e1cc1abe3be01b5ab628f4f34a9a6cc65a92f9877ae3771e21d09c820335483bdc14c4696a6b7661a1c0cd40bf760bbd9d7976fb11c6db4c32f90d212b2447c78c0bb70e2341b9135a36e3d037b1", 0x51, 0xffffffffffffffff}, {&(0x7f00000003c0)="734392bf111e34ad89833539b8bc9d0c90f5905723c06cb62a77178037bdf869a9e9f9cf93423b1c6c08e00a09fffd1739e62303500b707c15a15ce9cff7d35d67b8f1929ea5dbb86e30efc44374d16ea8b43e80ec4d305a95b6b85adc47c8abfc", 0x61, 0x40}, {&(0x7f0000000440)="ffdd14b2d545b969616d54fa413948ca8c884e05a5e0b29fda45678de5b6ea9b32040cfbe28f87c93cf898c2624a360384a71f96dc79194b8c9cf744da855ca0b5aaf22f51db7f7c1cf4850f245977421e5f993e2c5e97146ac61139caedb63455f06e0ac29e00f522a151c2774de3ac62b0621adbe8f1cfca71952a01bd410dbd0731eb96367acfaef362026b898c9311a95951a302f26d1b3d3c6fb59470b3ce9e99d98277d23940f8e92a64207f20951d9407895b748c482f265db1", 0xbd, 0x5}], 0x1, &(0x7f0000000600)={[{'-$'}, {'rfdno'}, {'9p\x00'}, {'[\x89'}], [{@euid_gt={'euid>', r6}}]}) r8 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x200) dup3(r8, r7, 0x80000) ioctl$F2FS_IOC_GET_FEATURES(r5, 0x8004f50c, &(0x7f0000000100)) move_mount(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', r4, &(0x7f00000005c0)='./file0\x00', 0x50) close_range(r7, 0xffffffffffffffff, 0x0) ioctl$HIDIOCINITREPORT(0xffffffffffffffff, 0x550c, 0x20000000) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000140)=0x7c0283a40842d60c) r9 = openat2(0xffffffffffffffff, &(0x7f0000000640)='./file0\x00', &(0x7f0000000680)={0x28000, 0x997b1378d16cef3}, 0x18) close_range(0xffffffffffffffff, r9, 0x0) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) 18:36:20 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 15) 18:36:20 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:36:20 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x5, 0x1f, 0x40, 0x7, 0x0, 0x4, 0x48a09, 0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0xffffffff, 0x2, @perf_config_ext={0x3de3b292, 0x43}, 0x8000, 0xfffffffffffffffe, 0xb9a8, 0x2, 0x401, 0x7, 0xaee, 0x0, 0x200}, r1, 0xa, r0, 0x1) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x4, 0x3f, 0x7f, 0x8, 0x0, 0x7, 0x20804, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x80, 0x2, @perf_bp={&(0x7f0000000080), 0x8}, 0x183b8, 0xfffffffffffffffd, 0x40, 0x9, 0x5, 0x5, 0x3, 0x0, 0x7ff, 0x0, 0x200}, 0xffffffffffffffff, 0xf, r0, 0x8) r2 = accept(0xffffffffffffffff, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000140)=0x80) r3 = socket$nl_generic(0x10, 0x3, 0x10) creat(&(0x7f0000000280)='./file0\x00', 0x486829214e137364) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r5, @ANYBLOB="9cd024a8e99fd5aca7492b8f13ff436908d400"], 0x2c}}, 0x0) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="28008000", @ANYRES16=r4, @ANYBLOB="000125bd7000ffdbdf253100000008000100020000000c0099000300000076000000"], 0x28}, 0x1, 0x0, 0x0, 0x20000004}, 0x10) rt_tgsigqueueinfo(r1, r1, 0x0, &(0x7f0000000640)) 18:36:20 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0x0, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:36:20 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(0xffffffffffffffff, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1148.043000] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1148.043012] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1148.043023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1148.043033] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1148.052401] CPU: 1 PID: 7478 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1148.053914] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1148.055738] Call Trace: [ 1148.056322] dump_stack+0x107/0x167 [ 1148.057124] should_fail.cold+0x5/0xa [ 1148.057997] __alloc_pages_nodemask+0x182/0x600 [ 1148.059030] ? find_held_lock+0x2c/0x110 [ 1148.059965] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1148.061327] alloc_pages_current+0x187/0x280 [ 1148.062301] get_zeroed_page+0x14/0xb0 [ 1148.063151] get_image_page+0x20/0x320 [ 1148.064002] ? chain_alloc+0x52/0x100 [ 1148.064848] memory_bm_create+0x50f/0x930 [ 1148.065796] create_basic_memory_bitmaps+0xb9/0x170 [ 1148.066906] snapshot_open+0x239/0x2b0 [ 1148.067768] ? snapshot_release+0x1f0/0x1f0 [ 1148.068718] misc_open+0x375/0x4a0 [ 1148.069524] ? misc_devnode+0x130/0x130 [ 1148.070467] chrdev_open+0x268/0x6e0 [ 1148.071355] ? __unregister_chrdev+0x110/0x110 [ 1148.072440] ? fsnotify_perm.part.0+0x22d/0x620 [ 1148.073579] do_dentry_open+0x4b7/0x1090 [ 1148.074545] ? __unregister_chrdev+0x110/0x110 [ 1148.075627] ? may_open+0x1e4/0x400 [ 1148.076498] path_openat+0x19ba/0x2770 [ 1148.077454] ? path_lookupat+0x860/0x860 [ 1148.078423] ? find_held_lock+0x2c/0x110 [ 1148.079392] ? __lockdep_reset_lock+0x180/0x180 [ 1148.080504] do_filp_open+0x190/0x3e0 [ 1148.081421] ? may_open_dev+0xf0/0xf0 [ 1148.082341] ? do_raw_spin_lock+0x121/0x260 [ 1148.083369] ? rwlock_bug.part.0+0x90/0x90 [ 1148.084386] ? _raw_spin_unlock+0x1a/0x30 [ 1148.085388] ? alloc_fd+0x2e7/0x670 [ 1148.086270] do_sys_openat2+0x171/0x4d0 [ 1148.087228] ? build_open_flags+0x6f0/0x6f0 [ 1148.088254] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1148.089426] ? wait_for_completion_io+0x270/0x270 [ 1148.090524] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1148.092538] __x64_sys_openat+0x13f/0x1f0 [ 1148.092568] ? __ia32_sys_open+0x1c0/0x1c0 [ 1148.094395] ? ksys_write+0x1a9/0x260 [ 1148.095308] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1148.096547] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1148.097788] do_syscall_64+0x33/0x40 [ 1148.098671] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.099879] RIP: 0033:0x7f1ecf0f5b19 [ 1148.100765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.105153] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1148.106965] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1148.108648] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1148.110344] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1148.112027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1148.113720] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1148.234453] FAULT_INJECTION: forcing a failure. [ 1148.234453] name failslab, interval 1, probability 0, space 0, times 0 [ 1148.236295] CPU: 0 PID: 7468 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1148.237378] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1148.238678] Call Trace: [ 1148.239103] dump_stack+0x107/0x167 [ 1148.239694] should_fail.cold+0x5/0xa [ 1148.240305] ? create_object.isra.0+0x3a/0xa20 [ 1148.241033] should_failslab+0x5/0x20 [ 1148.241900] kmem_cache_alloc+0x5b/0x310 [ 1148.242842] create_object.isra.0+0x3a/0xa20 [ 1148.243832] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1148.245039] kmem_cache_alloc_node+0x169/0x330 [ 1148.246120] __alloc_skb+0x6d/0x5b0 [ 1148.246971] alloc_uevent_skb+0x7b/0x210 [ 1148.247907] kobject_uevent_env+0x99a/0xfd0 [ 1148.248951] ? blk_queue_flag_set+0x22/0x30 [ 1148.249948] ? __loop_update_dio+0x2d2/0x690 [ 1148.250964] loop_configure+0x1118/0x1410 [ 1148.251942] lo_ioctl+0xa57/0x16b0 [ 1148.252805] ? avc_has_extended_perms+0x7f1/0xf40 [ 1148.253944] ? loop_set_status_old+0x250/0x250 [ 1148.254998] ? avc_ss_reset+0x180/0x180 [ 1148.255915] ? find_held_lock+0x2c/0x110 [ 1148.256985] ? __lock_acquire+0xbb1/0x5b00 [ 1148.258252] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1148.259453] ? generic_block_fiemap+0x60/0x60 [ 1148.260528] ? lock_downgrade+0x6d0/0x6d0 [ 1148.261496] ? build_open_flags+0x6f0/0x6f0 [ 1148.262502] ? loop_set_status_old+0x250/0x250 [ 1148.263545] blkdev_ioctl+0x291/0x710 [ 1148.264466] ? blkdev_common_ioctl+0x1930/0x1930 [ 1148.265579] ? selinux_file_ioctl+0xb6/0x270 [ 1148.266600] block_ioctl+0xf9/0x140 [ 1148.267431] ? blkdev_read_iter+0x1c0/0x1c0 [ 1148.268467] __x64_sys_ioctl+0x19a/0x210 [ 1148.269463] do_syscall_64+0x33/0x40 [ 1148.270320] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.271491] RIP: 0033:0x7fd8050b38d7 [ 1148.272383] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.276644] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1148.278456] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1148.280097] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1148.281817] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1148.283498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1148.285135] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:36:20 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 16) 18:36:20 executing program 5: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000300)={0x0, &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)=0x0, {0x20}, &(0x7f0000000180)=""/169, 0xa9, &(0x7f0000000240)=""/94, &(0x7f00000002c0)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0], 0x6}, 0x58) perf_event_open(&(0x7f0000000040)={0x1ff4be63b0f64c15, 0x80, 0x4, 0x6, 0x3, 0xf6, 0x0, 0x0, 0x1028, 0x6, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8, 0x1, @perf_bp, 0xc4, 0x7fffffff, 0x3, 0x5, 0x5b6, 0x401, 0x1, 0x0, 0x80, 0x0, 0x37d1}, r1, 0xa, r0, 0x1) r2 = gettid() rt_tgsigqueueinfo(r2, r2, 0x0, &(0x7f0000000640)) 18:36:20 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r0, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r5, @ANYBLOB='\b\x00%'], 0x2c}}, 0x0) sendmsg$NL80211_CMD_GET_REG(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, r4, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x1b}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}]}, 0x30}}, 0x4c891) r6 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_buf(r6, 0x0, 0x30, &(0x7f0000000980)="f6c8bf99372f114c57b2212dcb30238eaddbb5055e296f6b98f5139039137f088bce13bb5d608131b0e865a89d372a80637a8b21b1ca4da9e2d5d57e93a9555c4c72fdb3dc7e2972a454e63991e96a390b88f8c01fb322e6f19a9258e0ebc1d6f60eb1a9c562aeda1dc5b3d79ffafde7a42f35c7490746ed4c1470d313a54e63f152b3ed1e876fde63a5dc95a08954ed", 0x90) [ 1148.435405] FAULT_INJECTION: forcing a failure. [ 1148.435405] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1148.437946] CPU: 1 PID: 7498 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1148.439602] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1148.441309] Call Trace: [ 1148.441862] dump_stack+0x107/0x167 [ 1148.442620] should_fail.cold+0x5/0xa [ 1148.443379] __alloc_pages_nodemask+0x182/0x600 [ 1148.444293] ? find_held_lock+0x2c/0x110 [ 1148.445094] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1148.446307] alloc_pages_current+0x187/0x280 [ 1148.447178] get_zeroed_page+0x14/0xb0 [ 1148.447942] get_image_page+0x20/0x320 [ 1148.448703] ? chain_alloc+0x52/0x100 [ 1148.449469] memory_bm_create+0x50f/0x930 [ 1148.450311] create_basic_memory_bitmaps+0xb9/0x170 [ 1148.451296] snapshot_open+0x239/0x2b0 [ 1148.452057] ? snapshot_release+0x1f0/0x1f0 [ 1148.452908] misc_open+0x375/0x4a0 [ 1148.453620] ? misc_devnode+0x130/0x130 [ 1148.454400] chrdev_open+0x268/0x6e0 [ 1148.455132] ? __unregister_chrdev+0x110/0x110 [ 1148.456032] ? fsnotify_perm.part.0+0x22d/0x620 [ 1148.456955] do_dentry_open+0x4b7/0x1090 [ 1148.457770] ? __unregister_chrdev+0x110/0x110 [ 1148.458663] ? may_open+0x1e4/0x400 [ 1148.459383] path_openat+0x19ba/0x2770 [ 1148.460166] ? path_lookupat+0x860/0x860 [ 1148.460992] ? find_held_lock+0x2c/0x110 [ 1148.461806] ? __lockdep_reset_lock+0x180/0x180 [ 1148.462726] do_filp_open+0x190/0x3e0 [ 1148.463473] ? may_open_dev+0xf0/0xf0 [ 1148.464235] ? do_raw_spin_lock+0x121/0x260 [ 1148.465081] ? rwlock_bug.part.0+0x90/0x90 [ 1148.465939] ? _raw_spin_unlock+0x1a/0x30 [ 1148.466750] ? alloc_fd+0x2e7/0x670 [ 1148.467480] do_sys_openat2+0x171/0x4d0 [ 1148.468264] ? build_open_flags+0x6f0/0x6f0 [ 1148.469112] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1148.470073] ? wait_for_completion_io+0x270/0x270 [ 1148.471030] __x64_sys_openat+0x13f/0x1f0 [ 1148.471848] ? __ia32_sys_open+0x1c0/0x1c0 [ 1148.472676] ? ksys_write+0x1a9/0x260 [ 1148.473446] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1148.474471] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1148.475490] do_syscall_64+0x33/0x40 [ 1148.476224] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.477244] RIP: 0033:0x7f1ecf0f5b19 [ 1148.477980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.481570] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1148.483057] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1148.484450] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1148.485851] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1148.487240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1148.488629] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:36:20 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 44) 18:36:20 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 44) [ 1148.556147] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 18:36:20 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0x0, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) [ 1148.613192] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1148.696108] loop0: detected capacity change from 0 to 512 [ 1148.697387] FAULT_INJECTION: forcing a failure. [ 1148.697387] name failslab, interval 1, probability 0, space 0, times 0 [ 1148.699646] CPU: 1 PID: 7505 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1148.701019] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1148.702693] Call Trace: [ 1148.703225] dump_stack+0x107/0x167 [ 1148.703967] should_fail.cold+0x5/0xa [ 1148.704743] ? create_object.isra.0+0x3a/0xa20 [ 1148.705679] should_failslab+0x5/0x20 [ 1148.706337] kmem_cache_alloc+0x5b/0x310 [ 1148.707059] create_object.isra.0+0x3a/0xa20 [ 1148.707929] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1148.708810] kmem_cache_alloc_node+0x169/0x330 [ 1148.709750] __alloc_skb+0x6d/0x5b0 [ 1148.710388] alloc_uevent_skb+0x7b/0x210 [ 1148.711322] kobject_uevent_env+0x99a/0xfd0 [ 1148.712212] ? blk_queue_flag_set+0x22/0x30 [ 1148.713094] ? __loop_update_dio+0x2d2/0x690 [ 1148.714001] loop_configure+0x1118/0x1410 [ 1148.714890] lo_ioctl+0xa57/0x16b0 [ 1148.715603] ? avc_has_extended_perms+0x7f1/0xf40 [ 1148.716441] ? loop_set_status_old+0x250/0x250 [ 1148.717252] ? avc_ss_reset+0x180/0x180 [ 1148.717947] ? find_held_lock+0x2c/0x110 [ 1148.718678] ? __lock_acquire+0xbb1/0x5b00 [ 1148.719468] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1148.720374] ? generic_block_fiemap+0x60/0x60 [ 1148.721156] ? lock_downgrade+0x6d0/0x6d0 [ 1148.721895] ? build_open_flags+0x6f0/0x6f0 [ 1148.722649] ? loop_set_status_old+0x250/0x250 [ 1148.723432] blkdev_ioctl+0x291/0x710 [ 1148.724100] ? blkdev_common_ioctl+0x1930/0x1930 [ 1148.724931] ? selinux_file_ioctl+0xb6/0x270 [ 1148.725726] block_ioctl+0xf9/0x140 [ 1148.726355] ? blkdev_read_iter+0x1c0/0x1c0 [ 1148.727114] __x64_sys_ioctl+0x19a/0x210 [ 1148.727828] do_syscall_64+0x33/0x40 [ 1148.728479] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.729376] RIP: 0033:0x7f9be863b8d7 [ 1148.730023] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.733188] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1148.734530] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1148.735766] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1148.737010] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1148.738254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1148.739489] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1148.758732] FAULT_INJECTION: forcing a failure. [ 1148.758732] name failslab, interval 1, probability 0, space 0, times 0 [ 1148.761714] CPU: 0 PID: 7509 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1148.763450] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1148.765709] Call Trace: [ 1148.766524] dump_stack+0x107/0x167 [ 1148.767522] should_fail.cold+0x5/0xa [ 1148.768604] ? create_object.isra.0+0x3a/0xa20 [ 1148.769949] should_failslab+0x5/0x20 [ 1148.771052] kmem_cache_alloc+0x5b/0x310 [ 1148.772252] create_object.isra.0+0x3a/0xa20 [ 1148.773474] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1148.774927] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1148.776330] ? alloc_uevent_skb+0x7b/0x210 [ 1148.777664] __alloc_skb+0xb1/0x5b0 [ 1148.778674] alloc_uevent_skb+0x7b/0x210 [ 1148.779783] kobject_uevent_env+0x99a/0xfd0 [ 1148.781007] ? blk_queue_flag_set+0x22/0x30 [ 1148.782149] ? __loop_update_dio+0x2d2/0x690 [ 1148.783354] loop_configure+0x1118/0x1410 [ 1148.784674] lo_ioctl+0xa57/0x16b0 [ 1148.785690] ? avc_has_extended_perms+0x7f1/0xf40 [ 1148.786912] ? loop_set_status_old+0x250/0x250 [ 1148.788068] ? avc_ss_reset+0x180/0x180 [ 1148.789081] ? find_held_lock+0x2c/0x110 [ 1148.790131] ? __lock_acquire+0xbb1/0x5b00 [ 1148.791269] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1148.792547] ? generic_block_fiemap+0x60/0x60 [ 1148.793851] ? lock_downgrade+0x6d0/0x6d0 [ 1148.795033] ? build_open_flags+0x6f0/0x6f0 [ 1148.796293] ? loop_set_status_old+0x250/0x250 [ 1148.797653] blkdev_ioctl+0x291/0x710 [ 1148.798761] ? blkdev_common_ioctl+0x1930/0x1930 [ 1148.800131] ? selinux_file_ioctl+0xb6/0x270 [ 1148.801434] block_ioctl+0xf9/0x140 [ 1148.802486] ? blkdev_read_iter+0x1c0/0x1c0 [ 1148.803730] __x64_sys_ioctl+0x19a/0x210 [ 1148.804895] do_syscall_64+0x33/0x40 [ 1148.805978] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.807351] RIP: 0033:0x7fd8050b38d7 [ 1148.808349] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.813458] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1148.815645] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1148.817677] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1148.819632] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1148.821605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1148.823608] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:36:36 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x0, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:36:36 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:36:36 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 45) 18:36:36 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="636f6e746578743d73797361646d00000000000000016e746578743d73797361646d5f752c00"]) symlink(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00') syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000fea000/0x13000)=nil, 0x13000, 0x69}, 0x100) 18:36:36 executing program 5: syz_mount_image$vfat(&(0x7f0000000900), &(0x7f0000000100)='./file0\x00', 0x11000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f8010020004000000000000000000080002958ef11f15359414b414c4c455200000022c0740b56b40ebbf5734296cb1e570700cd105eebf032e4cd16cd19ebfe54686973206973206e6f74206120d7236f7461626c65206469736b2e2020506c6561736520696e73657274206120626f6f7461626c6520666c6f70707920616e640d0a707265737320616e79206b657920746f2074727920616761696e202e2e2e2d67a2c8", 0xba, 0xfffffffffffffffe}, {&(0x7f0000010100)="00000000000000000000000000000000000055aa922f2b8cb002aef8fffff4f0ffffffff078000ffffff0000000000000001000000000000000000", 0x3b, 0x1e1}, {&(0x7f0000010200)="f8fffffff0ffffffff078000ffffff00"/32, 0x20, 0x4}, {&(0x7f0000010300)="53595a4b414c4c45522020080000e680325132510000e680325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020100096e670325132510000e670325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c4531202020202020200096e670325132510000e670325105000a00000041660069006c00650032000f00140000ffffffffffffffffffff0000ffffffff46494c4532202020202020200096e670325132510000e670325106002823000041660069006c0065002e000f00d263006f006c0064000000ffff0000ffffffff46494c457e312020434f4c200096e670325132510000e6703251090064000000", 0x120, 0x602}, {&(0x7f0000000940)="2e202028202741202020202020100096e670325132510000e67032510300000000002e2e20202020202020209c87fdd4d3adf7a832510000e670325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff36264c4530201e20202020200096e670325932510000e670325104001a04000043561782db6188cf75f8d9ec9ba49dbd292e435b4d8f73a7dd649f6cc7f64da55aceb657e49a591b329e17d2d033d7100395172594b109975590cf746c8b82b6cae6409b753353fd1d476d3f1151cf6a4da08d685cbcad9ebdef78b2ee43", 0xe0, 0x80002400}, {&(0x7f00000003c0)="02797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c68657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c655973797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c000000000000b19626048a5a1a4f8e52d1e5bb2fecc4d63f7822e47301fadf8077720f34291b39df5cd9b053ab1a86c693a647b4bfdb17ebf356bc9ef9de031f384b11ee289efb18ade46eb88da74e3978e1b1cd9fd82ca8c1f815b55953a4145ecacff5ccf7f6c45c4ef64796349d4b84d84576ae71e7999b5e834ada5a813ce1682b4a6bee530fbe131142cec6e4346cd72286a269124d9ba7fd205c396be8a3acc78e26ca5e1e64dbc83a2fe5db7254d71636fb64cc918e4c682871c643c8bb6db416a24c183b5d6c9f0d091fb6b221b17ec4870589335e5c8b553c31a05463514aa65e668d61f9072998a97784843e254d892c8b21e62434", 0x514, 0x800000040}, {&(0x7f0000010b00)='syzkallers\x00'/32, 0x20, 0x300}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x8400}], 0x5000, &(0x7f00000002c0)=ANY=[@ANYBLOB="006c46343bfa27799d5ac0cdcf56b2e48559527f5b1e67cb9b9c1657bcd80478cd5e16a6999183fd5b135d3697e59913c8414cdf78f9ef7bc2be2d2e8535f2cb0166d2c623bd7b78752361662718bad97b933d3c4733e4556f484e77981cc47f245af72fc72bd0ab1ac8a3e4aa75895e24ab9ac95f464990be09ad0b85d3c32f93df18dfc03e0433947bf7a87a0b349a8e6fcc77e807a2952b15db5b2227519aabee551f604156f547ef1f15507dfbc230a3df19700b22c908e7e74c6ac26c32c332e421cdb41b86b95d63ab959b1d8ca7c2b323832807ed68d34dfd0b2ef8c02410b2a2445e273aa786000000"]) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000a40)="27bdd7690c5fe7bf97b022112b182fc490ce4e326de95e77cda639f6390fc3429522258df55a5d349a957247478c03b48769fab5899275279b51b6bae997de3753faa57a666a1493fd215e8d2ecf07000000c1a409f40d0a774c5156a5d335b25228c84f9261c1300bcf3a4e552aa312adf3cf56c272b116666789d002d8182eca28c6233f79fc648163eee1d835", 