{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x1, "5485a85e08f3c8"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000602c0)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {r6, r10}, {0x0, r13}, {r16, r17}], 0x8, "382d4413b90b39"}) [ 1410.183378] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1410.184522] Call Trace: [ 1410.184848] dump_stack+0x107/0x167 [ 1410.185282] should_fail.cold+0x5/0xa [ 1410.185728] ? copy_process+0x1c5b/0x7800 [ 1410.186219] should_failslab+0x5/0x20 [ 1410.186663] kmem_cache_alloc+0x5b/0x310 [ 1410.187149] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1410.187757] copy_process+0x1c5b/0x7800 [ 1410.188223] ? __lock_acquire+0xbb1/0x5b00 [ 1410.188731] ? __cleanup_sighand+0xb0/0xb0 [ 1410.189225] ? lock_acquire+0x197/0x470 [ 1410.189688] ? find_held_lock+0x2c/0x110 [ 1410.190163] kernel_clone+0xe7/0x980 [ 1410.190599] ? lock_downgrade+0x6d0/0x6d0 [ 1410.191086] ? find_held_lock+0x2c/0x110 [ 1410.191548] ? create_io_thread+0xf0/0xf0 [ 1410.192040] ? ksys_write+0x12d/0x260 [ 1410.192487] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1410.193057] __do_sys_fork+0x8a/0xc0 [ 1410.193487] ? kernel_thread+0xf0/0xf0 [ 1410.193941] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1410.194528] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1410.195138] ? trace_hardirqs_on+0x5b/0x180 [ 1410.195636] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1410.196224] do_syscall_64+0x33/0x40 [ 1410.196662] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1410.197253] RIP: 0033:0x7fc140e06b19 [ 1410.197683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1410.199800] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1410.200679] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1410.201471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1410.202294] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1410.203088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1410.203915] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:34:15 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x2000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1410.215730] FAULT_INJECTION: forcing a failure. [ 1410.215730] name failslab, interval 1, probability 0, space 0, times 0 [ 1410.218114] CPU: 0 PID: 11933 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1410.219542] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1410.221215] Call Trace: [ 1410.221745] dump_stack+0x107/0x167 [ 1410.222497] should_fail.cold+0x5/0xa [ 1410.223302] ? create_object.isra.0+0x3a/0xa20 [ 1410.224231] should_failslab+0x5/0x20 [ 1410.224997] kmem_cache_alloc+0x5b/0x310 [ 1410.225819] create_object.isra.0+0x3a/0xa20 [ 1410.226709] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1410.227746] kmem_cache_alloc+0x159/0x310 [ 1410.228593] ? _raw_spin_unlock+0x1a/0x30 [ 1410.229434] copy_process+0x1add/0x7800 [ 1410.230242] ? __lock_acquire+0xbb1/0x5b00 [ 1410.231169] ? __cleanup_sighand+0xb0/0xb0 [ 1410.232043] ? lock_acquire+0x197/0x470 [ 1410.232853] ? find_held_lock+0x2c/0x110 [ 1410.233677] kernel_clone+0xe7/0x980 [ 1410.234430] ? lock_downgrade+0x6d0/0x6d0 [ 1410.235294] ? find_held_lock+0x2c/0x110 [ 1410.236101] ? create_io_thread+0xf0/0xf0 [ 1410.236939] ? ksys_write+0x12d/0x260 [ 1410.237716] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1410.238710] __do_sys_fork+0x8a/0xc0 [ 1410.239474] ? kernel_thread+0xf0/0xf0 [ 1410.240281] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1410.241358] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1410.242396] ? trace_hardirqs_on+0x5b/0x180 [ 1410.243317] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1410.244365] do_syscall_64+0x33/0x40 [ 1410.245131] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1410.246174] RIP: 0033:0x7fa6a3da0b19 04:34:15 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x1000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1410.246945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1410.250794] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1410.252375] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1410.253832] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1410.255325] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1410.256806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1410.258285] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1410.281753] EXT4-fs (loop4): Invalid log cluster size: 4211081218 04:34:15 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x3000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:34:15 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 13) 04:34:15 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x40440}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a91ce6ccb5e3206389", 0x27) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21}, 0x14}}, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f0000000300)=ANY=[@ANYBLOB="03000000000000000a00000000000000ff010000000000000000000000000001000000ed0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a00000000000000ff01000000000000000000000000000100"/202], 0x110) ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000180)={0x2, 0x7e850000, 0x5, 0x0, 0x0, [{{r1}, 0x8e}, {{}, 0x2}, {{r3}, 0x20f}, {{r4}, 0x800}, {{r1}, 0x1ff}]}) r5 = socket$inet_tcp(0x2, 0x1, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) close_range(r2, r6, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r5, 0x80047210, &(0x7f0000000140)) r7 = syz_open_dev$rtc(&(0x7f0000000080), 0x9, 0x101001) ioctl$F2FS_IOC_GARBAGE_COLLECT(r7, 0x4004f506, &(0x7f00000000c0)=0x1) unshare(0x48020200) unshare(0x58040280) r8 = pidfd_getfd(r0, r3, 0x0) sendmsg$nl_generic(r8, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x40, 0x40, 0x26, 0x70bd29, 0x25dfdbfd, {}, [@generic="7fb5e8c76a2f5815c9a950ebbb33e37dab09b295c6ec2ec66a294ac85157c5f2d00851acd583d9de0ecb"]}, 0x40}, 0x1, 0x0, 0x0, 0x200080c5}, 0x4008080) [ 1410.368014] FAULT_INJECTION: forcing a failure. [ 1410.368014] name failslab, interval 1, probability 0, space 0, times 0 [ 1410.369342] CPU: 1 PID: 12031 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1410.370087] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1410.371014] Call Trace: [ 1410.371309] dump_stack+0x107/0x167 [ 1410.371713] should_fail.cold+0x5/0xa [ 1410.372142] ? create_object.isra.0+0x3a/0xa20 [ 1410.372651] should_failslab+0x5/0x20 [ 1410.373085] kmem_cache_alloc+0x5b/0x310 [ 1410.373552] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1410.374173] create_object.isra.0+0x3a/0xa20 [ 1410.374660] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1410.375238] kmem_cache_alloc+0x159/0x310 [ 1410.375715] security_file_alloc+0x34/0x170 [ 1410.376202] __alloc_file+0xb6/0x320 [ 1410.376617] alloc_empty_file+0x6d/0x170 [ 1410.377066] alloc_file+0x5e/0x5a0 [ 1410.377472] alloc_file_pseudo+0x16a/0x250 [ 1410.377938] ? alloc_file+0x5a0/0x5a0 [ 1410.378365] ? shmem_get_inode+0x55c/0xbc0 [ 1410.378844] __shmem_file_setup+0x144/0x320 [ 1410.379330] ? _copy_from_user+0xfb/0x1b0 [ 1410.379788] __do_sys_memfd_create+0x275/0x450 [ 1410.380295] ? memfd_file_seals_ptr+0x170/0x170 [ 1410.380810] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1410.381402] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1410.381975] do_syscall_64+0x33/0x40 [ 1410.382393] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1410.382966] RIP: 0033:0x7fc91209fb19 [ 1410.383372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1410.385447] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1410.386298] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fc91209fb19 [ 1410.387097] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 00007fc9120f90fb [ 1410.387855] RBP: 0000000000000001 R08: 0000000000000400 R09: ffffffffffffffff [ 1410.388648] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000008100000 [ 1410.389405] R13: 0000000020000100 R14: 0000000000000800 R15: 0000000020013800 04:34:15 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r2, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_to_team\x00'}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:34:15 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 23) [ 1410.467425] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1410.498008] FAULT_INJECTION: forcing a failure. [ 1410.498008] name failslab, interval 1, probability 0, space 0, times 0 [ 1410.498021] CPU: 1 PID: 12107 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1410.498027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1410.498030] Call Trace: [ 1410.498046] dump_stack+0x107/0x167 [ 1410.498062] should_fail.cold+0x5/0xa [ 1410.498078] ? copy_process+0x1add/0x7800 [ 1410.498093] should_failslab+0x5/0x20 [ 1410.498108] kmem_cache_alloc+0x5b/0x310 [ 1410.498120] ? _raw_spin_unlock+0x1a/0x30 [ 1410.498132] copy_process+0x1add/0x7800 [ 1410.498148] ? __lock_acquire+0xbb1/0x5b00 [ 1410.498174] ? __cleanup_sighand+0xb0/0xb0 [ 1410.498188] ? lock_acquire+0x197/0x470 [ 1410.498203] ? find_held_lock+0x2c/0x110 [ 1410.498216] kernel_clone+0xe7/0x980 [ 1410.498227] ? lock_downgrade+0x6d0/0x6d0 [ 1410.498236] ? find_held_lock+0x2c/0x110 [ 1410.498245] ? create_io_thread+0xf0/0xf0 [ 1410.498259] ? ksys_write+0x12d/0x260 [ 1410.498275] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1410.498291] __do_sys_fork+0x8a/0xc0 [ 1410.498302] ? kernel_thread+0xf0/0xf0 [ 1410.498323] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1410.498337] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1410.498346] ? trace_hardirqs_on+0x5b/0x180 [ 1410.498356] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1410.498369] do_syscall_64+0x33/0x40 [ 1410.498381] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1410.498390] RIP: 0033:0x7fc140e06b19 [ 1410.498404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1410.498410] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1410.498424] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1410.498433] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1410.498440] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1410.498448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1410.498456] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:34:28 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x2000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:34:28 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x40440}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a91ce6ccb5e3206389", 0x27) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21}, 0x14}}, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f0000000300)=ANY=[@ANYBLOB="03000000000000000a00000000000000ff010000000000000000000000000001000000ed0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a00000000000000ff01000000000000000000000000000100"/202], 0x110) ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000180)={0x2, 0x7e850000, 0x5, 0x0, 0x0, [{{r1}, 0x8e}, {{}, 0x2}, {{r3}, 0x20f}, {{r4}, 0x800}, {{r1}, 0x1ff}]}) r5 = socket$inet_tcp(0x2, 0x1, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) close_range(r2, r6, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r5, 0x80047210, &(0x7f0000000140)) r7 = syz_open_dev$rtc(&(0x7f0000000080), 0x9, 0x101001) ioctl$F2FS_IOC_GARBAGE_COLLECT(r7, 0x4004f506, &(0x7f00000000c0)=0x1) unshare(0x48020200) unshare(0x58040280) r8 = pidfd_getfd(r0, r3, 0x0) sendmsg$nl_generic(r8, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x40, 0x40, 0x26, 0x70bd29, 0x25dfdbfd, {}, [@generic="7fb5e8c76a2f5815c9a950ebbb33e37dab09b295c6ec2ec66a294ac85157c5f2d00851acd583d9de0ecb"]}, 0x40}, 0x1, 0x0, 0x0, 0x200080c5}, 0x4008080) 04:34:28 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) open(&(0x7f0000000000)='./file0\x00', 0x101000, 0x1) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, &(0x7f0000000040)={{0xa, 0x4e24, 0x1000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x9}, {0xa, 0x4e20, 0x7, @dev={0xfe, 0x80, '\x00', 0xe}}, 0x9, [0x1, 0x80000000, 0x9, 0x7f, 0x3ff, 0x400, 0x1, 0xad2]}, 0x5c) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:34:28 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x4000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:34:28 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 14) 04:34:28 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 24) 04:34:28 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 23) [ 1424.176720] FAULT_INJECTION: forcing a failure. [ 1424.176720] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.178174] CPU: 0 PID: 12125 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1424.178995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.179943] Call Trace: [ 1424.180250] dump_stack+0x107/0x167 [ 1424.180666] should_fail.cold+0x5/0xa [ 1424.181100] ? copy_process+0x24f5/0x7800 [ 1424.181574] should_failslab+0x5/0x20 [ 1424.182010] kmem_cache_alloc+0x5b/0x310 [ 1424.182470] copy_process+0x24f5/0x7800 [ 1424.182946] ? __lock_acquire+0xbb1/0x5b00 [ 1424.183437] ? __cleanup_sighand+0xb0/0xb0 [ 1424.183916] ? lock_acquire+0x197/0x470 [ 1424.184368] ? find_held_lock+0x2c/0x110 [ 1424.184828] kernel_clone+0xe7/0x980 [ 1424.185244] ? lock_downgrade+0x6d0/0x6d0 [ 1424.185715] ? find_held_lock+0x2c/0x110 [ 1424.186181] ? create_io_thread+0xf0/0xf0 [ 1424.186675] ? ksys_write+0x12d/0x260 [ 1424.187140] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1424.187715] __do_sys_fork+0x8a/0xc0 [ 1424.188160] ? kernel_thread+0xf0/0xf0 [ 1424.188630] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.189258] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.189872] ? trace_hardirqs_on+0x5b/0x180 [ 1424.190392] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.191011] do_syscall_64+0x33/0x40 [ 1424.191455] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1424.192067] RIP: 0033:0x7fc140e06b19 [ 1424.192518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.194715] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1424.195640] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1424.196452] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1424.197301] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1424.198142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1424.199007] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1424.207136] FAULT_INJECTION: forcing a failure. [ 1424.207136] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1424.210490] CPU: 1 PID: 12133 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1424.211965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.213732] Call Trace: [ 1424.214303] dump_stack+0x107/0x167 [ 1424.215101] should_fail.cold+0x5/0xa [ 1424.215923] __alloc_pages_nodemask+0x182/0x600 [ 1424.216927] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1424.218187] ? lock_downgrade+0x6d0/0x6d0 [ 1424.219062] ? lock_acquire+0x197/0x470 [ 1424.219918] alloc_pages_vma+0xbb/0x410 [ 1424.220754] shmem_alloc_page+0x10f/0x1e0 [ 1424.221604] ? shmem_init_inode+0x20/0x20 [ 1424.222480] ? percpu_counter_add_batch+0x8b/0x140 [ 1424.223504] ? __vm_enough_memory+0x184/0x360 [ 1424.224426] shmem_getpage_gfp.constprop.0+0x512/0x1920 [ 1424.225527] ? shmem_unuse_inode+0xf60/0xf60 [ 1424.226426] ? ktime_get_coarse_real_ts64+0x15a/0x190 [ 1424.227482] ? iov_iter_fault_in_readable+0x9a/0x410 [ 1424.228688] shmem_write_begin+0xf7/0x1d0 [ 1424.229197] generic_perform_write+0x20a/0x4f0 [ 1424.230154] ? page_cache_prev_miss+0x310/0x310 [ 1424.231130] ? evict_inodes+0x420/0x420 [ 1424.231951] ? generic_write_checks+0x2ad/0x390 [ 1424.232912] __generic_file_write_iter+0x39d/0x5d0 [ 1424.233915] generic_file_write_iter+0xdb/0x230 [ 1424.234853] ? iov_iter_init+0x3c/0x130 [ 1424.235675] new_sync_write+0x42c/0x660 04:34:29 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000140), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x7f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000240)) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, 0x0, &(0x7f0000000380)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd, 0x5ab, 0x0, 0x1, 0x4, 0x1, {0x0, r9}}, 0x401) syz_io_uring_submit(r6, r2, &(0x7f0000001380)=@IORING_OP_WRITEV={0x2, 0x1, 0x4007, @fd_index=0x2, 0x2f, &(0x7f0000001340)=[{&(0x7f0000000280)="f5e22505d8a7feab174b73aa54a7ce9b97af9a20d4726b3496298fb45629c0ee7d26d535ee45db6505688968c3c0c868c3d9498ac44f0800508c37806930fdc858d2fdc3debe3e47cd9967ac1c322999de8a0419ea986f190f6f37bcf4d144717cd18dc42da9da72efad3737521e81", 0x6f}, {&(0x7f0000000300)="f82ecd5ece19ceba7a99f77cd81018acb8e1b0d331", 0x15}, {&(0x7f0000000340)="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", 0x1000}], 0x3, 0x18, 0x0, {0x0, r9}}, 0xda92) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) clock_gettime(0x1, &(0x7f0000000080)) recvmmsg(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x2002, &(0x7f00000001c0)={r10, r11+60000000}) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r12 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x400080, 0x0) io_uring_enter(r12, 0x4f12, 0x2793, 0x2, &(0x7f0000000240)={[0x4]}, 0x8) [ 1424.236691] ? new_sync_read+0x6f0/0x6f0 [ 1424.237685] ? __x64_sys_pwrite64+0x201/0x260 [ 1424.238607] ? lock_release+0x680/0x680 [ 1424.239440] ? selinux_file_permission+0x92/0x520 [ 1424.240441] vfs_write+0x747/0xa70 [ 1424.241176] __x64_sys_pwrite64+0x201/0x260 [ 1424.242059] ? ksys_pwrite64+0x1b0/0x1b0 [ 1424.242896] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.243953] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.245004] do_syscall_64+0x33/0x40 [ 1424.245761] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1424.246805] RIP: 0033:0x7fc912052ab7 [ 1424.247574] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 1424.251308] RSP: 002b:00007fc90f614f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 1424.252847] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc912052ab7 [ 1424.254293] RDX: 0000000000000061 RSI: 0000000020010000 RDI: 0000000000000004 [ 1424.255763] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffffffffffff [ 1424.257210] R10: 0000000000000400 R11: 0000000000000293 R12: 0000000000000004 [ 1424.258660] R13: 0000000000000004 R14: 0000000020000200 R15: 0000000000000000 [ 1424.264324] FAULT_INJECTION: forcing a failure. [ 1424.264324] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.266711] CPU: 1 PID: 12134 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1424.268141] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.269818] Call Trace: [ 1424.270353] dump_stack+0x107/0x167 [ 1424.271121] should_fail.cold+0x5/0xa [ 1424.271896] ? create_object.isra.0+0x3a/0xa20 [ 1424.272828] should_failslab+0x5/0x20 04:34:29 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 25) [ 1424.273596] kmem_cache_alloc+0x5b/0x310 [ 1424.274527] create_object.isra.0+0x3a/0xa20 [ 1424.275453] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1424.276489] kmem_cache_alloc+0x159/0x310 [ 1424.277342] copy_process+0x1c5b/0x7800 [ 1424.278174] ? __lock_acquire+0xbb1/0x5b00 [ 1424.279084] ? __cleanup_sighand+0xb0/0xb0 [ 1424.279951] ? lock_acquire+0x197/0x470 [ 1424.280766] ? find_held_lock+0x2c/0x110 [ 1424.281611] kernel_clone+0xe7/0x980 [ 1424.282371] ? lock_downgrade+0x6d0/0x6d0 [ 1424.283224] ? find_held_lock+0x2c/0x110 [ 1424.284052] ? create_io_thread+0xf0/0xf0 [ 1424.284904] ? ksys_write+0x12d/0x260 [ 1424.285684] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1424.285747] FAULT_INJECTION: forcing a failure. [ 1424.285747] name failslab, interval 1, probability 0, space 0, times 0 [ 1424.286678] __do_sys_fork+0x8a/0xc0 [ 1424.286700] ? kernel_thread+0xf0/0xf0 [ 1424.289437] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.290498] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.291546] ? trace_hardirqs_on+0x5b/0x180 [ 1424.292424] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.293475] do_syscall_64+0x33/0x40 [ 1424.294234] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1424.295278] RIP: 0033:0x7fa6a3da0b19 [ 1424.296038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.299779] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1424.301314] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1424.302752] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1424.304208] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1424.305648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1424.307157] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1424.308706] CPU: 0 PID: 12238 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1424.309473] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1424.310372] Call Trace: [ 1424.310661] dump_stack+0x107/0x167 [ 1424.311078] should_fail.cold+0x5/0xa [ 1424.311492] ? copy_process+0x1c5b/0x7800 [ 1424.311944] should_failslab+0x5/0x20 [ 1424.312363] kmem_cache_alloc+0x5b/0x310 [ 1424.312815] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.313376] copy_process+0x1c5b/0x7800 [ 1424.313804] ? __lock_acquire+0xbb1/0x5b00 [ 1424.314269] ? __cleanup_sighand+0xb0/0xb0 [ 1424.314724] ? lock_acquire+0x197/0x470 [ 1424.315167] ? find_held_lock+0x2c/0x110 [ 1424.315602] kernel_clone+0xe7/0x980 [ 1424.316007] ? lock_downgrade+0x6d0/0x6d0 [ 1424.316446] ? find_held_lock+0x2c/0x110 [ 1424.316883] ? create_io_thread+0xf0/0xf0 [ 1424.317341] ? ksys_write+0x12d/0x260 [ 1424.317755] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1424.318274] __do_sys_fork+0x8a/0xc0 [ 1424.318673] ? kernel_thread+0xf0/0xf0 [ 1424.319107] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1424.319678] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.320228] ? trace_hardirqs_on+0x5b/0x180 [ 1424.320690] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1424.321247] do_syscall_64+0x33/0x40 [ 1424.321660] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1424.322206] RIP: 0033:0x7fc140e06b19 [ 1424.322617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1424.324611] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1424.325430] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1424.326200] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1424.326993] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1424.327787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1424.328584] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:34:29 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x5000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:34:29 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x3000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1424.409839] EXT4-fs (loop5): VFS: Can't find ext4 filesystem 04:34:43 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 26) 04:34:43 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:34:43 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x40440}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a91ce6ccb5e3206389", 0x27) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21}, 0x14}}, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f0000000300)=ANY=[@ANYBLOB="03000000000000000a00000000000000ff010000000000000000000000000001000000ed0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a00000000000000ff01000000000000000000000000000100"/202], 0x110) ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000180)={0x2, 0x7e850000, 0x5, 0x0, 0x0, [{{r1}, 0x8e}, {{}, 0x2}, {{r3}, 0x20f}, {{r4}, 0x800}, {{r1}, 0x1ff}]}) r5 = socket$inet_tcp(0x2, 0x1, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) close_range(r2, r6, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r5, 0x80047210, &(0x7f0000000140)) r7 = syz_open_dev$rtc(&(0x7f0000000080), 0x9, 0x101001) ioctl$F2FS_IOC_GARBAGE_COLLECT(r7, 0x4004f506, &(0x7f00000000c0)=0x1) unshare(0x48020200) unshare(0x58040280) r8 = pidfd_getfd(r0, r3, 0x0) sendmsg$nl_generic(r8, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x40, 0x40, 0x26, 0x70bd29, 0x25dfdbfd, {}, [@generic="7fb5e8c76a2f5815c9a950ebbb33e37dab09b295c6ec2ec66a294ac85157c5f2d00851acd583d9de0ecb"]}, 0x40}, 0x1, 0x0, 0x0, 0x200080c5}, 0x4008080) 04:34:43 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x6000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:34:43 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) [ 1439.146523] FAULT_INJECTION: forcing a failure. [ 1439.146523] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.148900] CPU: 1 PID: 12380 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1439.150309] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.152014] Call Trace: [ 1439.152560] dump_stack+0x107/0x167 [ 1439.153320] should_fail.cold+0x5/0xa [ 1439.154107] ? create_object.isra.0+0x3a/0xa20 [ 1439.155076] should_failslab+0x5/0x20 [ 1439.155863] kmem_cache_alloc+0x5b/0x310 [ 1439.156698] create_object.isra.0+0x3a/0xa20 [ 1439.157599] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1439.158644] kmem_cache_alloc+0x159/0x310 [ 1439.159502] ? _raw_spin_unlock+0x1a/0x30 [ 1439.160350] copy_process+0x1add/0x7800 [ 1439.161162] ? __lock_acquire+0xbb1/0x5b00 [ 1439.162047] ? __cleanup_sighand+0xb0/0xb0 [ 1439.162911] ? lock_acquire+0x197/0x470 [ 1439.163732] ? find_held_lock+0x2c/0x110 [ 1439.164579] kernel_clone+0xe7/0x980 [ 1439.165340] ? lock_downgrade+0x6d0/0x6d0 [ 1439.166181] ? find_held_lock+0x2c/0x110 [ 1439.167012] ? create_io_thread+0xf0/0xf0 [ 1439.167886] ? ksys_write+0x12d/0x260 [ 1439.168673] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1439.169662] __do_sys_fork+0x8a/0xc0 [ 1439.170422] ? kernel_thread+0xf0/0xf0 [ 1439.171239] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.172303] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.173332] ? trace_hardirqs_on+0x5b/0x180 [ 1439.174199] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.175262] do_syscall_64+0x33/0x40 [ 1439.176015] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1439.176879] FAULT_INJECTION: forcing a failure. [ 1439.176879] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1439.177048] RIP: 0033:0x7fa6a3da0b19 [ 1439.177078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.183893] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1439.185427] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1439.186864] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1439.188320] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1439.189756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1439.191196] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1439.192653] CPU: 0 PID: 12398 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1439.194077] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.195768] Call Trace: [ 1439.196311] dump_stack+0x107/0x167 [ 1439.197063] should_fail.cold+0x5/0xa [ 1439.197851] __alloc_pages_nodemask+0x182/0x600 [ 1439.198817] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1439.200068] ? lock_downgrade+0x6d0/0x6d0 [ 1439.200918] ? lock_acquire+0x197/0x470 [ 1439.201528] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1439.201758] alloc_pages_vma+0xbb/0x410 [ 1439.204250] shmem_alloc_page+0x10f/0x1e0 [ 1439.205095] ? shmem_init_inode+0x20/0x20 [ 1439.205992] ? percpu_counter_add_batch+0x8b/0x140 [ 1439.207001] ? __vm_enough_memory+0x184/0x360 [ 1439.207946] shmem_getpage_gfp.constprop.0+0x512/0x1920 [ 1439.209046] ? shmem_unuse_inode+0xf60/0xf60 [ 1439.209955] ? ktime_get_coarse_real_ts64+0x15a/0x190 [ 1439.210996] ? iov_iter_fault_in_readable+0x9a/0x410 [ 1439.212048] shmem_write_begin+0xf7/0x1d0 [ 1439.212896] generic_perform_write+0x20a/0x4f0 [ 1439.213833] ? page_cache_prev_miss+0x310/0x310 [ 1439.214777] ? evict_inodes+0x420/0x420 [ 1439.215620] ? generic_write_checks+0x2ad/0x390 [ 1439.216580] __generic_file_write_iter+0x39d/0x5d0 [ 1439.216858] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1439.217594] generic_file_write_iter+0xdb/0x230 [ 1439.217617] ? iov_iter_init+0x3c/0x130 [ 1439.221082] new_sync_write+0x42c/0x660 [ 1439.221906] ? new_sync_read+0x6f0/0x6f0 [ 1439.222755] ? __x64_sys_pwrite64+0x201/0x260 [ 1439.223685] ? lock_release+0x680/0x680 [ 1439.224490] ? selinux_file_permission+0x92/0x520 [ 1439.225488] vfs_write+0x747/0xa70 [ 1439.226223] __x64_sys_pwrite64+0x201/0x260 [ 1439.227101] ? ksys_pwrite64+0x1b0/0x1b0 [ 1439.227928] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.228989] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.230045] do_syscall_64+0x33/0x40 [ 1439.230808] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1439.231851] RIP: 0033:0x7fc912052ab7 [ 1439.232615] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 1439.236415] RSP: 002b:00007fc90f614f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 1439.237984] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc912052ab7 [ 1439.239455] RDX: 0000000000000061 RSI: 0000000020010000 RDI: 0000000000000004 [ 1439.240935] RBP: 0000000000000001 R08: 0000000000000000 R09: ffffffffffffffff [ 1439.242396] R10: 0000000000000400 R11: 0000000000000293 R12: 0000000000000004 [ 1439.243884] R13: 0000000000000004 R14: 0000000020000200 R15: 0000000000000000 [ 1439.249424] FAULT_INJECTION: forcing a failure. [ 1439.249424] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.251870] CPU: 0 PID: 12371 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1439.253292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.255092] Call Trace: [ 1439.255632] dump_stack+0x107/0x167 [ 1439.256387] should_fail.cold+0x5/0xa [ 1439.257169] ? copy_process+0x24f5/0x7800 [ 1439.258022] should_failslab+0x5/0x20 [ 1439.258801] kmem_cache_alloc+0x5b/0x310 [ 1439.259650] copy_process+0x24f5/0x7800 [ 1439.260462] ? __lock_acquire+0xbb1/0x5b00 [ 1439.261362] ? __cleanup_sighand+0xb0/0xb0 [ 1439.262247] ? lock_acquire+0x197/0x470 [ 1439.263107] ? find_held_lock+0x2c/0x110 [ 1439.263953] kernel_clone+0xe7/0x980 [ 1439.264725] ? lock_downgrade+0x6d0/0x6d0 [ 1439.265572] ? find_held_lock+0x2c/0x110 [ 1439.266405] ? create_io_thread+0xf0/0xf0 [ 1439.267272] ? ksys_write+0x12d/0x260 [ 1439.268066] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1439.269064] __do_sys_fork+0x8a/0xc0 [ 1439.269832] ? kernel_thread+0xf0/0xf0 [ 1439.270643] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.271727] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.272778] ? trace_hardirqs_on+0x5b/0x180 [ 1439.273662] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.274730] do_syscall_64+0x33/0x40 [ 1439.275517] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1439.276578] RIP: 0033:0x7fc140e06b19 [ 1439.277340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.281110] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1439.282678] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1439.284153] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1439.285621] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1439.287107] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1439.288559] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 writev(r4, &(0x7f0000000200)=[{&(0x7f0000000600)="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", 0x1000}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000040)="1490f5f43e62be59c57e353ab9aeaa07d56ed902ea6ae8ca818db58e82ef25db9734d1bc90291df43221b92638b31f7fd0ab1842fd7ef8700054e77f63", 0x3d}, {&(0x7f0000002600)="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", 0x1000}], 0x4) sendmsg$NL80211_CMD_GET_COALESCE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="0172032dec7fd8f7029a722a000000002ef0d2d66f08097d2d7400bd10ad0000", @ANYRES32=0x0, @ANYBLOB="d77662fea97a101f78936bda3824eda0b9e07a10aa7916f6f1c1c20d6a55bb2c19933d79b1c2090c30a041f77749faa62ed7b64113961ef439008bd0ce9914e6cbd0998e548a7f1cc4034c7630274306d584c0fe2b58d3d514594377dd2ffc8b0ce5d88ccbb6bb9287a5a83891b88ee5aebc3a1a456475fc0b26e418a24307b5d4dc3f452cba1e8a871d3b"], 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_STATION(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)={0x1c, r5, 0x800, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x20048811) 04:34:43 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 24) 04:34:43 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x4000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:34:43 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 15) 04:34:44 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x7000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:34:44 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000000)={0x6, 0x4aa, 0x73, 0xffff, 0x8}) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v1={0x1000000, [{0x4, 0x6}]}, 0xc, 0x1) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:34:44 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x20000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:34:44 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r3, 0x0, 0x2) r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r4, 0x0, r3, 0x0, 0x200f5ef, 0x0) openat(r3, &(0x7f0000000040)='./file0\x00', 0x10001, 0x50) 04:34:44 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x5000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:34:44 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x7}}, './file0\x00'}) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r2}, 0x14) 04:34:44 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 27) [ 1439.469628] 9pnet: Unknown protocol version 9 [ 1439.473598] FAULT_INJECTION: forcing a failure. [ 1439.473598] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.476715] CPU: 1 PID: 12509 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1439.478138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.479861] Call Trace: [ 1439.480424] dump_stack+0x107/0x167 [ 1439.481181] should_fail.cold+0x5/0xa [ 1439.481967] ? vm_area_dup+0x78/0x290 [ 1439.482923] should_failslab+0x5/0x20 [ 1439.482983] kmem_cache_alloc+0x5b/0x310 [ 1439.483017] vm_area_dup+0x78/0x290 [ 1439.483063] ? __lock_acquire+0xbb1/0x5b00 [ 1439.483118] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1439.483140] ? SOFTIRQ_verbose+0x10/0x10 [ 1439.483168] ? lock_acquire+0x197/0x470 [ 1439.483190] ? copy_process+0x25d6/0x7800 [ 1439.483227] ? vm_area_alloc+0x110/0x110 [ 1439.483249] ? find_held_lock+0x2c/0x110 [ 1439.483281] ? get_mm_exe_file+0x139/0x310 [ 1439.483307] ? lock_downgrade+0x6d0/0x6d0 [ 1439.483335] ? down_write_nested+0xe4/0x160 [ 1439.483361] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 1439.483395] ? get_mm_exe_file+0x162/0x310 04:34:44 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 25) [ 1439.483422] copy_process+0x291b/0x7800 [ 1439.483451] ? __lock_acquire+0xbb1/0x5b00 [ 1439.483520] ? __cleanup_sighand+0xb0/0xb0 [ 1439.483554] ? lock_acquire+0x197/0x470 [ 1439.483590] ? find_held_lock+0x2c/0x110 04:34:44 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 16) 04:34:44 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000040)=0x2) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000140)={0x0, 0x0}) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000240)={'\x00', 0xf786, 0x4, 0x8, 0x5, 0xa9, r3}) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r4, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) ioctl$SG_GET_REQUEST_TABLE(r4, 0x2286, &(0x7f00000002c0)) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1439.483624] kernel_clone+0xe7/0x980 [ 1439.483648] ? lock_downgrade+0x6d0/0x6d0 [ 1439.483668] ? find_held_lock+0x2c/0x110 [ 1439.483693] ? create_io_thread+0xf0/0xf0 [ 1439.483722] ? ksys_write+0x12d/0x260 [ 1439.483754] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1439.483791] __do_sys_fork+0x8a/0xc0 [ 1439.483815] ? kernel_thread+0xf0/0xf0 [ 1439.483864] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.483887] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.483907] ? trace_hardirqs_on+0x5b/0x180 [ 1439.483931] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.483954] do_syscall_64+0x33/0x40 [ 1439.483978] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1439.483995] RIP: 0033:0x7fc140e06b19 [ 1439.484021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.484036] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1439.484064] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1439.484079] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1439.484095] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1439.484111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1439.484125] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1439.489543] EXT4-fs (loop5): VFS: Can't find ext4 filesystem [ 1439.519131] 9pnet: Unknown protocol version 9 [ 1439.635500] FAULT_INJECTION: forcing a failure. [ 1439.635500] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.635521] CPU: 1 PID: 12558 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1439.635531] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.635536] Call Trace: [ 1439.635558] dump_stack+0x107/0x167 [ 1439.635584] should_fail.cold+0x5/0xa [ 1439.635604] ? getname_flags.part.0+0x50/0x4f0 [ 1439.635625] should_failslab+0x5/0x20 [ 1439.635643] kmem_cache_alloc+0x5b/0x310 [ 1439.635666] getname_flags.part.0+0x50/0x4f0 [ 1439.635686] getname+0x8e/0xd0 [ 1439.635705] do_sys_openat2+0xf9/0x420 [ 1439.635725] ? build_open_flags+0x6f0/0x6f0 [ 1439.635760] ? rcu_read_lock_any_held+0x75/0xa0 [ 1439.635782] __x64_sys_openat+0x13f/0x1f0 [ 1439.635800] ? __ia32_sys_open+0x1c0/0x1c0 [ 1439.635827] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.635846] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.635870] do_syscall_64+0x33/0x40 [ 1439.635891] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1439.635903] RIP: 0033:0x7fc912052a04 [ 1439.635921] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1439.635931] RSP: 002b:00007fc90f614ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1439.635952] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc912052a04 [ 1439.635962] RDX: 0000000000000002 RSI: 00007fc90f615000 RDI: 00000000ffffff9c [ 1439.635973] RBP: 00007fc90f615000 R08: 0000000000000000 R09: ffffffffffffffff [ 1439.635984] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1439.635993] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1439.655276] FAULT_INJECTION: forcing a failure. [ 1439.655276] name failslab, interval 1, probability 0, space 0, times 0 [ 1439.655300] CPU: 0 PID: 12564 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1439.655311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1439.655318] Call Trace: [ 1439.655343] dump_stack+0x107/0x167 [ 1439.655371] should_fail.cold+0x5/0xa [ 1439.655395] ? create_object.isra.0+0x3a/0xa20 [ 1439.655418] should_failslab+0x5/0x20 [ 1439.655438] kmem_cache_alloc+0x5b/0x310 [ 1439.655464] create_object.isra.0+0x3a/0xa20 [ 1439.655484] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1439.655509] kmem_cache_alloc+0x159/0x310 [ 1439.655537] copy_process+0x24f5/0x7800 [ 1439.655560] ? __lock_acquire+0xbb1/0x5b00 [ 1439.655608] ? __cleanup_sighand+0xb0/0xb0 [ 1439.655638] ? lock_acquire+0x197/0x470 [ 1439.655666] ? find_held_lock+0x2c/0x110 [ 1439.655689] kernel_clone+0xe7/0x980 [ 1439.655709] ? lock_downgrade+0x6d0/0x6d0 [ 1439.655725] ? find_held_lock+0x2c/0x110 [ 1439.655743] ? create_io_thread+0xf0/0xf0 [ 1439.655766] ? ksys_write+0x12d/0x260 [ 1439.655796] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1439.655824] __do_sys_fork+0x8a/0xc0 [ 1439.655843] ? kernel_thread+0xf0/0xf0 [ 1439.655879] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1439.655898] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.655913] ? trace_hardirqs_on+0x5b/0x180 [ 1439.655934] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1439.655955] do_syscall_64+0x33/0x40 [ 1439.655978] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1439.655991] RIP: 0033:0x7fa6a3da0b19 [ 1439.656011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1439.656021] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1439.656044] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1439.656055] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1439.656067] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1439.656079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1439.656091] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1454.349831] 9pnet: Unknown protocol version 9 [ 1454.351299] FAULT_INJECTION: forcing a failure. [ 1454.351299] name failslab, interval 1, probability 0, space 0, times 0 [ 1454.353685] CPU: 0 PID: 12647 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1454.355091] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1454.356779] Call Trace: [ 1454.357316] dump_stack+0x107/0x167 [ 1454.358060] should_fail.cold+0x5/0xa [ 1454.358840] ? create_object.isra.0+0x3a/0xa20 [ 1454.359796] should_failslab+0x5/0x20 [ 1454.360560] kmem_cache_alloc+0x5b/0x310 [ 1454.361375] ? __generic_file_write_iter+0x1a4/0x5d0 [ 1454.362398] create_object.isra.0+0x3a/0xa20 [ 1454.363292] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1454.364318] kmem_cache_alloc+0x159/0x310 [ 1454.365158] getname_flags.part.0+0x50/0x4f0 [ 1454.366060] getname+0x8e/0xd0 [ 1454.366711] do_sys_openat2+0xf9/0x420 [ 1454.367508] ? build_open_flags+0x6f0/0x6f0 [ 1454.368385] ? rcu_read_lock_any_held+0x75/0xa0 [ 1454.369336] __x64_sys_openat+0x13f/0x1f0 [ 1454.370175] ? __ia32_sys_open+0x1c0/0x1c0 [ 1454.371036] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1454.372110] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1454.373154] do_syscall_64+0x33/0x40 [ 1454.373908] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1454.374939] RIP: 0033:0x7fc912052a04 [ 1454.375696] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1454.379395] RSP: 002b:00007fc90f614ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1454.380923] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc912052a04 [ 1454.382355] RDX: 0000000000000002 RSI: 00007fc90f615000 RDI: 00000000ffffff9c [ 1454.383807] RBP: 00007fc90f615000 R08: 0000000000000000 R09: ffffffffffffffff [ 1454.385460] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1454.386899] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 04:34:59 executing program 1: ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000000)={0x8, 0x1d2, 0x1, 0x3, 0x1, [0x4, 0x5, 0x81, 0xd2]}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:34:59 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x40440}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a91ce6ccb5e3206389", 0x27) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21}, 0x14}}, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f0000000300)=ANY=[@ANYBLOB="03000000000000000a00000000000000ff010000000000000000000000000001000000ed0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a00000000000000ff01000000000000000000000000000100"/202], 0x110) ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000180)={0x2, 0x7e850000, 0x5, 0x0, 0x0, [{{r1}, 0x8e}, {{}, 0x2}, {{r3}, 0x20f}, {{r4}, 0x800}, {{r1}, 0x1ff}]}) r5 = socket$inet_tcp(0x2, 0x1, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) close_range(r2, r6, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r5, 0x80047210, &(0x7f0000000140)) r7 = syz_open_dev$rtc(&(0x7f0000000080), 0x9, 0x101001) ioctl$F2FS_IOC_GARBAGE_COLLECT(r7, 0x4004f506, &(0x7f00000000c0)=0x1) unshare(0x48020200) unshare(0x58040280) r8 = pidfd_getfd(r0, r3, 0x0) sendmsg$nl_generic(r8, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x40, 0x40, 0x26, 0x70bd29, 0x25dfdbfd, {}, [@generic="7fb5e8c76a2f5815c9a950ebbb33e37dab09b295c6ec2ec66a294ac85157c5f2d00851acd583d9de0ecb"]}, 0x40}, 0x1, 0x0, 0x0, 0x200080c5}, 0x4008080) 04:34:59 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x6000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:34:59 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x20100000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:34:59 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 17) 04:34:59 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 