0x8e, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r0, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0xc000, 0x1) 18:36:36 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:36:36 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 17) 18:36:36 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 45) [ 1164.478002] FAULT_INJECTION: forcing a failure. [ 1164.478002] name failslab, interval 1, probability 0, space 0, times 0 [ 1164.479489] CPU: 0 PID: 7526 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1164.480345] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1164.481361] Call Trace: [ 1164.481694] dump_stack+0x107/0x167 [ 1164.482161] should_fail.cold+0x5/0xa [ 1164.482635] ? __alloc_skb+0x6d/0x5b0 [ 1164.483111] should_failslab+0x5/0x20 [ 1164.483582] kmem_cache_alloc_node+0x55/0x330 [ 1164.484149] __alloc_skb+0x6d/0x5b0 [ 1164.484614] alloc_uevent_skb+0x7b/0x210 [ 1164.485122] kobject_uevent_env+0x99a/0xfd0 [ 1164.485665] ? blk_queue_flag_set+0x22/0x30 [ 1164.486207] ? __loop_update_dio+0x2d2/0x690 [ 1164.486757] loop_configure+0x1118/0x1410 [ 1164.487289] lo_ioctl+0xa57/0x16b0 [ 1164.487735] ? avc_has_extended_perms+0x7f1/0xf40 [ 1164.488339] ? loop_set_status_old+0x250/0x250 [ 1164.488908] ? avc_ss_reset+0x180/0x180 [ 1164.489434] ? __lock_acquire+0xbb1/0x5b00 [ 1164.490032] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1164.490677] ? generic_block_fiemap+0x60/0x60 [ 1164.491227] ? lock_downgrade+0x6d0/0x6d0 [ 1164.491733] ? build_open_flags+0x6f0/0x6f0 [ 1164.492276] ? loop_set_status_old+0x250/0x250 [ 1164.492835] blkdev_ioctl+0x291/0x710 [ 1164.493306] ? blkdev_common_ioctl+0x1930/0x1930 [ 1164.493903] ? selinux_file_ioctl+0xb6/0x270 [ 1164.494448] block_ioctl+0xf9/0x140 [ 1164.494894] ? blkdev_read_iter+0x1c0/0x1c0 [ 1164.495425] __x64_sys_ioctl+0x19a/0x210 [ 1164.495931] do_syscall_64+0x33/0x40 [ 1164.496390] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1164.497018] RIP: 0033:0x7fd8050b38d7 [ 1164.497476] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1164.499797] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1164.500769] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1164.501663] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1164.502575] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1164.503475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1164.504377] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1164.522752] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1164.533170] FAULT_INJECTION: forcing a failure. [ 1164.533170] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1164.536030] CPU: 1 PID: 7537 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1164.537587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1164.539483] Call Trace: [ 1164.540084] dump_stack+0x107/0x167 18:36:36 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 46) [ 1164.540933] should_fail.cold+0x5/0xa [ 1164.541990] __alloc_pages_nodemask+0x182/0x600 [ 1164.543062] ? find_held_lock+0x2c/0x110 [ 1164.543991] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1164.545411] alloc_pages_current+0x187/0x280 [ 1164.546428] get_zeroed_page+0x14/0xb0 18:36:36 executing program 1: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0x0, 0x0, 0x5, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) [ 1164.547297] get_image_page+0x20/0x320 [ 1164.548231] ? chain_alloc+0x52/0x100 [ 1164.549078] memory_bm_create+0x50f/0x930 [ 1164.550045] create_basic_memory_bitmaps+0xb9/0x170 [ 1164.551151] snapshot_open+0x239/0x2b0 [ 1164.551954] ? snapshot_release+0x1f0/0x1f0 [ 1164.552861] misc_open+0x375/0x4a0 [ 1164.553588] ? misc_devnode+0x130/0x130 [ 1164.554436] chrdev_open+0x268/0x6e0 [ 1164.555200] ? __unregister_chrdev+0x110/0x110 [ 1164.556159] ? fsnotify_perm.part.0+0x22d/0x620 [ 1164.557118] do_dentry_open+0x4b7/0x1090 [ 1164.557980] ? __unregister_chrdev+0x110/0x110 [ 1164.558907] ? may_open+0x1e4/0x400 [ 1164.559675] path_openat+0x19ba/0x2770 [ 1164.560491] ? path_lookupat+0x860/0x860 [ 1164.561346] ? find_held_lock+0x2c/0x110 [ 1164.562196] ? __lockdep_reset_lock+0x180/0x180 [ 1164.563192] do_filp_open+0x190/0x3e0 [ 1164.563967] ? may_open_dev+0xf0/0xf0 [ 1164.564780] ? do_raw_spin_lock+0x121/0x260 [ 1164.565650] ? rwlock_bug.part.0+0x90/0x90 [ 1164.566560] ? _raw_spin_unlock+0x1a/0x30 [ 1164.567426] ? alloc_fd+0x2e7/0x670 [ 1164.568203] do_sys_openat2+0x171/0x4d0 [ 1164.569043] ? build_open_flags+0x6f0/0x6f0 [ 1164.569953] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1164.570969] ? wait_for_completion_io+0x270/0x270 [ 1164.571989] __x64_sys_openat+0x13f/0x1f0 [ 1164.572845] ? __ia32_sys_open+0x1c0/0x1c0 [ 1164.573700] ? ksys_write+0x1a9/0x260 [ 1164.574511] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1164.575600] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1164.576673] do_syscall_64+0x33/0x40 [ 1164.577430] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1164.578502] RIP: 0033:0x7f1ecf0f5b19 [ 1164.579270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1164.583079] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1164.584658] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1164.586157] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1164.587634] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1164.589121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1164.590619] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1164.596826] loop5: detected capacity change from 0 to 135266304 [ 1164.739995] loop0: detected capacity change from 0 to 512 [ 1164.741528] FAULT_INJECTION: forcing a failure. [ 1164.741528] name failslab, interval 1, probability 0, space 0, times 0 [ 1164.743176] CPU: 0 PID: 7535 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1164.744137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1164.745369] Call Trace: [ 1164.745771] dump_stack+0x107/0x167 [ 1164.746339] should_fail.cold+0x5/0xa [ 1164.746881] ? skb_clone+0x14f/0x3d0 [ 1164.747421] should_failslab+0x5/0x20 [ 1164.747956] kmem_cache_alloc+0x5b/0x310 [ 1164.748522] skb_clone+0x14f/0x3d0 [ 1164.749014] netlink_broadcast_filtered+0xa08/0xdc0 [ 1164.749742] netlink_broadcast+0x35/0x50 [ 1164.750271] kobject_uevent_env+0x93d/0xfd0 [ 1164.750820] ? blk_queue_flag_set+0x22/0x30 [ 1164.751348] ? __loop_update_dio+0x2d2/0x690 [ 1164.751963] loop_configure+0x1118/0x1410 [ 1164.752612] lo_ioctl+0xa57/0x16b0 [ 1164.753115] ? avc_has_extended_perms+0x7f1/0xf40 [ 1164.753728] ? loop_set_status_old+0x250/0x250 [ 1164.754310] ? avc_ss_reset+0x180/0x180 [ 1164.754808] ? find_held_lock+0x2c/0x110 [ 1164.755329] ? __lock_acquire+0xbb1/0x5b00 [ 1164.755915] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1164.756695] ? generic_block_fiemap+0x60/0x60 [ 1164.757381] ? lock_downgrade+0x6d0/0x6d0 [ 1164.758033] ? build_open_flags+0x6f0/0x6f0 [ 1164.758703] ? loop_set_status_old+0x250/0x250 [ 1164.759400] blkdev_ioctl+0x291/0x710 [ 1164.759996] ? blkdev_common_ioctl+0x1930/0x1930 [ 1164.760737] ? selinux_file_ioctl+0xb6/0x270 [ 1164.761424] block_ioctl+0xf9/0x140 [ 1164.762002] ? blkdev_read_iter+0x1c0/0x1c0 [ 1164.762667] __x64_sys_ioctl+0x19a/0x210 [ 1164.763300] do_syscall_64+0x33/0x40 [ 1164.763884] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1164.764666] RIP: 0033:0x7f9be863b8d7 [ 1164.765242] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1164.768064] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1164.769238] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1164.770339] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1164.771437] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1164.772519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1164.773608] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1164.802355] loop5: detected capacity change from 0 to 135266304 18:36:37 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1164.855305] FAULT_INJECTION: forcing a failure. [ 1164.855305] name failslab, interval 1, probability 0, space 0, times 0 [ 1164.856764] CPU: 0 PID: 7551 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1164.857595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1164.858616] Call Trace: [ 1164.858943] dump_stack+0x107/0x167 [ 1164.859388] should_fail.cold+0x5/0xa [ 1164.859868] ? skb_clone+0x14f/0x3d0 [ 1164.860361] should_failslab+0x5/0x20 [ 1164.860852] kmem_cache_alloc+0x5b/0x310 [ 1164.861393] skb_clone+0x14f/0x3d0 [ 1164.861881] netlink_broadcast_filtered+0xa08/0xdc0 [ 1164.862558] netlink_broadcast+0x35/0x50 [ 1164.863102] kobject_uevent_env+0x93d/0xfd0 [ 1164.863672] ? blk_queue_flag_set+0x22/0x30 [ 1164.864568] ? __loop_update_dio+0x2d2/0x690 [ 1164.865090] loop_configure+0x1118/0x1410 [ 1164.865587] lo_ioctl+0xa57/0x16b0 [ 1164.866014] ? avc_has_extended_perms+0x7f1/0xf40 [ 1164.866579] ? loop_set_status_old+0x250/0x250 [ 1164.867115] ? avc_ss_reset+0x180/0x180 [ 1164.867581] ? find_held_lock+0x2c/0x110 [ 1164.868072] ? __lock_acquire+0xbb1/0x5b00 [ 1164.868627] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1164.869233] ? generic_block_fiemap+0x60/0x60 [ 1164.869749] ? lock_downgrade+0x6d0/0x6d0 [ 1164.870234] ? build_open_flags+0x6f0/0x6f0 [ 1164.870741] ? loop_set_status_old+0x250/0x250 [ 1164.871266] blkdev_ioctl+0x291/0x710 [ 1164.871709] ? blkdev_common_ioctl+0x1930/0x1930 [ 1164.872267] ? selinux_file_ioctl+0xb6/0x270 [ 1164.872793] block_ioctl+0xf9/0x140 [ 1164.873212] ? blkdev_read_iter+0x1c0/0x1c0 [ 1164.873713] __x64_sys_ioctl+0x19a/0x210 [ 1164.874192] do_syscall_64+0x33/0x40 [ 1164.874614] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1164.875190] RIP: 0033:0x7fd8050b38d7 [ 1164.875613] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1164.877715] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1164.878584] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1164.879400] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1164.880204] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1164.881043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1164.881926] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 18:36:37 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 18) 18:36:37 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:36:37 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 47) 18:36:37 executing program 5: r0 = epoll_create1(0x0) r1 = epoll_create(0x3ff) syz_open_procfs$namespace(0x0, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) dup2(0xffffffffffffffff, 0xffffffffffffffff) connect$inet6(0xffffffffffffffff, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0xa4200, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)={0x20000001}) [ 1164.971363] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1165.008830] audit: type=1400 audit(1739817397.348:22): avc: denied { block_suspend } for pid=7557 comm="syz-executor.5" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 18:36:37 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 46) [ 1165.048642] FAULT_INJECTION: forcing a failure. [ 1165.048642] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1165.051691] CPU: 1 PID: 7561 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1165.053332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1165.055294] Call Trace: [ 1165.055935] dump_stack+0x107/0x167 [ 1165.056816] should_fail.cold+0x5/0xa [ 1165.057746] __alloc_pages_nodemask+0x182/0x600 [ 1165.058881] ? find_held_lock+0x2c/0x110 [ 1165.059863] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1165.061344] alloc_pages_current+0x187/0x280 [ 1165.062425] get_zeroed_page+0x14/0xb0 [ 1165.063355] get_image_page+0x20/0x320 [ 1165.064286] ? chain_alloc+0x52/0x100 [ 1165.065209] memory_bm_create+0x50f/0x930 [ 1165.066241] create_basic_memory_bitmaps+0xb9/0x170 [ 1165.067454] snapshot_open+0x239/0x2b0 [ 1165.068387] ? snapshot_release+0x1f0/0x1f0 [ 1165.069417] misc_open+0x375/0x4a0 [ 1165.070281] ? misc_devnode+0x130/0x130 [ 1165.071218] chrdev_open+0x268/0x6e0 [ 1165.072115] ? __unregister_chrdev+0x110/0x110 [ 1165.073196] ? fsnotify_perm.part.0+0x22d/0x620 [ 1165.074342] do_dentry_open+0x4b7/0x1090 [ 1165.075309] ? __unregister_chrdev+0x110/0x110 [ 1165.076410] ? may_open+0x1e4/0x400 [ 1165.077278] path_openat+0x19ba/0x2770 [ 1165.078258] ? path_lookupat+0x860/0x860 [ 1165.079245] ? find_held_lock+0x2c/0x110 [ 1165.080237] ? __lockdep_reset_lock+0x180/0x180 [ 1165.081363] do_filp_open+0x190/0x3e0 [ 1165.082299] ? may_open_dev+0xf0/0xf0 [ 1165.083232] ? do_raw_spin_lock+0x121/0x260 [ 1165.084280] ? rwlock_bug.part.0+0x90/0x90 [ 1165.085314] ? _raw_spin_unlock+0x1a/0x30 [ 1165.086322] ? alloc_fd+0x2e7/0x670 [ 1165.087208] do_sys_openat2+0x171/0x4d0 [ 1165.088168] ? build_open_flags+0x6f0/0x6f0 [ 1165.089187] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1165.090384] ? wait_for_completion_io+0x270/0x270 [ 1165.091571] __x64_sys_openat+0x13f/0x1f0 [ 1165.092575] ? __ia32_sys_open+0x1c0/0x1c0 [ 1165.093597] ? ksys_write+0x1a9/0x260 [ 1165.094558] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1165.095825] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1165.097095] do_syscall_64+0x33/0x40 [ 1165.097997] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1165.099221] RIP: 0033:0x7f1ecf0f5b19 [ 1165.100108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1165.104721] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1165.106595] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1165.108355] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1165.110125] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1165.111862] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1165.113603] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1165.159157] FAULT_INJECTION: forcing a failure. [ 1165.159157] name failslab, interval 1, probability 0, space 0, times 0 [ 1165.162111] CPU: 1 PID: 7565 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1165.163787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1165.165857] Call Trace: [ 1165.166516] dump_stack+0x107/0x167 [ 1165.167427] should_fail.cold+0x5/0xa [ 1165.168383] ? skb_clone+0x14f/0x3d0 [ 1165.169323] should_failslab+0x5/0x20 [ 1165.170284] kmem_cache_alloc+0x5b/0x310 [ 1165.171303] skb_clone+0x14f/0x3d0 [ 1165.172165] netlink_broadcast_filtered+0xa08/0xdc0 [ 1165.173449] netlink_broadcast+0x35/0x50 [ 1165.174553] kobject_uevent_env+0x93d/0xfd0 [ 1165.175710] ? blk_queue_flag_set+0x22/0x30 [ 1165.176843] ? __loop_update_dio+0x2d2/0x690 [ 1165.178039] loop_configure+0x1118/0x1410 [ 1165.179166] lo_ioctl+0xa57/0x16b0 [ 1165.180121] ? avc_has_extended_perms+0x7f1/0xf40 [ 1165.181412] ? loop_set_status_old+0x250/0x250 [ 1165.182653] ? avc_ss_reset+0x180/0x180 [ 1165.183642] ? find_held_lock+0x2c/0x110 [ 1165.184664] ? __lock_acquire+0xbb1/0x5b00 [ 1165.185793] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1165.186888] ? generic_block_fiemap+0x60/0x60 [ 1165.187804] ? lock_downgrade+0x6d0/0x6d0 [ 1165.188651] ? build_open_flags+0x6f0/0x6f0 [ 1165.189543] ? loop_set_status_old+0x250/0x250 [ 1165.190488] blkdev_ioctl+0x291/0x710 [ 1165.191271] ? blkdev_common_ioctl+0x1930/0x1930 [ 1165.192245] ? selinux_file_ioctl+0xb6/0x270 [ 1165.193152] block_ioctl+0xf9/0x140 [ 1165.193905] ? blkdev_read_iter+0x1c0/0x1c0 [ 1165.194791] __x64_sys_ioctl+0x19a/0x210 [ 1165.195628] do_syscall_64+0x33/0x40 [ 1165.196390] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1165.197442] RIP: 0033:0x7fd8050b38d7 [ 1165.198229] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1165.202035] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1165.204122] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1165.205803] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1165.207479] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1165.209121] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1165.210641] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1165.219608] loop0: detected capacity change from 0 to 512 [ 1165.220560] FAULT_INJECTION: forcing a failure. [ 1165.220560] name failslab, interval 1, probability 0, space 0, times 0 [ 1165.221878] CPU: 0 PID: 7570 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1165.222683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1165.223631] Call Trace: [ 1165.223942] dump_stack+0x107/0x167 [ 1165.224375] should_fail.cold+0x5/0xa [ 1165.224825] ? create_object.isra.0+0x3a/0xa20 [ 1165.225360] should_failslab+0x5/0x20 [ 1165.225810] kmem_cache_alloc+0x5b/0x310 [ 1165.226306] create_object.isra.0+0x3a/0xa20 [ 1165.226819] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1165.227420] kmem_cache_alloc+0x159/0x310 [ 1165.227917] skb_clone+0x14f/0x3d0 [ 1165.228339] netlink_broadcast_filtered+0xa08/0xdc0 [ 1165.228950] netlink_broadcast+0x35/0x50 [ 1165.229431] kobject_uevent_env+0x93d/0xfd0 [ 1165.230008] ? blk_queue_flag_set+0x22/0x30 [ 1165.230512] ? __loop_update_dio+0x2d2/0x690 [ 1165.231039] loop_configure+0x1118/0x1410 [ 1165.231541] lo_ioctl+0xa57/0x16b0 [ 1165.231967] ? avc_has_extended_perms+0x7f1/0xf40 [ 1165.232551] ? loop_set_status_old+0x250/0x250 [ 1165.233097] ? avc_ss_reset+0x180/0x180 [ 1165.233575] ? find_held_lock+0x2c/0x110 [ 1165.234086] ? __lock_acquire+0xbb1/0x5b00 [ 1165.234665] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1165.235284] ? generic_block_fiemap+0x60/0x60 [ 1165.235823] ? lock_downgrade+0x6d0/0x6d0 [ 1165.236315] ? build_open_flags+0x6f0/0x6f0 [ 1165.236840] ? loop_set_status_old+0x250/0x250 [ 1165.237385] blkdev_ioctl+0x291/0x710 [ 1165.237859] ? blkdev_common_ioctl+0x1930/0x1930 [ 1165.238437] ? selinux_file_ioctl+0xb6/0x270 [ 1165.238963] block_ioctl+0xf9/0x140 [ 1165.239398] ? blkdev_read_iter+0x1c0/0x1c0 [ 1165.239921] __x64_sys_ioctl+0x19a/0x210 [ 1165.240413] do_syscall_64+0x33/0x40 [ 1165.240873] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1165.241488] RIP: 0033:0x7f9be863b8d7 [ 1165.241945] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1165.244117] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1165.245034] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1165.245883] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1165.246728] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1165.247570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1165.248420] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 18:36:50 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 47) 18:36:50 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 48) 18:36:50 executing program 1: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r4) sendto$unix(r3, &(0x7f0000000480)="e6eb9ef86af8082bdce50ea4d7ac151d64d81379f68686b5622adeaf5ec696b1634dd7425c3c13949bef66a038fa7ab4b5e8bef05846e1cf1358d8171fb1a4529a428cddcdcad6acf959313895a8c032f6672ca0621cd7ebfd2a20ca2326d16a6bf7e1b2e2ea3c152d215019c744428db4e64ed047e747cbc8ba68f67b40f879f93dbfa00ab830d8204def6454c27afa93ce7d66d689cd20ae729b28e8041b49663ced28fe33", 0xa6, 0x20004000, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e) syz_io_uring_setup(0x54e5, &(0x7f0000000680), &(0x7f0000fee000/0x1000)=nil, &(0x7f0000fec000/0x14000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48ed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffff7e9}, 0xacf4ac9b71142221, 0x7681b961}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 18:36:50 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(0x0, &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:36:50 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r0, 0x1000003) r1 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0x69, 0xfd, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x73, 0x0, @perf_bp={0x0}, 0x8000, 0x2, 0x0, 0x6, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000180)={{{@in6=@empty}}, {{@in=@broadcast}, 0x0, @in=@local}}, &(0x7f0000000100)=0xffffffd8) clone3(&(0x7f0000000740)={0x40092340, &(0x7f0000000480)=0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000500), {0x34}, &(0x7f0000000540)=""/201, 0xc9, 0x0, &(0x7f0000000700)}, 0x58) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f00000007c0)={0xfffffffd, 0x81, 0x667, 0x3f, 0x8}) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{}, {0x8000000, 0x3}]}, 0x14, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000180)='./file2\x00', 0x8, 0x2) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0xb, 0x80000001) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0xfff, @mcast1, 0x2}, 0x1c) socket$nl_xfrm(0x10, 0x3, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd, 0xffffffffffff56c0, 0x0, 0x1f}, 0x2) dup(0xffffffffffffffff) socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) syz_io_uring_submit(0x0, 0x0, &(0x7f00000009c0)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffffff, &(0x7f0000000940)={0x4024c0, 0x0, 0x1b}, &(0x7f0000000980)='./file0\x00', 0x18, 0x0, 0x23456}, 0x20000000) 18:36:50 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 19) 18:36:50 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x0, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:36:50 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1178.067079] loop0: detected capacity change from 0 to 512 [ 1178.068848] FAULT_INJECTION: forcing a failure. [ 1178.068848] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.072049] CPU: 1 PID: 7580 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1178.073903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.076413] Call Trace: [ 1178.077138] dump_stack+0x107/0x167 [ 1178.078135] should_fail.cold+0x5/0xa [ 1178.079206] should_failslab+0x5/0x20 [ 1178.080237] __kmalloc_node_track_caller+0x74/0x3b0 [ 1178.081584] ? alloc_uevent_skb+0x7b/0x210 [ 1178.082756] __alloc_skb+0xb1/0x5b0 [ 1178.083760] alloc_uevent_skb+0x7b/0x210 [ 1178.084862] kobject_uevent_env+0x99a/0xfd0 [ 1178.086036] ? blk_queue_flag_set+0x22/0x30 [ 1178.087220] ? __loop_update_dio+0x2d2/0x690 [ 1178.088419] loop_configure+0x1118/0x1410 [ 1178.089612] lo_ioctl+0xa57/0x16b0 [ 1178.090591] ? avc_has_extended_perms+0x7f1/0xf40 [ 1178.091899] ? loop_set_status_old+0x250/0x250 [ 1178.093144] ? avc_ss_reset+0x180/0x180 [ 1178.094225] ? find_held_lock+0x2c/0x110 [ 1178.095362] ? __lock_acquire+0xbb1/0x5b00 [ 1178.096669] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1178.098089] ? generic_block_fiemap+0x60/0x60 [ 1178.099292] ? lock_downgrade+0x6d0/0x6d0 [ 1178.100396] ? build_open_flags+0x6f0/0x6f0 [ 1178.101556] ? loop_set_status_old+0x250/0x250 [ 1178.102778] blkdev_ioctl+0x291/0x710 [ 1178.103801] ? blkdev_common_ioctl+0x1930/0x1930 [ 1178.105087] ? selinux_file_ioctl+0xb6/0x270 [ 1178.106326] block_ioctl+0xf9/0x140 [ 1178.107333] ? blkdev_read_iter+0x1c0/0x1c0 [ 1178.108542] __x64_sys_ioctl+0x19a/0x210 [ 1178.109662] do_syscall_64+0x33/0x40 [ 1178.110725] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.112176] RIP: 0033:0x7f9be863b8d7 [ 1178.112615] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1178.113227] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.113244] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1178.113274] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1178.113289] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1178.113314] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1178.121074] FAULT_INJECTION: forcing a failure. [ 1178.121074] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1178.121678] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1178.130241] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1178.131875] CPU: 0 PID: 7591 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1178.132695] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.133690] Call Trace: [ 1178.134014] dump_stack+0x107/0x167 [ 1178.134473] should_fail.cold+0x5/0xa [ 1178.134946] __alloc_pages_nodemask+0x182/0x600 [ 1178.135505] ? find_held_lock+0x2c/0x110 [ 1178.135998] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1178.136751] alloc_pages_current+0x187/0x280 [ 1178.137285] get_zeroed_page+0x14/0xb0 [ 1178.137754] get_image_page+0x20/0x320 [ 1178.138220] ? chain_alloc+0x52/0x100 [ 1178.138689] memory_bm_create+0x50f/0x930 [ 1178.139207] create_basic_memory_bitmaps+0xb9/0x170 [ 1178.139802] snapshot_open+0x239/0x2b0 [ 1178.140272] ? snapshot_release+0x1f0/0x1f0 [ 1178.140790] misc_open+0x375/0x4a0 [ 1178.141225] ? misc_devnode+0x130/0x130 [ 1178.141703] chrdev_open+0x268/0x6e0 [ 1178.142152] ? __unregister_chrdev+0x110/0x110 [ 1178.142736] ? fsnotify_perm.part.0+0x22d/0x620 [ 1178.143305] do_dentry_open+0x4b7/0x1090 [ 1178.143792] ? __unregister_chrdev+0x110/0x110 [ 1178.144334] ? may_open+0x1e4/0x400 [ 1178.144776] path_openat+0x19ba/0x2770 [ 1178.145250] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1178.145855] ? path_lookupat+0x860/0x860 [ 1178.146350] ? perf_trace_lock+0x2bd/0x490 [ 1178.146857] ? find_held_lock+0x2c/0x110 [ 1178.147345] ? __lockdep_reset_lock+0x180/0x180 [ 1178.147907] do_filp_open+0x190/0x3e0 [ 1178.148360] ? may_open_dev+0xf0/0xf0 [ 1178.148827] ? do_raw_spin_lock+0x121/0x260 [ 1178.149340] ? rwlock_bug.part.0+0x90/0x90 [ 1178.149856] ? _raw_spin_unlock+0x1a/0x30 [ 1178.150370] ? alloc_fd+0x2e7/0x670 [ 1178.150817] do_sys_openat2+0x171/0x4d0 [ 1178.151300] ? build_open_flags+0x6f0/0x6f0 [ 1178.151811] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1178.152392] ? wait_for_completion_io+0x270/0x270 [ 1178.152976] __x64_sys_openat+0x13f/0x1f0 [ 1178.153471] ? __ia32_sys_open+0x1c0/0x1c0 [ 1178.153974] ? ksys_write+0x1a9/0x260 [ 1178.154450] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.155076] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.155692] do_syscall_64+0x33/0x40 [ 1178.156136] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.156750] RIP: 0033:0x7f1ecf0f5b19 [ 1178.157198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.159397] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1178.160305] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1178.161151] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1178.161995] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1178.162864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1178.163711] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1178.175749] FAULT_INJECTION: forcing a failure. [ 1178.175749] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.177176] CPU: 0 PID: 7582 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1178.177995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.178993] Call Trace: [ 1178.179317] dump_stack+0x107/0x167 [ 1178.179759] should_fail.cold+0x5/0xa [ 1178.180223] ? create_object.isra.0+0x3a/0xa20 [ 1178.180776] should_failslab+0x5/0x20 [ 1178.181237] kmem_cache_alloc+0x5b/0x310 [ 1178.181729] ? find_held_lock+0x2c/0x110 [ 1178.182226] create_object.isra.0+0x3a/0xa20 [ 1178.182792] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1178.183411] kmem_cache_alloc+0x159/0x310 [ 1178.183923] skb_clone+0x14f/0x3d0 [ 1178.184358] netlink_broadcast_filtered+0xa08/0xdc0 [ 1178.184983] netlink_broadcast+0x35/0x50 [ 1178.185480] kobject_uevent_env+0x93d/0xfd0 [ 1178.186011] ? blk_queue_flag_set+0x22/0x30 [ 1178.186538] ? __loop_update_dio+0x2d2/0x690 [ 1178.187074] loop_configure+0x1118/0x1410 [ 1178.187589] lo_ioctl+0xa57/0x16b0 [ 1178.188021] ? avc_has_extended_perms+0x7f1/0xf40 [ 1178.188605] ? loop_set_status_old+0x250/0x250 [ 1178.189160] ? avc_ss_reset+0x180/0x180 [ 1178.189641] ? find_held_lock+0x2c/0x110 [ 1178.190148] ? __lock_acquire+0xbb1/0x5b00 [ 1178.190733] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1178.191368] ? generic_block_fiemap+0x60/0x60 [ 1178.191908] ? lock_downgrade+0x6d0/0x6d0 [ 1178.192404] ? build_open_flags+0x6f0/0x6f0 [ 1178.192932] ? loop_set_status_old+0x250/0x250 [ 1178.193476] blkdev_ioctl+0x291/0x710 [ 1178.193935] ? blkdev_common_ioctl+0x1930/0x1930 [ 1178.194521] ? selinux_file_ioctl+0xb6/0x270 [ 1178.195058] block_ioctl+0xf9/0x140 [ 1178.195492] ? blkdev_read_iter+0x1c0/0x1c0 [ 1178.196017] __x64_sys_ioctl+0x19a/0x210 [ 1178.196511] do_syscall_64+0x33/0x40 [ 1178.196963] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.197580] RIP: 0033:0x7fd8050b38d7 [ 1178.198027] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.200238] RSP: 002b:00007fd802628f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1178.201155] RAX: ffffffffffffffda RBX: 00007fd8050fd970 RCX: 00007fd8050b38d7 [ 1178.202008] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1178.202869] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1178.203722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1178.204574] R13: 0000000000000005 R14: 0000000020001788 R15: 0000000000000003 [ 1178.284775] audit: type=1400 audit(1739817410.624:23): avc: denied { read } for pid=7577 comm="iou-wrk-7601" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 18:36:50 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 49) 18:36:50 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:36:50 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 20) 18:36:50 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 48) [ 1178.360044] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:36:50 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:36:50 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0xffff) setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000200), 0x4) sendmmsg$inet6(r0, &(0x7f0000004100)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000640)="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", 0x821}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000001000000180000c7", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) setsockopt$IP_VS_SO_SET_EDITDEST(r1, 0x0, 0x489, &(0x7f0000000100)={{0x29, @loopback, 0x4e20, 0x3, 'ovf\x00', 0x0, 0x20, 0x45}, {@initdev={0xac, 0x1e, 0x8, 0x0}, 0x4e22, 0x0, 0x9, 0x1}}, 0x44) [ 1178.429372] FAULT_INJECTION: forcing a failure. [ 1178.429372] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1178.432461] CPU: 1 PID: 7608 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1178.434113] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.436029] Call Trace: [ 1178.436653] dump_stack+0x107/0x167 [ 1178.437504] should_fail.cold+0x5/0xa [ 1178.438417] __alloc_pages_nodemask+0x182/0x600 [ 1178.439538] ? find_held_lock+0x2c/0x110 [ 1178.440544] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1178.441951] alloc_pages_current+0x187/0x280 [ 1178.442979] get_zeroed_page+0x14/0xb0 [ 1178.443859] get_image_page+0x20/0x320 [ 1178.444735] ? chain_alloc+0x52/0x100 [ 1178.445606] memory_bm_create+0x50f/0x930 [ 1178.446589] create_basic_memory_bitmaps+0xb9/0x170 [ 1178.447722] snapshot_open+0x239/0x2b0 [ 1178.448599] ? snapshot_release+0x1f0/0x1f0 [ 1178.449576] misc_open+0x375/0x4a0 [ 1178.450413] ? misc_devnode+0x130/0x130 [ 1178.451368] chrdev_open+0x268/0x6e0 [ 1178.452255] ? __unregister_chrdev+0x110/0x110 [ 1178.453362] ? fsnotify_perm.part.0+0x22d/0x620 [ 1178.454456] do_dentry_open+0x4b7/0x1090 [ 1178.455380] ? __unregister_chrdev+0x110/0x110 [ 1178.456448] ? may_open+0x1e4/0x400 [ 1178.457284] path_openat+0x19ba/0x2770 [ 1178.458190] ? path_lookupat+0x860/0x860 [ 1178.459137] ? find_held_lock+0x2c/0x110 [ 1178.460063] ? __lockdep_reset_lock+0x180/0x180 [ 1178.461154] do_filp_open+0x190/0x3e0 [ 1178.462071] ? may_open_dev+0xf0/0xf0 [ 1178.463039] ? do_raw_spin_lock+0x121/0x260 [ 1178.464103] ? rwlock_bug.part.0+0x90/0x90 [ 1178.465294] ? _raw_spin_unlock+0x1a/0x30 [ 1178.466283] ? alloc_fd+0x2e7/0x670 [ 1178.467197] do_sys_openat2+0x171/0x4d0 [ 1178.468132] ? build_open_flags+0x6f0/0x6f0 [ 1178.469174] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1178.470547] ? wait_for_completion_io+0x270/0x270 [ 1178.471715] __x64_sys_openat+0x13f/0x1f0 [ 1178.472694] ? __ia32_sys_open+0x1c0/0x1c0 [ 1178.473670] ? ksys_write+0x1a9/0x260 [ 1178.474584] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.475804] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.477065] do_syscall_64+0x33/0x40 [ 1178.477964] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.479193] RIP: 0033:0x7f1ecf0f5b19 [ 1178.480093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.484519] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1178.486351] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1178.488110] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1178.489887] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1178.491625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1178.493334] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1178.499552] FAULT_INJECTION: forcing a failure. [ 1178.499552] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.502273] CPU: 1 PID: 7610 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1178.504170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.506098] Call Trace: [ 1178.506747] dump_stack+0x107/0x167 [ 1178.507619] should_fail.cold+0x5/0xa [ 1178.508531] ? create_object.isra.0+0x3a/0xa20 [ 1178.509627] should_failslab+0x5/0x20 [ 1178.510565] kmem_cache_alloc+0x5b/0x310 [ 1178.511547] create_object.isra.0+0x3a/0xa20 [ 1178.512577] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1178.513792] kmem_cache_alloc+0x159/0x310 [ 1178.514810] getname_flags.part.0+0x50/0x4f0 [ 1178.515859] getname_flags+0x9a/0xe0 [ 1178.516743] do_mkdirat+0x8f/0x2b0 [ 1178.517592] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1178.518890] ? user_path_create+0xf0/0xf0 [ 1178.519869] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.520978] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.522067] do_syscall_64+0x33/0x40 [ 1178.522869] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.524086] RIP: 0033:0x7fd8050b2c27 [ 1178.524965] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.529446] RSP: 002b:00007fd802628fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1178.531333] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b2c27 [ 1178.533074] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1178.534776] RBP: 00007fd802629040 R08: 0000000000000000 R09: ffffffffffffffff [ 1178.536536] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1178.538304] R13: 00000000200000c0 R14: 00007fd802629000 R15: 0000000020001840 [ 1178.544243] loop0: detected capacity change from 0 to 512 [ 1178.545232] FAULT_INJECTION: forcing a failure. [ 1178.545232] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.546565] CPU: 0 PID: 7615 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1178.547379] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.548340] Call Trace: [ 1178.548657] dump_stack+0x107/0x167 [ 1178.549088] should_fail.cold+0x5/0xa [ 1178.549536] ? create_object.isra.0+0x3a/0xa20 [ 1178.550070] should_failslab+0x5/0x20 [ 1178.550524] kmem_cache_alloc+0x5b/0x310 [ 1178.551009] create_object.isra.0+0x3a/0xa20 [ 1178.551519] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1178.552112] kmem_cache_alloc+0x159/0x310 [ 1178.552587] ? __switch_to+0x572/0xf70 [ 1178.553047] getname_flags.part.0+0x50/0x4f0 [ 1178.553557] getname_flags+0x9a/0xe0 [ 1178.553988] do_mkdirat+0x8f/0x2b0 [ 1178.554412] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1178.555034] ? user_path_create+0xf0/0xf0 [ 1178.555521] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.556125] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.556730] do_syscall_64+0x33/0x40 [ 1178.557160] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.557753] RIP: 0033:0x7f9be863ac27 [ 1178.558179] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.560281] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1178.561159] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1178.561979] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1178.562817] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1178.563628] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1178.564444] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 18:37:07 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0xffff) setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000200), 0x4) sendmmsg$inet6(r0, &(0x7f0000004100)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000640)="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", 0x821}], 0x1}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000001000000180000c7", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) setsockopt$IP_VS_SO_SET_EDITDEST(r1, 0x0, 0x489, &(0x7f0000000100)={{0x29, @loopback, 0x4e20, 0x3, 'ovf\x00', 0x0, 0x20, 0x45}, {@initdev={0xac, 0x1e, 0x8, 0x0}, 0x4e22, 0x0, 0x9, 0x1}}, 0x44) 18:37:07 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:37:07 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:37:07 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x8, 0x0, 0x0, 0x0, 0x0) setxattr$trusted_overlay_upper(&(0x7f0000001bc0)='./file0\x00', &(0x7f0000001c00), 0x0, 0x0, 0x0) getxattr(&(0x7f0000002000)='./file0\x00', &(0x7f0000002040)=@known='trusted.overlay.upper\x00', &(0x7f0000002080)=""/109, 0x6d) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r0, 0x0) mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="78617474722c78617474722c6e6f7072656669782c6370757365745f76325f6d6f64652c72656c656173655f616765ff743d2e2f66696c65302c78617474722c6e616d653d21213a2b5b2c657569643c", @ANYRESDEC=r0, @ANYBLOB=',\x00']) 18:37:07 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 21) 18:37:07 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 50) 18:37:07 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x0, 0x200, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:37:08 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 49) [ 1195.687690] loop0: detected capacity change from 0 to 512 [ 1195.689063] FAULT_INJECTION: forcing a failure. [ 1195.689063] name failslab, interval 1, probability 0, space 0, times 0 [ 1195.691036] CPU: 1 PID: 7642 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1195.692222] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1195.693652] Call Trace: [ 1195.694107] dump_stack+0x107/0x167 [ 1195.694744] should_fail.cold+0x5/0xa [ 1195.695408] ? skb_clone+0x14f/0x3d0 [ 1195.696071] should_failslab+0x5/0x20 [ 1195.696734] kmem_cache_alloc+0x5b/0x310 [ 1195.697439] skb_clone+0x14f/0x3d0 [ 1195.698066] netlink_broadcast_filtered+0xa08/0xdc0 [ 1195.698965] netlink_broadcast+0x35/0x50 [ 1195.699561] FAULT_INJECTION: forcing a failure. [ 1195.699561] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1195.699693] kobject_uevent_env+0x93d/0xfd0 [ 1195.703417] ? blk_queue_flag_set+0x22/0x30 [ 1195.704172] ? __loop_update_dio+0x2d2/0x690 [ 1195.704936] loop_configure+0x1118/0x1410 [ 1195.705658] lo_ioctl+0xa57/0x16b0 [ 1195.706265] ? avc_has_extended_perms+0x7f1/0xf40 [ 1195.707116] ? loop_set_status_old+0x250/0x250 [ 1195.707913] ? avc_ss_reset+0x180/0x180 [ 1195.708595] ? find_held_lock+0x2c/0x110 [ 1195.709303] ? __lock_acquire+0xbb1/0x5b00 [ 1195.710081] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1195.711008] ? generic_block_fiemap+0x60/0x60 [ 1195.711791] ? lock_downgrade+0x6d0/0x6d0 [ 1195.712495] ? build_open_flags+0x6f0/0x6f0 [ 1195.713251] ? loop_set_status_old+0x250/0x250 [ 1195.714040] blkdev_ioctl+0x291/0x710 [ 1195.714702] ? blkdev_common_ioctl+0x1930/0x1930 [ 1195.715523] ? selinux_file_ioctl+0xb6/0x270 [ 1195.716299] block_ioctl+0xf9/0x140 [ 1195.716930] ? blkdev_read_iter+0x1c0/0x1c0 [ 1195.717681] __x64_sys_ioctl+0x19a/0x210 [ 1195.718379] do_syscall_64+0x33/0x40 [ 1195.719043] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1195.719937] RIP: 0033:0x7f9be863b8d7 [ 1195.720569] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1195.723795] RSP: 002b:00007f9be5bb0f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1195.725115] RAX: ffffffffffffffda RBX: 00007f9be8685970 RCX: 00007f9be863b8d7 [ 1195.726334] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006 [ 1195.727569] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff [ 1195.728811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005 [ 1195.730045] R13: 0000000000000005 R14: 00000000200017a0 R15: 0000000000000004 [ 1195.732505] CPU: 0 PID: 7641 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1195.734170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1195.736179] Call Trace: [ 1195.736816] dump_stack+0x107/0x167 [ 1195.737704] should_fail.cold+0x5/0xa [ 1195.738636] __alloc_pages_nodemask+0x182/0x600 [ 1195.739767] ? find_held_lock+0x2c/0x110 [ 1195.740749] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1195.742243] alloc_pages_current+0x187/0x280 [ 1195.743327] get_zeroed_page+0x14/0xb0 [ 1195.744264] get_image_page+0x20/0x320 [ 1195.745197] ? chain_alloc+0x52/0x100 [ 1195.746126] memory_bm_create+0x50f/0x930 [ 1195.747182] create_basic_memory_bitmaps+0xb9/0x170 [ 1195.748399] snapshot_open+0x239/0x2b0 [ 1195.749334] ? snapshot_release+0x1f0/0x1f0 [ 1195.750378] misc_open+0x375/0x4a0 [ 1195.751255] ? misc_devnode+0x130/0x130 [ 1195.752214] chrdev_open+0x268/0x6e0 [ 1195.753120] ? __unregister_chrdev+0x110/0x110 [ 1195.754226] ? fsnotify_perm.part.0+0x22d/0x620 [ 1195.755383] do_dentry_open+0x4b7/0x1090 [ 1195.756367] ? __unregister_chrdev+0x110/0x110 [ 1195.757468] ? may_open+0x1e4/0x400 [ 1195.758355] path_openat+0x19ba/0x2770 [ 1195.759321] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1195.760537] ? path_lookupat+0x860/0x860 [ 1195.761512] ? perf_trace_lock+0x2bd/0x490 [ 1195.762534] ? find_held_lock+0x2c/0x110 [ 1195.763527] ? __lockdep_reset_lock+0x180/0x180 [ 1195.764625] do_filp_open+0x190/0x3e0 [ 1195.765466] ? may_open_dev+0xf0/0xf0 [ 1195.766330] ? do_raw_spin_lock+0x121/0x260 [ 1195.767300] ? rwlock_bug.part.0+0x90/0x90 [ 1195.768314] ? _raw_spin_unlock+0x1a/0x30 [ 1195.769305] ? alloc_fd+0x2e7/0x670 [ 1195.770207] do_sys_openat2+0x171/0x4d0 [ 1195.771181] ? build_open_flags+0x6f0/0x6f0 [ 1195.772215] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1195.773380] ? wait_for_completion_io+0x270/0x270 [ 1195.774560] __x64_sys_openat+0x13f/0x1f0 [ 1195.775568] ? __ia32_sys_open+0x1c0/0x1c0 [ 1195.776575] ? ksys_write+0x1a9/0x260 [ 1195.777506] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1195.778763] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1195.780018] do_syscall_64+0x33/0x40 [ 1195.780913] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1195.782135] RIP: 