28) 04:34:59 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:34:59 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 26) 04:34:59 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x6c120000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:34:59 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$OSF_MSG_ADD(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000040)={&(0x7f00000001c0)={0x1508, 0x0, 0x5, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}, [{{0x254, 0x1, {{0x1, 0xedf}, 0x5, 0x1, 0x4, 0x0, 0x16, 'syz0\x00', "9474baa24ee4d6d3d39415ea15e15f70aa01930749eb33783b77eace33e999dd", "3e357a3559fcea567f571f6bea4b2641b1ecb75cca201cab9776856aaf5f0bfd", [{0x1f49, 0xcf1b, {0x0, 0x6}}, {0x0, 0xcb, {0x0, 0x100}}, {0x0, 0x100, {0x1, 0x2}}, {0x1ff, 0x9, {0x0, 0x100}}, {0x6, 0x4, {0x0, 0x7}}, {0x0, 0xc66d, {0x3, 0x68000000}}, {0x1, 0x1f, {0x1, 0x3f}}, {0x22, 0x81, {0x2, 0x100}}, {0x4f66, 0x7, {0x2, 0x5}}, {0x6, 0x4, {0x0, 0x1}}, {0x6, 0x3, {0x1, 0x7fffffff}}, {0x8001, 0xabe, {0x2, 0x7fff}}, {0x90dc, 0x5, {0x2, 0x2}}, {0x2, 0x9, {0x2}}, {0xfa9a, 0x3, {0x0, 0x424}}, {0x7, 0x7, {0x3, 0xd02f}}, {0x80, 0x8, {0x0, 0x3f}}, {0x8000, 0x18c, {0x1, 0x8}}, {0x1, 0xce37, {0x1}}, {0x0, 0x3, {0x2, 0x7}}, {0x9, 0x0, {0x0, 0x8}}, {0x6, 0x56d, {0x0, 0xfffffffe}}, {0xffff, 0x1, {0x0, 0x1}}, {0x1, 0x6, {0x1, 0x4}}, {0x5, 0x2, {0x2, 0x1}}, {0x100, 0x96, {0x3}}, {0x200, 0x3, {0x3, 0xec6}}, {0xffff, 0x2, {0x1, 0xfffffffe}}, {0x7, 0x6, {0x0, 0x5}}, {0xfcda, 0x4808, {0x2, 0x7fff}}, {0x40, 0x5, {0x3, 0x92}}, {0x2, 0xff, {0x3, 0x400}}, {0x401, 0x1, {0x1, 0x8}}, {0x1, 0xdf6, {0x0, 0x8}}, {0x5, 0xd0, {0x0, 0x8}}, {0x7, 0x1ff, {0x3, 0x1310}}, {0x6000, 0x8, {0x1, 0xffffffff}}, {0x9, 0xfffd, {0x0, 0x9}}, {0x7f3, 0x4, {0x3, 0x3}}, {0x8000, 0xd8, {0x1, 0x4}}]}}}, {{0x254, 0x1, {{0x0, 0x7}, 0x80, 0x5, 0x7, 0x8000, 0x21, 'syz0\x00', "9e9e8bff0f2dd233d5d2239c826117c1bff1030cfad27b3f40dc37cae44d7da6", "4174c152b5ecd0d80e1c33e725898183da9adfb27dbcf5155324cf49ba0ced23", [{0x7f, 0x4, {0x2, 0xfff}}, {0x7, 0x8, {0x0, 0x1}}, {0x1, 0x1, {0x2, 0x8}}, {0x11b, 0x7ff, {0x2, 0x9}}, {0x6, 0xa571, {0x0, 0x39}}, {0x7, 0x3f, {0x1, 0x7}}, {0x40, 0x800, {0x1, 0x4}}, {0x8066, 0x5, {0x0, 0x5}}, {0x7f, 0x5, {0x2, 0x3c9a}}, {0xc39, 0xff, {0x0, 0x80000001}}, {0xfffb, 0x7, {0x0, 0x2}}, {0x1a15, 0x1ff, {0x1, 0x180000}}, {0x4, 0x6, {0x3, 0x3ff}}, {0x81, 0x1, {0x0, 0x7}}, {0x7, 0x9, {0x2, 0xfffffff8}}, {0x1, 0x6, {0x1, 0x231f}}, {0xfff, 0x77b8, {0x1, 0x4}}, {0x80, 0x178, {0x3, 0x6}}, {0x3f, 0x4, {0x0, 0x3}}, {0x81, 0x4, {0x3, 0xb2}}, {0x1f, 0x81, {0x3, 0x8}}, {0x7f, 0x80, {0x1, 0xffff}}, {0x1, 0xfff, {0x0, 0x50}}, {0x0, 0x9, {0x0, 0x3f}}, {0xfff8, 0x7ff, {0x0, 0xffff}}, {0x4, 0x206a, {0x2, 0x7e}}, {0x6000, 0x101, {0x2, 0x5}}, {0x8000, 0x784, {0x1, 0x5}}, {0x7, 0xb67, {0x1, 0x30000}}, {0x4, 0x8001, {0x2, 0x101}}, {0x2, 0x0, {0x3}}, {0xfff7, 0x101, {0x0, 0x9}}, {0xfff, 0x43, {0x2, 0xc39e}}, {0x8, 0x8000, {0x1, 0x400}}, {0x2, 0x80, {0x3, 0x6}}, {0x460, 0x9, {0x3, 0x8001}}, {0x5, 0x8, {0x3, 0x7}}, {0x5, 0x4, {0x0, 0x2}}, {0x3f, 0x8, {0x1, 0x9}}, {0x1ff, 0xfc00, {0x0, 0x7000000}}]}}}, {{0x254, 0x1, {{0x0, 0x8}, 0x3, 0xe4, 0x1f, 0x26, 0x1c, 'syz0\x00', "47eb79812ff1bcc78045e9817c717921e68eae014f4a1c6316bbed0d38232869", "6d942f268e556b410203746e97a2ea2e644ccf72f05f46036bdec7cc7a59eb2c", [{0xffff, 0x1, {0x1, 0x80000000}}, {0x3, 0x4, {0x0, 0x2}}, {0x8001, 0x6, {0x42ae69eabf10aefc, 0xffffffff}}, {0x800, 0x51a8, {0x0, 0x8001}}, {0x1, 0x8, {0x1, 0x1}}, {0x0, 0x1, {0x3, 0x49}}, {0x7ff, 0x9, {0x2, 0x80000000}}, {0x9, 0x0, {0x3, 0x10001}}, {0x3ff, 0x5fc, {0x0, 0x7fff}}, {0x5e, 0x6, {0x2, 0x1000}}, {0xf499, 0x1, {0x1, 0xfff}}, {0x6, 0x6, {0x2, 0x3}}, {0xff80, 0x880, {0x3}}, {0x3f, 0xffc0, {0x0, 0x8}}, {0xa726, 0x32bf, {0x1, 0xffffffc0}}, {0x9c, 0x1ff, {0x2, 0x1}}, {0x8012}, {0x8000, 0x8001, {0x1, 0x4}}, {0x7, 0x7, {0x2, 0x7fff}}, {0x400, 0x3, {0x2, 0x3f}}, {0x4, 0x1000, {0x3, 0x8}}, {0x8, 0x2, {0x2, 0x1}}, {0x8, 0x1ff, {0x3, 0x8}}, {0xecc, 0x5, {0x3, 0x8a}}, {0x5, 0x3, {0x0, 0x101}}, {0x0, 0x9, {0x3, 0x80000000}}, {0x4, 0x3, {0x2, 0x8}}, {0xffff, 0x522, {0x2, 0x1ff}}, {0x20, 0x101, {0x2}}, {0x4d, 0xffff, {0x3, 0x3}}, {0xff, 0x2, {0x0, 0x80000001}}, {0xca4, 0x2, {0x0, 0xffffffff}}, {0x0, 0x7, {0x3, 0x7}}, {0x4, 0x3, {0x0, 0x80000000}}, {0x100, 0x2, {0x0, 0x40}}, {0x7ff, 0xfff, {0x1, 0xaa}}, {0x0, 0x7fff, {0x3, 0xfffffff7}}, {0xff, 0xfff9, {0x3, 0xa548}}, {0x2, 0xfff, {0x1, 0x9}}, {0x9, 0xb02, {0x3, 0x800}}]}}}, {{0x254, 0x1, {{0x2, 0x3}, 0xf, 0x4, 0x3, 0x1, 0xa, 'syz1\x00', "ebfb0540d22b18c6bf44b8ca0e1ef6511bb4e16005329e177be8abb5dbddfc5a", "fbd7656bc2932413fe9a63874c255dd61299957ff5b6bdd936f2fcf6bf0b8180", [{0x1, 0x8, {0x1}}, {0x0, 0x6, {0x2, 0x2200}}, {0x0, 0x55d1, {0x0, 0xfffffffb}}, {0xc5, 0xfffd, {0x0, 0x6}}, {0x1, 0x2f5f, {0x2, 0x7fffffff}}, {0xfffb, 0x6, {0x2, 0x2}}, {0x0, 0x7f, {0x1, 0x100}}, {0x6, 0x1, {0x1, 0x1000}}, {0xc5, 0x6, {0x3, 0x9}}, {0x9, 0x8, {0x2, 0xfff}}, {0xff, 0x2e, {0x1, 0x6}}, {0x800, 0x36, {0x3}}, {0x400, 0xff00, {0x2, 0x7f}}, {0x7f, 0xc2, {0x0, 0x6}}, {0x7, 0x4, {0x3, 0xffff}}, {0x0, 0xc2a, {0x1, 0x1000}}, {0x626, 0x8000, {0x1}}, {0x2, 0x200, {0x3, 0x1}}, {0x6, 0x4, {0x3, 0x400}}, {0xea10, 0x8, {0x0, 0x27156787}}, {0x9, 0x8, {0x1, 0x8}}, {0x0, 0x9, {0x1, 0x61543fa9}}, {0x0, 0x0, {0x3, 0x3ff}}, {0x3f, 0x1, {0x3, 0x4}}, {0xb97d, 0x18, {0x3, 0x5}}, {0xffe1, 0x9, {0x0, 0xffffff01}}, {0x9, 0x0, {0x1, 0x62}}, {0x100, 0x0, {0x2, 0x1}}, {0x8, 0x2, {0x3, 0x9}}, {0x0, 0x81, {0x0, 0x200}}, {0x0, 0x2d8, {0x0, 0xd62}}, {0x5, 0x40e1, {0x0, 0x1f}}, {0x9, 0x7, {0x3, 0x7fff}}, {0xa9, 0xff, {0x1, 0x7f}}, {0x6, 0xfffd, {0x2, 0x10001}}, {0x1ff, 0x7, {0x2, 0x7ff}}, {0xda46, 0x8001, {0x7e6b972fe91bd779, 0x400}}, {0x9, 0x3, {0x2, 0xfffffffe}}, {0x8, 0x200, {0x2, 0xcd4}}, {0x2, 0x2, {0x0, 0x10000}}]}}}, {{0x254, 0x1, {{0x2, 0x8}, 0xc2, 0x6, 0x3ff, 0x8001, 0x2, 'syz1\x00', "13cc112f998b0b4204f4a7b3982788c32691797f6e64b3ddd19e4f8b26a97f70", "7b45d29f4d16748e5db958df7a521e3e3d4d7af2f0aece95d00d68ffd4fb7803", [{0x8001, 0x14, {0x3, 0x1b9}}, {0x4, 0xfff, {0x1, 0x5}}, {0x2, 0x6, {0x0, 0x40}}, {0x3f, 0x1000, {0x0, 0xfffffffc}}, {0x3, 0x1, {0x2}}, {0x6, 0xdb7b, {0x1, 0x2}}, {0xf1, 0x1, {0x3, 0x3}}, {0x1, 0x9, {0x3, 0x80}}, {0x2, 0x8, {0x3, 0x2}}, {0x3, 0x9, {0x3, 0x400}}, {0x40, 0x1000, {0x0, 0x1}}, {0x40, 0x5, {0x2, 0x8}}, {0x4ce1, 0x6, {0x0, 0x1}}, {0x0, 0xc69}, {0x1, 0x4, {0x0, 0x9}}, {0x7, 0x914, {0x3, 0x4}}, {0x1, 0x0, {0x3}}, {0x0, 0x8000, {0x3, 0x2}}, {0x1000, 0x101, {0x3, 0x2}}, {0xffdc, 0x7e, {0x3, 0x5}}, {0x3, 0x2, {0x0, 0x3a}}, {0x3d, 0xfff8, {0x3, 0x6}}, {0x32, 0x1, {0x0, 0x80000000}}, {0x6, 0x8000, {0x1, 0x8}}, {0x3ff, 0x7ff, {0x0, 0xffffffff}}, {0x7, 0x8, {0x3, 0xffff}}, {0x4, 0x1, {0x1, 0x150628a4}}, {0x7a, 0x2, {0x3, 0x8}}, {0x8001, 0x2, {0x0, 0x7fff}}, {0x3, 0x1f, {0x0, 0x40000}}, {0x70d, 0x8, {0x3, 0x7e}}, {0x1000, 0x4}, {0x40, 0x5, {0x3, 0x2}}, {0x1, 0x2, {0x3}}, {0x7ff, 0x55bf, {0x3, 0x1}}, {0x0, 0xfeff, {0x2, 0x8}}, {0x2, 0x80, {0x1, 0x800}}, {0x8001, 0x3, {0x7178854142723206, 0x7}}, {0x7, 0x6, {0x1, 0x2}}, {0x0, 0x1000, {0x0, 0x9e2a}}]}}}, {{0x254, 0x1, {{0x0, 0x20}, 0xc9, 0x7a, 0x8001, 0xfff, 0x0, 'syz0\x00', "bab8e9c192553616200d8052179cd61983660043af5516833b892740b43ecd77", "1d11e544a74c36183aca8cf99de5578f99f8033b7977859c3629add9c30e7a7c", [{0x0, 0x3, {0x2, 0xffffff7f}}, {0x3ff, 0xffe9, {0x1, 0x3}}, {0x6, 0x8001, {0x1, 0x40000}}, {0x9f7, 0x800, {0x3, 0xfffffef8}}, {0xfff9, 0x1, {0x3, 0x5d4}}, {0xfff7, 0x7f, {0x2, 0xffffff7f}}, {0x9, 0x4, {0x2, 0x80}}, {0x4, 0x3ff, {0x0, 0xfffffff9}}, {0x2, 0x101, {0x1, 0x3445}}, {0xd86, 0x7f, {0x0, 0xb5}}, {0x3f, 0xfff7, {0x2, 0x8}}, {0x8000, 0x9, {0x1, 0x1ff}}, {0x1, 0x1ff, {0x1, 0xffffff01}}, {0x800, 0x5, {0x3, 0x3}}, {0x4, 0x8, {0x3, 0x8}}, {0x3, 0x5, {0x3, 0x52e}}, {0x1ff, 0x4, {0x0, 0x4704}}, {0x7, 0x8, {0x0, 0x800}}, {0x0, 0xfff, {0x2, 0x9d8}}, {0xffff, 0x7371, {0x1, 0x8}}, {0x2, 0x15, {0x3, 0x6}}, {0x3, 0x5, {0x0, 0x8}}, {0x0, 0xff, {0x1, 0x4}}, {0x3, 0x9, {0x1, 0x6}}, {0x4bd, 0x7, {0x1, 0xed}}, {0x4, 0x669, {0x1, 0x7fff}}, {0x1, 0xfffa, {0x2, 0x2}}, {0xca0e, 0x3, {0x1, 0x1}}, {0x8, 0x9, {0x2, 0x91}}, {0x4, 0x3, {0x2, 0x7f}}, {0x1f, 0xbb86, {0x3, 0x7}}, {0x20, 0x7, {0x2, 0x2}}, {0x9, 0x1f, {0x0, 0x9479}}, {0x800, 0x8, {0x0, 0x1}}, {0xef, 0x100, {0x3, 0x4}}, {0x68ba, 0x0, {0x0, 0x9}}, {0x1, 0x87d, {0x1, 0xffffff81}}, {0x9, 0x7, {0x2, 0xee70}}, {0x0, 0x8, {0x3, 0xc0000000}}, {0x80, 0x87d, {0x3, 0x9}}]}}}, {{0x254, 0x1, {{0x2, 0x6}, 0x2, 0x20, 0x4c, 0x3, 0x28, 'syz1\x00', "703093049ed770e667df87d8660ecd5204c5137a69789b22aff7cf607bc096ab", "fff04306797373d4f1c8d090f1ce81fdf1822ef0fa6029bbfc4f3e98df02aff3", [{0x2, 0x2aad, {0x3, 0xfffffffb}}, {0x7, 0x9, {0x1, 0x8}}, {0xe6, 0x4, {0x0, 0x747}}, {0x101, 0x3, {0x1, 0x8000}}, {0x5, 0xffb1, {0x1, 0xc2a}}, {0x1ff, 0x8, {0x2, 0x9}}, {0x8, 0x9, {0x1, 0x9}}, {0x6, 0x5, {0x3, 0x1}}, {0x8, 0x0, {0x1, 0xffff}}, {0x100, 0x2, {0x1, 0x7fffffff}}, {0xff, 0x8, {0x3, 0x3}}, {0x9, 0x8, {0x2, 0x401}}, {0xb1f3, 0x40, {0x0, 0x40}}, {0x9, 0x7fff, {0x3}}, {0x8, 0x5, {0x1, 0xfffff405}}, {0x2, 0x7, {0x2, 0x10000}}, {0x9e4, 0x0, {0x3, 0x81}}, {0x5, 0x7, {0x0, 0x800}}, {0x7f, 0x1, {0x1, 0x5}}, {0x8, 0x6, {0x0, 0x4}}, {0x7, 0x9, {0x3, 0x4}}, {0x9, 0xe2c, {0x1}}, {0x101, 0x3, {0x3, 0x2}}, {0x1, 0x8, {0x0, 0x80000001}}, {0x400, 0x200, {0x1, 0x3}}, {0x0, 0x82c2, {0x1, 0x3}}, {0x3, 0x4, {0x1, 0x400}}, {0x5, 0x3, {0x1, 0x401}}, {0x40, 0x3, {0x0, 0x68}}, {0x6, 0x2, {0x0, 0x6}}, {0x4, 0x7, {0x0, 0x8}}, {0x200, 0x2, {0x1, 0x6}}, {0x8001, 0xe8, {0x1}}, {0x5, 0x41, {0x2, 0x2}}, {0x1ff, 0x40, {0x1, 0x2}}, {0x8, 0x7f, {0x3, 0x9}}, {0x7, 0x0, {0x0, 0x1}}, {0x6, 0x18, {0x0, 0x8000}}, {0x7, 0x8, {0x0, 0x80}}, {0x1, 0x4, {0x2, 0x9}}]}}}, {{0x254, 0x1, {{0x0, 0x85ad}, 0x3, 0x0, 0x5, 0x48c5, 0x5, 'syz1\x00', "ee0ab32638e2606c79ad8559d63a96dcc0fb0d0e95d6bddb5aa504bf0283631a", "f0c22480838d52dd6084acf958c4a43a11db1cfb5ebc872ba493c3eafaee3b4b", [{0x3, 0x7ff, {0x3, 0x200}}, {0x1ff, 0x5, {0x3, 0x4}}, {0x401, 0x8, {0x0, 0x3}}, {0x7b0, 0x6, {0x3, 0x80}}, {0x7f, 0x10a, {0x0, 0x101}}, {0x3, 0xd6, {0x3, 0x8244}}, {0x1, 0x4, {0x1, 0x1}}, {0x7, 0x2, {0x0, 0x1}}, {0x400, 0x8, {0x1, 0x6}}, {0x0, 0x5, {0x1, 0x7ff}}, {0x40, 0xfff, {0x1}}, {0x0, 0x7f2, {0x3, 0x800}}, {0x6, 0x200, {0x0, 0x5}}, {0x0, 0x3, {0x0, 0x7}}, {0x8, 0x4, {0x1, 0x2}}, {0x6502, 0x3cb, {0x3, 0x6}}, {0xfffd, 0x4, {0x1, 0xffffffff}}, {0x3, 0x1, {0x0, 0xff0c}}, {0x1, 0x101, {0x1, 0x6}}, {0xe, 0x4, {0x1, 0x6}}, {0x43, 0x0, {0x2, 0x8001}}, {0x100}, {0x9, 0x2, {0x1, 0x3}}, {0x2, 0x9, {0x1, 0x7}}, {0xfff9, 0x4, {0x2, 0x5}}, {0x5, 0x4, {0x2, 0x7}}, {0x200, 0x9, {0x0, 0x7}}, {0x8, 0x200, {0x1, 0x9}}, {0x1, 0x8, {0x3, 0x402}}, {0x7, 0x7fff, {0x2, 0x4}}, {0x200, 0x36, {0x0, 0x8}}, {0x7, 0x200, {0x1, 0x3}}, {0x3f, 0x400, {0x2, 0x8}}, {0x9, 0x0, {0x1, 0x2}}, {0x9, 0x819d, {0x1, 0x7}}, {0x200, 0x1, {0x0, 0xffffb0e9}}, {0x0, 0x8001, {0x1, 0xffffffff}}, {0x81, 0x15f0, {0x1, 0x2}}, {0x6, 0x9, {0x3, 0xfffeffff}}, {0x7, 0xe4, {0x2, 0x4}}]}}}, {{0x254, 0x1, {{0x0, 0x80000000}, 0x81, 0x81, 0x4, 0x1, 0x12, 'syz1\x00', "fe928a02cb5ba04851ad597de7f212621cdfe26d66e339f392d85a7ba318facc", "13c367794fc529b7be52ca13d5c1f4516e6a4556a3dabd9910f17ec196d4f8ad", [{0x9, 0x401, {0x2, 0x400}}, {0x7, 0x0, {0x3}}, {0xa5, 0x96d6, {0x1, 0x697}}, {0x4, 0xc6e, {0x1, 0x4}}, {0xffff, 0x3, {0x3, 0x6}}, {0x3ff, 0x3cb4, {0x0, 0x4}}, {0x3, 0x1000, {0x2, 0x1}}, {0xfff, 0x100, {0x2, 0x7e5}}, {0x11f3, 0x8, {0x1, 0xd1}}, {0x9, 0x40, {0x1, 0x7}}, {0x2b9, 0xeaf4, {0x0, 0x6}}, {0x0, 0x63, {0x2, 0x1}}, {0x4, 0x8, {0x3, 0x100}}, {0x7f, 0x4, {0x3, 0x8}}, {0xc9f, 0x9, {0x0, 0x8}}, {0x8, 0x6, {0x3, 0x1000}}, {0x0, 0xfffe, {0x2, 0x5}}, {0x8, 0xfa, {0x80ffac24c9495a72, 0x40}}, {0x1f, 0x3, {0x0, 0x7}}, {0x81, 0x8, {0x3, 0x3}}, {0xd07, 0x4, {0x3, 0x6da5}}, {0x20, 0x3, {0x1, 0xffffffff}}, {0x8, 0x2, {0x0, 0xb8}}, {0x4, 0x3, {0x1, 0x2}}, {0x9, 0x3, {0x0, 0x1}}, {0xfff, 0xe16, {0x1, 0x40}}, {0xb3, 0x7, {0x1, 0xfffffff8}}, {0x4, 0x401, {0x0, 0xe9}}, {0x6, 0x1, {0x2, 0x1}}, {0x40, 0x5, {0x1, 0x3f}}, {0x2, 0x81, {0x2, 0x7}}, {0x3f, 0x81, {0x3, 0x2}}, {0x9, 0x5, {0x0, 0xb1c}}, {0x3, 0xfff7, {0x1, 0x7}}, {0x101, 0x401, {0x1, 0x6}}, {0x81, 0xfffd, {0x0, 0xe7e9}}, {0x1, 0x1000, {0x2, 0x9}}, {0x800, 0x46b5, {0x2, 0xb97a}}, {0x5, 0x9, {0x3, 0x6}}, {0x6, 0x4, {0x0, 0x3ff}}]}}}]}, 0x1508}}, 0x80) [ 1454.400283] FAULT_INJECTION: forcing a failure. [ 1454.400283] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1454.401610] CPU: 1 PID: 12655 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1454.402345] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1454.403257] Call Trace: [ 1454.403551] dump_stack+0x107/0x167 [ 1454.403945] should_fail.cold+0x5/0xa [ 1454.404360] __alloc_pages_nodemask+0x182/0x600 [ 1454.404864] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1454.405429] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1454.406087] alloc_pages_current+0x187/0x280 [ 1454.406570] __get_free_pages+0xc/0xa0 [ 1454.406987] pgd_alloc+0x84/0x4e0 [ 1454.407216] FAULT_INJECTION: forcing a failure. [ 1454.407216] name failslab, interval 1, probability 0, space 0, times 0 [ 1454.407390] ? pgd_page_get_mm+0x40/0x40 [ 1454.410043] ? lockdep_init_map_type+0x2c7/0x780 [ 1454.410552] ? lockdep_init_map_type+0x2c7/0x780 [ 1454.411074] mm_init+0x670/0xab0 [ 1454.411443] copy_process+0x254d/0x7800 [ 1454.411867] ? __lock_acquire+0xbb1/0x5b00 [ 1454.412326] ? __cleanup_sighand+0xb0/0xb0 [ 1454.412781] ? lock_acquire+0x197/0x470 [ 1454.413216] ? find_held_lock+0x2c/0x110 [ 1454.413659] kernel_clone+0xe7/0x980 [ 1454.414071] ? lock_downgrade+0x6d0/0x6d0 [ 1454.414513] ? find_held_lock+0x2c/0x110 [ 1454.414964] ? create_io_thread+0xf0/0xf0 [ 1454.415428] ? ksys_write+0x12d/0x260 [ 1454.415864] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1454.416392] __do_sys_fork+0x8a/0xc0 [ 1454.416804] ? kernel_thread+0xf0/0xf0 [ 1454.417247] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1454.417820] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1454.418383] ? trace_hardirqs_on+0x5b/0x180 [ 1454.418860] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1454.419442] do_syscall_64+0x33/0x40 [ 1454.419857] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1454.420421] RIP: 0033:0x7fa6a3da0b19 [ 1454.420835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1454.422858] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1454.423698] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1454.424481] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1454.425262] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1454.426047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1454.426823] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1454.427654] CPU: 0 PID: 12656 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1454.429083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1454.430757] Call Trace: [ 1454.431320] dump_stack+0x107/0x167 [ 1454.432074] should_fail.cold+0x5/0xa [ 1454.432853] ? create_object.isra.0+0x3a/0xa20 [ 1454.433793] should_failslab+0x5/0x20 [ 1454.434566] kmem_cache_alloc+0x5b/0x310 [ 1454.435414] create_object.isra.0+0x3a/0xa20 [ 1454.436320] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1454.437359] kmem_cache_alloc+0x159/0x310 [ 1454.438213] vm_area_dup+0x78/0x290 [ 1454.438967] ? __lock_acquire+0xbb1/0x5b00 [ 1454.439861] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1454.440922] ? SOFTIRQ_verbose+0x10/0x10 [ 1454.441757] ? lock_acquire+0x197/0x470 [ 1454.442771] ? copy_process+0x25d6/0x7800 [ 1454.443810] ? vm_area_alloc+0x110/0x110 [ 1454.444782] ? find_held_lock+0x2c/0x110 [ 1454.445763] ? get_mm_exe_file+0x139/0x310 [ 1454.446781] ? lock_downgrade+0x6d0/0x6d0 [ 1454.447807] ? down_write_nested+0xe4/0x160 [ 1454.448763] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 1454.449785] ? get_mm_exe_file+0x162/0x310 04:34:59 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r6, 0x0, &(0x7f0000000140)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r0, 0x20, 0x0, 0x9, 0x3}, 0x1000) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000040)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1454.450634] copy_process+0x291b/0x7800 [ 1454.451503] ? __lock_acquire+0xbb1/0x5b00 [ 1454.452383] ? __cleanup_sighand+0xb0/0xb0 [ 1454.453240] ? lock_acquire+0x197/0x470 [ 1454.454046] ? find_held_lock+0x2c/0x110 [ 1454.454893] kernel_clone+0xe7/0x980 [ 1454.455654] ? lock_downgrade+0x6d0/0x6d0 [ 1454.456488] ? find_held_lock+0x2c/0x110 [ 1454.457307] ? create_io_thread+0xf0/0xf0 [ 1454.458146] ? ksys_write+0x12d/0x260 [ 1454.458942] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1454.459952] __do_sys_fork+0x8a/0xc0 [ 1454.460703] ? kernel_thread+0xf0/0xf0 [ 1454.461512] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1454.462575] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1454.463636] ? trace_hardirqs_on+0x5b/0x180 [ 1454.464509] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1454.465553] do_syscall_64+0x33/0x40 [ 1454.466308] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1454.467355] RIP: 0033:0x7fc140e06b19 [ 1454.468110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1454.471829] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1454.473352] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1454.474789] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1454.476235] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1454.477661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1454.479095] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:34:59 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x8cffffff, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1454.603922] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1468.007577] FAULT_INJECTION: forcing a failure. [ 1468.007577] name failslab, interval 1, probability 0, space 0, times 0 [ 1468.009451] CPU: 1 PID: 12785 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1468.010388] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1468.011508] Call Trace: [ 1468.011878] dump_stack+0x107/0x167 [ 1468.012391] should_fail.cold+0x5/0xa [ 1468.012928] ? vm_area_dup+0x78/0x290 [ 1468.013468] should_failslab+0x5/0x20 [ 1468.013993] kmem_cache_alloc+0x5b/0x310 [ 1468.014559] vm_area_dup+0x78/0x290 [ 1468.015073] ? __lock_acquire+0xbb1/0x5b00 [ 1468.015688] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1468.016412] ? SOFTIRQ_verbose+0x10/0x10 [ 1468.016980] ? lock_acquire+0x197/0x470 [ 1468.017536] ? copy_process+0x25d6/0x7800 [ 1468.018121] ? vm_area_alloc+0x110/0x110 [ 1468.018679] ? find_held_lock+0x2c/0x110 [ 1468.019247] ? get_mm_exe_file+0x139/0x310 [ 1468.019847] ? lock_downgrade+0x6d0/0x6d0 [ 1468.020433] ? down_write_nested+0xe4/0x160 [ 1468.021040] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 1468.021748] ? get_mm_exe_file+0x162/0x310 [ 1468.022341] copy_process+0x291b/0x7800 [ 1468.022889] ? __lock_acquire+0xbb1/0x5b00 [ 1468.023630] ? __cleanup_sighand+0xb0/0xb0 [ 1468.024648] ? lock_acquire+0x197/0x470 04:35:12 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xc0ed0000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:35:12 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x40440}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a91ce6ccb5e3206389", 0x27) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21}, 0x14}}, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f0000000300)=ANY=[@ANYBLOB="03000000000000000a00000000000000ff010000000000000000000000000001000000ed0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a00000000000000ff01000000000000000000000000000100"/202], 0x110) ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000180)={0x2, 0x7e850000, 0x5, 0x0, 0x0, [{{r1}, 0x8e}, {{}, 0x2}, {{r3}, 0x20f}, {{r4}, 0x800}, {{r1}, 0x1ff}]}) r5 = socket$inet_tcp(0x2, 0x1, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) close_range(r2, r6, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r5, 0x80047210, &(0x7f0000000140)) r7 = syz_open_dev$rtc(&(0x7f0000000080), 0x9, 0x101001) ioctl$F2FS_IOC_GARBAGE_COLLECT(r7, 0x4004f506, &(0x7f00000000c0)=0x1) unshare(0x48020200) unshare(0x58040280) r8 = pidfd_getfd(r0, r3, 0x0) sendmsg$nl_generic(r8, &(0x7f0000000480)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x40, 0x40, 0x26, 0x70bd29, 0x25dfdbfd, {}, [@generic="7fb5e8c76a2f5815c9a950ebbb33e37dab09b295c6ec2ec66a294ac85157c5f2d00851acd583d9de0ecb"]}, 0x40}, 0x1, 0x0, 0x0, 0x200080c5}, 0x4008080) 04:35:12 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 29) 04:35:12 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x7000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:35:12 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) r3 = accept$inet(0xffffffffffffffff, &(0x7f0000001300)={0x2, 0x0, @remote}, &(0x7f0000001340)=0x10) recvmmsg(r3, &(0x7f0000002700)=[{{&(0x7f0000001380)=@isdn, 0x80, &(0x7f0000002600)=[{&(0x7f0000001400)=""/201, 0xc9}, {&(0x7f0000001500)=""/138, 0x8a}, {&(0x7f00000015c0)=""/13, 0xd}, {&(0x7f0000001600)=""/4096, 0x1000}], 0x4, &(0x7f0000002640)=""/186, 0xba}}], 0x1, 0x12002, &(0x7f0000002740)={0x77359400}) r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x7f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000240)) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, 0x0, &(0x7f0000000380)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd, 0x5ab, 0x0, 0x1, 0x4, 0x1, {0x0, r6}}, 0x401) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x3, 0x0, @fd, 0xff, &(0x7f0000000180)=[{&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000000140)=""/34, 0x22}, {&(0x7f0000001240)=""/186, 0xba}], 0x3, 0x8, 0x0, {0x0, r6}}, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x1100) 04:35:12 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 27) 04:35:12 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000100)={[0xf3]}, 0x8, 