0033:0x7f1ecf0f5b19 [ 1195.783036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1195.787386] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1195.789186] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1195.790872] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1195.792568] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1195.794260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1195.795957] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:37:08 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r1, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0xa3) r3 = perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0xee, 0x0, 0x0, 0x7, 0x0, 0x8000, 0x104, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x34d5, 0x0, @perf_bp={&(0x7f0000000040), 0xb}, 0x12, 0x7, 0x5e9, 0x1, 0x6ed4, 0x5, 0x0, 0x0, 0x8f5, 0x0, 0x35b6}, 0xffffffffffffffff, 0x10, r0, 0x3) syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0x2}}, './file1\x00'}) fcntl$dupfd(0xffffffffffffffff, 0x406, r5) sendfile(r2, r4, 0x0, 0x100000001) close(r3) [ 1195.806656] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1195.945289] loop0: detected capacity change from 0 to 512 [ 1195.946687] FAULT_INJECTION: forcing a failure. [ 1195.946687] name failslab, interval 1, probability 0, space 0, times 0 [ 1195.948732] CPU: 1 PID: 7657 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1195.949687] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1195.950858] Call Trace: [ 1195.951276] dump_stack+0x107/0x167 [ 1195.951833] should_fail.cold+0x5/0xa [ 1195.952413] ? ext4_alloc_inode+0x1a/0x670 18:37:08 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 50) [ 1195.953060] should_failslab+0x5/0x20 [ 1195.953825] kmem_cache_alloc+0x5b/0x310 [ 1195.954478] ? security_compute_validatetrans.part.0+0x960/0x960 [ 1195.955462] ? ext4_init_journal_params+0x350/0x350 [ 1195.956260] ext4_alloc_inode+0x1a/0x670 [ 1195.956874] ? ext4_init_journal_params+0x350/0x350 [ 1195.957712] alloc_inode+0x63/0x240 [ 1195.958335] new_inode+0x23/0x250 [ 1195.958947] __ext4_new_inode+0x32c/0x5370 [ 1195.959627] ? avc_has_extended_perms+0xf40/0xf40 [ 1195.960444] ? ext4_mark_inode_used+0x14b0/0x14b0 [ 1195.961284] ? dquot_initialize_needed+0x290/0x290 [ 1195.962126] ? selinux_determine_inode_label+0x1ab/0x340 [ 1195.962900] ext4_mkdir+0x32c/0xb10 [ 1195.963430] ? ext4_rmdir+0xf70/0xf70 [ 1195.963978] vfs_mkdir+0x493/0x750 [ 1195.964483] do_mkdirat+0x150/0x2b0 [ 1195.964993] ? user_path_create+0xf0/0xf0 [ 1195.965574] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1195.966310] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1195.967040] do_syscall_64+0x33/0x40 [ 1195.967561] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1195.968276] RIP: 0033:0x7f9be863ac27 [ 1195.968797] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1195.971363] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1195.972389] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1195.973346] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1195.974305] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1195.975278] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1195.976274] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 [ 1195.982500] FAULT_INJECTION: forcing a failure. [ 1195.982500] name failslab, interval 1, probability 0, space 0, times 0 [ 1195.984346] CPU: 1 PID: 7646 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1195.985284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1195.986519] Call Trace: [ 1195.986905] dump_stack+0x107/0x167 [ 1195.987511] should_fail.cold+0x5/0xa [ 1195.988077] should_failslab+0x5/0x20 [ 1195.988597] __kmalloc_track_caller+0x79/0x370 [ 1195.989213] ? strndup_user+0x74/0xe0 [ 1195.989728] ? getname_flags.part.0+0x1dd/0x4f0 [ 1195.990361] memdup_user+0x22/0xd0 [ 1195.990843] strndup_user+0x74/0xe0 [ 1195.991350] __x64_sys_mount+0x133/0x300 [ 1195.991900] ? copy_mnt_ns+0xa00/0xa00 [ 1195.992433] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1195.993146] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1195.993846] do_syscall_64+0x33/0x40 [ 1195.994354] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1195.995054] RIP: 0033:0x7fd8050b504a [ 1195.995563] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1195.998051] RSP: 002b:00007fd802628fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1195.999091] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b504a [ 1196.000221] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 00007fd802629000 [ 1196.001183] RBP: 00007fd802629040 R08: 00007fd802629040 R09: 0000000020000000 [ 1196.002143] R10: 0000000000002000 R11: 0000000000000206 R12: 0000000020000000 [ 1196.003114] R13: 00000000200000c0 R14: 00007fd802629000 R15: 0000000020001840 18:37:08 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:37:08 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 51) 18:37:08 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:37:08 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 51) 18:37:08 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 22) [ 1196.222519] loop0: detected capacity change from 0 to 512 [ 1196.223380] FAULT_INJECTION: forcing a failure. [ 1196.223380] name failslab, interval 1, probability 0, space 0, times 0 [ 1196.224731] CPU: 1 PID: 7666 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1196.225594] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1196.226475] Call Trace: [ 1196.226766] dump_stack+0x107/0x167 [ 1196.227176] should_fail.cold+0x5/0xa [ 1196.227604] ? create_object.isra.0+0x3a/0xa20 [ 1196.228253] should_failslab+0x5/0x20 [ 1196.228789] kmem_cache_alloc+0x5b/0x310 [ 1196.229368] create_object.isra.0+0x3a/0xa20 [ 1196.229971] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1196.230677] kmem_cache_alloc+0x159/0x310 [ 1196.231275] ? ext4_init_journal_params+0x350/0x350 [ 1196.231955] ext4_alloc_inode+0x1a/0x670 [ 1196.232505] ? ext4_init_journal_params+0x350/0x350 [ 1196.233058] alloc_inode+0x63/0x240 [ 1196.233456] new_inode+0x23/0x250 [ 1196.233885] __ext4_new_inode+0x32c/0x5370 [ 1196.234508] ? avc_has_extended_perms+0xf40/0xf40 [ 1196.235064] ? ext4_mark_inode_used+0x14b0/0x14b0 [ 1196.235723] ? dquot_initialize_needed+0x290/0x290 [ 1196.236299] ? selinux_determine_inode_label+0x1ab/0x340 [ 1196.237067] ext4_mkdir+0x32c/0xb10 [ 1196.237476] ? ext4_rmdir+0xf70/0xf70 [ 1196.237904] vfs_mkdir+0x493/0x750 [ 1196.238299] do_mkdirat+0x150/0x2b0 [ 1196.238717] ? user_path_create+0xf0/0xf0 [ 1196.239187] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1196.239764] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1196.240336] do_syscall_64+0x33/0x40 [ 1196.240746] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1196.241310] RIP: 0033:0x7f9be863ac27 [ 1196.241720] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1196.243724] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1196.244566] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1196.245342] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1196.246118] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1196.246889] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1196.247679] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 [ 1196.304464] FAULT_INJECTION: forcing a failure. [ 1196.304464] name failslab, interval 1, probability 0, space 0, times 0 [ 1196.307604] CPU: 0 PID: 7671 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1196.309486] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1196.311798] Call Trace: [ 1196.312543] dump_stack+0x107/0x167 [ 1196.313566] should_fail.cold+0x5/0xa [ 1196.314648] should_failslab+0x5/0x20 [ 1196.315719] __kmalloc_track_caller+0x79/0x370 [ 1196.316989] ? strndup_user+0x74/0xe0 [ 1196.318053] ? getname_flags.part.0+0x1dd/0x4f0 [ 1196.319386] memdup_user+0x22/0xd0 [ 1196.320389] strndup_user+0x74/0xe0 [ 1196.321419] __x64_sys_mount+0x133/0x300 [ 1196.322551] ? copy_mnt_ns+0xa00/0xa00 [ 1196.323673] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1196.325134] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1196.326568] do_syscall_64+0x33/0x40 [ 1196.327619] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1196.329044] RIP: 0033:0x7fd8050b504a [ 1196.330079] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1196.332674] RSP: 002b:00007fd802628fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1196.333524] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b504a [ 1196.334311] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 00007fd802629000 [ 1196.335109] RBP: 00007fd802629040 R08: 00007fd802629040 R09: 0000000020000000 [ 1196.335896] R10: 0000000000002000 R11: 0000000000000206 R12: 0000000020000000 [ 1196.336678] R13: 00000000200000c0 R14: 00007fd802629000 R15: 0000000020001840 18:37:08 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1196.501068] FAULT_INJECTION: forcing a failure. [ 1196.501068] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1196.502496] CPU: 1 PID: 7686 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1196.503266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1196.504183] Call Trace: [ 1196.504486] dump_stack+0x107/0x167 [ 1196.504907] should_fail.cold+0x5/0xa [ 1196.505355] __alloc_pages_nodemask+0x182/0x600 [ 1196.505894] ? find_held_lock+0x2c/0x110 [ 1196.506367] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1196.507094] alloc_pages_current+0x187/0x280 [ 1196.507607] get_zeroed_page+0x14/0xb0 [ 1196.508058] get_image_page+0x20/0x320 [ 1196.508508] ? chain_alloc+0x52/0x100 [ 1196.508951] memory_bm_create+0x50f/0x930 [ 1196.509446] create_basic_memory_bitmaps+0xb9/0x170 [ 1196.510028] snapshot_open+0x239/0x2b0 [ 1196.510474] ? snapshot_release+0x1f0/0x1f0 [ 1196.510982] misc_open+0x375/0x4a0 [ 1196.511389] ? misc_devnode+0x130/0x130 [ 1196.511852] chrdev_open+0x268/0x6e0 [ 1196.512282] ? __unregister_chrdev+0x110/0x110 [ 1196.512809] ? fsnotify_perm.part.0+0x22d/0x620 [ 1196.513355] do_dentry_open+0x4b7/0x1090 [ 1196.513823] ? __unregister_chrdev+0x110/0x110 [ 1196.514353] ? may_open+0x1e4/0x400 [ 1196.514774] path_openat+0x19ba/0x2770 [ 1196.515247] ? path_lookupat+0x860/0x860 [ 1196.515721] ? find_held_lock+0x2c/0x110 [ 1196.516194] ? __lockdep_reset_lock+0x180/0x180 [ 1196.516735] do_filp_open+0x190/0x3e0 [ 1196.517169] ? may_open_dev+0xf0/0xf0 [ 1196.517617] ? do_raw_spin_lock+0x121/0x260 [ 1196.518105] ? rwlock_bug.part.0+0x90/0x90 [ 1196.518596] ? _raw_spin_unlock+0x1a/0x30 [ 1196.519086] ? alloc_fd+0x2e7/0x670 [ 1196.519525] do_sys_openat2+0x171/0x4d0 [ 1196.519984] ? build_open_flags+0x6f0/0x6f0 [ 1196.520480] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1196.521043] ? wait_for_completion_io+0x270/0x270 [ 1196.521606] __x64_sys_openat+0x13f/0x1f0 [ 1196.522086] ? __ia32_sys_open+0x1c0/0x1c0 [ 1196.522584] ? ksys_write+0x1a9/0x260 [ 1196.523045] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1196.523777] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1196.524504] do_syscall_64+0x33/0x40 [ 1196.525024] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1196.525747] RIP: 0033:0x7f1ecf0f5b19 [ 1196.526274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1196.528847] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1196.529908] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1196.530911] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1196.531978] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1196.533127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1196.534130] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:37:25 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 52) 18:37:25 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 52) 18:37:25 executing program 1: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000002c0)={{0x1, 0x1, 0x18}, './file0\x00'}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)) pipe2(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = io_uring_setup(0x6a32, &(0x7f0000000300)) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000080)=0x0) r4 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x90000019}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r5 = epoll_create(0x3ff) r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000300), 0x8}, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f0000000200)={0x20000001}) r7 = dup2(r6, r4) ioctl$PIO_UNIMAPCLR(r7, 0x4b68, &(0x7f0000000100)={0x0, 0x8}) ioctl$FIOCLEX(r0, 0x5451) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x7, 0x8, 0x2, 0x4, 0x0, 0xb78b, 0x10a83, 0xd, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x9130, 0x3, 0x0, 0x7, 0x5, 0x6, 0x0, 0x0, 0xfffffffd, 0x0, 0x2d21539e}, r3, 0x4, r6, 0x2) waitid(0x0, r3, 0x0, 0x8, 0x0) dup3(r1, r2, 0x0) 18:37:25 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:37:25 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 23) 18:37:25 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x10, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1213.409190] FAULT_INJECTION: forcing a failure. [ 1213.409190] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1213.411698] CPU: 1 PID: 7693 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1213.413100] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1213.414816] Call Trace: [ 1213.415382] dump_stack+0x107/0x167 [ 1213.416161] should_fail.cold+0x5/0xa [ 1213.416973] __alloc_pages_nodemask+0x182/0x600 [ 1213.417959] ? find_held_lock+0x2c/0x110 [ 1213.418798] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1213.420128] alloc_pages_current+0x187/0x280 [ 1213.421053] get_zeroed_page+0x14/0xb0 [ 1213.421872] get_image_page+0x20/0x320 [ 1213.422673] ? chain_alloc+0x52/0x100 [ 1213.423475] memory_bm_create+0x50f/0x930 [ 1213.424347] create_basic_memory_bitmaps+0xb9/0x170 [ 1213.425382] snapshot_open+0x239/0x2b0 [ 1213.426193] ? snapshot_release+0x1f0/0x1f0 [ 1213.427109] misc_open+0x375/0x4a0 [ 1213.427859] ? misc_devnode+0x130/0x130 [ 1213.428688] chrdev_open+0x268/0x6e0 [ 1213.429469] ? __unregister_chrdev+0x110/0x110 [ 1213.430404] ? fsnotify_perm.part.0+0x22d/0x620 [ 1213.431360] do_dentry_open+0x4b7/0x1090 [ 1213.432209] ? __unregister_chrdev+0x110/0x110 [ 1213.433137] ? may_open+0x1e4/0x400 [ 1213.433896] path_openat+0x19ba/0x2770 [ 1213.434718] ? path_lookupat+0x860/0x860 [ 1213.435571] ? find_held_lock+0x2c/0x110 [ 1213.436433] ? __lockdep_reset_lock+0x180/0x180 [ 1213.437383] do_filp_open+0x190/0x3e0 [ 1213.438152] ? may_open_dev+0xf0/0xf0 [ 1213.438931] ? do_raw_spin_lock+0x121/0x260 [ 1213.439834] ? rwlock_bug.part.0+0x90/0x90 [ 1213.440705] ? _raw_spin_unlock+0x1a/0x30 [ 1213.441550] ? alloc_fd+0x2e7/0x670 [ 1213.442323] do_sys_openat2+0x171/0x4d0 [ 1213.443145] ? build_open_flags+0x6f0/0x6f0 [ 1213.444054] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1213.445062] ? wait_for_completion_io+0x270/0x270 [ 1213.446062] __x64_sys_openat+0x13f/0x1f0 [ 1213.446910] ? __ia32_sys_open+0x1c0/0x1c0 [ 1213.447784] ? ksys_write+0x1a9/0x260 [ 1213.448584] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1213.449641] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1213.450691] do_syscall_64+0x33/0x40 [ 1213.451437] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1213.452520] RIP: 0033:0x7f1ecf0f5b19 [ 1213.453278] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1213.457018] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1213.458599] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1213.460082] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1213.461554] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1213.462992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1213.464420] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:37:25 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(0x0, &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:37:25 executing program 5: getsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000100), &(0x7f0000000080)=0x4) r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000001180), 0x0, &(0x7f00000011c0)=ANY=[@ANYBLOB="05"]) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x18, &(0x7f00000001c0)=0x7, 0x4) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f00000000c0)="bd5aea8b8c2fbe2d2d2ebd5b2689660c", 0x10) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r1, 0xffffffffffff56c0, 0x0, 0x1f}, 0x2) r2 = accept$packet(0xffffffffffffffff, &(0x7f000000c4c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f000000c500)=0x14) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x18, &(0x7f00000001c0)=0x7, 0x4) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r3, 0x6, 0x21, &(0x7f00000000c0)="bd5aea8b8c2fbe2d2d2ebd5b2689660c", 0x10) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r3, 0xffffffffffff56c0, 0x0, 0x1f}, 0x2) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x18, &(0x7f00000001c0)=0x7, 0x4) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r4, 0x6, 0x21, &(0x7f00000000c0)="bd5aea8b8c2fbe2d2d2ebd5b2689660c", 0x10) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r4, 0xffffffffffff56c0, 0x0, 0x1f}, 0x2) r5 = gettid() rt_tgsigqueueinfo(r5, r5, 0x0, &(0x7f0000000640)={0x0, 0x0, 0xfffffffa}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f000000c540)={{{@in6=@initdev, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6=@local}}, &(0x7f000000c640)=0xe8) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f000000c680)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee00}}, './file0/file0\x00'}) [ 1213.476535] loop0: detected capacity change from 0 to 512 [ 1213.477121] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1213.478049] FAULT_INJECTION: forcing a failure. [ 1213.478049] name failslab, interval 1, probability 0, space 0, times 0 [ 1213.481806] CPU: 1 PID: 7691 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1213.483183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1213.484870] Call Trace: [ 1213.485401] dump_stack+0x107/0x167 [ 1213.486140] should_fail.cold+0x5/0xa [ 1213.486917] ? create_object.isra.0+0x3a/0xa20 [ 1213.487841] should_failslab+0x5/0x20 [ 1213.488602] kmem_cache_alloc+0x5b/0x310 [ 1213.489423] create_object.isra.0+0x3a/0xa20 [ 1213.490308] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1213.491324] kmem_cache_alloc+0x159/0x310 [ 1213.492158] ? generic_block_fiemap+0x60/0x60 [ 1213.493057] getname_flags.part.0+0x50/0x4f0 [ 1213.493939] getname_flags+0x9a/0xe0 [ 1213.494681] do_mkdirat+0x8f/0x2b0 [ 1213.495389] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1213.496487] ? user_path_create+0xf0/0xf0 [ 1213.497324] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1213.498365] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1213.499404] do_syscall_64+0x33/0x40 [ 1213.500155] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1213.501172] RIP: 0033:0x7f9be863ac27 [ 1213.501898] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1213.505572] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1213.507095] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1213.508506] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1213.509907] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1213.511327] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1213.512690] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 sendmmsg$unix(0xffffffffffffffff, &(0x7f000000cc40)=[{{&(0x7f0000000140)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f00000003c0)=[{&(0x7f00000000c0)="dcf9dcbb70d28b", 0x7}, {&(0x7f00000001c0)="159a1e338bee9093917765432c96d0c72a5bad7f4aff76017d669c3c828a78b7924abb94e6f3d12104edb1468dc5", 0x2e}, {&(0x7f0000000200)="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", 0xfd}, {&(0x7f0000000300)="abf5261bad864f54365e39e96d516a6f61a37e04cf97a81c8085e513f3eac79dbe9ae720f181710420e5cc18a4ec8763bbe7c9dc772832d52bf9b40a79f556108ac47b27002a82e0b3b8921c83f0b80c4fcd0775e027c7d064864fc2a5680043b327a2c711b9febe807b654a67e5f538676cfadb6298d1a77601c674eab7ff8b7450e18b0c7d8f1ea6ce7d5df8375a230c8f8fa100451ebf19f7e9d12b12bc5d7ca9ec", 0xa3}, {&(0x7f0000001200)="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", 0x1000}], 0x5, &(0x7f0000000540)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r0]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [r0, 0xffffffffffffffff]}}, @rights={{0x10}}], 0x98, 0x1}}, {{&(0x7f0000000600)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000000780)=[{&(0x7f0000000680)="96ab7783bb19c0089a55c8c9d3805219b18d7ab1bd3847e27bfe986b1ccb441a60078665fbe19cbbaea414cc02f6362e2a15cb9eb5ea73ee0e4b9d406e7efd6904194a4d2509839292f21837e8cf9ea06dcc72fcab483318110389f35649558d418a5b965ecb9a5cb962c902a8f8028626714bd55026a4a40114a0133f8c42b3892201c911a8daf6b0c160601cd4a031b2b64b38c6f9588173a1c24bc507911a82e3e7ddbc5526af38b111017d8e3781a67b79b22a3a5e578841ac0c6faa49769648159f5446406b8cef", 0xca}], 0x1, &(0x7f00000007c0)=[@rights={{0x24, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [r0, r0, r0]}}], 0x48, 0x10}}, {{&(0x7f0000000840)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000b80)=[{&(0x7f00000008c0)="7887d7f3fc03651ec5929a72c1c7a1343ed275fd132df2de3b92c2eaf06a79428c5f1a1aaaad82afddd9ec3d7b3ae3300a6aafa11833f4e20fb62a36a19771aed6e1b12492f5ec6016ecf28eaea249c14707040a7455fed98fc231d8be9719a988e8f9e407633646ad22f23b6f91d1b80b1f40b8aadcda65d56ea2a5e9dc334a7106e12ed5a6ad61fe8b4076503ec2c29f6d780e765516262c3b4c1df0", 