0xd89cea2e908ed4ff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_COALESCE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000a40)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="0172032dec7fd8f7029a722a000000002ef0d2d66f08097d2d7400bd10ad0000", @ANYRES32=0x0, @ANYBLOB="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"], 0x1c}}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000380)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) getdents(r5, &(0x7f00000003c0)=""/160, 0xa0) ioctl$EXT4_IOC_GROUP_EXTEND(r4, 0x40086607, &(0x7f00000004c0)=0x40000000) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r7, @ANYBLOB="ed003f646e2e4a732f6afdf7f1c7959c9a0f82f7228a8e255bd2fe474b0fb88494ac1d7781620e294b6f3d5103ca9084f8c92974d2d5e0886268ed2ff43b066b612547bad9bfb8484062f1f72dbef8451cc1e3b8330100136ecf02d827502566583461811304dc9f1912631b0603ea0cdbd5432d282296471d928b4ac2e2ca69183167c2da57dc512a89eeb419c072d7f76158931f90e35dff9898582a77ebd4f40fd357bb32bd0b9a4615d41d12419339a3a4993c347d64fa870866"], 0x24}}, 0x0) sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4300a01}, 0xc, &(0x7f0000000280)={&(0x7f0000000700)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="000127bd7000fbdbdf255700000008000300", @ANYRES32=r7, @ANYBLOB="0600950000ee0000827383bbd59b98550cacd2940873cb06009500010000000600009500860f000006009500008000"/63], 0x4c}}, 0x4000) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r10 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000880)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r10, @ANYBLOB="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"]) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x5, 0x8, 0x6, 0x5, 0x0, 0x8, 0x8000, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0xe84b, 0x4}, 0x8, 0x800, 0x9, 0x8, 0x1e, 0xffffff7f, 0x800, 0x0, 0x9, 0x0, 0x1ff}, 0x0, 0xd, r11, 0x8) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000480)={@mcast2, r9}, 0x14) 04:35:12 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 18) [ 1468.025824] ? find_held_lock+0x2c/0x110 [ 1468.026957] kernel_clone+0xe7/0x980 [ 1468.027863] ? lock_downgrade+0x6d0/0x6d0 [ 1468.028846] ? find_held_lock+0x2c/0x110 [ 1468.029816] ? create_io_thread+0xf0/0xf0 [ 1468.030810] ? ksys_write+0x12d/0x260 [ 1468.031741] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1468.032912] __do_sys_fork+0x8a/0xc0 [ 1468.033808] ? kernel_thread+0xf0/0xf0 [ 1468.034757] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.036018] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.037105] ? trace_hardirqs_on+0x5b/0x180 [ 1468.038043] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.039131] do_syscall_64+0x33/0x40 [ 1468.039944] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1468.041032] RIP: 0033:0x7fa6a3da0b19 [ 1468.041838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1468.045813] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1468.045835] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1468.045847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1468.045858] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1468.045872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1468.052781] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:35:12 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000006, 0x2010, r0, 0x8000000) syz_io_uring_setup(0x449c, &(0x7f0000000140)={0x0, 0xe676, 0x20, 0x2, 0x233, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000040), &(0x7f00000001c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4007, @fd_index=0x3, 0x6, &(0x7f0000000440)=[{&(0x7f0000000240)="6fd2b9ee3f12241d15af5a1cd9af82b51475211b1c594ac07fe0d174006ec36d929245e6a67885b0b6fea131a7b308d06edfe3a80c89", 0x36}, {&(0x7f0000000280)="2949f04de28620d6a6f974928a0e41213d1e43138cb742af8887e8f047ff242e52399634e10507f86ea0457d116ff0f194f64a2961a28f50d1b81cf38e73ccb5fce8a06731acf843d1b30754e426e7b752ff3070ed798fbaa7d90d7116ade10c6498505630e2a32665562205733c97b293cb", 0x72}, {&(0x7f0000000300)="7253ae42aaede7136b3a29141c55bd89df95bff913d433ccb091400954ce421314eeb9b6de3d06db69c18412af06fde847349bbab732c6f8b4eb0c6aa0a599e31a90a85e895d13828a8a8b702404e641cfbe2f2c84dd8d62c90465c78a0162967dba9ac369f5126ceb803548ce", 0x6d}, {&(0x7f0000000380)="38d9a2b94a4c5f475ce49c618ef397b5c008baa1b3fc0f76713f4464b0fa4d5327fc7570af7b61239d9be4195eff650837c58d2cdfb2", 0x36}, {&(0x7f00000003c0)="c781425ca31a9847d5fc8fcd7236a43ac8228f940f8774fb6a35d5d5c81d02663d7c5fbf114d571c221927b1427e18794878fd8d68bb2901429d985bc54d39a2547ae00a10aeb3bfe60f6202b78b54262bfbffe0a281c2f9d3dbb0f2c530bad2", 0x60}], 0x5, 0x0, 0x1, {0x1}}, 0x9) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1468.064671] FAULT_INJECTION: forcing a failure. [ 1468.064671] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1468.065936] CPU: 0 PID: 12795 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1468.066676] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1468.067559] Call Trace: [ 1468.067848] dump_stack+0x107/0x167 [ 1468.068242] should_fail.cold+0x5/0xa [ 1468.068664] strncpy_from_user+0x34/0x470 [ 1468.069123] getname_flags.part.0+0x95/0x4f0 [ 1468.069598] getname+0x8e/0xd0 [ 1468.069944] do_sys_openat2+0xf9/0x420 [ 1468.070357] ? build_open_flags+0x6f0/0x6f0 [ 1468.070824] ? rcu_read_lock_any_held+0x75/0xa0 [ 1468.071328] __x64_sys_openat+0x13f/0x1f0 [ 1468.071788] ? __ia32_sys_open+0x1c0/0x1c0 [ 1468.072249] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.072812] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.073371] do_syscall_64+0x33/0x40 [ 1468.073781] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1468.074320] RIP: 0033:0x7fc912052a04 [ 1468.074728] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1468.076653] RSP: 002b:00007fc90f614ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1468.077465] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc912052a04 [ 1468.078207] RDX: 0000000000000002 RSI: 00007fc90f615000 RDI: 00000000ffffff9c [ 1468.078925] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1468.078950] RBP: 00007fc90f615000 R08: 0000000000000000 R09: ffffffffffffffff [ 1468.078964] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1468.082268] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1468.082623] FAULT_INJECTION: forcing a failure. [ 1468.082623] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1468.085734] CPU: 1 PID: 12800 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1468.087236] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1468.089030] Call Trace: [ 1468.089603] dump_stack+0x107/0x167 [ 1468.090381] should_fail.cold+0x5/0xa [ 1468.091214] __alloc_pages_nodemask+0x182/0x600 [ 1468.092218] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1468.093357] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1468.094647] alloc_pages_current+0x187/0x280 [ 1468.095630] __get_free_pages+0xc/0xa0 [ 1468.096459] pgd_alloc+0x84/0x4e0 [ 1468.097211] ? pgd_page_get_mm+0x40/0x40 [ 1468.098089] ? lockdep_init_map_type+0x2c7/0x780 [ 1468.099122] ? lockdep_init_map_type+0x2c7/0x780 [ 1468.100167] mm_init+0x670/0xab0 [ 1468.100909] copy_process+0x254d/0x7800 [ 1468.101778] ? __lock_acquire+0xbb1/0x5b00 [ 1468.102732] ? __cleanup_sighand+0xb0/0xb0 [ 1468.103666] ? lock_acquire+0x197/0x470 [ 1468.104543] ? find_held_lock+0x2c/0x110 [ 1468.105426] kernel_clone+0xe7/0x980 [ 1468.106233] ? lock_downgrade+0x6d0/0x6d0 [ 1468.107129] ? find_held_lock+0x2c/0x110 [ 1468.108028] ? create_io_thread+0xf0/0xf0 [ 1468.108934] ? ksys_write+0x12d/0x260 [ 1468.109752] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1468.110809] __do_sys_fork+0x8a/0xc0 [ 1468.111609] ? kernel_thread+0xf0/0xf0 [ 1468.112471] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.113587] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.114704] ? trace_hardirqs_on+0x5b/0x180 [ 1468.115642] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.116760] do_syscall_64+0x33/0x40 [ 1468.117559] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1468.118667] RIP: 0033:0x7fc140e06b19 [ 1468.119483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1468.123471] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1468.125125] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1468.126676] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1468.128237] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1468.129779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1468.131326] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1468.146050] EXT4-fs warning (device sda): ext4_group_extend:1808: need to use ext2online to resize further 04:35:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r0, 0x0, 0x2) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) sendmsg$NL80211_CMD_PROBE_CLIENT(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x50, 0x0, 0x100, 0x3, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000001}, 0x40) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000002700)={&(0x7f0000000280)=@alg, 0x80, &(0x7f00000025c0)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000001300)=""/3, 0x3}, {&(0x7f0000001340)=""/254, 0xfe}, {&(0x7f0000001440)=""/87, 0x57}, {&(0x7f00000014c0)=""/204, 0xcc}, {&(0x7f00000015c0)=""/4096, 0x1000}], 0x6, &(0x7f0000002640)=""/105, 0x69}, 0x0, 0x100, 0x1, {0x2}}, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:35:12 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 28) 04:35:13 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xf6ffffff, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1468.206721] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1468.223536] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1468.229455] EXT4-fs warning (device sda): ext4_group_extend:1808: need to use ext2online to resize further 04:35:13 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 19) 04:35:13 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xffffe000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1468.236186] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 04:35:13 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 30) [ 1468.286842] FAULT_INJECTION: forcing a failure. [ 1468.286842] name failslab, interval 1, probability 0, space 0, times 0 [ 1468.289217] CPU: 1 PID: 12919 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1468.290105] FAULT_INJECTION: forcing a failure. [ 1468.290105] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1468.290601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1468.290608] Call Trace: [ 1468.290633] dump_stack+0x107/0x167 [ 1468.290660] should_fail.cold+0x5/0xa [ 1468.295592] ? create_object.isra.0+0x3a/0xa20 [ 1468.296524] should_failslab+0x5/0x20 [ 1468.297290] kmem_cache_alloc+0x5b/0x310 [ 1468.298112] create_object.isra.0+0x3a/0xa20 [ 1468.298990] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1468.300037] kmem_cache_alloc+0x159/0x310 [ 1468.300882] vm_area_dup+0x78/0x290 [ 1468.301622] ? __lock_acquire+0xbb1/0x5b00 [ 1468.302490] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1468.303546] ? SOFTIRQ_verbose+0x10/0x10 [ 1468.304360] ? lock_acquire+0x197/0x470 [ 1468.305155] ? copy_process+0x25d6/0x7800 [ 1468.305991] ? vm_area_alloc+0x110/0x110 [ 1468.306798] ? find_held_lock+0x2c/0x110 [ 1468.307626] ? get_mm_exe_file+0x139/0x310 [ 1468.308470] ? lock_downgrade+0x6d0/0x6d0 [ 1468.309303] ? down_write_nested+0xe4/0x160 [ 1468.310165] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 1468.311184] ? get_mm_exe_file+0x162/0x310 [ 1468.312047] copy_process+0x291b/0x7800 [ 1468.312846] ? __lock_acquire+0xbb1/0x5b00 [ 1468.313722] ? __cleanup_sighand+0xb0/0xb0 [ 1468.314573] ? lock_acquire+0x197/0x470 [ 1468.315393] ? find_held_lock+0x2c/0x110 [ 1468.316215] kernel_clone+0xe7/0x980 [ 1468.316974] ? lock_downgrade+0x6d0/0x6d0 [ 1468.317798] ? find_held_lock+0x2c/0x110 [ 1468.318621] ? create_io_thread+0xf0/0xf0 [ 1468.319460] ? ksys_write+0x12d/0x260 [ 1468.320250] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1468.321245] __do_sys_fork+0x8a/0xc0 [ 1468.321999] ? kernel_thread+0xf0/0xf0 [ 1468.322826] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.323913] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.324977] ? trace_hardirqs_on+0x5b/0x180 [ 1468.325848] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.326903] do_syscall_64+0x33/0x40 [ 1468.327656] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1468.328710] RIP: 0033:0x7fa6a3da0b19 [ 1468.329468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1468.333214] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1468.334768] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1468.336236] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1468.337692] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1468.339153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1468.340627] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1468.342119] CPU: 0 PID: 12926 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1468.342913] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1468.343837] Call Trace: [ 1468.344137] dump_stack+0x107/0x167 [ 1468.344219] FAULT_INJECTION: forcing a failure. [ 1468.344219] name failslab, interval 1, probability 0, space 0, times 0 [ 1468.344555] should_fail.cold+0x5/0xa [ 1468.347190] __alloc_pages_nodemask+0x182/0x600 [ 1468.347699] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1468.348282] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1468.348926] alloc_pages_current+0x187/0x280 [ 1468.349427] __get_free_pages+0xc/0xa0 [ 1468.349840] pgd_alloc+0x84/0x4e0 [ 1468.350230] ? pgd_page_get_mm+0x40/0x40 [ 1468.350658] ? lockdep_init_map_type+0x2c7/0x780 [ 1468.351188] ? lockdep_init_map_type+0x2c7/0x780 [ 1468.351711] mm_init+0x670/0xab0 [ 1468.352083] copy_process+0x254d/0x7800 [ 1468.352508] ? __lock_acquire+0xbb1/0x5b00 [ 1468.352999] ? __cleanup_sighand+0xb0/0xb0 [ 1468.353458] ? lock_acquire+0x197/0x470 [ 1468.353908] ? find_held_lock+0x2c/0x110 [ 1468.354350] kernel_clone+0xe7/0x980 [ 1468.354770] ? lock_downgrade+0x6d0/0x6d0 [ 1468.355204] ? find_held_lock+0x2c/0x110 [ 1468.355663] ? create_io_thread+0xf0/0xf0 [ 1468.356129] ? ksys_write+0x12d/0x260 [ 1468.356561] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1468.357103] __do_sys_fork+0x8a/0xc0 [ 1468.357499] ? kernel_thread+0xf0/0xf0 [ 1468.357944] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.358509] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.359076] ? trace_hardirqs_on+0x5b/0x180 [ 1468.359554] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.360134] do_syscall_64+0x33/0x40 [ 1468.360526] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1468.361102] RIP: 0033:0x7fc140e06b19 [ 1468.361494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1468.363549] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1468.364358] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1468.365110] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1468.365854] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1468.366634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1468.367434] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1468.368258] CPU: 1 PID: 12927 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1468.369673] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1468.371379] Call Trace: [ 1468.371932] dump_stack+0x107/0x167 [ 1468.372687] should_fail.cold+0x5/0xa [ 1468.373463] ? __alloc_file+0x21/0x320 [ 1468.374259] should_failslab+0x5/0x20 [ 1468.375033] kmem_cache_alloc+0x5b/0x310 [ 1468.375877] __alloc_file+0x21/0x320 [ 1468.376635] alloc_empty_file+0x6d/0x170 [ 1468.377460] path_openat+0xe3/0x26f0 [ 1468.378225] ? path_lookupat+0x860/0x860 [ 1468.379050] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1468.380117] ? SOFTIRQ_verbose+0x10/0x10 [ 1468.380941] do_filp_open+0x190/0x3e0 04:35:13 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCADDRT(r2, 0x890b, &(0x7f0000000040)={0x0, @hci={0x1f, 0x1, 0x3}, @generic={0x1a, "e77383562d32961dc4915f75e902"}, @phonet={0x23, 0x5e, 0x3f, 0x4a}, 0x9, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000000)='veth0_to_bond\x00', 0x0, 0x7ff, 0x400}) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000004c0)={'syztnl2\x00', &(0x7f00000001c0)={'ip6_vti0\x00', 0x0, 0x29, 0x9, 0x1, 0x40, 0x8, @ipv4={'\x00', '\xff\xff', @multicast1}, @local, 0x1, 0x20, 0x0, 0x3223}}) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r3}, 0x14) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x2) r5 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r5, 0x0, r4, 0x0, 0x200f5ef, 0x0) setsockopt$inet6_udp_encap(r5, 0x11, 0x64, &(0x7f0000000100)=0x3, 0x4) r6 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000380), 0xbf821b74b34a2801, 0x0) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x2, &(0x7f0000000480)=0xc, 0x4) getsockopt$bt_BT_POWER(r6, 0x112, 0x9, &(0x7f00000003c0), &(0x7f0000000400)=0x1) setsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000000340)={@private2={0xfc, 0x2, '\x00', 0x1}, r3}, 0x14) sendmsg$AUDIT_SET_FEATURE(r2, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10020000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x20, 0x3fa, 0x180, 0x70bd27, 0x25dfdbfc, {0x1, 0x1, 0x1, 0x1}, ["", "", "", "", "", "", "", ""]}, 0x20}}, 0x20008000) [ 1468.381730] ? may_open_dev+0xf0/0xf0 [ 1468.382664] ? __alloc_fd+0x2b8/0x630 [ 1468.383443] ? lock_downgrade+0x6d0/0x6d0 [ 1468.384277] ? do_raw_spin_lock+0x121/0x260 [ 1468.385142] ? rwlock_bug.part.0+0x90/0x90 [ 1468.385999] ? _raw_spin_unlock+0x1a/0x30 [ 1468.386826] ? __alloc_fd+0x2b8/0x630 [ 1468.387619] do_sys_openat2+0x171/0x420 [ 1468.388414] ? build_open_flags+0x6f0/0x6f0 [ 1468.389286] ? rcu_read_lock_any_held+0x75/0xa0 [ 1468.390218] __x64_sys_openat+0x13f/0x1f0 [ 1468.391058] ? __ia32_sys_open+0x1c0/0x1c0 [ 1468.391934] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1468.392975] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1468.394007] do_syscall_64+0x33/0x40 [ 1468.394752] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1468.395782] RIP: 0033:0x7fc912052a04 [ 1468.396521] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1468.400172] RSP: 002b:00007fc90f614ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1468.401778] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc912052a04 [ 1468.403197] RDX: 0000000000000002 RSI: 00007fc90f615000 RDI: 00000000ffffff9c [ 1468.404641] RBP: 00007fc90f615000 R08: 0000000000000000 R09: ffffffffffffffff [ 1468.406107] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1468.407549] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 04:35:27 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000080)={0x7fff, 0xbd, 0x6, 0x7d, 0x5d5, 0x8}) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x13) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)) ioctl$TCSETS(r1, 0x5402, &(0x7f00000000c0)={0x7fffffff, 0x0, 0x0, 0x0, 0x0, "162ae5fbffec3cdf75028ac9bd2e1d0bd6c662"}) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)) 04:35:27 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 20) [ 1482.860578] FAULT_INJECTION: forcing a failure. [ 1482.860578] name failslab, interval 1, probability 0, space 0, times 0 [ 1482.863356] CPU: 1 PID: 12947 Comm: syz-executor.5 Not tainted 5.10.199 #1 04:35:27 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x200000b, 0x40010, r0, 0x8000000) r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r10 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r11, r12, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r13 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r10, 0x0) syz_io_uring_submit(r13, r12, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r14 = syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x80000001, 0x1, &(0x7f0000000240)=[{&(0x7f0000000400)="df42f48d7723576576f39c5f5d3731f8319f6d8d2c992dd8e4ce966144f09c41f80aa232f2dac7bbb1769b756bbcbd24a882468a57f54b777d50c3e6cca6fed68151635fdc4ae7793b2d1c5f42409b7a59a3cbb430c5ef409d2a64608a3659b7728cfc415a158ffed4fdd07d4665eb47cc5d5ca2c4a96d14193fdc9f3f5b5285633595280391e49e1b12ed31145757b08482bd0f59419ef95e2112a6bc906976bad9f57b83d0d8c42542fefaf34ec56c290b3e7f8aad8f7bca760853dc244ef311512f344a0bef6378c5718beb871a394037596587e45de2761526a41fc1e643d7ec17f66dc2b8f60345db5d73d4cee5a41b", 0xf2, 0xc08d}], 0x10000, &(0x7f0000000500)={[{@shortname_lower}, {@uni_xlate}], [{@fsmagic={'fsmagic', 0x3d, 0x3}}, {@fowner_gt={'fowner>', 0xee01}}, {@uid_lt}]}) syz_io_uring_submit(r8, r12, &(0x7f0000000280)=@IORING_OP_POLL_ADD={0x6, 0x3, 0x0, @fd=r14, 0x0, 0x0, 0x0, {0x1400}}, 0x100) syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r3, r6, &(0x7f0000000040)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x2, 0x2007, @fd_index=0x3, 0x4, 0x0, 0x0, 0x5, 0x1}, 0x4) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:35:27 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x20000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:35:27 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 31) 04:35:27 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 29) 04:35:27 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xffffff8c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1482.865025] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1482.867240] Call Trace: [ 1482.867807] dump_stack+0x107/0x167 [ 1482.868685] should_fail.cold+0x5/0xa [ 1482.869457] ? create_object.isra.0+0x3a/0xa20 [ 1482.870549] should_failslab+0x5/0x20 [ 1482.871319] kmem_cache_alloc+0x5b/0x310 [ 1482.872193] create_object.isra.0+0x3a/0xa20 [ 1482.873076] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1482.874086] kmem_cache_alloc+0x159/0x310 [ 1482.874920] __alloc_file+0x21/0x320 [ 1482.875680] alloc_empty_file+0x6d/0x170 [ 1482.876488] path_openat+0xe3/0x26f0 [ 1482.877247] ? path_lookupat+0x860/0x860 [ 1482.878058] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1482.879102] ? SOFTIRQ_verbose+0x10/0x10 [ 1482.879942] do_filp_open+0x190/0x3e0 [ 1482.880709] ? may_open_dev+0xf0/0xf0 [ 1482.881470] ? __alloc_fd+0x2b8/0x630 [ 1482.882231] ? lock_downgrade+0x6d0/0x6d0 [ 1482.883052] ? do_raw_spin_lock+0x121/0x260 [ 1482.883923] ? rwlock_bug.part.0+0x90/0x90 [ 1482.884783] ? _raw_spin_unlock+0x1a/0x30 [ 1482.885007] FAULT_INJECTION: forcing a failure. [ 1482.885007] name failslab, interval 1, probability 0, space 0, times 0 [ 1482.885602] ? __alloc_fd+0x2b8/0x630 [ 1482.885634] do_sys_openat2+0x171/0x420 [ 1482.885660] ? build_open_flags+0x6f0/0x6f0 [ 1482.890504] ? rcu_read_lock_any_held+0x75/0xa0 [ 1482.891434] __x64_sys_openat+0x13f/0x1f0 [ 1482.892272] ? __ia32_sys_open+0x1c0/0x1c0 [ 1482.893130] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1482.894176] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1482.895219] do_syscall_64+0x33/0x40 [ 1482.895964] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1482.896982] RIP: 0033:0x7fc912052a04 [ 1482.897721] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1482.901414] RSP: 002b:00007fc90f614ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1482.902919] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc912052a04 [ 1482.904352] RDX: 0000000000000002 RSI: 00007fc90f615000 RDI: 00000000ffffff9c [ 1482.905759] RBP: 00007fc90f615000 R08: 0000000000000000 R09: ffffffffffffffff [ 1482.907166] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1482.908612] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1482.910072] CPU: 0 PID: 12953 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1482.911645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1482.913449] Call Trace: [ 1482.913990] dump_stack+0x107/0x167 [ 1482.914730] should_fail.cold+0x5/0xa [ 1482.915563] ? vm_area_dup+0x78/0x290 [ 1482.916451] should_failslab+0x5/0x20 [ 1482.917287] kmem_cache_alloc+0x5b/0x310 [ 1482.918113] FAULT_INJECTION: forcing a failure. [ 1482.918113] name failslab, interval 1, probability 0, space 0, times 0 [ 1482.918128] vm_area_dup+0x78/0x290 [ 1482.918159] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1482.922165] ? lock_downgrade+0x6d0/0x6d0 [ 1482.923001] ? copy_page_range+0x24e9/0x3810 [ 1482.923912] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1482.924951] ? avc_has_extended_perms+0xf40/0xf40 [ 1482.926053] ? vm_area_alloc+0x110/0x110 [ 1482.926968] ? find_held_lock+0x2c/0x110 [ 1482.927826] ? selinux_vm_enough_memory+0x114/0x180 [ 1482.928933] ? selinux_sb_statfs+0x250/0x250 [ 1482.929928] ? percpu_counter_add_batch+0x8b/0x140 [ 1482.930946] ? __vm_enough_memory+0x184/0x360 [ 1482.931855] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1482.933000] copy_process+0x291b/0x7800 [ 1482.933940] ? __cleanup_sighand+0xb0/0xb0 [ 1482.934820] ? lock_acquire+0x197/0x470 [ 1482.935645] ? find_held_lock+0x2c/0x110 [ 1482.936531] kernel_clone+0xe7/0x980 [ 1482.937370] ? lock_downgrade+0x6d0/0x6d0 [ 1482.938298] ? find_held_lock+0x2c/0x110 [ 1482.939211] ? create_io_thread+0xf0/0xf0 [ 1482.940158] ? ksys_write+0x12d/0x260 [ 1482.941031] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1482.942131] __do_sys_fork+0x8a/0xc0 [ 1482.942973] ? kernel_thread+0xf0/0xf0 [ 1482.943879] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1482.945054] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1482.946206] ? trace_hardirqs_on+0x5b/0x180 [ 1482.947173] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1482.948348] do_syscall_64+0x33/0x40 [ 1482.949197] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1482.950343] RIP: 0033:0x7fa6a3da0b19 [ 1482.951178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1482.955199] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1482.956921] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1482.958518] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1482.960038] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1482.961630] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1482.963225] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1482.964872] CPU: 1 PID: 12955 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1482.966259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1482.967920] Call Trace: [ 1482.968449] dump_stack+0x107/0x167 [ 1482.969180] should_fail.cold+0x5/0xa [ 1482.969939] ? anon_vma_clone+0xdc/0x590 [ 1482.970750] should_failslab+0x5/0x20 [ 1482.971512] kmem_cache_alloc+0x5b/0x310 [ 1482.972337] anon_vma_clone+0xdc/0x590 [ 1482.973129] anon_vma_fork+0x82/0x640 [ 1482.973891] ? __vm_enough_memory+0x184/0x360 [ 1482.974792] copy_process+0x7218/0x7800 [ 1482.975643] ? __cleanup_sighand+0xb0/0xb0 [ 1482.976499] ? lock_acquire+0x197/0x470 [ 1482.977305] ? find_held_lock+0x2c/0x110 [ 1482.978120] kernel_clone+0xe7/0x980 [ 1482.978863] ? lock_downgrade+0x6d0/0x6d0 [ 1482.979696] ? find_held_lock+0x2c/0x110 [ 1482.980507] ? create_io_thread+0xf0/0xf0 [ 1482.981339] ? ksys_write+0x12d/0x260 [ 1482.982112] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1482.983083] __do_sys_fork+0x8a/0xc0 [ 1482.983833] ? kernel_thread+0xf0/0xf0 [ 1482.984629] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1482.985670] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1482.986688] ? trace_hardirqs_on+0x5b/0x180 [ 1482.987555] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1482.988603] do_syscall_64+0x33/0x40 [ 1482.989355] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1482.990388] RIP: 0033:0x7fc140e06b19 [ 1482.991130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1482.994801] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1482.996322] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1482.997745] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1482.999155] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1483.000584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1483.001997] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1483.063174] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:35:27 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 21) 04:35:27 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x20100000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:35:27 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xfffffff6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:35:27 executing program 4: r0 = fsopen(&(0x7f00000000c0)='binfmt_misc\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000000)='nomand\x00', 0x0, 0x0) ppoll(&(0x7f0000000040)=[{r0, 0x9010}], 0x1, &(0x7f0000000080)={0x77359400}, &(0x7f0000000140)={[0xf0]}, 0x8) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x105142, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x0) ftruncate(r1, 0xffff) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) syz_open_procfs(0x0, &(0x7f00000000c0)='net/snmp\x00') preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_MEASURE_VERITY(0xffffffffffffffff, 0xc0046686, &(0x7f0000000200)={0x3, 0xc8, "df1f240aa6d76a256f6939908d22746cc12079d379e60801f5e00c6666074dc3411828d543c7c15c4e6654d2a6872f1e042e6d6a89a63959ae4c3fdfe50ffce173d5566ccc80a24c895f6805438ce6860b1243cf4eccd73aed086809d99945f7504d1cde882e3cdb974e340b3f8386475cfca7d4fb1e1b51028a5ed5b3d1fabd7b1646e490385d49873f99d669489a2537fcd928a99da383f0ddbc83ed3179666a69975e03bd1e934d5b74e7088f5a5146d85370c444fdb3ccca51297be75c354954b52f41076d92"}) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) getpid() r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) ftruncate(0xffffffffffffffff, 0x1000003) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0) 04:35:27 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x61f6, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1483.175271] FAULT_INJECTION: forcing a failure. [ 1483.175271] name failslab, interval 1, probability 0, space 0, times 0 [ 1483.177672] CPU: 0 PID: 13068 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1483.179100] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1483.180775] Call Trace: [ 1483.181310] dump_stack+0x107/0x167 [ 1483.182054] should_fail.cold+0x5/0xa [ 1483.182829] ? security_file_alloc+0x34/0x170 [ 1483.183743] should_failslab+0x5/0x20 [ 1483.184508] kmem_cache_alloc+0x5b/0x310 [ 1483.185337] security_file_alloc+0x34/0x170 [ 1483.186205] __alloc_file+0xb6/0x320 [ 1483.186959] alloc_empty_file+0x6d/0x170 [ 1483.187792] path_openat+0xe3/0x26f0 [ 1483.188553] ? path_lookupat+0x860/0x860 [ 1483.189373] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1483.190421] ? SOFTIRQ_verbose+0x10/0x10 [ 1483.191254] do_filp_open+0x190/0x3e0 [ 1483.192023] ? may_open_dev+0xf0/0xf0 [ 1483.192803] ? __alloc_fd+0x2b8/0x630 [ 1483.193571] ? lock_downgrade+0x6d0/0x6d0 [ 1483.194403] ? do_raw_spin_lock+0x121/0x260 [ 1483.195268] ? rwlock_bug.part.0+0x90/0x90 [ 1483.196132] ? _raw_spin_unlock+0x1a/0x30 [ 1483.196547] 9pnet: Insufficient options for proto=fd [ 1483.196956] ? __alloc_fd+0x2b8/0x630 [ 1483.196998] do_sys_openat2+0x171/0x420 [ 1483.199576] ? build_open_flags+0x6f0/0x6f0 [ 1483.200478] ? rcu_read_lock_any_held+0x75/0xa0 [ 1483.201413] __x64_sys_openat+0x13f/0x1f0 [ 1483.202248] ? __ia32_sys_open+0x1c0/0x1c0 [ 1483.203106] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1483.204160] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1483.205199] do_syscall_64+0x33/0x40 [ 1483.205948] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1483.206972] RIP: 0033:0x7fc912052a04 [ 1483.207742] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1483.211443] RSP: 002b:00007fc90f614ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1483.211465] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc912052a04 04:35:28 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 30) 04:35:28 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xedc000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1483.211476] RDX: 0000000000000002 RSI: 00007fc90f615000 RDI: 00000000ffffff9c [ 1483.211487] RBP: 00007fc90f615000 R08: 0000000000000000 R09: ffffffffffffffff [ 1483.211497] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1483.211508] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1483.279183] FAULT_INJECTION: forcing a failure. [ 1483.279183] name failslab, interval 1, probability 0, space 0, times 0 [ 1483.281580] CPU: 0 PID: 13092 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1483.283056] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1483.284705] Call Trace: [ 1483.285228] dump_stack+0x107/0x167 [ 1483.285951] should_fail.cold+0x5/0xa [ 1483.286704] ? create_object.isra.0+0x3a/0xa20 [ 1483.287608] should_failslab+0x5/0x20 [ 1483.288412] kmem_cache_alloc+0x5b/0x310 [ 1483.289238] create_object.isra.0+0x3a/0xa20 [ 1483.290127] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1483.291157] kmem_cache_alloc+0x159/0x310 [ 1483.292018] vm_area_dup+0x78/0x290 [ 1483.292772] ? __lock_acquire+0xbb1/0x5b00 [ 1483.293666] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1483.294728] ? SOFTIRQ_verbose+0x10/0x10 [ 1483.295554] ? lock_acquire+0x197/0x470 [ 1483.296371] ? copy_process+0x25d6/0x7800 [ 1483.297223] ? vm_area_alloc+0x110/0x110 [ 1483.298037] ? find_held_lock+0x2c/0x110 [ 1483.298860] ? get_mm_exe_file+0x139/0x310 [ 1483.299725] ? lock_downgrade+0x6d0/0x6d0 [ 1483.300559] ? down_write_nested+0xe4/0x160 [ 1483.301426] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 1483.302450] ? get_mm_exe_file+0x162/0x310 [ 1483.303309] copy_process+0x291b/0x7800 [ 1483.304125] ? __lock_acquire+0xbb1/0x5b00 [ 1483.305031] ? __cleanup_sighand+0xb0/0xb0 [ 1483.305900] ? lock_acquire+0x197/0x470 [ 1483.306717] ? find_held_lock+0x2c/0x110 [ 1483.307545] kernel_clone+0xe7/0x980 [ 1483.308337] ? lock_downgrade+0x6d0/0x6d0 [ 1483.309172] ? find_held_lock+0x2c/0x110 [ 1483.309989] ? create_io_thread+0xf0/0xf0 [ 1483.310837] ? ksys_write+0x12d/0x260 [ 1483.311635] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1483.312632] __do_sys_fork+0x8a/0xc0 [ 1483.313386] ? kernel_thread+0xf0/0xf0 [ 1483.314198] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1483.315256] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1483.316315] ? trace_hardirqs_on+0x5b/0x180 [ 1483.317196] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1483.318240] do_syscall_64+0x33/0x40 [ 1483.318996] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1483.320050] RIP: 0033:0x7fa6a3da0b19 [ 1483.320806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1483.324527] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1483.326066] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1483.327502] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1483.328954] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1483.330391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1483.331833] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:35:28 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 32) 04:35:28 executing program 0: ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffff9c, 0xc0406618, &(0x7f0000000040)={@desc={0x1, 0x0, @desc2}}) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xc, 0x8010, r0, 0x0) r4 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x7f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000240)) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, 0x0, &(0x7f0000000380)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd, 0x5ab, 0x0, 0x1, 0x4, 0x1, {0x0, r6}}, 0x401) syz_io_uring_submit(r3, r2, &(0x7f0000000140)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r6}}, 0x86dd) io_uring_enter(r0, 0x2448, 0xe5ec, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:35:28 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x8000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:35:28 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x8cffffff, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:35:28 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xe0ffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1483.436163] FAULT_INJECTION: forcing a failure. [ 1483.436163] name failslab, interval 1, probability 0, space 0, times 0 [ 1483.438449] CPU: 1 PID: 13203 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1483.439862] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1483.441523] Call Trace: [ 1483.442060] dump_stack+0x107/0x167 [ 1483.442798] should_fail.cold+0x5/0xa [ 1483.443569] ? vm_area_dup+0x78/0x290 [ 1483.444345] should_failslab+0x5/0x20 [ 1483.445113] kmem_cache_alloc+0x5b/0x310 [ 1483.445935] vm_area_dup+0x78/0x290 [ 1483.446677] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1483.447611] ? lock_downgrade+0x6d0/0x6d0 [ 1483.448486] ? copy_page_range+0x24e9/0x3810 [ 1483.449392] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1483.450350] ? avc_has_extended_perms+0xf40/0xf40 [ 1483.451327] ? vm_area_alloc+0x110/0x110 [ 1483.452163] ? find_held_lock+0x2c/0x110 [ 1483.452986] ? selinux_vm_enough_memory+0x114/0x180 [ 1483.454000] ? selinux_sb_statfs+0x250/0x250 [ 1483.454886] ? percpu_counter_add_batch+0x8b/0x140 [ 1483.455885] ? __vm_enough_memory+0x184/0x360 [ 1483.456794] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1483.457825] copy_process+0x291b/0x7800 [ 1483.458654] ? __cleanup_sighand+0xb0/0xb0 [ 1483.459506] ? lock_acquire+0x197/0x470 [ 1483.460327] ? find_held_lock+0x2c/0x110 [ 1483.461143] kernel_clone+0xe7/0x980 [ 1483.461883] ? lock_downgrade+0x6d0/0x6d0 [ 1483.462706] ? find_held_lock+0x2c/0x110 [ 1483.463514] ? create_io_thread+0xf0/0xf0 [ 1483.464359] ? ksys_write+0x12d/0x260 [ 1483.465131] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1483.466104] __do_sys_fork+0x8a/0xc0 [ 1483.466846] ? kernel_thread+0xf0/0xf0 [ 1483.467660] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1483.468703] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1483.469728] ? trace_hardirqs_on+0x5b/0x180 [ 1483.470588] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1483.471625] do_syscall_64+0x33/0x40 [ 1483.472374] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1483.473395] RIP: 0033:0x7fc140e06b19 [ 1483.474141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1483.477790] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1483.479309] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1483.480742] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1483.482155] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1483.483570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1483.484995] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:35:28 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 22) 04:35:28 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(0xffffffffffffffff, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000100)=ANY=[@ANYBLOB="846b66b17ef1573a18000000", @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) connect$inet6(r3, &(0x7f0000001980)={0xa, 0x4e21, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xa}, 0x1c) r4 = accept(r2, &(0x7f0000000200)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x80) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) sendmmsg$inet6(r4, &(0x7f00000037c0)=[{{&(0x7f00000002c0)={0xa, 0x4e22, 0x1c0000, @ipv4={'\x00', '\xff\xff', @remote}, 0x3ff}, 0x1c, &(0x7f0000001440)=[{&(0x7f0000000300)="6d9649e05833d1c532a82bbd4b76f97d5d03ad619c30de70e604f413a76af0a8547808acb9a095ae12f53610acaaffa2c7a1da99b4fd36487287b2fead25d43980694455f9faa84407eb6a5556629675474b4b63b8b96dc885551ea78ff6369c749dd45339d4317f55664bf0d8558db2ee8d0aa2ddcc967d14f3b98c5bc97b7ef5db01f555b0eb77a922ff0f8cb444d0e867c4ae6f2f9f0c353190a30a9bcfb70920bf7054c160aefa880a", 0xab}, {&(0x7f00000003c0)="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", 0x1000}, {&(0x7f00000013c0)="c2660c65d75031be968292132bf76d0b130d9acc2461054f3b8408e49c5d1d949091380099d1da03b829c1f706a1cea05680990f2db0268b8b9b2ac053fa1dd9b9494dd0f85899c36bb035b0d3699266a8037fda3605677ff74222d02635336a07dabbfd0bcdb28b604b229c6a24fb9eaa3bc825882dcfd0d552a42499", 0x7d}], 0x3, &(0x7f0000001480)=[@pktinfo={{0x24, 0x29, 0x32, {@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', r6}}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast2, r1}}}, @tclass={{0x14, 0x29, 0x43, 0x7fffffff}}], 0x68}}, {{&(0x7f0000001500)={0xa, 0x4e22, 0x4, @dev={0xfe, 0x80, '\x00', 0x19}, 0x9}, 0x1c, &(0x7f0000001600)=[{&(0x7f0000001540)="2306f3c3a3f5eca2b8006b0dd1a38030ec7423e6103cfc30d392546b07e4d7fe64f574b9f7cf0f2753baa0387ce604513bd9ab0850cb42f6e9a91e5334fc9eda36d9efaaf1fd74599261ae8086ea5943", 0x50}, {&(0x7f00000015c0)="bd13c429ee174eae4451b1233ce61b265c6f3541d65dbf2747fa81", 0x1b}], 0x2, &(0x7f0000001640)=[@hopopts_2292={{0x18, 0x29, 0x36, {0x33}}}, @hopopts={{0x250, 0x29, 0x36, {0x62, 0x46, '\x00', [@calipso={0x7, 0x48, {0x2, 0x10, 0x8, 0x7, [0x1, 0x0, 0x6, 0x78f7, 0x0, 0x1000, 0x7fffffff, 0xe015]}}, @generic={0x8, 0xbc, "d3184aafb36eec7b7773ca42fdfebcd0dd4da4562fb57d2c685f20ba1190ce88d38332b828f6f87fd5258fb53f585e7dbcd53397386d1c6b7c2cd9825910bdf5f100d9951f8e75384b1d96d6a11a561dcdc640c97fea754d1033ccd88b77b9b490bbdffbd9a6038165f556f284638d1686ebf1526837177683235c17be13642fc182987def233c263b343f790de459460562dd35d441317bcc938404321e6fba44e64f2646175e3d202f85cd2ef77c6e7377974b59956990918c9055"}, @enc_lim={0x4, 0x1, 0x5b}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0xd}}, @pad1, @enc_lim={0x4, 0x1, 0xe1}, @jumbo={0xc2, 0x4, 0x8}, @calipso={0x7, 0x8, {0x1, 0x0, 0x4, 0x8}}, @generic={0x1, 0x5a, "5487d8b1c0dc1a4627e1e9ed2fe45b609f5d84063f2ed14f244855892d2d1a72a12156f0ca39e388280cff19bd7a31d12bdd755af83541079c1009303512a4f55b261ed6f6b2a31fa47287c4ef625b015408305bff8f31a5cc11"}, @generic={0xff, 0xa3, "011a62d579dcd7b560969cc81f1687d0357d4c86a9122530dd3904b544fa8fadc273e7accbd354d941785c3512bc8b8e35a0733057d6c11b69beca456808f7a95e27de13f30785048b5cbdf311aad272c23e945ed005c7fabd2e9379dca59a5b9fc75927a1f2116c56b44887059316f7a12b49a14e0ccac43ab1dbbbc299da0583fd581686692431891771c518b479ef383f4dda5b3869f5df9cb499678399291cf35a"}]}}}, @rthdr={{0x68, 0x29, 0x39, {0xff, 0xa, 0x2, 0x1, 0x0, [@empty, @private0={0xfc, 0x0, '\x00', 0x1}, @loopback, @loopback, @mcast1]}}}, @rthdrdstopts={{0x48, 0x29, 0x37, {0x3b, 0x5, '\x00', [@jumbo={0xc2, 0x4, 0xc07d}, @pad1, @hao={0xc9, 0x10, @empty}, @hao={0xc9, 0x10, @local}]}}}], 0x318}}, {{&(0x7f0000001a80)={0xa, 0x4e20, 0x20, @dev={0xfe, 0x80, '\x00', 0x1e}, 0x5}, 0x1c, &(0x7f0000001d40)=[{&(0x7f0000001ac0)="dbded2741e4a2e59bc600ff2716747a76ae938f09427b592e8eba9fc0f90dd578e1c9d44a53d0f8edcc9427e45bc694a557031", 0x33}, {&(0x7f0000001b00)="06d331dd9ecbade9f9d0ed94803053612f", 0x11}, {&(0x7f0000001b40)="fd1e178b9a543317559bd4cf34d5e093a4afe681dd325f3f580600c4f725ccabe5bcf71a62f4460afcff02b21ab32c88e9248a8f5b7af06ec33ad39004858490a6b0ea00997be25788551edf37a16d125a6db94a77a075afe64739461d2fbbbb4dd2d0b44e7505442bf314ee396cf734562bf281fcbd5a6ab91d9d4e404b629d47b6243355dc9567c82f48f3f7ba4c1a68", 0x91}, {&(0x7f0000001c00)="1cd75904501b2a6c4fdc114b2a4fe720f2732fb8b0f5c1730f423fbd6b8eca229ed881e4c8f002c9ba345383955720db521f8e3c7d30f825895c2b0b845747fa9575c1dd8a5a4685f2ee767014b5fc284e57895f477bba003545cfe466528875f27bee4acb578faa08b8765181115271d95b2beee88860af60bf819c5e0e3609775725c58cc33fd6e997ab5a6f7c6547177afb7f55e0d7364243ac76bd0aedd45367a98a058cacc425015ff75c3dfdcb07b7b0032a4ec8083178b5dc6767cb54bf63c04a5f7fff7c0616b56019df7145a635938759b8bafc85b28e8cc115cc8de3e2eee1eac54fb4b59294982667", 0xee}, {&(0x7f0000001d00)="444560fdcf153f7989ecb0aa127b5ee430975801a334cbf14fd1d2848cb774068d9d72b9ca0a63ac9db76c849445c6bca70c963c49", 0x35}], 0x5, &(0x7f0000001dc0)=[@dstopts={{0x118, 0x29, 0x37, {0x3a, 0x1f, '\x00', [@calipso={0x7, 0x20, {0x1, 0x6, 0xa, 0x3ff, [0xffff, 0x45, 0x800]}}, @pad1, @pad1, @calipso={0x7, 0x40, {0x1, 0xe, 0x9, 0xffff, [0x8c11f2e, 0x10000, 0x6, 0x6, 0x8, 0xa4, 0x2]}}, @enc_lim={0x4, 0x1, 0x5}, @hao={0xc9, 0x10, @local}, @generic={0x3, 0x68, "d18355567e0c429ea59698c4fb1de7c41e0deff502c6561ea9d7dafbd99eb39857defdc20927f79bf44c30337eaff858280ab2fa7ef266a8f37b16e6344f3352e7a9591000604f780674ec8e5a7cb122515d7348b82f2f8129edebe1ec776968e11b7dbcb0f7f3c3"}, @hao={0xc9, 0x10, @empty}]}}}, @rthdr={{0x88, 0x29, 0x39, {0x3a, 0xe, 0x2, 0x7, 