0x9d}, {&(0x7f0000000980)="72c6cbf745493c2d04004772c7fb9c38882163ecff30686904c82e307558fdb881c35a7dcc1180d71b2bc9471adbf40e783e6d0a910374997e147a84cc14d8da6a2998c66ecb45eff63726f741b97ce4e67a60cf23953c3f9688c60efe23f34fe8ba9ec9254dafbfaa5d", 0x6a}, {&(0x7f0000000a00)="335a81234395de685800257b41b464f7f1b00b436ffcffa7f5b2c30bdf21215b2c2708d39c876a2d89c3538e82e6d7b24e1c4bd9b8df9daee3c9a059937243f6a931c676a0b43276aca679dac8a92bd6901d4859b324cf4e8fb6055ff5be12757a46", 0x62}, {&(0x7f0000000a80)="eaf01b368d4c124bd7dcaf5da01d564b8ebeb514e1f3b02293ab287c6f2663a9efb0cd761379d3fb3789a96850c54c93c3c2640397a182c29917b74d00e833756ec3f9cc6fad78d9506e176cfcb1d89c60ef2fb2", 0x54}, {&(0x7f0000000b00)="cdd9d70a6b09be18e2df2f1dfec3372253f1c2a09b4e96d0c304749bab8658805cd0d0aa7b4d89ec6ca626fdef72c169a96260559842bd90f3ea0b189a2c855435dc0c4f69afe248478705bc8c2224981dd1078bc6f06c3934af4d8ded1a84bbc4ed997ff9c827691ff3c0", 0x6b}], 0x5, &(0x7f0000002740)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, r0, r0, r0]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @rights={{0x24, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x1c, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [r0, 0xffffffffffffffff, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x168}}, {{&(0x7f00000028c0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000004cc0)=[{&(0x7f0000002940)="e8c5b5bfb2e8bbe6d314683cdbc37adeaa02f319de3d09853c0ee1", 0x1b}, {&(0x7f0000002980)="5985327ed729e63fde1e022b6bc29ca03b5cba1a66b9ed91b088e1e4c7adf92b77730bc74d0e2bab05ebe472c9a4db2681301923ea48aa501e1f259a9c27db31307520e6298fa67068eab36798b43b744a9181b91ffb0f0d363c52ee58e7c6f6fe696402f3f57ef4e0a35b8a2d619765757a22ce5c7bfaf3073ec05cdf76fd5fddc7efad183a621c2533a96f3020952d572eedaa44c8b5f0ce0a5e9e7eea7365ebcd67552c7a3a300d0d9da3e93c7446b6b03a90138ab8e2fea863e479e45ec5adca5a380d2b74688c9677991806", 0xce}, {&(0x7f0000002a80)="9b238ef310e3bb8116388e8d549d8076fec753d84c644be565b9cded121d2f46bafbc4a549e7528e34092a61422c2510d619575863b42d6a5b5f87d5db7e069757eed2fe7de30d30855dddb8b8b0e44eb670678186492c0b6c12103a010a316fb2a5ab5ea5d12b49a1acde1fc31627fa8b", 0x71}, {&(0x7f0000002b00)="b6cd65a0ab45f879ff9e7e336562ed716a1ac22993de729a30213b9696f6ae0c259158d0966f9fdf91b225abfa30c69ea2bfad4190d3ac6df5d489609f6670cb60e3230b7df76fef64451e7881117758c4d244fdb15e347e09b7bcd5f442ce8f1f52e8210703f8bbf8bb5575b4e7f9d22ea90c54a413ea953d6f78dd74ec", 0x7e}, {&(0x7f0000002b80)="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", 0x1000}, {&(0x7f0000003b80)="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", 0x1000}, {&(0x7f0000004b80)="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", 0xfa}, {&(0x7f0000004c80)="10a57f705115aa72a10d96bf2cceca318de860405abeb0a20d9032", 0x1b}], 0x8, &(0x7f0000005040)=[@rights={{0x30, 0x1, 0x1, [r0, r0, 0xffffffffffffffff, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @rights={{0x34, 0x1, 0x1, [r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0, r0, 0xffffffffffffffff, r0]}}], 0x88, 0x4000040}}, {{&(0x7f0000005100)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000006280)=[{&(0x7f0000005180)="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", 0xff}, {&(0x7f0000005280)="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", 0x1000}], 0x2, &(0x7f0000007c80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, r0]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xc8, 0x4000}}, {{&(0x7f0000007d80)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000009140)=[{&(0x7f0000007e00)="286982892ca9ac4e1c7fb3ec3ff28d4fd9136dd0f46ee27ea40e9ad3872659cf21c5fef9e127dca5721128388dc8bc2a0b618957873ee2c99c6244085f3459c07442db00eed7f81d5a05f20a9dc1f6c6cef1266fa05e63c294f8a43a88095979c073991e22e5ffd67fe5c04cc348d48a3cecf06bf560d6e2a25ff1da9b8df965c4b7a86ff9848b38a8a444b983a94686c4e22a10e5949e73d2d1570e26ff244876272dcc6175fc7960e0082502c2d0bba874ad88f444f85bb1844f218e8b48183983e363e257872b4eb222bbf5d2ba0e77275d0096", 0xd5}, {&(0x7f0000007f00)="e8666a4068399f57a62e4b6106e3d2d7db0989137f1a13a18311899822ed2ecd1ad993863bf7744d0b71e7b86daad544c3b4d9bfc0a1f8ba12", 0x39}, {&(0x7f0000007f40)="942b65d8d2b75e93a943fa2824a47b6854b0ec472affa96f05432bb6491f8a72e952ca29c02e7a33bbfba461048c688bdc500e2103f952c73535acc5466f274aabb9e66321ca5eab370000bad3ee677acbf56dfe8966f47be9e53070550f9b439a4b1b4e7005f64321d77b8a6bc6d68ba99df2259ba1fc4501af8118b41785503a9c2de05605c92e9489e4c5bb887f12551a3ae5755694845ee9a2dbc9f7089e289f65a20ba0fa6a3693efb31643f4ee44ccf4134d8aa0998d4894252f04e426ae5d0d64cb6aaba504af5c5168983c65d58c5b8ed1f0bac44d327a6b33f88ac3f1ad", 0xe2}, {&(0x7f0000008040)="dd244a08770db49b40690c55065c54491d0f8ec009c4d8689ef4e16860cc3e2cf5b3d09944f1186bc3e9a4d3c036488d53a8d50af2069fa880bf24821a0a197d4611c76e260f32138dc44e0ff68c64fed36bafb81687fdd4890b65e7dadf932a2673cafe810ad52fc9f854f4580803e2d5b69e9ec44fdace41be5ce8ad73120c24397ba143b4513654097d6a76f08e60993e840cde0287ecf51e5ec98b668f88e0a95c7a5b70f55b9017", 0xaa}, {&(0x7f0000008100)="b988e5490f66ef8b50b3b6e1f81f70b9dccedd1a901d8db863624e62152a832775e587ccecbeb20b1e2c9f07aeea4f1bae96", 0x32}, {&(0x7f0000008140)="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", 0x1000}], 0x6, &(0x7f00000091c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r0, r0, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}], 0x68, 0x1}}, {{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000009240)="6d2d6ec4a8ad975155ce80b594bb6994731272dc39180a4be109fcb200ab9b8dd44b2f0ae4fc848be98104527d65081f9081b677611150c85c726fd9e61f15696ca712fdac5eb335db3e01edb11250ce1b511a6f727a385ec9c5ed13d239731e0c7086d6f7e83991a11f1e9913f2e2361d781d63c41a62150052697fd747f5fb31a936ccd7bde05459a0485ef8af", 0x8e}, {&(0x7f0000009300)="1e9e60db268f86d68b8a5d5802fc4f338d54", 0x12}], 0x2, &(0x7f000000bfc0)=[@rights={{0x28, 0x1, 0x1, [r0, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [r0, 0xffffffffffffffff, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}], 0xa0, 0x4010}}, {{&(0x7f000000c080)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f000000c340)=[{&(0x7f000000c100)="aebc03f8c4b5", 0x6}, {&(0x7f000000c140)="d58fe241b47a66befcae420928c3932cb1f0d9de5be5a5af942eb3236cbc20acd3723d3c1be9704320ab9c96a5ad352422c13afdb5d51f47c02f96102c58fa21ba7f0a04c311febe1a7a76dbf062ba4c53e1f26aa10a2285daf495e46689d8b3ca2951bebf43f36ebbd7bb6f134607b6ee2f2bb6ec45e6e3865d5783d26bbb58767633de5b2f189bba53d13e2c30cda21e0406400dab6052f1507cfb3df3ec7e726f368189f151149a", 0xa9}, {&(0x7f000000c200)="36436d457b437ea6bb85a54beb8ba5762fabd0b472441bf24a02e1026fcaa8e9a75a7718a8abcf4cb9ba6ddf555f6b9220a01d72cb83cc855774c6c9f4dfe77a9e61b6a7ffffb26401310dd3922e3b023c00c0cd13e9583867377f76be80", 0x5e}, {&(0x7f000000c280)="286029003f46b1f65af948bc0c91ed01ffc63ae4daa2f9bd459775143eff375d330b03", 0x23}, {&(0x7f000000c2c0)="8a2cc64f0545073c84f941f3c694f97250aa54d1024e55782620192ec8793fc5f7425c33b7ea217279f4d6029690a721ec38a710106a727b24e0a59957d7a252ab5f94444575b4667f8aae937ef1615884a4d226f703dbca5a80b351e5b26c5868eec513883c9cee29a8abff14", 0x6d}], 0x5, &(0x7f000000c6c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee00}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, r0, r0, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [r0, 0xffffffffffffffff, r1, r0]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r0, r2, r0, r3, r4, r0, r0, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r5, r6, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r7, 0xee01}}}], 0x100}}, {{&(0x7f000000c7c0)=@abs={0xdca3e82340f67a6d, 0x0, 0x4e20}, 0x6e, &(0x7f000000cbc0)=[{&(0x7f000000c840)="5c0ea91c32b3a0fbbb34635bba5ee86e2e356644ed63efa0175642e8bf75ac0faf7406d713042d151887e7a33baaeb82ac4887a8b98f2cf400c0bae47e2ee793bfeb6652385e64fe669e3fadd10f12e33f71c0ce3e3437cf9ea328b296b7f5c627b88b0d22c6481f46ac30d01137e353f33a4f93a1bf5a45e710a74549ddf5e50813f2eedf569f24e24e952a2a2c537e23777c995db387babcac6c9964d923543eaf52d84e", 0xa5}, {&(0x7f000000c900)="f93c293838c18af4e775717582ab05e27a43c02ca5c5f0d399a164b8ac227b60e8340dee0312b3638f5cafa333c3e9de1bb08e5f006174714966b65b3184c230d730e3b2b449bf4277", 0x49}, {&(0x7f000000c980)="fe99bf6d810b91518c1d0ed3d63099f5bf7206b5b2b2d3fbb471f0efcc170f8a52ac5c0d34af642302b5a206b1157dea0c276e3ac9c252c18e7a1e22a84282b54f6d865ffdb99658c28936ee4bbb6b3a866b224388a33a05ceb248622d43303f9d8b8ddcbd53ca54a96a01548f24943f5cfd9d7b174cd36686275482c49c3cad61a43a141c504776897ba29b256fd7f507b9228160d07009e30ca6faca1b9762105140fd2d0963437c65882a2fba7f65612b83c778fe65399db3e9ab0c702c0f8012f0990bb335e8d994bd56c6811b5e5acb0b763e58fbfc4e1439b7f59334a721b5704aa184", 0xe6}, {&(0x7f000000ca80)="3174acbfdd47aedbf89c3cb92a5f9162b35b3732d52352001080394a3054896cf55e5c", 0x23}, {&(0x7f000000cac0)="57c05d1172990a0d0aebff124c815cf895f731b459133632a883f31773f86ddb0fe236995d56a1763980f320824f00c63b6dc1eae9930fe5f1a981ae883c80f2e9928a7e9f42c44c05b750938d6a97de32e3ae754c83bd06f34f8657a570", 0x5e}, {&(0x7f000000cb40)="f23d87491121af84b292d82f8af66882a24b9eb4d25a3593db333604f6cb7350b18fb9539c04f3832074fd4fe4ad18918533ae22411ab4ee37cb9f66e5316ed0c0744fa79b6cb735538e49c79cf088bd9a99fa226ba1b0fcf1937a1064987d4ed5c932", 0x63}], 0x6}}], 0x9, 0x48000) [ 1213.616449] FAULT_INJECTION: forcing a failure. [ 1213.616449] name failslab, interval 1, probability 0, space 0, times 0 [ 1213.618840] CPU: 0 PID: 7703 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1213.620294] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1213.622021] Call Trace: [ 1213.622579] dump_stack+0x107/0x167 [ 1213.623346] should_fail.cold+0x5/0xa [ 1213.624168] should_failslab+0x5/0x20 [ 1213.624977] __kmalloc_track_caller+0x79/0x370 [ 1213.625930] ? strndup_user+0x74/0xe0 [ 1213.626726] ? getname_flags.part.0+0x1dd/0x4f0 [ 1213.627705] memdup_user+0x22/0xd0 [ 1213.628460] strndup_user+0x74/0xe0 [ 1213.629235] __x64_sys_mount+0x133/0x300 [ 1213.630102] ? copy_mnt_ns+0xa00/0xa00 [ 1213.630934] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1213.632055] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1213.633124] do_syscall_64+0x33/0x40 [ 1213.633910] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1213.634988] RIP: 0033:0x7fd8050b504a [ 1213.635780] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1213.639586] RSP: 002b:00007fd802607fa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1213.641189] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b504a [ 1213.642694] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 00007fd802608000 [ 1213.644211] RBP: 00007fd802608040 R08: 00007fd802608040 R09: 0000000020000000 [ 1213.645713] R10: 0000000000002000 R11: 0000000000000202 R12: 0000000020000000 [ 1213.647201] R13: 00000000200000c0 R14: 00007fd802608000 R15: 0000000020001840 [ 1213.701270] FAT-fs (loop5): Unrecognized mount option "" or missing value 18:37:26 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 24) 18:37:26 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 53) 18:37:26 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 53) [ 1213.876066] FAULT_INJECTION: forcing a failure. [ 1213.876066] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1213.878326] CPU: 0 PID: 7720 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1213.879587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1213.881081] Call Trace: [ 1213.881577] dump_stack+0x107/0x167 [ 1213.882265] should_fail.cold+0x5/0xa [ 1213.882987] __alloc_pages_nodemask+0x182/0x600 [ 1213.884059] ? find_held_lock+0x2c/0x110 [ 1213.884991] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1213.886422] alloc_pages_current+0x187/0x280 [ 1213.887559] get_zeroed_page+0x14/0xb0 [ 1213.888448] get_image_page+0x20/0x320 [ 1213.889330] ? chain_alloc+0x52/0x100 [ 1213.890222] memory_bm_create+0x50f/0x930 [ 1213.891233] create_basic_memory_bitmaps+0xb9/0x170 [ 1213.892407] snapshot_open+0x239/0x2b0 [ 1213.893279] ? snapshot_release+0x1f0/0x1f0 [ 1213.894255] misc_open+0x375/0x4a0 [ 1213.895072] ? misc_devnode+0x130/0x130 [ 1213.895984] chrdev_open+0x268/0x6e0 [ 1213.896832] ? __unregister_chrdev+0x110/0x110 [ 1213.897866] ? fsnotify_perm.part.0+0x22d/0x620 [ 1213.898948] do_dentry_open+0x4b7/0x1090 [ 1213.899899] ? __unregister_chrdev+0x110/0x110 [ 1213.900934] ? may_open+0x1e4/0x400 [ 1213.901782] path_openat+0x19ba/0x2770 [ 1213.902683] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1213.903828] ? path_lookupat+0x860/0x860 [ 1213.904761] ? perf_trace_lock+0x2bd/0x490 [ 1213.905734] ? find_held_lock+0x2c/0x110 [ 1213.906496] ? __lockdep_reset_lock+0x180/0x180 [ 1213.907577] do_filp_open+0x190/0x3e0 [ 1213.908430] ? may_open_dev+0xf0/0xf0 [ 1213.909325] ? do_raw_spin_lock+0x121/0x260 [ 1213.910290] ? rwlock_bug.part.0+0x90/0x90 [ 1213.911286] ? _raw_spin_unlock+0x1a/0x30 [ 1213.912224] ? alloc_fd+0x2e7/0x670 [ 1213.913054] do_sys_openat2+0x171/0x4d0 [ 1213.913961] ? build_open_flags+0x6f0/0x6f0 [ 1213.914923] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1213.915940] ? wait_for_completion_io+0x270/0x270 [ 1213.917007] __x64_sys_openat+0x13f/0x1f0 [ 1213.917840] ? __ia32_sys_open+0x1c0/0x1c0 [ 1213.918696] ? ksys_write+0x1a9/0x260 [ 1213.919512] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1213.920610] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1213.921729] do_syscall_64+0x33/0x40 [ 1213.922512] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1213.923585] RIP: 0033:0x7f1ecf0f5b19 [ 1213.924363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1213.928272] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1213.929940] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1213.931389] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1213.932808] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1213.934148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1213.935521] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:37:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x10, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:37:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(0x0, &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1213.987136] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1213.997225] loop0: detected capacity change from 0 to 512 [ 1213.998457] FAULT_INJECTION: forcing a failure. [ 1213.998457] name failslab, interval 1, probability 0, space 0, times 0 [ 1214.000125] CPU: 1 PID: 7723 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1214.001073] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1214.002201] Call Trace: [ 1214.002568] dump_stack+0x107/0x167 [ 1214.003079] should_fail.cold+0x5/0xa [ 1214.003625] ? create_object.isra.0+0x3a/0xa20 [ 1214.004261] should_failslab+0x5/0x20 [ 1214.004788] kmem_cache_alloc+0x5b/0x310 [ 1214.005344] create_object.isra.0+0x3a/0xa20 [ 1214.005939] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1214.006656] kmem_cache_alloc+0x159/0x310 [ 1214.007245] ? ext4_init_journal_params+0x350/0x350 [ 1214.007946] ext4_alloc_inode+0x1a/0x670 [ 1214.008511] ? ext4_init_journal_params+0x350/0x350 [ 1214.009192] alloc_inode+0x63/0x240 [ 1214.009697] new_inode+0x23/0x250 [ 1214.010186] __ext4_new_inode+0x32c/0x5370 [ 1214.010768] ? avc_has_extended_perms+0xf40/0xf40 [ 1214.011449] ? ext4_mark_inode_used+0x14b0/0x14b0 [ 1214.012127] ? dquot_initialize_needed+0x290/0x290 [ 1214.012798] ? selinux_determine_inode_label+0x1ab/0x340 [ 1214.013565] ext4_mkdir+0x32c/0xb10 [ 1214.014084] ? ext4_rmdir+0xf70/0xf70 [ 1214.014612] vfs_mkdir+0x493/0x750 [ 1214.015134] do_mkdirat+0x150/0x2b0 [ 1214.015653] ? user_path_create+0xf0/0xf0 [ 1214.016218] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1214.016933] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1214.017641] do_syscall_64+0x33/0x40 [ 1214.018151] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1214.018865] RIP: 0033:0x7f9be863ac27 [ 1214.019386] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1214.021916] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1214.022950] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1214.023933] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1214.024904] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1214.025870] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1214.026840] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 18:37:26 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:37:26 executing program 1: ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)=0x0) fcntl$setown(0xffffffffffffffff, 0x8, r0) sendmsg$sock(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000040)=@x25={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x1}}, 0x80, &(0x7f00000006c0)=[{&(0x7f00000000c0)="2cfc9c", 0x3}, {&(0x7f0000000100)="6afa41239e429987cee9dd54b68b5e38771b26f9e01f1852709addb3dc3168df1e07105d9f6d4cb7a4dc35d182ac77e47f7312683aa4987b5c02b67fb5ac73190d328721fc5252a89c9acc8a1a2634cf7a6a033d60747c708fac07c51933179baad237a52a8a774aa63fa669485b836e6e5b8a6d2d658d0ac5c0b6d74de43185523b9a65ec385758d440e45c059b00f0e9874cbfdd530610abfd65d8506add4ad8ff327e0a55b46b5b667c02ae2f", 0xae}, {&(0x7f00000001c0)="4edd80a09b50a2a1f5171c89d8e8bae139c1fa0132df9fae18973951a17f9751ee6e85386ee4b69fd066bf411aaa0d9b72cca7fcf69b660319aa9d118dcb6b9216ba93787361bdbfb270b0a8f5ede40f222c268123e785bf1961f2924ec9f985ad577e3732dd89ee6e22d7ce6b4146f768736ddbaf32702a88ba8f572fcbaa6cfcd5db334c67a5e8dc71de92b4a3df1020d62e4025a1c29b2626dc5020186afbbf15715d118074f8b56111cda8db1b1e4bb2eb852c3c36d9862748be932c555b4adcf0d603aac43a0b9369e343ee51ebd532133a4d14ffa6", 0xd8}, {&(0x7f00000002c0)="f2964a6e737b39cdee7493b5479707c76499c2fcccc79e89b08ade9483810e6adb94e58cf13921346e387cb3a3404ec301a9354a11821cdf9bbb3c377854154fd4e427422bb7e3ada104950957b1e741350eb9069e8116380dc584242f73951cbbfbb1906ee285eb4d87b838f6965ccda9c6a835050e150505c644c368f4f9e77810374955409d69c0ed596c2c3495efe97b5db934b0d1b829d39583b9d3984df868dc91c555f3ffda429fa075e6cea073d723e9fa066b1c5f0b", 0xba}, {&(0x7f0000000380)="ec6f48669eb14c15af1b44b39b050bc5c822c242fcce82653ce3b3b3f7994e5dd50a179d2be153364545920a9d7eadd1b63a047926734b5d6ca77c5e22ba4f", 0x3f}, {&(0x7f00000003c0)="15165b276ec5fd3d6cb8d3c870025c6d5d6765b057a0fa9c3620411c2f50142222ee98683d66d004fffd2cfa6d408a47289ef330905f29df4cbee58222f24aa9961e8517a3a69cf0494529c601f72e2b62330669797dc51ccfe5f85d6a4a3b0deddd35ffa38dea40f38b13d53021954be5869946898fa1608f4002f2139f72980afc023c8083e38fb5a15568e6b9801082c060ca1883173b9e9ba08c0785c36de7906812aea7a33509260d8a34542093d968a275780392fceff676a8a2b92083e02e3e42b5ffb499e48fc0c9bd27b09d183e5383c06e42d59d679a20", 0xdc}, {&(0x7f00000004c0)="bbb5110cf5542fbdba1ae5918087bd7fadd883df72d8bbaab220423d0ea8368b46923344d1df", 0x26}, {&(0x7f0000000500)="dbc8c5c8a32c124d6fcab93a378f9b2c7e91599564972838be7e80d0ab17b56cfa48a0b615e5b126efcacab4868818bc8a2b3a63d3f368d306bbcb498cda3b19b55069aabc2d85", 0x47}, {&(0x7f0000000580)="0dd70279d8b02b9659296defa0e91ef97e74ddf4b6930b4378aea401510371869f32cc6a2c73f07e69a758b23000277a6c2638c3b0d5cec7bcb59654ed359ab3314c4e02a0c22b71de8de03bcecfe566e7a2f6cf66c4dca230a9e4b86c05a2f5496eb02fbddb42ceab32baa8e93d4ed41a32e45b897d4a76aeaf9e3915ed2da7d67447c414ba9faad48431b220981528759dd8000cac968ac0074df9ba16a4306ec52a040075e4ee7b143a5b55cda5406070372daeaa8d63e1dd848e042cb969572ecbe6b34fa6e7c63a07909c5bb30d7b054fe6aadfdf1a97", 0xd9}, {&(0x7f0000000680)="baeb7bba4c0236e7fb691ff1e1ee14eaefc9c31bac1deacbcdaac628a9e8358a2e6c4d2d2e16a6f882b777d70a", 0x2d}], 0xa, &(0x7f0000000780)=[@mark={{0x14, 0x1, 0x24, 0x80}}, @txtime={{0x18, 0x1, 0x3d, 0x400}}], 0x30}, 0xc008) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000840)={0x8, &(0x7f0000000800)=[{0x8, 0x9, 0xc4, 0x7412}, {0x7, 0x3, 0x3}, {0xfa90, 0x9, 0x20, 0x2}, {0x8, 0x17, 0x8, 0x7}, {0x8, 0x6, 0xfb, 0x6}, {0x1000, 0x3f, 0x3, 0xfffffff9}, {0x8, 0x9, 0x4, 0x5}, {0x2, 0x0, 0x1, 0x39}]}, 0x10) pipe(&(0x7f0000000880)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = getpid() sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r1, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x78, 0x0, 0x400, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x79}, @void, @val={0xc, 0x99, {0xfffffffe, 0x6a}}}}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x6a}, @NL80211_ATTR_PID={0x8, 0x52, r3}, @NL80211_ATTR_PID={0x8, 0x52, r0}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x5c}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x1000, 0x18}}, @NL80211_ATTR_PID={0x8}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_NETNS_FD={0x8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x17}]}, 0x78}, 0x1, 0x0, 0x0, 0x2008800}, 0x4040) ioctl$AUTOFS_IOC_CATATONIC(r2, 0x9362, 0x0) io_cancel(0x0, &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x5, 0x5, r2, &(0x7f0000000a00)="0c81a90a3f19e95d87b4194d78e0fc80f8160a97f07bf44b2aa97cd94824335853983c0350799933fd4775144fb3aabdad913f8b326df3d042391f42b3ebe237834f44dd0fa46a3d803e53d30781885645988e9f6b4ddba433698605cac5acc401623e08ac13c5b287400b51cee1bae122ee8a29f7c0c9f41229e6454778a73f81b92d87e289721eb6180c4f6d28eff21b3f7ed6c9d48a3de934637c164218607c79a22eead9a941325c1f210093b6d6f9bc042d43800c2f5978f22f58b6aa3216c95e745ede93ce050f031ce02ba96e2d234a09d5567585e4c30346d9ca825dc0b91642cf5ea45ec654807ea8a9e4e187ddee38f4", 0xf5, 0x4, 0x0, 0x1, r1}, &(0x7f0000000b40)) r4 