0x0, [@private1={0xfc, 0x1, '\x00', 0x2}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local, @remote, @mcast2, @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x0, 0x2, 0x2, 0xfc, 0x0, [@ipv4={'\x00', '\xff\xff', @multicast1}]}}}], 0x1c8}}, {{0x0, 0x0, &(0x7f0000002740)=[{&(0x7f0000001fc0)="943e8724ba09cfdd4e7ec16e16c101b1161741ccc56590c7c7b840f95b54605329fb67121dbbb95450a264462f6d29bd60b74778ac0b1c36c8bc45a94a86ad33f1b72e5b2c5deb3428a4e8d7cb0bf372becab8fba6dde3de42970a52a75b9a2705dd147ffb532c940373427d77b8d10df3a3328a83a66c0ea8600e157a0052c7e335b9942d0fb8dac568c131886abdcdb807d9260b38cbfe4119d5754878c97385cacc6591bef5cfc71a7d368d82972bb3f2778db19d6bc7d877bbba7bfeab7329de5763", 0xc4}, {&(0x7f0000003980)="7ada81fa2ce9d2789a11e79fad9d8a8222be7b0ab1837d64a803963b73ef96da21f41b1a0ce12b762ba3d5fdd906edebdff6c4097c9e8f46f5a1a866afde32fa147f519a5d263bbbd41c95e1bbebab59a0afd20b78e31c4f9e23cfe24c2f720247344b4c86c017fb6cea664487f18325040db27a693815ad073a6221775518155c616de07a0a79b3228bcc7d4070bd0002000027144ee4363c39d03d2e954328b28af2291e00f471bca029d3620d8f9ce17edc9531985331629743ff6ad8dfcfb9dcb13a848731e0b998fcfeba14ba7700000000", 0xd4}, {&(0x7f0000002180)="8d01231cba986023ceaf5b5971cf54d26c3fcbcde5995788c0f510e6636a7e8111ceb434c0646986847167eb93fc31cf42a31fb58cc5463c8d23362cd86b543937af394cfd2c6d28c41b740a4e539898e2b8e61e5f0c4ac5ea4d56dd03bebd1c448cac2b6f05aecb154149f54ac59b80e3b117f3f7a45d5c065c32b99b2dd5ffed9291c5f3b0f71beee0f0722b7ccf7c6b00fb83d99491f0b82512e837943dd3493c6355631684c274426ecf075db374006f62b5f9fe3b79c7c8a33014a6e0e5ae71000243f4cab565275c09", 0xcc}, {&(0x7f0000002280)="10e2a7f8988c22ddc2f375c2da5c4c73a0951afcd9e7a475b77ce03ce1c3a5f107d36be756599dd402dae87de7bce443343805483e476013f0384a409adf80321ae24e02d432d2da2ce9333f23202a104e2dc09f1ff6e0016aa57caf653706cfc5b17ef7729577ace1338f8d9db44f41da1ac95052a643f4a169ea0f6b547c542b0442a3ab0bc8e469cfa1fe534ce55eeb3f3d530d243d21c9c03d7aeae077013a94fd5eb91f1238394ebcad589daad3b1fbe404ded62c5ef18a16140d7f04ee0787574f5f7efb8a1d2727aceeb4445144c4e3c96f09a361f781771ae1b052127361ccd38e08558e127312ad35a87e", 0xef}, {&(0x7f0000002380)="ff1ad6dfd7559f53585a1e0b95a00cce81ea9b132b947753f0aa7fc837d6a0935f0ba19b225d51b28950e3cf77668082c091277dbca14ebd6acc1bd888ae6ea562b1ddf7020483e10ce291660d7ea05b73c11c5adc42cfe0e3a3e04ab28babfdfe9ea1f802b4275b5b3587576c76970e45bc0c0a5d25885b28a1b373e98039fdc72cfeacf89923364ba5eafe2130bbe5937c73de73c13412267c11dcff49e22c275f5d446bebb2182bfa7023a1b8ca2a0b0a39a77bc5e1bfd123dd555ff8120849311e1e8998bcaab6a84054cf7916551a9991a41c69eb15c043ec79d33e25b7c1a34d8beb244e389b31fa424cdd34fd", 0xf0}, {&(0x7f0000001a40)="7c54684c44d7541da06d6f56000df74294b721a453bc08f8fb44fffb1f08f2127a3c345cfb8512f64b", 0x29}, {&(0x7f00000024c0)="9f6046dd4b0b4782584363d5fb97b341a18fe3e5362c131576c47288780c4ab0bce515f43e017f16912b39d3788bfcafdd0717abdb337bcb4c843cf63747f32d115b7604112492a8f63ded5fac3ac26d52f6962ac3d5c4a79c1e3691d4ca0c0bb10b1fa3b07f14a168970a655964f053a4e51d859c80fa730bb33361ce425569c12dd1c3d4f164fa7f52c15b92", 0x8d}, {&(0x7f0000002580)="302ffc922f1e98d5e6584e1b9a33efe68aca2b011aa8e56a5e6f365be42524a99100bbc796ca6acb4c3853", 0x2b}, {&(0x7f00000025c0)="aa93dfa66d40d598bed2d6252c9769cdff42685a6cae157054f3f037ee7ee0a0381c7250b925679d1d2889bec23594a1a704545ec61755cdf070600014a6a2cff6fbdf24e7c93fd92ebe730f9291fa39e71de5efc0c4d9d6296ea90432171a4cdc78256afeed889723958d90a622da8b80ab7c90741e4acc13f2293e61e25291f9edaef7ddf78231d3cf23a7a3478bd853c1aefcf6", 0x95}, {&(0x7f0000002680)="9be598a1bcb59682da56cd5e98324d21277731ec0105083b4b8ecc42329c6051cdd10c35b3e2ed08d296b556c21587a104db7fed449a6f4de2b0dd824a2c9f16c045dd23320b0e1db9172acfd1f594e446f4311be0a58711cbfe2b47d7355e3f304193ff23aa44645f2171bdfe67c030eda117f222527ec15190275b1a4bb497cdd0f952360897b2af2c6ac8b8b11a01236c1eeba8111f996a62287c8960a12c7fddfaad9c18", 0xa6}], 0xa, &(0x7f0000003a80)=[@dstopts={{0xb8, 0x29, 0x37, {0x4, 0x13, '\x00', [@pad1, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @ra={0x5, 0x2, 0x7}, @calipso={0x7, 0x40, {0x3, 0xe, 0x7, 0x3c, [0x9f, 0x6, 0x9, 0x2, 0x0, 0xffffffff, 0x8]}}, @generic={0x5, 0x26, "528c19f5a10a5833b68dce54369dee282065f322f5da42957728f329fb76b74d4ac47ce5b043"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0xff}}, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x4}}, @rthdr={{0x48, 0x29, 0x39, {0x1c, 0x6, 0x1, 0x0, 0x0, [@empty, @rand_addr=' \x01\x00', @private2={0xfc, 0x2, '\x00', 0x1}]}}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x4, 0x0, '\x00', [@padn={0x1, 0x2, [0x0, 0x0]}]}}}, @hoplimit_2292={{0x14}}, @pktinfo={{0x24, 0x29, 0x32, {@empty, r1}}}, @hopopts={{0x40, 0x29, 0x36, {0x73, 0x4, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @ra={0x5, 0x2, 0xffff}, @ra={0x5, 0x2, 0x5}, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @pad1, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @pad1]}}}, @rthdr={{0xb8, 0x29, 0x39, {0x0, 0x14, 0x1, 0x81, 0x0, [@remote, @remote, @local, @mcast1, @local, @mcast1, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast1, @private2={0xfc, 0x2, '\x00', 0x1}, @remote]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x8000}}, @dontfrag={{0x14, 0x29, 0x3e, 0x8}}], 0x2a0}}, {{0x0, 0x0, &(0x7f0000002b80)=[{&(0x7f0000002ac0)="4e65d9647bc8f94a3852bd05f0159af759e0159c14f32adc4dfb185f196d272f1743e8384d36de7f8b27d6c6dbd168c3d7d92b1d4d6c3edc6a4932627401dee7c79828103d4be2e2bab318bfe5d2f85b1391042ac3eae6e49dcb6682f6c42ee2c64f0592ff6898e800813db2d1919d5f285bbd67d766a87bc384cf1cd290f803046f54352429f002ddb702eb1857583e8118622027586aa6f347b6f2d1bdd0146db6f0bb23e9bf3be84ad9", 0xab}], 0x1}}, {{&(0x7f0000002bc0)={0xa, 0x4e22, 0x401, @mcast1, 0x6}, 0x1c, &(0x7f0000003080)=[{&(0x7f0000002c00)="07940825be05fc5e6e6f56c6bce6d1c908af2d5cefcc16a70825a5128e54100daa3c0488dde339c82bdd6fdb4de59cdba803af700e439dadd0c8f6cce49350afd6210ccf6e22f17575eea0b3e6178990e690b1fc5253e0720f00420978797fff3c70b33cee28973c141ac347acd09ce89abc5b642c155f6101daa92c4cf4116863e6f468", 0x84}, {&(0x7f0000002cc0)="a6f4b7dbf32bd087af1bd41f2f6ab03d21efaef7d078888504e6117b5fdfbc49ea63a6dc285798e713b8dc6af2d6edae1980c2d5bc4fad4a81cd07b2d4f73b5deb27c696f12c90ba28471eca45732e2bdf4253cff6ce63269c0c08ae7452a7ed900c61458e7f0adcc397cbf6ac862a41e14334d7b8ed3e3d9269395c67edcea93ff7e0cb16c625b96a905b1b6575f1c4b4e13af2350c8d71ddd8c9a9c1284957f9b970d35a8322718d17f6278c3e51c4d3a1c942ecea829ca0e237464a58c8e796021b1ce860b8bd626dcf40fa0b88b33e98309c69cb97f569ec4deb99cc052aea377c06854e88f8752d90ee574575bf74894523448466", 0xf7}, {&(0x7f0000002dc0)="a30a6e1337ce36357b407b2b6ca3d75ae7a0808cf56d930f9f0640cd904c50a8660c71ec6fa152bbe607d7e6159d782ec35e76783ed6b71192bd20118fe61df2386792c89cc87f814499aee86cfab6c0a972fb065ab05eca0f8d2e1a3dce050b2ad87d5d3214fed79e6760fbf9261083f1a67adbd49db1beef279494110a445b80cb77ea38fcd27fa25c32765515a43ae4fde03609a13938fa", 0x99}, {&(0x7f0000002e80)="fc4ae25b9339d368610a1c0c20bb0b972db4c9487ebcf0771b1a15c9cedd8a4a3e465a4c52de7265c096b2a12d499672cb4e09fbabdb1286465f0a7e9d01df26d73cc5f776f5feff08e622aeeef7594f9c61fd1919aadb65e2ad330fdc8f95d95f96a3b23219cc3a7f3deb", 0x6b}, {&(0x7f0000002f00)="702a2142b0e5481318b2b0e49ffe2c47250e7b1b7af867b60fa27e6ae282b053", 0x20}, {&(0x7f0000002f40)="2132e059625fc5cce1b152fef080506614dae9e2004d9e0f7bead1d5da6af0ad7781d94d9d94a828fdca5a2a71e6a3f9d55e9db411c2edfe00a416a503b9ffa2ecead92a59432e9a5303accf6edfe980fd0d22ff5186", 0x56}, {&(0x7f0000002fc0)="01579b177e2c7c25c320c672a26598517d95545eacdfc0d7e3acecb9f51b93f5c900ceec11cc2524910025d9ac0193414c6fdb168a6ebecac1d2f6f30e9865ab27760e5d5c942602de2542ff649ca7a2d9e679e636d4b05db7435712c8e1308556ea4ab4c705e042cd2113db6bf0c3bdc85ca02304e6c07939c7c3dbd325bddc66a3e23612b84aecad99d9be571dff52deb495e60af3c6c124e82c926ce19947e7bb1a14a8ddccde89493861c29756bc02121e191e834dbf0d80ccf22f65", 0xbe}], 0x7, &(0x7f0000003100)=[@hoplimit={{0x14, 0x29, 0x34, 0xffffdf1c}}, @flowinfo={{0x14, 0x29, 0xb, 0x5}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xd1fe}}], 0x48}}, {{&(0x7f0000003180)={0xa, 0x4e22, 0x1, @dev={0xfe, 0x80, '\x00', 0x19}, 0x8}, 0x1c, &(0x7f0000003740)=[{&(0x7f00000031c0)="9315bb280e139917fc88593b3e2d17d3c12f034719da77978c1ee8c04fccf1bfd98efc064e9b2a30bbd9a337df169219ead73b128395cf4db27970cee3361769179ea3f16e9f6a5d5ef1bae99d987a227b43ac5d8cea54989c403849d2836abd51ce861fc44fc29d615ae644ccfadfc9e818abbb319b8ac1b784b353ee40d2a635806c8051fea43800774b2418b4b1f40cfd2b59d642d0bcd0c33e19b340a3c584bcfa3b7f1a92d5ff3e3761cb7e796af00a7868bae54bd9272aa758121223c6f5bdee5d9e9fec8d7483a474c5004a", 0xcf}, {&(0x7f0000003340)="65438013aa755938fc6e61b0165d5f8dc0b4186ec1c997fc4dd71c223d14c196083e266b7ed3eeb445621294803f0dda34f7ba0960e20dd1ce14d840f7aea46d80acd686947364991c01633cf771fe33", 0x50}, {&(0x7f00000033c0)="ef39144b9ee1d5be50700864dc48fba93a85045b151cd1d232193ee858b7249280a2f14c03ffa7f3a1376e042e1dd06d93628b24d1931f82ee150f77daef8c1d63", 0x41}, {&(0x7f0000003440)="563654dcc74c6b8c3de05244e8e1c3c33a07e8d70e464fa5ffa21979fb5c5cb8ab934cb8996848b592dc01a753dcca7b00dce8cbbb8d976df334ff0934f91314e38b204a39978e0f3884ff1bc2e8b3e8dba927248847d60a140e5f29331e129c03fecd15ee79c6a92cd0a7a78a4c856632dac27317dffe6be55b590a423792a2eca4dd08", 0x84}, {&(0x7f0000002800)="7874359d80f6f80a01f9bfe52ed8245033dab48c8be679fe9fe1e3aa52c9aeaf989119000000000000000791735d4527a3becc51a56697b8572149e879c16f3d0ca4d068ed12207e52803c99305061b3244aac92479bcfd7eaf75acfa0bf4203f28eadabab8cac7372c2cdc4b4d071cb84bf572be307aa5f137d0cd24d99c2d73f7b21096695fa5a1f6d168520ce8626f988442eedd76f189d9d6671e6fe69273026e11125af48490fd5297a7682cf02f87158844ba111b13bbc36ea798046dd09da1950c0ea5ecc96544c2c5da3b4f7e85d96", 0xd3}, {&(0x7f0000003600)="de60490ecf1f762104522feeb6d03ffab3f5d6965056ec0de794ae4716ad21a54cc34cfdb257f276240becfc973e329bdaff0855e106581eac6e1b8e72afb5b812ccf849385a8a63a843155aab426f", 0x4f}, {&(0x7f0000003680)="a0294739f5bd758fa36c87eeb8db2c23bf4e5fbbdc91bd34447808024d644fdcf0f05390ab988f1ecfcacc58e9d6aedbb87b9f5858bb6d64224a2d88d3fec56ebe8b30596d6421fe50de268668b50c6fb94440d7a604ac7e1638046b2eb1777b0ef82f7f6f0f450bc00a542162f89faa46f80142d5d690d6eb024283ed69737373b2ba37431917a81089dd06a4a652399613d5d06e17ba3e07ae0328f1de049cd50d50566c68965655e4caa56e23b75f51ec8aa10924ef1f83263de89c3130a2", 0xc0}], 0x7, &(0x7f00000032c0)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x355}}, @dontfrag={{0x14, 0x29, 0x3e, 0xc9b}}], 0x30}}], 0x7, 0x24008000) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(0xffffffffffffffff, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) setsockopt$inet6_icmp_ICMP_FILTER(0xffffffffffffffff, 0x1, 0x1, &(0x7f00000001c0)={0x4}, 0x4) openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x80040, 0x0, 0x2}, 0x18) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, {0x4004}, 0x1}, 0x0) ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f00000020c0)={0x0, @tipc=@nameseq={0x1e, 0x1, 0x1, {0x41, 0x3, 0x2}}, @in={0x2, 0x4e21, @rand_addr=0x64010101}, @ax25={0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, 0x1}, 0x2, 0x0, 0x0, 0x0, 0x8, &(0x7f00000019c0)='veth1_to_hsr\x00', 0xf88d, 0xfffffffffffeffff, 0x1}) 04:35:28 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x100000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:35:28 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 33) [ 1483.636463] FAULT_INJECTION: forcing a failure. [ 1483.636463] name failslab, interval 1, probability 0, space 0, times 0 [ 1483.639006] CPU: 0 PID: 13223 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1483.640484] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1483.642146] Call Trace: [ 1483.642681] dump_stack+0x107/0x167 [ 1483.643422] should_fail.cold+0x5/0xa [ 1483.644205] ? create_object.isra.0+0x3a/0xa20 [ 1483.645108] should_failslab+0x5/0x20 [ 1483.645865] kmem_cache_alloc+0x5b/0x310 [ 1483.646666] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1483.647767] create_object.isra.0+0x3a/0xa20 [ 1483.648658] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1483.649663] kmem_cache_alloc+0x159/0x310 [ 1483.650527] security_file_alloc+0x34/0x170 [ 1483.651395] __alloc_file+0xb6/0x320 [ 1483.652187] alloc_empty_file+0x6d/0x170 [ 1483.653006] path_openat+0xe3/0x26f0 [ 1483.653763] ? path_lookupat+0x860/0x860 [ 1483.654581] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1483.655651] ? SOFTIRQ_verbose+0x10/0x10 [ 1483.656478] do_filp_open+0x190/0x3e0 [ 1483.657242] ? may_open_dev+0xf0/0xf0 [ 1483.658015] ? __alloc_fd+0x2b8/0x630 [ 1483.658779] ? lock_downgrade+0x6d0/0x6d0 [ 1483.659615] ? do_raw_spin_lock+0x121/0x260 [ 1483.660506] ? rwlock_bug.part.0+0x90/0x90 [ 1483.661369] ? _raw_spin_unlock+0x1a/0x30 [ 1483.662205] ? __alloc_fd+0x2b8/0x630 [ 1483.662982] do_sys_openat2+0x171/0x420 [ 1483.663791] ? build_open_flags+0x6f0/0x6f0 [ 1483.664671] ? rcu_read_lock_any_held+0x75/0xa0 [ 1483.665608] __x64_sys_openat+0x13f/0x1f0 [ 1483.666444] ? __ia32_sys_open+0x1c0/0x1c0 [ 1483.667301] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1483.668363] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1483.669407] do_syscall_64+0x33/0x40 [ 1483.670164] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1483.671214] RIP: 0033:0x7fc912052a04 [ 1483.671993] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44 [ 1483.675705] RSP: 002b:00007fc90f614ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 [ 1483.677242] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc912052a04 [ 1483.678667] RDX: 0000000000000002 RSI: 00007fc90f615000 RDI: 00000000ffffff9c [ 1483.680107] RBP: 00007fc90f615000 R08: 0000000000000000 R09: ffffffffffffffff [ 1483.681541] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 [ 1483.682973] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1483.740570] FAULT_INJECTION: forcing a failure. [ 1483.740570] name failslab, interval 1, probability 0, space 0, times 0 [ 1483.742997] CPU: 0 PID: 13280 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1483.744397] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1483.746055] Call Trace: [ 1483.746593] dump_stack+0x107/0x167 [ 1483.747336] should_fail.cold+0x5/0xa [ 1483.748112] ? anon_vma_fork+0xf1/0x640 [ 1483.748915] should_failslab+0x5/0x20 [ 1483.749678] kmem_cache_alloc+0x5b/0x310 [ 1483.750501] anon_vma_fork+0xf1/0x640 [ 1483.751275] ? __vm_enough_memory+0x184/0x360 [ 1483.752230] copy_process+0x7218/0x7800 [ 1483.753079] ? __cleanup_sighand+0xb0/0xb0 [ 1483.753944] ? lock_acquire+0x197/0x470 [ 1483.754768] ? find_held_lock+0x2c/0x110 [ 1483.755619] kernel_clone+0xe7/0x980 [ 1483.756383] ? lock_downgrade+0x6d0/0x6d0 [ 1483.757232] ? find_held_lock+0x2c/0x110 [ 1483.758071] ? create_io_thread+0xf0/0xf0 [ 1483.758919] ? ksys_write+0x12d/0x260 [ 1483.759722] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1483.760705] __do_sys_fork+0x8a/0xc0 [ 1483.761460] ? kernel_thread+0xf0/0xf0 [ 1483.762271] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1483.763331] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1483.764380] ? trace_hardirqs_on+0x5b/0x180 [ 1483.765253] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1483.766299] do_syscall_64+0x33/0x40 [ 1483.767054] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1483.768091] RIP: 0033:0x7fc140e06b19 [ 1483.768838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1483.772529] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1483.774066] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1483.775505] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1483.776960] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1483.778395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1483.779841] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1483.840990] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:35:42 executing program 1: ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x101, 0x6b, 0x100000000, 0x927}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'ip6gre0\x00'}) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) [ 1498.133014] FAULT_INJECTION: forcing a failure. [ 1498.133014] name failslab, interval 1, probability 0, space 0, times 0 [ 1498.135108] CPU: 0 PID: 13345 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1498.135946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1498.136912] Call Trace: [ 1498.137229] dump_stack+0x107/0x167 [ 1498.137660] should_fail.cold+0x5/0xa [ 1498.138114] ? __kthread_create_on_node+0xd1/0x400 [ 1498.138689] should_failslab+0x5/0x20 [ 1498.139136] kmem_cache_alloc_trace+0x55/0x320 [ 1498.139673] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1498.140237] __kthread_create_on_node+0xd1/0x400 04:35:42 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 31) 04:35:42 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r3, 0x1000003) r4 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000000180)={'IDLETIMER\x00'}, &(0x7f00000001c0)=0x1e) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) dup2(0xffffffffffffffff, r4) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2) ioctl$FS_IOC_FSSETXATTR(r3, 0x40086602, &(0x7f0000000000)) fsetxattr$security_capability(r3, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{0x0, 0x4}, {0x5}]}, 0x14, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0xfffffffffffffff7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r3, &(0x7f00000001c0)=ANY=[], 0xfdef) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:35:42 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xc0ed0000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:35:42 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x200000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:35:42 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 23) 04:35:42 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 34) 04:35:42 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x200000a, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x70, 0x0, 0x4, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x5}, 0x6009, 0x6, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x6}, 0x0, 0xf, r2, 0x0) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r1) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) [ 1498.140790] ? __kthread_parkme+0x1d0/0x1d0 [ 1498.141454] ? __mutex_lock+0x4fe/0x10b0 [ 1498.141962] ? loop_configure+0xcb5/0x1480 [ 1498.142508] ? do_raw_spin_unlock+0x4f/0x220 [ 1498.143023] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1498.143607] kthread_create_on_node+0xbb/0x100 [ 1498.144171] ? __kthread_create_on_node+0x400/0x400 [ 1498.144885] ? lockdep_init_map_type+0x2c7/0x780 [ 1498.144915] ? lockdep_init_map_type+0x2c7/0x780 [ 1498.144933] loop_configure+0x3e3/0x1480 [ 1498.144952] lo_ioctl+0xa72/0x1760 [ 1498.144965] ? avc_has_extended_perms+0x7f1/0xf40 [ 1498.144980] ? loop_set_status_old+0x250/0x250 [ 1498.144993] ? avc_ss_reset+0x180/0x180 [ 1498.145005] ? lock_acquire+0x197/0x470 04:35:43 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x300000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1498.145015] ? find_held_lock+0x2c/0x110 [ 1498.145033] ? __lock_acquire+0xbb1/0x5b00 04:35:43 executing program 4: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x3, 0x2, &(0x7f0000000240)=[{&(0x7f0000000280)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r2, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) sendfile(r2, r1, 0x0, 0x7ff) mount$9p_unix(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0xc021, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e733d756e69782c6e6f6465766d61702c6361633d006f6f73652c76657273696f6e3d3970323030302e752c64666c746769643d0f115129d5ab9272ea1e238181", @ANYRESHEX=0xee01, @ANYBLOB=',cache=mmap,dfltgid=', @ANYRESHEX=0x0, @ANYBLOB=',privport,msize=0x0000000047a5febf,pcr=00000000000000000034,defcontext=system_u,\x00']) r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x24000, 0x98) symlinkat(&(0x7f0000000140)='./file0\x00', r1, &(0x7f0000000300)='./file1/file0\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r3, 0x0, 0x80000001) [ 1498.145076] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1498.145088] ? generic_block_fiemap+0x60/0x60 [ 1498.145105] ? loop_set_status_old+0x250/0x250 [ 1498.145115] blkdev_ioctl+0x291/0x710 [ 1498.145126] ? blkdev_common_ioctl+0x1870/0x1870 04:35:43 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 24) 04:35:43 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 35) [ 1498.145139] ? selinux_file_ioctl+0xb6/0x270 [ 1498.145153] block_ioctl+0xf9/0x140 [ 1498.145163] ? blkdev_read_iter+0x1c0/0x1c0 [ 1498.145174] __x64_sys_ioctl+0x19a/0x210 [ 1498.145189] do_syscall_64+0x33/0x40 [ 1498.145202] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1498.145210] RIP: 0033:0x7fc91209f8d7 [ 1498.145222] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1498.145228] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1498.145241] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1498.145248] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1498.145254] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1498.145261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1498.145267] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1498.159541] FAULT_INJECTION: forcing a failure. [ 1498.159541] name failslab, interval 1, probability 0, space 0, times 0 [ 1498.159554] CPU: 0 PID: 13353 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1498.159560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1498.159563] Call Trace: [ 1498.159574] dump_stack+0x107/0x167 [ 1498.159588] should_fail.cold+0x5/0xa [ 1498.159601] ? create_object.isra.0+0x3a/0xa20 [ 1498.159613] should_failslab+0x5/0x20 [ 1498.159623] kmem_cache_alloc+0x5b/0x310 [ 1498.159639] create_object.isra.0+0x3a/0xa20 [ 1498.159650] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1498.159665] kmem_cache_alloc+0x159/0x310 [ 1498.159682] anon_vma_fork+0xf1/0x640 [ 1498.159695] ? __vm_enough_memory+0x184/0x360 [ 1498.159710] copy_process+0x7218/0x7800 [ 