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000b80), 0x400400, 0x0) write$binfmt_elf64(r4, &(0x7f0000000bc0)={{0x7f, 0x45, 0x4c, 0x46, 0x81, 0x3f, 0x0, 0xfd, 0x9, 0x3, 0x3e, 0xac1d, 0x253, 0x40, 0x2c4, 0x3, 0x9ece, 0x38, 0x2, 0xec47, 0x3bf, 0x5}, [{0x1, 0xec, 0x81, 0x4, 0x2, 0x7, 0x71a659ee, 0x5153}, {0x4, 0x101, 0x1, 0x1, 0x9, 0x401, 0x4, 0x5e8}], "ab9030e29696eacb", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x5b8) r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000001180), 0x143000) splice(r5, &(0x7f00000011c0)=0x5a8, r4, &(0x7f0000001200)=0x9, 0x401, 0x5) r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001240), 0x101100, 0x0) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f0000001280)={0x0, @rand_addr, @empty}, &(0x7f00000012c0)=0xc) openat(r2, &(0x7f0000001300)='./file0\x00', 0x604140, 0x31) ioctl$int_in(r2, 0x5452, &(0x7f0000001340)=0xaa) ioctl$VFAT_IOCTL_READDIR_SHORT(r1, 0x82307202, &(0x7f0000001380)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) fstat(r1, &(0x7f0000001a40)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$nfs4(&(0x7f00000015c0), &(0x7f0000001600)='./file0\x00', 0xc7, 0x5, &(0x7f00000019c0)=[{&(0x7f0000001640)="5eafb2", 0x3, 0x1000}, {&(0x7f0000001680)="67081220f809692aa752620e3ae666044fda9b43ef0e374d73598122397fcc7118051234d46631e35356f545f10f56fd41a876461dc2d817126b09b5a0e3078b53ed9f97a83cef1f69f0e8672e762ceb0e9962aed4acdf03e3adaa86f6b2d7e1abbeb6cb6df09db435d7a95b5ecd229215a447637da2d3137cdb173d4548b989e282fa87164f46eb3e5c6b0ddad3f8890e4bf55071d358c101da92adfbf41e99b58cb35c39dac1a160bac627681d6ab721da6f5c3afe9d8942885abb317f0076bce89d4cc17499380b880d5f45096d81c6", 0xd1}, {&(0x7f0000001780)="0b0d8d668ec2642c957115351fa4fc1351de3b77a89bdc14b642c5c3a1f36ca3020555e6f83d18a7422a636efd85576de4ff9edcd4a9cbb8bc3716acdee048040d2f0c0bed78ecde83c909a3f51fa6bd0bf8e010005e61dbce6b7e7128dcafb3b856443eb99c17a4f40d83d6b454160d3030690f909f438e161ea110723379f4a6d3f765472dfa41d98d880ea6187325bf535fea4716fcfb39ff702e72274c33e087b68fcb16c652621d", 0xaa, 0x100}, {&(0x7f0000001840)="e238802e7e3a870ff7f85fef624969a0add649cb4fd35ca3288d45cb2bc2469de865baa04998ab01e8f5c1cc193e8cbf1a57ccda5854524147d1da1c990db0c793729d8257c8d4d2c948a3dd9e2e937e1d55883eeef5b8c35945158c24995a422e04aacf47fb1023120989108846c43ce9f221925dd8336903c59e96038ea3e952f19b85e73d8b8f9a84a1b63f419efaebeb6721ca22a3871e5ba55e781ae403f15d478f3a7b359c8c43e45290be64b266e75298929ed67ca4625c6f2aa3812a74c14d89d4", 0xc5, 0x7}, {&(0x7f0000001940)="79e6b38ce753be71aa97293f991adc5d214708e2314cad32491c75d0781cde65e67e4075996a138814014c334494a30a9f8ad5cda89e211407fad9635e12e825e521b3c865c6400b826cda1eb834e77f595331d0ce230334d9e9360a77d56d48aed96dcd939b3d", 0x67, 0x40}], 0x8000, &(0x7f0000001ac0)={[{'*\xb6\xa4,}-]'}, {}, {'/dev/urandom\x00'}, {'/dev/snd/timer\x00'}, {'/dev/urandom\x00'}, {'#'}, {'/dev/vcsa\x00'}], [{@subj_type={'subj_type', 0x3d, '\x00'}}, {@fowner_eq={'fowner', 0x3d, r7}}, {@measure}, {@measure}, {@appraise}]}) [ 1214.040034] FAULT_INJECTION: forcing a failure. [ 1214.040034] name failslab, interval 1, probability 0, space 0, times 0 [ 1214.042367] CPU: 0 PID: 7724 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1214.043834] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1214.045577] Call Trace: [ 1214.046151] dump_stack+0x107/0x167 [ 1214.046934] should_fail.cold+0x5/0xa [ 1214.047770] should_failslab+0x5/0x20 [ 1214.048574] __kmalloc_track_caller+0x79/0x370 [ 1214.049521] ? strndup_user+0x74/0xe0 [ 1214.050345] memdup_user+0x22/0xd0 [ 1214.051101] strndup_user+0x74/0xe0 [ 1214.051878] __x64_sys_mount+0x17c/0x300 [ 1214.052744] ? copy_mnt_ns+0xa00/0xa00 [ 1214.053577] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1214.054682] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1214.055790] do_syscall_64+0x33/0x40 [ 1214.056577] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1214.057652] RIP: 0033:0x7fd8050b504a [ 1214.058464] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1214.062257] RSP: 002b:00007fd802628fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1214.063874] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b504a [ 1214.065369] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 00007fd802629000 [ 1214.066878] RBP: 00007fd802629040 R08: 00007fd802629040 R09: 0000000020000000 [ 1214.068397] R10: 0000000000002000 R11: 0000000000000206 R12: 0000000020000000 [ 1214.069911] R13: 00000000200000c0 R14: 00007fd802629000 R15: 0000000020001840 18:37:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(0x0, &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:37:26 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 54) [ 1214.187744] loop1: detected capacity change from 0 to 8192 [ 1214.191185] nfs4: Unknown parameter '*¶¤' 18:37:26 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 25) [ 1214.242245] FAULT_INJECTION: forcing a failure. [ 1214.242245] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1214.242409] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1214.244124] CPU: 1 PID: 7744 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1214.244132] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1214.244137] Call Trace: [ 1214.244156] dump_stack+0x107/0x167 [ 1214.244171] should_fail.cold+0x5/0xa [ 1214.244191] __alloc_pages_nodemask+0x182/0x600 [ 1214.244205] ? find_held_lock+0x2c/0x110 [ 1214.244219] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1214.244254] alloc_pages_current+0x187/0x280 [ 1214.244271] get_zeroed_page+0x14/0xb0 [ 1214.244284] get_image_page+0x20/0x320 [ 1214.244304] ? chain_alloc+0x52/0x100 [ 1214.254136] memory_bm_create+0x50f/0x930 [ 1214.254759] create_basic_memory_bitmaps+0xb9/0x170 [ 1214.255499] snapshot_open+0x239/0x2b0 [ 1214.256089] ? snapshot_release+0x1f0/0x1f0 [ 1214.256716] misc_open+0x375/0x4a0 [ 1214.257244] ? misc_devnode+0x130/0x130 [ 1214.257819] chrdev_open+0x268/0x6e0 [ 1214.258361] ? __unregister_chrdev+0x110/0x110 [ 1214.259032] ? fsnotify_perm.part.0+0x22d/0x620 [ 1214.259738] do_dentry_open+0x4b7/0x1090 [ 1214.260334] ? __unregister_chrdev+0x110/0x110 [ 1214.260996] ? may_open+0x1e4/0x400 [ 1214.261528] path_openat+0x19ba/0x2770 [ 1214.262107] ? path_lookupat+0x860/0x860 [ 1214.262695] ? find_held_lock+0x2c/0x110 [ 1214.263289] ? __lockdep_reset_lock+0x180/0x180 [ 1214.264009] do_filp_open+0x190/0x3e0 [ 1214.264556] ? may_open_dev+0xf0/0xf0 [ 1214.265114] ? do_raw_spin_lock+0x121/0x260 [ 1214.265741] ? rwlock_bug.part.0+0x90/0x90 [ 1214.266365] ? _raw_spin_unlock+0x1a/0x30 [ 1214.266968] ? alloc_fd+0x2e7/0x670 [ 1214.267510] do_sys_openat2+0x171/0x4d0 [ 1214.268477] ? build_open_flags+0x6f0/0x6f0 [ 1214.269485] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1214.270616] ? wait_for_completion_io+0x270/0x270 [ 1214.271780] __x64_sys_openat+0x13f/0x1f0 [ 1214.272737] ? __ia32_sys_open+0x1c0/0x1c0 [ 1214.273714] ? ksys_write+0x1a9/0x260 [ 1214.274609] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1214.275834] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1214.277030] do_syscall_64+0x33/0x40 [ 1214.277894] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1214.279073] RIP: 0033:0x7f1ecf0f5b19 [ 1214.279946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1214.284184] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1214.285935] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1214.287587] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1214.289228] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1214.290870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1214.292724] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:37:26 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 54) [ 1214.316788] loop0: detected capacity change from 0 to 512 [ 1214.318770] FAULT_INJECTION: forcing a failure. [ 1214.318770] name failslab, interval 1, probability 0, space 0, times 0 [ 1214.321223] CPU: 0 PID: 7747 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1214.322677] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1214.324459] Call Trace: [ 1214.325031] dump_stack+0x107/0x167 [ 1214.325819] should_fail.cold+0x5/0xa [ 1214.326641] ? jbd2__journal_start+0x190/0x7e0 [ 1214.327644] should_failslab+0x5/0x20 [ 1214.328469] kmem_cache_alloc+0x5b/0x310 [ 1214.329363] jbd2__journal_start+0x190/0x7e0 [ 1214.330330] __ext4_journal_start_sb+0x214/0x390 [ 1214.331369] __ext4_new_inode+0x2e0b/0x5370 [ 1214.332367] ? ext4_mark_inode_used+0x14b0/0x14b0 [ 1214.333435] ? dquot_initialize_needed+0x290/0x290 [ 1214.334497] ? selinux_determine_inode_label+0x1ab/0x340 [ 1214.335701] ext4_mkdir+0x32c/0xb10 [ 1214.336514] ? ext4_rmdir+0xf70/0xf70 [ 1214.337363] vfs_mkdir+0x493/0x750 [ 1214.338142] do_mkdirat+0x150/0x2b0 [ 1214.338938] ? user_path_create+0xf0/0xf0 [ 1214.339851] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1214.340976] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1214.342088] do_syscall_64+0x33/0x40 [ 1214.342890] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1214.344019] RIP: 0033:0x7f9be863ac27 [ 1214.344820] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1214.348755] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1214.350387] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1214.351921] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1214.353446] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1214.354971] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1214.356508] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 [ 1214.358272] EXT4-fs error (device sda) in __ext4_new_inode:1086: Out of memory 18:37:26 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) execveat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000440)=[&(0x7f0000000140)=']\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000c40)='security.capability\x00', &(0x7f0000000340)='security.capability\x00', &(0x7f00000003c0)='wfdno'], &(0x7f0000000c00)=[&(0x7f0000000380)='obj_type', &(0x7f0000000b00)='.\\\x00', &(0x7f0000000b40)='-\x96)]:', &(0x7f0000000300)='6\x03(\xe9\xc4\xc8\xd7O;\x83\to5\xcf\xa3p\xe5', &(0x7f0000000bc0)='\xf4\x89@'], 0x1000) fallocate(0xffffffffffffffff, 0x78, 0x0, 0x0) ftruncate(r0, 0x1000003) preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000640)=""/177, 0xb1}, {&(0x7f0000000800)=""/145, 0x91}, {&(0x7f00000008c0)=""/108, 0x6c}], 0x3, 0x1, 0x8) socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x73, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000180)={{{@in6=@empty}}, {{@in=@broadcast}, 0x0, @in=@local}}, &(0x7f0000000100)=0xe8) clone3(&(0x7f0000000740)={0x40092340, &(0x7f0000000480)=0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000500), {0x34}, &(0x7f0000000540)=""/201, 0xc9, 0x0, &(0x7f0000000700)}, 0x58) ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f00000007c0)={0xfffffffd, 0x81, 0x667, 0x3f, 0x8}) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{}, {0x8000000, 0x3}]}, 0x14, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000700)={0x0, r1, 0x3f7e, 0x80000001, 0x81}) socket$nl_xfrm(0x10, 0x3, 0x6) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000009c0), 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000940)='./file0\x00', &(0x7f0000000980), 0x41000, &(0x7f0000000a00)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_client}, {@access_client}, {@cache_fscache}], [{@obj_type={'obj_type', 0x3d, 'security.capability\x00'}}, {@fsuuid={'fsuuid', 0x3d, {[0x39, 0x34, 0x33, 0x65, 0x38, 0x39, 0x32, 0x64], 0x2d, [0x30, 0x36, 0x35, 0x30], 0x2d, [0x66, 0x35, 0x35, 0x31], 0x2d, [0x38, 0x30, 0x30, 0x36], 0x2d, [0x36, 0x33, 0x37, 0x34, 0x34, 0x32, 0x38, 0x38]}}}, {@smackfsdef={'smackfsdef', 0x3d, ']\x00'}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@appraise_type}]}}) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) [ 1214.424793] FAULT_INJECTION: forcing a failure. [ 1214.424793] name failslab, interval 1, probability 0, space 0, times 0 [ 1214.426979] CPU: 1 PID: 7752 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1214.428176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1214.429615] Call Trace: [ 1214.430079] dump_stack+0x107/0x167 [ 1214.430711] should_fail.cold+0x5/0xa [ 1214.431376] ? create_object.isra.0+0x3a/0xa20 [ 1214.432182] should_failslab+0x5/0x20 [ 1214.432846] kmem_cache_alloc+0x5b/0x310 [ 1214.433559] create_object.isra.0+0x3a/0xa20 [ 1214.434314] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1214.435198] __kmalloc_track_caller+0x177/0x370 [ 1214.436003] ? strndup_user+0x74/0xe0 [ 1214.436663] memdup_user+0x22/0xd0 [ 1214.437276] strndup_user+0x74/0xe0 [ 1214.437905] __x64_sys_mount+0x17c/0x300 [ 1214.438604] ? copy_mnt_ns+0xa00/0xa00 [ 1214.439285] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1214.440197] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1214.441087] do_syscall_64+0x33/0x40 [ 1214.441730] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1214.442613] RIP: 0033:0x7fd8050b504a [ 1214.443254] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1214.446436] RSP: 002b:00007fd802628fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1214.448042] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b504a [ 1214.449510] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 00007fd802629000 [ 1214.450993] RBP: 00007fd802629040 R08: 00007fd802629040 R09: 0000000020000000 [ 1214.452491] R10: 0000000000002000 R11: 0000000000000206 R12: 0000000020000000 [ 1214.453964] R13: 00000000200000c0 R14: 00007fd802629000 R15: 0000000020001840 18:37:26 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 26) 18:37:26 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 55) 18:37:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1214.542762] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1214.592902] FAULT_INJECTION: forcing a failure. [ 1214.592902] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1214.594993] CPU: 1 PID: 7758 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1214.596192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1214.597620] Call Trace: [ 1214.598084] dump_stack+0x107/0x167 [ 1214.598720] should_fail.cold+0x5/0xa [ 1214.599393] __alloc_pages_nodemask+0x182/0x600 [ 1214.600204] ? find_held_lock+0x2c/0x110 [ 1214.600916] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1214.601984] alloc_pages_current+0x187/0x280 [ 1214.602761] get_zeroed_page+0x14/0xb0 [ 1214.603440] get_image_page+0x20/0x320 [ 1214.604126] ? chain_alloc+0x52/0x100 [ 1214.604799] memory_bm_create+0x50f/0x930 [ 1214.605548] create_basic_memory_bitmaps+0xb9/0x170 [ 1214.606430] snapshot_open+0x239/0x2b0 [ 1214.607109] ? snapshot_release+0x1f0/0x1f0 [ 1214.607874] misc_open+0x375/0x4a0 [ 1214.608496] ? misc_devnode+0x130/0x130 [ 1214.609223] chrdev_open+0x268/0x6e0 [ 1214.609878] ? __unregister_chrdev+0x110/0x110 [ 1214.610664] ? fsnotify_perm.part.0+0x22d/0x620 [ 1214.611482] do_dentry_open+0x4b7/0x1090 [ 1214.612186] ? __unregister_chrdev+0x110/0x110 [ 1214.612998] ? may_open+0x1e4/0x400 [ 1214.613639] path_openat+0x19ba/0x2770 [ 1214.614315] ? path_lookupat+0x860/0x860 [ 1214.615169] ? find_held_lock+0x2c/0x110 [ 1214.615892] ? __lockdep_reset_lock+0x180/0x180 [ 1214.616718] do_filp_open+0x190/0x3e0 [ 1214.617376] ? may_open_dev+0xf0/0xf0 [ 1214.618188] ? do_raw_spin_lock+0x121/0x260 [ 1214.618935] ? rwlock_bug.part.0+0x90/0x90 [ 1214.619679] ? _raw_spin_unlock+0x1a/0x30 [ 1214.620399] ? alloc_fd+0x2e7/0x670 [ 1214.621046] do_sys_openat2+0x171/0x4d0 [ 1214.621738] ? build_open_flags+0x6f0/0x6f0 [ 1214.622644] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1214.623485] ? wait_for_completion_io+0x270/0x270 [ 1214.624334] __x64_sys_openat+0x13f/0x1f0 [ 1214.625073] ? __ia32_sys_open+0x1c0/0x1c0 [ 1214.625803] ? ksys_write+0x1a9/0x260 [ 1214.626618] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1214.627515] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1214.628417] do_syscall_64+0x33/0x40 [ 1214.629063] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1214.630165] RIP: 0033:0x7f1ecf0f5b19 [ 1214.630807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1214.633966] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1214.635283] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1214.636640] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1214.637922] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1214.639267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1214.640503] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1214.651468] loop0: detected capacity change from 0 to 512 [ 1214.659447] FAULT_INJECTION: forcing a failure. [ 1214.659447] name failslab, interval 1, probability 0, space 0, times 0 [ 1214.662612] CPU: 0 PID: 7759 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1214.664549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1214.666874] Call Trace: [ 1214.667647] dump_stack+0x107/0x167 [ 1214.668691] should_fail.cold+0x5/0xa [ 1214.669781] ? jbd2__journal_start+0x190/0x7e0 [ 1214.671077] should_failslab+0x5/0x20 [ 1214.672167] kmem_cache_alloc+0x5b/0x310 [ 1214.673333] jbd2__journal_start+0x190/0x7e0 [ 1214.674612] __ext4_journal_start_sb+0x214/0x390 [ 1214.675996] __ext4_new_inode+0x2e0b/0x5370 [ 1214.677310] ? ext4_mark_inode_used+0x14b0/0x14b0 [ 1214.678706] ? dquot_initialize_needed+0x290/0x290 [ 1214.680089] ? selinux_determine_inode_label+0x1ab/0x340 [ 1214.681791] ext4_mkdir+0x32c/0xb10 [ 1214.682869] ? ext4_rmdir+0xf70/0xf70 [ 1214.684002] vfs_mkdir+0x493/0x750 [ 1214.684981] do_mkdirat+0x150/0x2b0 [ 1214.686010] ? user_path_create+0xf0/0xf0 [ 1214.687116] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1214.688579] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1214.690025] do_syscall_64+0x33/0x40 [ 1214.691066] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1214.692566] RIP: 0033:0x7f9be863ac27 [ 1214.693570] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1214.698292] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1214.700289] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1214.702088] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1214.703906] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1214.705732] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1214.707605] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 [ 1214.713236] EXT4-fs error (device sda) in __ext4_new_inode:1086: Out of memory 18:37:43 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 56) 18:37:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x10, r0, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:37:43 executing program 1: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:37:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0xffffff7f}, 0x0, 0xfffffff7ffffffff, 0xffffffffffffffff, 0x0) open_tree(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x1000) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000000000), 0x5ac, 0x0, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f00000001c0)='./file2\x00', &(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x8, 0x1) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0xe8b82, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000040), 0xfff, 0x100100) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r2, &(0x7f00000000c0)=""/149, 0x95) sendfile(r1, r2, &(0x7f0000000240)=0x800, 0x0) sendmsg$nl_generic(r1, &(0x7f00000014c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001480)={&(0x7f0000000340)={0x910, 0x1d, 0x9bcf7bac5cbf355, 0x70bd2c, 0x25dfdbfe, {0xb}, [@nested={0xd1, 0x32, 0x0, 0x1, [@typed={0xc, 0x2a, 0x0, 0x0, @u64=0xffff}, @generic="f59108a63592ed26ffdcbfd17bfaca60d73a4a5c46cb2d7a9830558db34168cdae55a0c85ea1f73d39056af4d69305e7b5c6ace4c00b2ee794f06cd7e65c8109d67ce605d250af6c593575f00e0768d3015be69b148bf0c4ce58ed76734754822c1fbed96990656a186545600d45b8675bc152f0e7ccc8c57f494c18", @generic, @generic="f2563c59cc40c86996601e97181dab86006367814a49c49db225adeb25ed48d00e416df78f539e7b98", @typed={0x8, 0x15, 0x0, 0x0, @ipv4=@multicast2}, @typed={0x14, 0x6e, 0x0, 0x0, @ipv6=@private1={0xfc, 0x1, '\x00', 0x1}}]}, @generic="0cc97d2fbfa93266281376f2cc0056f7e63a4d337e1946c0ba7516d62cf6025786acfbb4a7", @generic="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"]}, 0x910}}, 0x800) r3 = perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x8) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, &(0x7f0000001900)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r4, 0x5000943f, &(0x7f0000000900)={{}, 0x0, 0x4, @inherit={0x60, &(0x7f0000000140)=ANY=[@ANYBLOB="0100000000000000030000f30000e1000500002e00000009000000ff0000000001ffffff00000000040000fffffffc008180000000000002ffffffff000400000000000000000000ea54ffff2100050001000000002500"/96]}, @devid=r5}) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000c80)={r5, 0x20000000057, 0x7}) 18:37:43 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:37:43 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 55) 18:37:43 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:37:43 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 27) [ 1231.212122] loop0: detected capacity change from 0 to 512 [ 1231.213305] FAULT_INJECTION: forcing a failure. [ 1231.213305] name failslab, interval 1, probability 0, space 0, times 0 [ 1231.214877] CPU: 0 PID: 7772 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1231.215865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1231.217099] Call Trace: [ 1231.217499] dump_stack+0x107/0x167 [ 1231.218048] should_fail.cold+0x5/0xa [ 1231.218625] ? security_inode_alloc+0x34/0x160 [ 1231.219307] should_failslab+0x5/0x20 [ 1231.219874] kmem_cache_alloc+0x5b/0x310 [ 1231.220501] security_inode_alloc+0x34/0x160 [ 1231.221159] inode_init_always+0xa4e/0xd10 [ 1231.221790] alloc_inode+0x84/0x240 [ 1231.222335] new_inode+0x23/0x250 [ 1231.222863] __ext4_new_inode+0x32c/0x5370 [ 1231.223489] ? avc_has_extended_perms+0xf40/0xf40 [ 1231.224255] ? ext4_mark_inode_used+0x14b0/0x14b0 [ 1231.224984] ? dquot_initialize_needed+0x290/0x290 [ 1231.225708] ? selinux_determine_inode_label+0x1ab/0x340 [ 1231.226533] ext4_mkdir+0x32c/0xb10 [ 1231.227094] ? ext4_rmdir+0xf70/0xf70 [ 1231.227684] vfs_mkdir+0x493/0x750 [ 1231.228224] do_mkdirat+0x150/0x2b0 [ 1231.228776] ? user_path_create+0xf0/0xf0 [ 1231.229400] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1231.230170] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1231.230942] do_syscall_64+0x33/0x40 [ 1231.231492] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1231.232255] RIP: 0033:0x7f9be863ac27 [ 1231.232811] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1231.234973] FAULT_INJECTION: forcing a failure. [ 1231.234973] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1231.235476] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1231.238085] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1231.239124] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1231.240178] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1231.241213] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1231.242249] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 [ 1231.243335] CPU: 1 PID: 7784 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1231.244199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1231.245229] Call Trace: [ 1231.245569] dump_stack+0x107/0x167 [ 1231.246038] should_fail.cold+0x5/0xa [ 1231.246518] __alloc_pages_nodemask+0x182/0x600 [ 1231.247098] ? find_held_lock+0x2c/0x110 [ 1231.247603] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1231.248376] alloc_pages_current+0x187/0x280 [ 1231.248929] get_zeroed_page+0x14/0xb0 [ 1231.249409] get_image_page+0x20/0x320 [ 1231.249889] ? chain_alloc+0x52/0x100 [ 1231.250360] memory_bm_create+0x50f/0x930 [ 1231.250890] create_basic_memory_bitmaps+0xb9/0x170 [ 1231.251514] snapshot_open+0x239/0x2b0 [ 1231.252000] ? snapshot_release+0x1f0/0x1f0 [ 1231.252542] misc_open+0x375/0x4a0 [ 1231.252983] ? misc_devnode+0x130/0x130 [ 1231.253477] chrdev_open+0x268/0x6e0 [ 1231.253940] ? __unregister_chrdev+0x110/0x110 [ 1231.254510] ? fsnotify_perm.part.0+0x22d/0x620 [ 1231.255096] do_dentry_open+0x4b7/0x1090 [ 1231.255604] ? __unregister_chrdev+0x110/0x110 [ 1231.256170] ? may_open+0x1e4/0x400 [ 1231.256619] path_openat+0x19ba/0x2770 [ 1231.257108] ? path_lookupat+0x860/0x860 [ 1231.257609] ? find_held_lock+0x2c/0x110 [ 1231.258108] ? __lockdep_reset_lock+0x180/0x180 [ 1231.258683] do_filp_open+0x190/0x3e0 [ 1231.259151] ? may_open_dev+0xf0/0xf0 [ 1231.259623] ? do_raw_spin_lock+0x121/0x260 [ 1231.260151] ? rwlock_bug.part.0+0x90/0x90 [ 1231.260691] ? _raw_spin_unlock+0x1a/0x30 [ 1231.261199] ? alloc_fd+0x2e7/0x670 [ 1231.261654] do_sys_openat2+0x171/0x4d0 [ 1231.262145] ? build_open_flags+0x6f0/0x6f0 [ 1231.262676] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1231.263260] ? wait_for_completion_io+0x270/0x270 [ 1231.263858] __x64_sys_openat+0x13f/0x1f0 [ 1231.264374] ? __ia32_sys_open+0x1c0/0x1c0 [ 1231.264889] ? ksys_write+0x1a9/0x260 [ 1231.265361] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1231.266006] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1231.266640] do_syscall_64+0x33/0x40 [ 1231.267095] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1231.267722] RIP: 0033:0x7f1ecf0f5b19 [ 1231.268186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1231.270440] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1231.271379] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1231.272252] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1231.273124] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1231.274001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1231.274875] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1231.276237] loop5: detected capacity change from 0 to 41948160 18:37:43 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 28) [ 1231.332501] FAULT_INJECTION: forcing a failure. [ 1231.332501] name failslab, interval 1, probability 0, space 0, times 0 [ 1231.334089] CPU: 0 PID: 7786 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1231.335038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1231.336202] Call Trace: [ 1231.336576] dump_stack+0x107/0x167 [ 1231.337091] should_fail.cold+0x5/0xa [ 1231.337635] ? create_object.isra.0+0x3a/0xa20 [ 1231.338282] should_failslab+0x5/0x20 [ 1231.338824] kmem_cache_alloc+0x5b/0x310 [ 1231.339404] create_object.isra.0+0x3a/0xa20 [ 1231.340012] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1231.340739] __kmalloc_track_caller+0x177/0x370 [ 1231.341391] ? strndup_user+0x74/0xe0 [ 1231.341933] memdup_user+0x22/0xd0 [ 1231.342436] strndup_user+0x74/0xe0 [ 1231.342956] __x64_sys_mount+0x17c/0x300 [ 1231.343534] ? copy_mnt_ns+0xa00/0xa00 [ 1231.344101] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1231.344849] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1231.345577] do_syscall_64+0x33/0x40 [ 1231.346106] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1231.346827] RIP: 0033:0x7fd8050b504a [ 1231.347355] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1231.347952] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. [ 1231.349908] RSP: 002b:00007fd802628fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1231.349923] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b504a [ 1231.349931] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 00007fd802629000 [ 1231.349947] RBP: 00007fd802629040 R08: 00007fd802629040 R09: 0000000020000000 [ 1231.355022] R10: 0000000000002000 R11: 0000000000000206 R12: 0000000020000000 [ 1231.356023] R13: 00000000200000c0 R14: 00007fd802629000 R15: 0000000020001840 [ 1231.412665] FAULT_INJECTION: forcing a failure. [ 1231.412665] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1231.415339] CPU: 0 PID: 7800 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1231.416822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1231.418610] Call Trace: [ 1231.419191] dump_stack+0x107/0x167 [ 1231.419991] should_fail.cold+0x5/0xa [ 1231.420837] __alloc_pages_nodemask+0x182/0x600 [ 1231.421846] ? find_held_lock+0x2c/0x110 [ 1231.422727] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1231.424070] alloc_pages_current+0x187/0x280 [ 1231.425154] get_zeroed_page+0x14/0xb0 [ 1231.426079] get_image_page+0x20/0x320 [ 1231.426920] ? chain_alloc+0x52/0x100 [ 1231.427757] memory_bm_create+0x50f/0x930 [ 1231.428711] create_basic_memory_bitmaps+0xb9/0x170 [ 1231.429807] snapshot_open+0x239/0x2b0 [ 1231.430649] ? snapshot_release+0x1f0/0x1f0 [ 1231.431589] misc_open+0x375/0x4a0 [ 1231.432377] ? misc_devnode+0x130/0x130 [ 1231.433240] chrdev_open+0x268/0x6e0 [ 1231.434053] ? __unregister_chrdev+0x110/0x110 [ 1231.435048] ? fsnotify_perm.part.0+0x22d/0x620 [ 1231.436080] do_dentry_open+0x4b7/0x1090 [ 1231.436982] ? __unregister_chrdev+0x110/0x110 [ 1231.437974] ? may_open+0x1e4/0x400 [ 1231.438774] path_openat+0x19ba/0x2770 [ 1231.439636] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1231.440734] ? path_lookupat+0x860/0x860 [ 1231.441616] ? perf_trace_lock+0x2bd/0x490 [ 1231.442542] ? find_held_lock+0x2c/0x110 [ 1231.443433] ? __lockdep_reset_lock+0x180/0x180 [ 1231.444468] do_filp_open+0x190/0x3e0 [ 1231.445297] ? may_open_dev+0xf0/0xf0 [ 1231.446150] ? do_raw_spin_lock+0x121/0x260 [ 1231.447087] ? rwlock_bug.part.0+0x90/0x90 [ 1231.448027] ? _raw_spin_unlock+0x1a/0x30 [ 1231.448933] ? alloc_fd+0x2e7/0x670 [ 1231.449752] do_sys_openat2+0x171/0x4d0 [ 1231.450624] ? build_open_flags+0x6f0/0x6f0 [ 1231.451556] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1231.452620] ? wait_for_completion_io+0x270/0x270 [ 1231.453685] __x64_sys_openat+0x13f/0x1f0 [ 1231.454586] ? __ia32_sys_open+0x1c0/0x1c0 [ 1231.455501] ? ksys_write+0x1a9/0x260 [ 1231.456353] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1231.457489] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1231.458616] do_syscall_64+0x33/0x40 [ 1231.459426] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1231.460548] RIP: 0033:0x7f1ecf0f5b19 [ 1231.461358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1231.465340] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1231.466992] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1231.468543] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1231.470081] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1231.471618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1231.473165] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 18:38:01 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 29) 18:38:01 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:38:01 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = syz_io_uring_setup(0x3a79, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, r1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000080)=0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @multicast1}}) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r5, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) r6 = openat(0xffffffffffffffff, &(0x7f00000000c0)='/proc/self/exe\x00', 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x200, 0x10) r7 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendfile(r7, r6, 0x0, 0x6) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000004, 0x30, r6, 0x0) perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x9, 0x2, 0x0, 0x20, 0x0, 0x7, 0x1020a, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9, 0x4, @perf_config_ext={0x5, 0x5}, 0x800, 0x0, 0x4, 0x5, 0x5e, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x6, r0, 0x2) r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x7d54c3, 0x5) r9 = inotify_init1(0x800) copy_file_range(r8, &(0x7f0000000180)=0x8, r9, &(0x7f0000000280)=0x714, 0x0, 0x0) r10 = accept$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000140)=0x1c) sendmmsg$inet6(r10, 0x0, 0x0, 0x2004004) clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1249.311178] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:38:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x2ff, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}]}, 0x24}}, 0x0) syz_80211_join_ibss(&(0x7f0000000080)='wlan1\x00', 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0) sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xc000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r4, 0x100, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_4ADDR={0x5, 0x53, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x200448c0}, 0x20000881) 18:38:01 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 57) 18:38:01 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:38:01 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 56) 18:38:01 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) [ 1249.322167] FAULT_INJECTION: forcing a failure. [ 1249.322167] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1249.325567] CPU: 0 PID: 7812 Comm: syz-executor.4 Not tainted 5.10.234 #1 [ 1249.327397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.329620] Call Trace: [ 1249.330337] dump_stack+0x107/0x167 [ 1249.331329] should_fail.cold+0x5/0xa [ 1249.332377] __alloc_pages_nodemask+0x182/0x600 [ 1249.333628] ? find_held_lock+0x2c/0x110 [ 1249.334728] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1249.336067] loop0: detected capacity change from 0 to 512 [ 1249.336394] alloc_pages_current+0x187/0x280 [ 1249.338103] FAULT_INJECTION: forcing a failure. [ 1249.338103] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.338658] get_zeroed_page+0x14/0xb0 [ 1249.341974] get_image_page+0x20/0x320 [ 1249.342937] ? chain_alloc+0x52/0x100 [ 1249.343945] memory_bm_create+0x50f/0x930 [ 1249.345039] create_basic_memory_bitmaps+0xb9/0x170 [ 1249.346215] snapshot_open+0x239/0x2b0 [ 1249.347112] ? snapshot_release+0x1f0/0x1f0 [ 1249.348113] misc_open+0x375/0x4a0 [ 1249.348952] ? misc_devnode+0x130/0x130 [ 1249.349873] chrdev_open+0x268/0x6e0 [ 1249.350739] ? __unregister_chrdev+0x110/0x110 [ 1249.351801] ? fsnotify_perm.part.0+0x22d/0x620 [ 1249.352918] do_dentry_open+0x4b7/0x1090 [ 1249.353863] ? __unregister_chrdev+0x110/0x110 [ 1249.354922] ? may_open+0x1e4/0x400 [ 1249.355779] path_openat+0x19ba/0x2770 [ 1249.356694] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1249.357867] ? path_lookupat+0x860/0x860 [ 1249.358805] ? perf_trace_lock+0x2bd/0x490 [ 1249.359792] ? find_held_lock+0x2c/0x110 [ 1249.360741] ? __lockdep_reset_lock+0x180/0x180 [ 1249.361895] do_filp_open+0x190/0x3e0 [ 1249.362775] ? may_open_dev+0xf0/0xf0 [ 1249.363680] ? do_raw_spin_lock+0x121/0x260 [ 1249.364678] ? rwlock_bug.part.0+0x90/0x90 [ 1249.365721] ? _raw_spin_unlock+0x1a/0x30 [ 1249.366679] ? alloc_fd+0x2e7/0x670 [ 1249.367559] do_sys_openat2+0x171/0x4d0 [ 1249.368489] ? build_open_flags+0x6f0/0x6f0 [ 1249.369520] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1249.370649] ? wait_for_completion_io+0x270/0x270 [ 1249.371783] __x64_sys_openat+0x13f/0x1f0 [ 1249.372741] ? __ia32_sys_open+0x1c0/0x1c0 [ 1249.373751] ? ksys_write+0x1a9/0x260 [ 1249.374650] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1249.375859] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1249.377092] do_syscall_64+0x33/0x40 [ 1249.377955] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1249.379139] RIP: 0033:0x7f1ecf0f5b19 [ 1249.379999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.384291] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1249.386064] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1249.387701] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1249.389354] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1249.390992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1249.392648] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1249.394365] CPU: 1 PID: 7816 Comm: syz-executor.0 Not tainted 5.10.234 #1 [ 1249.395944] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.397722] Call Trace: [ 1249.398293] dump_stack+0x107/0x167 [ 1249.399102] should_fail.cold+0x5/0xa [ 1249.399946] ? create_object.isra.0+0x3a/0xa20 [ 1249.400936] should_failslab+0x5/0x20 [ 1249.401785] kmem_cache_alloc+0x5b/0x310 [ 1249.402708] create_object.isra.0+0x3a/0xa20 [ 1249.403648] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1249.404742] kmem_cache_alloc+0x159/0x310 [ 1249.405651] security_inode_alloc+0x34/0x160 [ 1249.406593] inode_init_always+0xa4e/0xd10 [ 1249.407499] alloc_inode+0x84/0x240 [ 1249.408282] new_inode+0x23/0x250 [ 1249.409037] __ext4_new_inode+0x32c/0x5370 [ 1249.409940] ? avc_has_extended_perms+0xf40/0xf40 [ 1249.411131] ? ext4_mark_inode_used+0x14b0/0x14b0 [ 1249.412337] ? dquot_initialize_needed+0x290/0x290 [ 1249.413443] ? selinux_determine_inode_label+0x1ab/0x340 [ 1249.414618] ext4_mkdir+0x32c/0xb10 [ 1249.415412] ? ext4_rmdir+0xf70/0xf70 [ 1249.416240] vfs_mkdir+0x493/0x750 [ 1249.417008] do_mkdirat+0x150/0x2b0 [ 1249.417790] ? user_path_create+0xf0/0xf0 [ 1249.418692] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1249.419806] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1249.420917] do_syscall_64+0x33/0x40 [ 1249.421708] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1249.422794] RIP: 0033:0x7f9be863ac27 [ 1249.423585] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.427499] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1249.429129] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1249.430645] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1249.432158] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1249.433697] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1249.435205] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 [ 1249.442645] FAULT_INJECTION: forcing a failure. [ 1249.442645] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1249.446004] CPU: 0 PID: 7821 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1249.447883] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.450104] Call Trace: [ 1249.450740] dump_stack+0x107/0x167 [ 1249.451595] should_fail.cold+0x5/0xa [ 1249.452529] _copy_from_user+0x2e/0x1b0 [ 1249.453599] memdup_user+0x65/0xd0 [ 1249.454465] strndup_user+0x74/0xe0 [ 1249.455333] __x64_sys_mount+0x17c/0x300 [ 1249.456317] ? copy_mnt_ns+0xa00/0xa00 [ 1249.457495] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1249.458836] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1249.460147] do_syscall_64+0x33/0x40 [ 1249.461107] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1249.462213] RIP: 0033:0x7fd8050b504a [ 1249.463013] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.466996] RSP: 002b:00007fd802607fa8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5 [ 1249.468618] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b504a [ 1249.470152] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 00007fd802608000 [ 1249.471670] RBP: 00007fd802608040 R08: 00007fd802608040 R09: 0000000020000000 [ 1249.473197] R10: 0000000000002000 R11: 0000000000000202 R12: 0000000020000000 [ 1249.474716] R13: 00000000200000c0 R14: 00007fd802608000 R15: 0000000020001840 [ 1249.479810] ------------[ cut here ]------------ [ 1249.481326] wlan1: Failed check-sdata-in-driver check, flags: 0x4 [ 1249.483453] WARNING: CPU: 0 PID: 7822 at net/mac80211/driver-ops.h:172 drv_bss_info_changed+0x554/0x5f0 [ 1249.485551] Modules linked in: [ 1249.486281] CPU: 0 PID: 7822 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1249.487856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.492281] RIP: 0010:drv_bss_info_changed+0x554/0x5f0 [ 1249.498331] Code: 49 8b ac 24 a8 03 00 00 48 85 ed 74 3e e8 54 80 8c fd e8 4f 80 8c fd 8b 54 24 04 48 89 ee 48 c7 c7 80 c8 95 84 e8 2c 04 25 00 <0f> 0b e9 c7 fd ff ff 4c 89 ff e8 2d 78 b8 fd e9 97 fb ff ff 4c 89 [ 1249.502453] RSP: 0018:ffff88804aaf75c8 EFLAGS: 00010282 [ 1249.503651] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 1249.505241] RDX: 0000000000040000 RSI: ffffffff8129ea93 RDI: ffffed100955eeab [ 1249.507091] RBP: ffff888047dc8000 R08: 0000000000000001 R09: ffff88806ce37b0f [ 1249.508777] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888047dc8bc0 [ 1249.510369] R13: 0000000000400000 R14: ffff888047dc9da0 R15: ffff888047dc9d98 [ 1249.511952] FS: 00007f868a213700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 1249.513929] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1249.515269] CR2: 00007f868cd0c958 CR3: 0000000048994000 CR4: 0000000000350ef0 [ 1249.516986] Call Trace: [ 1249.517729] ? __warn+0xe2/0x1f0 [ 1249.518722] ? drv_bss_info_changed+0x554/0x5f0 [ 1249.519951] ? report_bug+0x1c1/0x210 [ 1249.521020] ? handle_bug+0x41/0x90 [ 1249.521957] ? exc_invalid_op+0x14/0x50 [ 1249.522995] ? asm_exc_invalid_op+0x12/0x20 [ 1249.524109] ? vprintk_func+0x93/0x140 [ 1249.525118] ? drv_bss_info_changed+0x554/0x5f0 [ 1249.526308] ? drv_bss_info_changed+0x554/0x5f0 [ 1249.527519] ieee80211_bss_info_change_notify+0x9a/0xc0 [ 1249.528880] ieee80211_ocb_leave+0x1ed/0x340 [ 1249.529866] ? nl80211_parse_mon_options+0x45c/0x690 [ 1249.531005] __cfg80211_leave_ocb+0x1d6/0x570 [ 1249.532013] cfg80211_leave_ocb+0x4e/0x70 [ 1249.532969] cfg80211_change_iface+0x843/0xf90 [ 1249.534004] nl80211_set_interface+0x67c/0x8f0 [ 1249.535038] ? nl80211_notify_iface+0x180/0x180 [ 1249.536231] ? nl80211_pre_doit+0xa2/0x630 [ 1249.537364] genl_family_rcv_msg_doit+0x22d/0x330 [ 1249.538691] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1249.540506] ? cap_capable+0x1cd/0x230 [ 1249.541654] ? ns_capable+0xe2/0x110 [ 1249.542706] genl_rcv_msg+0x33c/0x5a0 [ 1249.543784] ? genl_get_cmd+0x480/0x480 [ 1249.545067] ? nl80211_notify_iface+0x180/0x180 [ 1249.546361] ? lock_release+0x680/0x680 [ 1249.547460] ? __lockdep_reset_lock+0x180/0x180 [ 1249.548771] netlink_rcv_skb+0x14b/0x430 [ 1249.549985] ? genl_get_cmd+0x480/0x480 [ 1249.551102] ? netlink_ack+0xab0/0xab0 [ 1249.552209] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1249.553493] ? is_vmalloc_addr+0x7b/0xb0 [ 1249.554627] genl_rcv+0x24/0x40 [ 1249.555553] netlink_unicast+0x549/0x7f0 [ 1249.556683] ? netlink_attachskb+0x870/0x870 [ 1249.557997] netlink_sendmsg+0x90f/0xdf0 [ 1249.559157] ? netlink_unicast+0x7f0/0x7f0 [ 1249.560353] ? netlink_unicast+0x7f0/0x7f0 [ 1249.561547] __sock_sendmsg+0x154/0x190 [ 1249.562655] __sys_sendto+0x21c/0x320 [ 1249.563717] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1249.564998] ? kmem_cache_free+0xa7/0x2d0 [ 1249.566216] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1249.567636] ? call_rcu+0x435/0x9c0 [ 1249.568641] ? trace_hardirqs_on+0x5b/0x180 [ 1249.569915] ? _cond_resched+0x12/0x80 [ 1249.571009] __x64_sys_sendto+0xdd/0x1b0 [ 1249.572134] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1249.573536] do_syscall_64+0x33/0x40 [ 1249.574371] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1249.575493] RIP: 0033:0x7f868cc718ac [ 1249.576316] Code: fa fa ff ff 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 20 fb ff ff 48 8b [ 1249.580229] RSP: 002b:00007f868a211f80 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 1249.581891] RAX: ffffffffffffffda RBX: 00007f868a2120f0 RCX: 00007f868cc718ac [ 1249.583432] RDX: 0000000000000024 RSI: 00007f868a212140 RDI: 0000000000000004 [ 1249.584989] RBP: 0000000000000000 R08: 00007f868a211fd4 R09: 000000000000000c [ 1249.586528] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 1249.588071] R13: 00007f868a212140 R14: 0000000000000004 R15: 0000000000000000 [ 1249.589659] irq event stamp: 1949 [ 1249.590438] hardirqs last enabled at (1959): [] console_unlock+0x92d/0xb40 [ 1249.592279] hardirqs last disabled at (1968): [] console_unlock+0x839/0xb40 [ 1249.594131] softirqs last enabled at (1238): [] asm_call_irq_on_stack+0x12/0x20 [ 1249.596049] softirqs last disabled at (1077): [] asm_call_irq_on_stack+0x12/0x20 [ 1249.597972] ---[ end trace 74911521feaaa425 ]--- 18:38:01 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 58) [ 1249.631596] loop0: detected capacity change from 0 to 512 [ 1249.635893] FAULT_INJECTION: forcing a failure. [ 1249.635893] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.638918] CPU: 1 PID: 7831 Comm: syz-executor.0 Tainted: G W 5.10.234 #1 [ 1249.640894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.642879] Call Trace: [ 1249.643511] dump_stack+0x107/0x167 [ 1249.644378] should_fail.cold+0x5/0xa [ 1249.645300] ? ext4_find_extent+0xa77/0xd70 [ 1249.646281] should_failslab+0x5/0x20 [ 1249.647086] __kmalloc+0x72/0x390 [ 1249.647831] ext4_find_extent+0xa77/0xd70 [ 1249.648724] ext4_ext_map_blocks+0x1c8/0x5830 [ 1249.649714] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1249.650933] ? SOFTIRQ_verbose+0x10/0x10 [ 1249.651949] ? perf_trace_lock+0xac/0x490 [ 1249.653057] ? SOFTIRQ_verbose+0x10/0x10 [ 1249.654092] ? ext4_ext_release+0x10/0x10 [ 1249.655153] ? lock_release+0x680/0x680 [ 1249.656161] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1249.657374] ? lock_downgrade+0x6d0/0x6d0 [ 1249.658452] ? down_read+0x10f/0x430 [ 1249.659400] ? down_write+0x160/0x160 [ 1249.660362] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1249.661584] ext4_map_blocks+0x8e1/0x1910 [ 1249.662658] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1249.663789] ? __brelse+0x84/0xa0 [ 1249.664668] ? __ext4_new_inode+0x148/0x5370 [ 1249.665819] ext4_append+0x1b8/0x4e0 [ 1249.666775] ? ext4_move_extents+0x3050/0x3050 [ 1249.667946] ? ext4_mark_inode_used+0x14b0/0x14b0 [ 1249.669198] ext4_init_new_dir+0x25e/0x4d0 [ 1249.670273] ? ext4_init_dot_dotdot+0x610/0x610 [ 1249.671471] ext4_mkdir+0x3c1/0xb10 [ 1249.672416] ? ext4_rmdir+0xf70/0xf70 [ 1249.673431] vfs_mkdir+0x493/0x750 [ 1249.674344] do_mkdirat+0x150/0x2b0 [ 1249.675282] ? user_path_create+0xf0/0xf0 [ 1249.676351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1249.677690] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1249.678992] do_syscall_64+0x33/0x40 [ 1249.679937] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1249.681247] RIP: 0033:0x7f9be863ac27 [ 1249.682192] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.686832] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1249.688760] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1249.690595] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1249.692387] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1249.694228] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1249.696049] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 [ 1249.702915] ieee802154 phy0 wpan0: encryption failed: -22 18:38:02 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') 18:38:02 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 30) [ 1249.776037] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:38:02 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x1) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000001740)=[{0x0}, {0x0, 0x0, 0x101}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)) (fail_nth: 59) 18:38:02 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 57) 18:38:02 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb, 0x30, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x3, 0x0, 0x0, 0x0, 0x81553, 0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x1}, 0x40, 0x4, 0x0, 0x0, 0x4, 0xff}, 0x0, 0x0, 0xffffffffffffffff, 0x1) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) dup2(r1, r2) sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_submit(r0, 0x0, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, {0x8000}}, 0x8) readlink(&(0x7f0000000280)='./file0\x00', &(0x7f0000000380)=""/250, 0xfa) mount$9p_unix(&(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x1001000, &(0x7f00000001c0)=ANY=[@ANYBLOB="9c45cb289520a000000000000003ff4477258c59b47e45f5af7c6cc58be2912302a30a941821400c62f07f0d7da90830e4106ca54d64133ef17d282b6c60cfc0d7e9809d843becbf9f45447d1d03292cc66d4f40da3d4f18f164c340d9f2e3cb1be7a1e79c63edf5295e9b9f5cf71c3556d8d1d0e0bde6f33ed0e759b269705d1d60e77474c68805ca9675f46ecb4ac49f4f25ff22d3d60e44dda2c3b1e4174ae124b65c0509c5d96c3537ce079404918e15065591b541ae477b3d69b3e2"]) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'rose0\x00'}) mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x20, 0x0) [ 1249.881477] FAULT_INJECTION: forcing a failure. [ 1249.881477] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.884171] CPU: 1 PID: 7846 Comm: syz-executor.4 Tainted: G W 5.10.234 #1 [ 1249.886109] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.888086] Call Trace: [ 1249.888708] dump_stack+0x107/0x167 [ 1249.889587] should_fail.cold+0x5/0xa [ 1249.890543] ? create_basic_memory_bitmaps+0xe5/0x170 [ 1249.891850] should_failslab+0x5/0x20 [ 1249.892833] kmem_cache_alloc_trace+0x55/0x320 [ 1249.894012] create_basic_memory_bitmaps+0xe5/0x170 [ 1249.895294] snapshot_open+0x239/0x2b0 [ 1249.896286] ? snapshot_release+0x1f0/0x1f0 [ 1249.897397] misc_open+0x375/0x4a0 [ 1249.898300] ? misc_devnode+0x130/0x130 [ 1249.899294] chrdev_open+0x268/0x6e0 [ 1249.900226] ? __unregister_chrdev+0x110/0x110 [ 1249.901381] ? fsnotify_perm.part.0+0x22d/0x620 [ 1249.902565] do_dentry_open+0x4b7/0x1090 [ 1249.903598] ? __unregister_chrdev+0x110/0x110 [ 1249.904762] ? may_open+0x1e4/0x400 [ 1249.905709] path_openat+0x19ba/0x2770 [ 1249.906734] ? path_lookupat+0x860/0x860 [ 1249.907781] ? find_held_lock+0x2c/0x110 [ 1249.908845] ? __lockdep_reset_lock+0x180/0x180 [ 1249.910051] do_filp_open+0x190/0x3e0 [ 1249.911024] ? may_open_dev+0xf0/0xf0 [ 1249.912029] ? do_raw_spin_lock+0x121/0x260 [ 1249.913166] ? rwlock_bug.part.0+0x90/0x90 [ 1249.914272] ? _raw_spin_unlock+0x1a/0x30 [ 1249.915332] ? alloc_fd+0x2e7/0x670 [ 1249.916293] do_sys_openat2+0x171/0x4d0 [ 1249.917324] ? build_open_flags+0x6f0/0x6f0 [ 1249.918427] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1249.919672] ? wait_for_completion_io+0x270/0x270 [ 1249.920940] __x64_sys_openat+0x13f/0x1f0 [ 1249.922006] ? __ia32_sys_open+0x1c0/0x1c0 [ 1249.923071] ? ksys_write+0x1a9/0x260 [ 1249.924028] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1249.925379] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1249.926713] do_syscall_64+0x33/0x40 [ 1249.927672] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1249.928989] RIP: 0033:0x7f1ecf0f5b19 [ 1249.929943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.934643] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1249.936590] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1249.938417] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1249.940234] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1249.942070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1249.943889] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1249.956104] FAULT_INJECTION: forcing a failure. [ 1249.956104] name failslab, interval 1, probability 0, space 0, times 0 [ 1249.959142] CPU: 0 PID: 7848 Comm: syz-executor.7 Tainted: G W 5.10.234 #1 [ 1249.961311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1249.963473] Call Trace: [ 1249.964184] dump_stack+0x107/0x167 [ 1249.965158] should_fail.cold+0x5/0xa [ 1249.966144] ? copy_mount_options+0x55/0x180 [ 1249.967281] should_failslab+0x5/0x20 [ 1249.968252] kmem_cache_alloc_trace+0x55/0x320 [ 1249.969426] ? _copy_from_user+0xfb/0x1b0 [ 1249.970496] copy_mount_options+0x55/0x180 [ 1249.971599] __x64_sys_mount+0x1a8/0x300 [ 1249.972635] ? copy_mnt_ns+0xa00/0xa00 [ 1249.973660] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1249.974999] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1249.976323] do_syscall_64+0x33/0x40 [ 1249.977291] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1249.978595] RIP: 0033:0x7fd8050b504a [ 1249.979541] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1249.984171] RSP: 002b:00007fd802628fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1249.986106] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b504a [ 1249.987903] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 00007fd802629000 [ 1249.989705] RBP: 00007fd802629040 R08: 00007fd802629040 R09: 0000000020000000 [ 1249.991498] R10: 0000000000002000 R11: 0000000000000206 R12: 0000000020000000 [ 1249.993320] R13: 00000000200000c0 R14: 00007fd802629000 R15: 0000000020001840 18:38:02 executing program 5: socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = fspick(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x1) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r4, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_io_uring_complete(r3) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd_index=0x2, 0x7fffffff, 0x0, 0xffff0002, 0x0, 0x0, {0x0, r5}}, 0x362c) syz_io_uring_submit(r2, r4, &(0x7f0000000240)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x2, 0x7f, 0x0, 0x10000, 0x0, 0x0, {0x0, r5}}, 0x6) syz_io_uring_submit(r3, r4, 0x0, 0x0) syz_open_dev$hiddev(0x0, 0x0, 0x0) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r6, 0x29, 0x44, &(0x7f00000000c0)={'NETMAP\x00'}, &(0x7f0000000100)=0x1e) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'veth0_to_team\x00'}) syz_genetlink_get_family_id$SEG6(0x0, 0xffffffffffffffff) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) [ 1250.030511] loop0: detected capacity change from 0 to 512 [ 1250.049375] FAULT_INJECTION: forcing a failure. [ 1250.049375] name failslab, interval 1, probability 0, space 0, times 0 [ 1250.051769] CPU: 1 PID: 7854 Comm: syz-executor.0 Tainted: G W 5.10.234 #1 [ 1250.053447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1250.055151] Call Trace: [ 1250.055701] dump_stack+0x107/0x167 [ 1250.056454] should_fail.cold+0x5/0xa [ 1250.057244] ? ext4_find_extent+0xa77/0xd70 [ 1250.058129] should_failslab+0x5/0x20 [ 1250.058911] __kmalloc+0x72/0x390 [ 1250.059639] ext4_find_extent+0xa77/0xd70 [ 1250.060510] ext4_ext_map_blocks+0x1c8/0x5830 [ 1250.061458] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1250.062529] ? SOFTIRQ_verbose+0x10/0x10 [ 1250.063359] ? perf_trace_lock+0xac/0x490 [ 1250.064208] ? SOFTIRQ_verbose+0x10/0x10 [ 1250.065057] ? ext4_ext_release+0x10/0x10 [ 1250.065913] ? lock_release+0x680/0x680 [ 1250.066728] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 1250.067689] ? lock_downgrade+0x6d0/0x6d0 [ 1250.068561] ? down_read+0x10f/0x430 [ 1250.069344] ? down_write+0x160/0x160 [ 1250.070126] ? ext4_es_lookup_extent+0xc4/0xaa0 [ 1250.071103] ext4_map_blocks+0x8e1/0x1910 [ 1250.071963] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 1250.072899] ? __brelse+0x84/0xa0 [ 1250.073651] ? __ext4_new_inode+0x148/0x5370 [ 1250.074590] ext4_append+0x1b8/0x4e0 [ 1250.075362] ? ext4_move_extents+0x3050/0x3050 [ 1250.076315] ? ext4_mark_inode_used+0x14b0/0x14b0 [ 1250.077364] ext4_init_new_dir+0x25e/0x4d0 18:38:02 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1250.078253] ? ext4_init_dot_dotdot+0x610/0x610 [ 1250.079457] ext4_mkdir+0x3c1/0xb10 [ 1250.080243] ? ext4_rmdir+0xf70/0xf70 [ 1250.081059] vfs_mkdir+0x493/0x750 [ 1250.081815] do_mkdirat+0x150/0x2b0 [ 1250.082581] ? user_path_create+0xf0/0xf0 [ 1250.083448] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1250.084560] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1250.085638] do_syscall_64+0x33/0x40 [ 1250.086423] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1250.087495] RIP: 0033:0x7f9be863ac27 [ 1250.088268] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1250.092037] RSP: 002b:00007f9be5bb0fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1250.093614] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007f9be863ac27 [ 1250.095070] RDX: 0000000000000005 RSI: 00000000000001ff RDI: 00000000200000c0 [ 1250.096543] RBP: 00007f9be5bb1040 R08: 0000000000000000 R09: ffffffffffffffff [ 1250.098044] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1250.099528] R13: 00000000200000c0 R14: 00007f9be5bb1000 R15: 0000000020001840 18:38:02 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000), &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext3\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYRES32=r2, @ANYBLOB="087f95168e3259ab27fd329bdc4ab34aba13c5965af96bfb01b9a8e8ba928396f0317582563a8338d4222fa12108194862cebfcd3c0b42f82627b6a58e77b079e69d4c585abcd93cb83cae23779d403569c66cbe09f168911798da7721fc91e2139cca111b81"]) chdir(&(0x7f0000000040)='./file0\x00') r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'}) bind$packet(r5, &(0x7f0000000240)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000300), 0x8}, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8914, &(0x7f0000000140)={'lo\x00'}) 18:38:02 executing program 7: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000001740)=[{0x0}, {0x0}, {0x0}], 0x2000, &(0x7f0000001840)={[], [{@appraise_type}]}) (fail_nth: 58) [ 1250.197085] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:38:02 executing program 4: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) (fail_nth: 31) 18:38:02 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') [ 1250.306663] FAULT_INJECTION: forcing a failure. [ 1250.306663] name failslab, interval 1, probability 0, space 0, times 0 [ 1250.311697] CPU: 0 PID: 7867 Comm: syz-executor.4 Tainted: G W 5.10.234 #1 [ 1250.313443] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1250.315195] Call Trace: [ 1250.315762] dump_stack+0x107/0x167 [ 1250.316546] should_fail.cold+0x5/0xa [ 1250.317373] ? create_object.isra.0+0x3a/0xa20 [ 1250.318350] should_failslab+0x5/0x20 [ 1250.319159] kmem_cache_alloc+0x5b/0x310 [ 1250.320038] create_object.isra.0+0x3a/0xa20 [ 1250.320977] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1250.322065] kmem_cache_alloc_trace+0x151/0x320 [ 1250.323075] create_basic_memory_bitmaps+0xe5/0x170 [ 1250.323364] EXT4-fs (sda): re-mounted. Opts: (null) [ 1250.324141] snapshot_open+0x239/0x2b0 [ 1250.324161] ? snapshot_release+0x1f0/0x1f0 [ 1250.324195] misc_open+0x375/0x4a0 [ 1250.327737] ? misc_devnode+0x130/0x130 [ 1250.328581] chrdev_open+0x268/0x6e0 [ 1250.329386] ? __unregister_chrdev+0x110/0x110 [ 1250.330367] ? fsnotify_perm.part.0+0x22d/0x620 [ 1250.331373] do_dentry_open+0x4b7/0x1090 [ 1250.332234] ? __unregister_chrdev+0x110/0x110 [ 1250.333208] ? may_open+0x1e4/0x400 [ 1250.333994] path_openat+0x19ba/0x2770 [ 1250.334830] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1250.335892] ? path_lookupat+0x860/0x860 [ 1250.336757] ? perf_trace_lock+0x2bd/0x490 [ 1250.337227] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1250.337661] ? find_held_lock+0x2c/0x110 [ 1250.337694] ? __lockdep_reset_lock+0x180/0x180 [ 1250.341191] do_filp_open+0x190/0x3e0 [ 1250.342002] ? may_open_dev+0xf0/0xf0 [ 1250.342828] ? do_raw_spin_lock+0x121/0x260 [ 1250.343733] ? rwlock_bug.part.0+0x90/0x90 [ 1250.344658] ? _raw_spin_unlock+0x1a/0x30 [ 1250.345547] ? alloc_fd+0x2e7/0x670 [ 1250.346351] do_sys_openat2+0x171/0x4d0 [ 1250.347203] ? build_open_flags+0x6f0/0x6f0 [ 1250.348113] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1250.349150] ? wait_for_completion_io+0x270/0x270 [ 1250.350191] __x64_sys_openat+0x13f/0x1f0 [ 1250.351068] ? __ia32_sys_open+0x1c0/0x1c0 [ 1250.351979] ? ksys_write+0x1a9/0x260 [ 1250.352792] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1250.353915] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1250.353968] EXT4-fs (sda): re-mounted. Opts: (null) [ 1250.354998] do_syscall_64+0x33/0x40 [ 1250.355026] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1250.357863] RIP: 0033:0x7f1ecf0f5b19 [ 1250.358641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1250.362687] RSP: 002b:00007f1ecc66b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1250.364275] RAX: ffffffffffffffda RBX: 00007f1ecf208f60 RCX: 00007f1ecf0f5b19 [ 1250.365767] RDX: 0000000000000001 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 1250.367245] RBP: 00007f1ecc66b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1250.368762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1250.370285] R13: 00007ffde636672f R14: 00007f1ecc66b300 R15: 0000000000022000 [ 1250.401476] FAULT_INJECTION: forcing a failure. [ 1250.401476] name failslab, interval 1, probability 0, space 0, times 0 [ 1250.403744] CPU: 1 PID: 7871 Comm: syz-executor.7 Tainted: G W 5.10.234 #1 [ 1250.405363] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1250.406973] Call Trace: [ 1250.407485] dump_stack+0x107/0x167 [ 1250.408190] should_fail.cold+0x5/0xa [ 1250.409043] ? copy_mount_options+0x55/0x180 [ 1250.410127] should_failslab+0x5/0x20 [ 1250.411043] kmem_cache_alloc_trace+0x55/0x320 [ 1250.412129] ? _copy_from_user+0xfb/0x1b0 [ 1250.413150] copy_mount_options+0x55/0x180 [ 1250.414108] __x64_sys_mount+0x1a8/0x300 [ 1250.415618] ? copy_mnt_ns+0xa00/0xa00 [ 1250.416719] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1250.417993] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1250.419243] do_syscall_64+0x33/0x40 [ 1250.420155] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1250.421415] RIP: 0033:0x7fd8050b504a [ 1250.422231] Code: 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8 ff ff ff ff eb d2 e8 b8 04 00 00 0f 1f 84 00 00 00 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1250.425882] RSP: 002b:00007fd802628fa8 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5 [ 1250.427374] RAX: ffffffffffffffda RBX: 0000000020001740 RCX: 00007fd8050b504a [ 1250.428771] RDX: 0000000020000000 RSI: 00000000200000c0 RDI: 00007fd802629000 [ 1250.430189] RBP: 00007fd802629040 R08: 00007fd802629040 R09: 0000000020000000 [ 1250.431579] R10: 0000000000002000 R11: 0000000000000206 R12: 0000000020000000 [ 1250.432986] R13: 00000000200000c0 R14: 00007fd802629000 R15: 0000000020001840 [ 1250.468610] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'. 18:38:02 executing program 6: unshare(0x68000280) unshare(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x1, 0x2, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x40, 0x3, 0x2f, 0xb6, 0x0, 0x5, 0x200, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000000), 0x6}, 0x400, 0x46, 0x200, 0x0, 0x1, 0x7fffffff, 0xfff, 0x0, 0xffff, 0x0, 0x6}, 0xffffffffffffffff, 0xf, 0xffffffffffffffff, 0x9) unshare(0x48020200) 18:38:02 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x20, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0xc, 0x11, 0x0, 0x0, @u64}]}, 0x20}}, 0x0) perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYBLOB="eb012722d415fd0aa6e99f25be9abd7000fedbdf2a84b1e9000100000008003c000600000008003c000000000008003b00070000000000"], 0x3c}, 0x1, 0x0, 0x0, 0x850}, 0x240049c1) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, r1) r3 = add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xfffffffffffffffd) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000740), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$revoke(0x3, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') VM DIAGNOSIS: 18:38:01 Registers: info registers vcpu 0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff822dddfc RDI=ffffffff879f3140 RBP=ffffffff879f3100 RSP=ffff88804aaf6f50 R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001 R12=0000000000000020 R13=fffffbfff0f3e675 R14=fffffbfff0f3e62a R15=dffffc0000000000 RIP=ffffffff822dde50 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f868a213700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f868cd0c958 CR3=0000000048994000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000ffff000000000000ffffffff XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007f868cda57c800007f868cda57c0 XMM04=253d7367726100656d6172665f746365 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff888043f27da0 RCX=0000000000000007 RDX=0000000000000000 RSI=0000000000000000 RDI=ffff888043f27da8 RBP=0000000000000000 RSP=ffff888043f27d18 R8 =0000000000000001 R9 =ffff888043f27da0 R10=ffffed10087e4fbb R11=0000000000000001 R12=0000000000000001 R13=0000000000000000 R14=000000000002ea40 R15=ffff888043f27da0 RIP=ffffffff82033ee4 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555555b93400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fc8ceaf2718 CR3=0000000043f28000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000