1498.159745] ? __cleanup_sighand+0xb0/0xb0 [ 1498.159763] ? lock_acquire+0x197/0x470 [ 1498.159780] ? find_held_lock+0x2c/0x110 [ 1498.159794] kernel_clone+0xe7/0x980 [ 1498.159814] ? lock_downgrade+0x6d0/0x6d0 [ 1498.159824] ? find_held_lock+0x2c/0x110 [ 1498.159834] ? create_io_thread+0xf0/0xf0 [ 1498.159848] ? ksys_write+0x12d/0x260 [ 1498.159864] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1498.159882] __do_sys_fork+0x8a/0xc0 [ 1498.159892] ? kernel_thread+0xf0/0xf0 [ 1498.159914] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1498.159925] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1498.159934] ? trace_hardirqs_on+0x5b/0x180 [ 1498.159946] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1498.159958] do_syscall_64+0x33/0x40 [ 1498.159970] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1498.159977] RIP: 0033:0x7fc140e06b19 [ 1498.159988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1498.159994] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1498.160006] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1498.160013] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1498.160020] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1498.160026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1498.160033] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1498.167608] FAULT_INJECTION: forcing a failure. [ 1498.167608] name failslab, interval 1, probability 0, space 0, times 0 [ 1498.167632] CPU: 1 PID: 13352 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1498.167644] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1498.167650] Call Trace: [ 1498.167674] dump_stack+0x107/0x167 [ 1498.167702] should_fail.cold+0x5/0xa [ 1498.167725] ? anon_vma_clone+0xdc/0x590 [ 1498.167748] should_failslab+0x5/0x20 [ 1498.167775] kmem_cache_alloc+0x5b/0x310 [ 1498.167817] anon_vma_clone+0xdc/0x590 [ 1498.167849] anon_vma_fork+0x82/0x640 [ 1498.167871] ? __vm_enough_memory+0x184/0x360 [ 1498.167897] copy_process+0x7218/0x7800 [ 1498.167957] ? __cleanup_sighand+0xb0/0xb0 [ 1498.167992] ? lock_acquire+0x197/0x470 [ 1498.168032] ? find_held_lock+0x2c/0x110 [ 1498.168058] kernel_clone+0xe7/0x980 [ 1498.168077] ? lock_downgrade+0x6d0/0x6d0 [ 1498.168093] ? find_held_lock+0x2c/0x110 [ 1498.168112] ? create_io_thread+0xf0/0xf0 [ 1498.168136] ? ksys_write+0x12d/0x260 [ 1498.168166] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1498.168196] __do_sys_fork+0x8a/0xc0 [ 1498.168213] ? kernel_thread+0xf0/0xf0 [ 1498.168250] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1498.168268] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1498.168284] ? trace_hardirqs_on+0x5b/0x180 [ 1498.168304] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1498.168325] do_syscall_64+0x33/0x40 [ 1498.168347] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1498.168360] RIP: 0033:0x7fa6a3da0b19 [ 1498.168379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1498.168389] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1498.168412] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1498.168423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1498.168434] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1498.168445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1498.168457] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1498.306289] FAULT_INJECTION: forcing a failure. [ 1498.306289] name failslab, interval 1, probability 0, space 0, times 0 [ 1498.306311] CPU: 1 PID: 13386 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1498.306322] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1498.306328] Call Trace: [ 1498.306352] dump_stack+0x107/0x167 [ 1498.306378] should_fail.cold+0x5/0xa [ 1498.306400] ? create_object.isra.0+0x3a/0xa20 [ 1498.306424] should_failslab+0x5/0x20 [ 1498.306443] kmem_cache_alloc+0x5b/0x310 [ 1498.306474] create_object.isra.0+0x3a/0xa20 [ 1498.306495] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1498.306522] kmem_cache_alloc_trace+0x151/0x320 [ 1498.306547] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1498.306569] __kthread_create_on_node+0xd1/0x400 [ 1498.306596] ? __kthread_parkme+0x1d0/0x1d0 [ 1498.306631] ? __mutex_lock+0x4fe/0x10b0 [ 1498.306654] ? loop_configure+0xcb5/0x1480 [ 1498.306677] ? do_raw_spin_unlock+0x4f/0x220 [ 1498.306698] ? loop_info64_to_compat+0x5f0/0x5f0 [ 1498.306720] kthread_create_on_node+0xbb/0x100 [ 1498.306742] ? __kthread_create_on_node+0x400/0x400 [ 1498.306766] ? lockdep_init_map_type+0x2c7/0x780 [ 1498.306788] ? lockdep_init_map_type+0x2c7/0x780 [ 1498.306819] loop_configure+0x3e3/0x1480 [ 1498.306852] lo_ioctl+0xa72/0x1760 [ 1498.306875] ? avc_has_extended_perms+0x7f1/0xf40 [ 1498.306897] ? loop_set_status_old+0x250/0x250 [ 1498.306919] ? lock_downgrade+0x6d0/0x6d0 [ 1498.306938] ? avc_ss_reset+0x180/0x180 [ 1498.306967] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1498.306986] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1498.307001] ? trace_hardirqs_on+0x5b/0x180 [ 1498.307022] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1498.307039] ? finish_task_switch+0x126/0x5d0 [ 1498.307055] ? finish_task_switch+0xef/0x5d0 [ 1498.307071] ? __switch_to+0x572/0xf70 [ 1498.307087] ? __switch_to_asm+0x3a/0x60 [ 1498.307102] ? __switch_to_asm+0x34/0x60 [ 1498.307125] ? __schedule+0x82c/0x1ea0 [ 1498.307193] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1498.307213] ? generic_block_fiemap+0x60/0x60 [ 1498.307242] ? loop_set_status_old+0x250/0x250 [ 1498.307258] blkdev_ioctl+0x291/0x710 [ 1498.307282] ? blkdev_common_ioctl+0x1870/0x1870 [ 1498.307306] ? selinux_file_ioctl+0xb6/0x270 [ 1498.307331] block_ioctl+0xf9/0x140 [ 1498.307347] ? blkdev_read_iter+0x1c0/0x1c0 [ 1498.307368] __x64_sys_ioctl+0x19a/0x210 [ 1498.307393] do_syscall_64+0x33/0x40 [ 1498.307415] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1498.307429] RIP: 0033:0x7fc91209f8d7 [ 1498.307450] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1498.307460] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1498.307484] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1498.307496] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1498.307507] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1498.307518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1498.307529] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1498.313535] FAULT_INJECTION: forcing a failure. [ 1498.313535] name failslab, interval 1, probability 0, space 0, times 0 [ 1498.313556] CPU: 1 PID: 13387 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1498.313566] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1498.313572] Call Trace: [ 1498.313590] dump_stack+0x107/0x167 [ 1498.313615] should_fail.cold+0x5/0xa [ 1498.313637] ? anon_vma_fork+0x1ff/0x640 [ 1498.313658] should_failslab+0x5/0x20 [ 1498.313675] kmem_cache_alloc+0x5b/0x310 [ 1498.313702] anon_vma_fork+0x1ff/0x640 [ 1498.313729] copy_process+0x7218/0x7800 [ 1498.313793] ? __cleanup_sighand+0xb0/0xb0 [ 1498.313820] ? lock_acquire+0x197/0x470 [ 1498.313849] ? find_held_lock+0x2c/0x110 [ 1498.313874] kernel_clone+0xe7/0x980 [ 1498.313894] ? lock_downgrade+0x6d0/0x6d0 [ 1498.313910] ? find_held_lock+0x2c/0x110 [ 1498.313929] ? create_io_thread+0xf0/0xf0 [ 1498.313952] ? ksys_write+0x12d/0x260 [ 1498.313981] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1498.314010] __do_sys_fork+0x8a/0xc0 [ 1498.314028] ? kernel_thread+0xf0/0xf0 [ 1498.314066] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1498.314085] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1498.314099] ? trace_hardirqs_on+0x5b/0x180 [ 1498.314120] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1498.314139] do_syscall_64+0x33/0x40 [ 1498.314162] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1498.314175] RIP: 0033:0x7fc140e06b19 [ 1498.314194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1498.314204] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1498.314224] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1498.314236] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1498.314246] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1498.314259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1498.314273] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1498.350655] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:35:57 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000340)={&(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f00000002c0)="b8504a6bd3164b4948a122cae6ff827c1493912c8dcdd3f071ed200944a24e9ab8a2fa886f5a3bebc785ae6fd4192b600043fd5dc44b7030b9a9e828d072843ac742b75b6c706cecc7565c126a6069ccdc7608e7571754a070bb7e6162286908d52feafa5b73bdbe9ee437516bb4328a30febf63511de3b5c0", 0x79, r0}, 0x68) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)={0xe8, r2, 0x400, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0xf, 0x2a, [@mesh_id={0x72, 0x6}, @dsss={0x3, 0x1, 0x5}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x2f}, @NL80211_ATTR_IE={0xb0, 0x2a, [@measure_req={0x26, 0xa6, {0x3, 0x6, 0x3, "2096ae68e1554b5c7968939ad8648fca703fd684e9864e47d425bc95e04be2cf43a0a6e8621a82916ca84f559820aeaa68c7c86aa13045dfabb71e7cd7066f322ba7598f2311aa2bce9d7b082fa0a4b26124a84441b46175c7a6cb2c0aad939287ec795a1a0e0c2f9b4744a2b9eb6f9e1a487046ab8662b9685f28a0bfcf91d788dca8fb46ad129b99ba3634956d55ee91304750713791766c432a4d147c91f4475974"}}, @ibss={0x6, 0x2, 0x53f5}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x24044854}, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:35:57 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x400000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:35:57 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xd3100000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:35:57 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r7 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x7f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000240)) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, 0x0, &(0x7f0000000380)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd, 0x5ab, 0x0, 0x1, 0x4, 0x1, {0x0, r9}}, 0x401) syz_io_uring_submit(r6, r2, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r9}}, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:35:57 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 25) 04:35:57 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 36) 04:35:57 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fallocate(r0, 0x10, 0x101, 0x8000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) r1 = gettid() perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x8, 0x0, 0x2, 0xf8, 0x0, 0x1, 0x500a0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000040)}, 0xc138, 0x1, 0xc6d, 0x9, 0x10000, 0x1, 0x1, 0x0, 0x80000001, 0x0, 0x4}, r1, 0xe, 0xffffffffffffffff, 0x2) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r2, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x6, 0x2c, 0x9, 0x40, 0x0, 0x3a, 0x8004, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x5, @perf_bp={&(0x7f00000000c0), 0x1}, 0x4000, 0x0, 0x80, 0x2, 0x46b, 0x400, 0xfff, 0x0, 0x1, 0x0, 0x1f}, r1, 0x1000009, r0, 0x1) r3 = syz_open_dev$rtc(&(0x7f0000000080), 0x0, 0x100) sendfile(r3, r0, 0x0, 0x8) 04:35:57 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 32) [ 1512.277151] FAULT_INJECTION: forcing a failure. [ 1512.277151] name failslab, interval 1, probability 0, space 0, times 0 [ 1512.279177] FAULT_INJECTION: forcing a failure. [ 1512.279177] name failslab, interval 1, probability 0, space 0, times 0 [ 1512.279471] CPU: 0 PID: 13498 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1512.283118] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1512.284836] Call Trace: [ 1512.285379] dump_stack+0x107/0x167 [ 1512.286120] should_fail.cold+0x5/0xa [ 1512.286904] ? __kernfs_new_node+0xd4/0x860 [ 1512.287792] should_failslab+0x5/0x20 [ 1512.288608] kmem_cache_alloc+0x5b/0x310 [ 1512.289435] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1512.290511] __kernfs_new_node+0xd4/0x860 [ 1512.291354] ? lock_chain_count+0x20/0x20 [ 1512.292228] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1512.293191] ? update_load_avg+0x162/0x1870 [ 1512.294065] ? find_held_lock+0x2c/0x110 [ 1512.294894] ? set_user_nice.part.0+0x2fd/0x760 [ 1512.295841] kernfs_create_dir_ns+0x9c/0x230 [ 1512.296749] internal_create_group+0x793/0xb30 [ 1512.297699] ? set_user_nice.part.0+0x2fd/0x760 [ 1512.298656] ? sysfs_remove_group+0x170/0x170 [ 1512.299568] ? lockdep_init_map_type+0x2c7/0x780 [ 1512.300556] ? blk_queue_flag_set+0x22/0x30 [ 1512.301432] ? __loop_update_dio+0x2d2/0x690 [ 1512.302339] loop_configure+0x954/0x1480 [ 1512.303187] lo_ioctl+0xa72/0x1760 [ 1512.303919] ? avc_has_extended_perms+0x7f1/0xf40 [ 1512.304976] ? loop_set_status_old+0x250/0x250 [ 1512.305916] ? avc_ss_reset+0x180/0x180 [ 1512.306739] ? lock_acquire+0x197/0x470 [ 1512.307556] ? find_held_lock+0x2c/0x110 [ 1512.308419] ? __lock_acquire+0xbb1/0x5b00 [ 1512.309342] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1512.310405] ? generic_block_fiemap+0x60/0x60 [ 1512.311342] ? loop_set_status_old+0x250/0x250 [ 1512.312307] blkdev_ioctl+0x291/0x710 [ 1512.313077] ? blkdev_common_ioctl+0x1870/0x1870 [ 1512.314034] ? selinux_file_ioctl+0xb6/0x270 [ 1512.314936] block_ioctl+0xf9/0x140 [ 1512.315676] ? blkdev_read_iter+0x1c0/0x1c0 [ 1512.316578] __x64_sys_ioctl+0x19a/0x210 [ 1512.317433] do_syscall_64+0x33/0x40 [ 1512.318183] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1512.319209] RIP: 0033:0x7fc91209f8d7 [ 1512.319976] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1512.323792] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1512.325356] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1512.326794] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1512.328270] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1512.329716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1512.331165] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1512.332691] CPU: 1 PID: 13504 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1512.334116] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1512.335839] Call Trace: [ 1512.336407] dump_stack+0x107/0x167 [ 1512.337161] should_fail.cold+0x5/0xa [ 1512.337954] ? create_object.isra.0+0x3a/0xa20 [ 1512.338894] should_failslab+0x5/0x20 [ 1512.339658] kmem_cache_alloc+0x5b/0x310 [ 1512.340507] create_object.isra.0+0x3a/0xa20 [ 1512.341415] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1512.342471] kmem_cache_alloc+0x159/0x310 [ 1512.343348] anon_vma_fork+0x1ff/0x640 [ 1512.344165] copy_process+0x7218/0x7800 [ 1512.345020] ? __cleanup_sighand+0xb0/0xb0 [ 1512.345901] ? lock_acquire+0x197/0x470 [ 1512.346727] ? find_held_lock+0x2c/0x110 [ 1512.347568] kernel_clone+0xe7/0x980 [ 1512.348336] ? lock_downgrade+0x6d0/0x6d0 [ 1512.349174] ? find_held_lock+0x2c/0x110 [ 1512.350001] ? create_io_thread+0xf0/0xf0 [ 1512.350865] ? ksys_write+0x12d/0x260 [ 1512.351652] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1512.352658] __do_sys_fork+0x8a/0xc0 [ 1512.353420] ? kernel_thread+0xf0/0xf0 [ 1512.354240] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1512.355315] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1512.356365] ? trace_hardirqs_on+0x5b/0x180 [ 1512.357242] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1512.358298] do_syscall_64+0x33/0x40 [ 1512.359050] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1512.360117] RIP: 0033:0x7fc140e06b19 [ 1512.360883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1512.364591] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1512.366139] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1512.367582] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1512.369040] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1512.370475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1512.371923] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1512.378977] FAULT_INJECTION: forcing a failure. [ 1512.378977] name failslab, interval 1, probability 0, space 0, times 0 [ 1512.381425] CPU: 0 PID: 13508 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1512.382822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1512.384522] Call Trace: [ 1512.385059] dump_stack+0x107/0x167 [ 1512.385810] should_fail.cold+0x5/0xa [ 1512.386583] ? create_object.isra.0+0x3a/0xa20 [ 1512.387510] should_failslab+0x5/0x20 [ 1512.388318] kmem_cache_alloc+0x5b/0x310 [ 1512.389149] create_object.isra.0+0x3a/0xa20 [ 1512.390042] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1512.391077] kmem_cache_alloc+0x159/0x310 [ 1512.391938] vm_area_dup+0x78/0x290 [ 1512.392713] ? __lock_acquire+0xbb1/0x5b00 [ 1512.393599] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1512.394661] ? SOFTIRQ_verbose+0x10/0x10 [ 1512.395485] ? lock_acquire+0x197/0x470 [ 1512.396321] ? copy_process+0x25d6/0x7800 [ 1512.397176] ? vm_area_alloc+0x110/0x110 [ 1512.397998] ? find_held_lock+0x2c/0x110 [ 1512.398836] ? get_mm_exe_file+0x139/0x310 [ 1512.399696] ? lock_downgrade+0x6d0/0x6d0 [ 1512.400562] ? down_write_nested+0xe4/0x160 [ 1512.401454] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 1512.402489] ? get_mm_exe_file+0x162/0x310 [ 1512.403352] copy_process+0x291b/0x7800 [ 1512.404206] ? __lock_acquire+0xbb1/0x5b00 [ 1512.405107] ? __cleanup_sighand+0xb0/0xb0 [ 1512.405975] ? lock_acquire+0x197/0x470 [ 1512.406794] ? find_held_lock+0x2c/0x110 [ 1512.407627] kernel_clone+0xe7/0x980 [ 1512.408406] ? lock_downgrade+0x6d0/0x6d0 [ 1512.409251] ? find_held_lock+0x2c/0x110 [ 1512.410072] ? create_io_thread+0xf0/0xf0 [ 1512.410929] ? ksys_write+0x12d/0x260 [ 1512.411720] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1512.412733] __do_sys_fork+0x8a/0xc0 [ 1512.413499] ? kernel_thread+0xf0/0xf0 [ 1512.414320] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1512.415385] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1512.416462] ? trace_hardirqs_on+0x5b/0x180 [ 1512.417331] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1512.418376] do_syscall_64+0x33/0x40 04:35:57 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x500000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1512.419132] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1512.420391] RIP: 0033:0x7fa6a3da0b19 [ 1512.421146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1512.424902] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1512.426448] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1512.427896] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1512.429380] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1512.430841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1512.432298] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1512.440144] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:35:57 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x8001}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x1f91, &(0x7f0000000100)={0x0, 0x8f29, 0x8, 0x1, 0x2bf, 0x0, r0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000000180)=0x0, &(0x7f00000001c0)) syz_io_uring_submit(r3, r2, &(0x7f0000000240)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1}}, 0x8c) io_uring_setup(0x69b9, &(0x7f0000000280)={0x0, 0x1166, 0x2d, 0x0, 0x354, 0x0, r0}) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r4, 0x0, 0x2) r5 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r5, 0x0, r4, 0x0, 0x200f5ef, 0x0) io_uring_register$IORING_REGISTER_BUFFERS(r5, 0x0, &(0x7f0000000340)=[{&(0x7f0000000300)=""/24, 0x18}], 0x1) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:35:57 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f0000000000)={0x1, 0x0, 0x1000, 0xcb, &(0x7f00000001c0)="09269297c1a539e08dbb107654b705d11e74e4bf76d6367b863fe7449a0b867b59b710d44447b68016709deee813b52355140dd4dbc112d819ed75a534df88bb7685d54e16ef6488a93c825c23eb7e1ca9b690ac71f9411f9a23a6d4ab4228f061231ecd928cbefa05abe19abd1776524eb55c6debfbd72fa29e5c281418922ad990a85eeabfe164295d42d8b9648b87553f465cf6d45c47f010f95d06a6644f163d1661a2cc8b397a48d1d9b39739dbd2ed06b2b9ddc1fba3cb66f8a4a42e56dc9e0a263382ce4281b647", 0x1000, 0x0, &(0x7f00000002c0)="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"}) 04:35:57 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x600000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:35:57 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 26) 04:35:57 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xf6ffffff, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:35:57 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 33) 04:35:57 executing program 4: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r3, 0x1000003) r4 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000000180)={'IDLETIMER\x00'}, &(0x7f00000001c0)=0x1e) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) dup2(0xffffffffffffffff, r4) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2) ioctl$FS_IOC_FSSETXATTR(r3, 0x40086602, &(0x7f0000000000)) fsetxattr$security_capability(r3, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{0x0, 0x4}, {0x5}]}, 0x14, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0xfffffffffffffff7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r3, &(0x7f00000001c0)=ANY=[], 0xfdef) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1512.624069] FAULT_INJECTION: forcing a failure. [ 1512.624069] name failslab, interval 1, probability 0, space 0, times 0 [ 1512.626437] CPU: 1 PID: 13630 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1512.627854] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1512.629558] Call Trace: [ 1512.630092] dump_stack+0x107/0x167 [ 1512.630839] should_fail.cold+0x5/0xa [ 1512.631609] ? create_object.isra.0+0x3a/0xa20 [ 1512.632541] should_failslab+0x5/0x20 [ 1512.633307] kmem_cache_alloc+0x5b/0x310 [ 1512.634136] create_object.isra.0+0x3a/0xa20 [ 1512.635020] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1512.636082] kmem_cache_alloc+0x159/0x310 [ 1512.636919] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1512.638007] __kernfs_new_node+0xd4/0x860 [ 1512.638880] ? lock_acquire+0x197/0x470 [ 1512.639677] ? lock_chain_count+0x20/0x20 [ 1512.640537] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1512.641490] ? lock_acquire+0x197/0x470 [ 1512.642287] ? task_rq_lock+0xab/0x270 [ 1512.643075] ? lock_release+0x680/0x680 [ 1512.643890] ? find_held_lock+0x2c/0x110 [ 1512.644783] ? set_user_nice.part.0+0x2fd/0x760 [ 1512.645733] kernfs_create_dir_ns+0x9c/0x230 [ 1512.646675] internal_create_group+0x793/0xb30 [ 1512.647598] ? set_user_nice.part.0+0x2fd/0x760 [ 1512.648536] ? sysfs_remove_group+0x170/0x170 [ 1512.649440] ? lockdep_init_map_type+0x2c7/0x780 [ 1512.650414] ? blk_queue_flag_set+0x22/0x30 [ 1512.651298] ? __loop_update_dio+0x2d2/0x690 [ 1512.652223] loop_configure+0x954/0x1480 [ 1512.653072] lo_ioctl+0xa72/0x1760 [ 1512.653796] ? avc_has_extended_perms+0x7f1/0xf40 [ 1512.654772] ? loop_set_status_old+0x250/0x250 [ 1512.655695] ? avc_ss_reset+0x180/0x180 [ 1512.656505] ? lock_acquire+0x197/0x470 [ 1512.657308] ? find_held_lock+0x2c/0x110 [ 1512.658135] ? __lock_acquire+0xbb1/0x5b00 [ 1512.659037] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1512.660126] ? generic_block_fiemap+0x60/0x60 [ 1512.661038] ? loop_set_status_old+0x250/0x250 [ 1512.661948] blkdev_ioctl+0x291/0x710 [ 1512.662716] ? blkdev_common_ioctl+0x1870/0x1870 [ 1512.663682] ? selinux_file_ioctl+0xb6/0x270 [ 1512.664582] block_ioctl+0xf9/0x140 [ 1512.665316] ? blkdev_read_iter+0x1c0/0x1c0 [ 1512.666181] __x64_sys_ioctl+0x19a/0x210 [ 1512.667023] do_syscall_64+0x33/0x40 [ 1512.667803] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1512.668872] RIP: 0033:0x7fc91209f8d7 [ 1512.669642] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1512.673445] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1512.675035] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1512.676511] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1512.678005] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff 04:35:57 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 37) [ 1512.679485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1512.681163] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 04:35:57 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x6, 0x1010, r0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x4, 0x0, @fd_index=0x7, 0x80000000, &(0x7f0000000140)="0692cb585c4c8fc302e0cbc2985b22655646b89c85153df51895a46e0356550316dcf0cc8ba2a7a1b681e13797156fcc8cff5eff89b05218d77d1ac5c354202c82732b8445bd0ebed72604370b28d3e2b15ce5bad260f114", 0x58, 0x1, 0x1}, 0x9) [ 1512.741068] FAULT_INJECTION: forcing a failure. [ 1512.741068] name failslab, interval 1, probability 0, space 0, times 0 [ 1512.743450] CPU: 1 PID: 13685 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1512.744869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1512.746544] Call Trace: [ 1512.747079] dump_stack+0x107/0x167 [ 1512.747819] should_fail.cold+0x5/0xa [ 1512.748608] ? anon_vma_fork+0xf1/0x640 [ 1512.749439] should_failslab+0x5/0x20 [ 1512.750205] kmem_cache_alloc+0x5b/0x310 [ 1512.751028] anon_vma_fork+0xf1/0x640 04:35:57 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x700000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1512.751801] ? __vm_enough_memory+0x184/0x360 [ 1512.752896] copy_process+0x7218/0x7800 [ 1512.753747] ? __cleanup_sighand+0xb0/0xb0 [ 1512.754601] ? lock_acquire+0x197/0x470 [ 1512.755416] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1512.756993] ? find_held_lock+0x2c/0x110 [ 1512.757813] kernel_clone+0xe7/0x980 [ 1512.758561] ? lock_downgrade+0x6d0/0x6d0 [ 1512.759402] ? find_held_lock+0x2c/0x110 [ 1512.760224] ? create_io_thread+0xf0/0xf0 [ 1512.761059] ? ksys_write+0x12d/0x260 [ 1512.761858] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1512.762871] __do_sys_fork+0x8a/0xc0 [ 1512.763631] ? kernel_thread+0xf0/0xf0 [ 1512.764467] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1512.765539] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1512.766564] ? trace_hardirqs_on+0x5b/0x180 [ 1512.767448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1512.768495] do_syscall_64+0x33/0x40 [ 1512.769281] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1512.770307] RIP: 0033:0x7fa6a3da0b19 [ 1512.771069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1512.774818] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1512.776387] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1512.777854] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1512.779311] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1512.780780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1512.782208] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1512.839863] FAULT_INJECTION: forcing a failure. [ 1512.839863] name failslab, interval 1, probability 0, space 0, times 0 [ 1512.842229] CPU: 1 PID: 13752 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1512.843645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1512.845314] Call Trace: [ 1512.845847] dump_stack+0x107/0x167 [ 1512.846595] should_fail.cold+0x5/0xa [ 1512.847372] ? create_object.isra.0+0x3a/0xa20 [ 1512.848310] should_failslab+0x5/0x20 [ 1512.849095] kmem_cache_alloc+0x5b/0x310 [ 1512.849927] create_object.isra.0+0x3a/0xa20 [ 1512.850813] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1512.851854] kmem_cache_alloc+0x159/0x310 04:35:57 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r7 = mmap$IORING_OFF_SQES(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x2000000, 0x2010, r0, 0x10000000) syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x7fffffff, 0x0, 0x1, 0x2, 0x1}, 0x5) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1512.852721] anon_vma_fork+0xf1/0x640 [ 1512.853629] ? __vm_enough_memory+0x184/0x360 [ 1512.854559] copy_process+0x7218/0x7800 [ 1512.855423] ? __cleanup_sighand+0xb0/0xb0 [ 1512.856297] ? lock_acquire+0x197/0x470 [ 1512.857108] ? find_held_lock+0x2c/0x110 [ 1512.857930] kernel_clone+0xe7/0x980 [ 1512.858675] ? lock_downgrade+0x6d0/0x6d0 [ 1512.859510] ? find_held_lock+0x2c/0x110 [ 1512.860348] ? create_io_thread+0xf0/0xf0 [ 1512.861196] ? ksys_write+0x12d/0x260 [ 1512.861987] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1512.862969] __do_sys_fork+0x8a/0xc0 [ 1512.863724] ? kernel_thread+0xf0/0xf0 [ 1512.864559] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1512.865615] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1512.866682] ? trace_hardirqs_on+0x5b/0x180 [ 1512.867561] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1512.868626] do_syscall_64+0x33/0x40 [ 1512.869376] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1512.870423] RIP: 0033:0x7fc140e06b19 [ 1512.871179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 04:35:57 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={@mcast1, 0x3c, r1}) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) r4 = gettid() perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x8, 0x0, 0x2, 0xf8, 0x0, 0x1, 0x500a0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000040)}, 0xc138, 0x1, 0xc6d, 0x9, 0x10000, 0x1, 0x1, 0x0, 0x80000001, 0x0, 0x4}, r4, 0xe, 0xffffffffffffffff, 0x2) r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x22680, 0x0) kcmp(r4, 0xffffffffffffffff, 0x4, r0, r5) [ 1512.875000] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1512.876669] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1512.878128] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1512.879596] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1512.881076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1512.882521] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:35:57 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xffffe000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1512.907717] device lo left promiscuous mode 04:36:13 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 27) 04:36:13 executing program 4: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r3, 0x1000003) r4 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000000180)={'IDLETIMER\x00'}, &(0x7f00000001c0)=0x1e) openat$full(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) dup2(0xffffffffffffffff, r4) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2) ioctl$FS_IOC_FSSETXATTR(r3, 0x40086602, &(0x7f0000000000)) fsetxattr$security_capability(r3, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{0x0, 0x4}, {0x5}]}, 0x14, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0xfffffffffffffff7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r3, &(0x7f00000001c0)=ANY=[], 0xfdef) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:36:13 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 38) 04:36:13 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_vlan\x00'}) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:36:13 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 34) 04:36:13 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x2000000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:36:13 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:36:13 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xffffff8c, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:36:13 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x2010000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1529.166642] FAULT_INJECTION: forcing a failure. [ 1529.166642] name failslab, interval 1, probability 0, space 0, times 0 [ 1529.169015] CPU: 1 PID: 13888 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1529.170425] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1529.172133] Call Trace: [ 1529.172684] dump_stack+0x107/0x167 [ 1529.173437] should_fail.cold+0x5/0xa [ 1529.174227] ? __kernfs_new_node+0xd4/0x860 [ 1529.175123] should_failslab+0x5/0x20 [ 1529.175902] kmem_cache_alloc+0x5b/0x310 [ 1529.176754] __kernfs_new_node+0xd4/0x860 [ 1529.177586] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1529.178562] ? lock_downgrade+0x6d0/0x6d0 [ 1529.179434] ? mutex_lock_io_nested+0xf30/0xf30 [ 1529.180402] ? __kernfs_new_node+0x549/0x860 [ 1529.181308] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1529.182313] kernfs_new_node+0x93/0x120 [ 1529.183130] __kernfs_create_file+0x51/0x350 [ 1529.184044] sysfs_add_file_mode_ns+0x221/0x560 [ 1529.185028] internal_create_group+0x324/0xb30 [ 1529.185965] ? sysfs_remove_group+0x170/0x170 [ 1529.186883] ? lockdep_init_map_type+0x2c7/0x780 [ 1529.187851] ? blk_queue_flag_set+0x22/0x30 [ 1529.188761] ? __loop_update_dio+0x2d2/0x690 [ 1529.189670] loop_configure+0x954/0x1480 [ 1529.190543] lo_ioctl+0xa72/0x1760 [ 1529.191276] ? avc_has_extended_perms+0x7f1/0xf40 [ 1529.192292] ? loop_set_status_old+0x250/0x250 [ 1529.193244] ? avc_ss_reset+0x180/0x180 [ 1529.194061] ? lock_acquire+0x197/0x470 [ 1529.194878] ? find_held_lock+0x2c/0x110 [ 1529.195724] ? __lock_acquire+0xbb1/0x5b00 [ 1529.196668] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1529.197739] ? generic_block_fiemap+0x60/0x60 [ 1529.198678] ? loop_set_status_old+0x250/0x250 [ 1529.199610] blkdev_ioctl+0x291/0x710 [ 1529.200442] ? blkdev_common_ioctl+0x1870/0x1870 [ 1529.201408] ? selinux_file_ioctl+0xb6/0x270 [ 1529.202308] block_ioctl+0xf9/0x140 [ 1529.203040] ? blkdev_read_iter+0x1c0/0x1c0 [ 1529.203924] __x64_sys_ioctl+0x19a/0x210 04:36:14 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xfffffff6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1529.204786] do_syscall_64+0x33/0x40 [ 1529.205642] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1529.206698] RIP: 0033:0x7fc91209f8d7 [ 1529.207459] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1529.211183] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1529.212756] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1529.214221] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1529.215672] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1529.217190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1529.218670] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1529.222692] device lo entered promiscuous mode [ 1529.232244] FAULT_INJECTION: forcing a failure. [ 1529.232244] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1529.233184] FAULT_INJECTION: forcing a failure. [ 1529.233184] name failslab, interval 1, probability 0, space 0, times 0 [ 1529.234237] CPU: 0 PID: 13903 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1529.234246] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1529.234259] Call Trace: [ 1529.238807] dump_stack+0x107/0x167 [ 1529.239293] should_fail.cold+0x5/0xa [ 1529.239777] __alloc_pages_nodemask+0x182/0x600 [ 1529.240371] ? lock_acquire+0x197/0x470 [ 1529.240886] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1529.241653] ? lock_downgrade+0x6d0/0x6d0 [ 1529.242174] ? do_raw_spin_lock+0x121/0x260 [ 1529.242740] alloc_pages_current+0x187/0x280 [ 1529.243280] __pmd_alloc+0x37/0x5e0 [ 1529.243756] copy_page_range+0x2bd8/0x3810 [ 1529.244314] ? SOFTIRQ_verbose+0x10/0x10 [ 1529.244831] ? lock_chain_count+0x20/0x20 [ 1529.245366] ? up_write+0x191/0x550 [ 1529.245823] ? vm_iomap_memory+0x190/0x190 [ 1529.246358] ? downgrade_write+0x3a0/0x3a0 [ 1529.246908] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1529.247577] ? __vma_link_rb+0x540/0x700 [ 1529.248101] copy_process+0x759b/0x7800 [ 1529.248621] ? __cleanup_sighand+0xb0/0xb0 [ 1529.249153] ? lock_acquire+0x197/0x470 [ 1529.249654] ? find_held_lock+0x2c/0x110 [ 1529.250178] kernel_clone+0xe7/0x980 [ 1529.250646] ? lock_downgrade+0x6d0/0x6d0 [ 1529.251162] ? find_held_lock+0x2c/0x110 [ 1529.251662] ? create_io_thread+0xf0/0xf0 [ 1529.252187] ? ksys_write+0x12d/0x260 [ 1529.252659] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1529.253272] __do_sys_fork+0x8a/0xc0 [ 1529.253723] ? kernel_thread+0xf0/0xf0 [ 1529.254226] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1529.254867] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1529.255500] ? trace_hardirqs_on+0x5b/0x180 [ 1529.256032] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1529.256684] do_syscall_64+0x33/0x40 [ 1529.257152] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1529.257746] RIP: 0033:0x7fc140e06b19 [ 1529.258213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1529.260555] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1529.261508] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1529.262385] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1529.263253] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1529.264156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1529.265003] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1529.265867] CPU: 1 PID: 14000 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1529.267283] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1529.268975] Call Trace: [ 1529.269509] dump_stack+0x107/0x167 [ 1529.270253] should_fail.cold+0x5/0xa [ 1529.271022] ? anon_vma_clone+0xdc/0x590 [ 1529.271855] should_failslab+0x5/0x20 [ 1529.272636] kmem_cache_alloc+0x5b/0x310 [ 1529.273479] anon_vma_clone+0xdc/0x590 [ 1529.274292] anon_vma_fork+0x82/0x640 [ 1529.275066] ? __vm_enough_memory+0x184/0x360 [ 1529.275990] copy_process+0x7218/0x7800 [ 1529.276845] ? __cleanup_sighand+0xb0/0xb0 [ 1529.277701] ? lock_acquire+0x197/0x470 [ 1529.278519] ? find_held_lock+0x2c/0x110 [ 1529.279353] kernel_clone+0xe7/0x980 [ 1529.280099] ? lock_downgrade+0x6d0/0x6d0 [ 1529.280951] ? find_held_lock+0x2c/0x110 [ 1529.281763] ? create_io_thread+0xf0/0xf0 [ 1529.282607] ? ksys_write+0x12d/0x260 [ 1529.283390] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1529.284388] __do_sys_fork+0x8a/0xc0 [ 1529.285137] ? kernel_thread+0xf0/0xf0 [ 1529.285948] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1529.286999] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1529.288038] ? trace_hardirqs_on+0x5b/0x180 [ 1529.288922] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1529.289963] do_syscall_64+0x33/0x40 [ 1529.290719] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1529.291751] RIP: 0033:0x7fa6a3da0b19 [ 1529.292506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1529.296248] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1529.297811] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1529.299269] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1529.300727] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1529.302151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1529.303578] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:36:14 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 39) [ 1529.477313] FAULT_INJECTION: forcing a failure. [ 1529.477313] name failslab, interval 1, probability 0, space 0, times 0 [ 1529.477743] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1529.478700] CPU: 0 PID: 14013 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1529.478708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1529.478713] Call Trace: [ 1529.478732] dump_stack+0x107/0x167 [ 1529.478756] should_fail.cold+0x5/0xa [ 1529.478776] ? __pmd_alloc+0x94/0x5e0 [ 1529.478795] should_failslab+0x5/0x20 [ 1529.478819] kmem_cache_alloc+0x5b/0x310 [ 1529.484609] __pmd_alloc+0x94/0x5e0 [ 1529.485037] copy_page_range+0x2bd8/0x3810 [ 1529.485507] ? SOFTIRQ_verbose+0x10/0x10 [ 1529.485963] ? lock_chain_count+0x20/0x20 [ 1529.486479] ? up_write+0x191/0x550 [ 1529.486894] ? vm_iomap_memory+0x190/0x190 [ 1529.487388] ? downgrade_write+0x3a0/0x3a0 [ 1529.487900] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1529.488537] ? __vma_link_rb+0x540/0x700 [ 1529.489018] copy_process+0x759b/0x7800 [ 1529.489504] ? __cleanup_sighand+0xb0/0xb0 [ 1529.490010] ? lock_acquire+0x197/0x470 [ 1529.490489] ? find_held_lock+0x2c/0x110 [ 1529.490968] kernel_clone+0xe7/0x980 [ 1529.491399] ? lock_downgrade+0x6d0/0x6d0 [ 1529.491884] ? find_held_lock+0x2c/0x110 [ 1529.492389] ? create_io_thread+0xf0/0xf0 [ 1529.492900] ? ksys_write+0x12d/0x260 [ 1529.493357] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1529.493956] __do_sys_fork+0x8a/0xc0 [ 1529.494387] ? kernel_thread+0xf0/0xf0 [ 1529.494877] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1529.495446] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1529.496030] ? trace_hardirqs_on+0x5b/0x180 [ 1529.496556] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1529.497149] do_syscall_64+0x33/0x40 [ 1529.497577] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1529.498135] RIP: 0033:0x7fc140e06b19 [ 1529.498535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1529.500641] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1529.501515] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1529.502357] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1529.503199] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1529.504000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1529.504818] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:36:27 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 28) [ 1542.269236] FAULT_INJECTION: forcing a failure. [ 1542.269236] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.271553] CPU: 1 PID: 14123 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1542.272966] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.274632] Call Trace: [ 1542.275170] dump_stack+0x107/0x167 [ 1542.275910] should_fail.cold+0x5/0xa [ 1542.276691] ? create_object.isra.0+0x3a/0xa20 [ 1542.277620] should_failslab+0x5/0x20 [ 1542.278386] kmem_cache_alloc+0x5b/0x310 [ 1542.279239] create_object.isra.0+0x3a/0xa20 [ 1542.280125] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1542.281176] kmem_cache_alloc+0x159/0x310 [ 1542.282022] __kernfs_new_node+0xd4/0x860 [ 1542.282857] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1542.283821] ? lock_downgrade+0x6d0/0x6d0 [ 1542.284692] ? mutex_lock_io_nested+0xf30/0xf30 [ 1542.285619] ? __kernfs_new_node+0x549/0x860 [ 1542.286524] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1542.287504] kernfs_new_node+0x93/0x120 [ 1542.288304] __kernfs_create_file+0x51/0x350 [ 1542.289189] sysfs_add_file_mode_ns+0x221/0x560 [ 1542.290124] internal_create_group+0x324/0xb30 [ 1542.291102] ? sysfs_remove_group+0x170/0x170 [ 1542.292111] ? lockdep_init_map_type+0x2c7/0x780 [ 1542.293283] ? blk_queue_flag_set+0x22/0x30 [ 1542.294328] ? __loop_update_dio+0x2d2/0x690 [ 1542.295326] loop_configure+0x954/0x1480 [ 1542.296185] lo_ioctl+0xa72/0x1760 [ 1542.296917] ? avc_has_extended_perms+0x7f1/0xf40 [ 1542.297933] ? loop_set_status_old+0x250/0x250 [ 1542.298943] ? avc_ss_reset+0x180/0x180 [ 1542.299817] ? lock_acquire+0x197/0x470 [ 1542.300668] ? find_held_lock+0x2c/0x110 [ 1542.301515] ? __lock_acquire+0xbb1/0x5b00 [ 1542.302533] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1542.303653] ? generic_block_fiemap+0x60/0x60 [ 1542.304768] ? loop_set_status_old+0x250/0x250 [ 1542.305870] blkdev_ioctl+0x291/0x710 [ 1542.306654] ? blkdev_common_ioctl+0x1870/0x1870 [ 1542.307629] ? selinux_file_ioctl+0xb6/0x270 [ 1542.308555] block_ioctl+0xf9/0x140 [ 1542.309295] ? blkdev_read_iter+0x1c0/0x1c0 [ 1542.310190] __x64_sys_ioctl+0x19a/0x210 [ 1542.311100] do_syscall_64+0x33/0x40 04:36:27 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xedc000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:36:27 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r5 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000680)=0x0, &(0x7f00000006c0)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) syz_io_uring_submit(r8, r7, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r7, &(0x7f0000000640)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000600)={&(0x7f0000000140)=@ax25={{0x3, @bcast}, [@bcast, @rose, @default, @remote, @null, @null, @bcast, @netrom]}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000240)=""/70, 0x46}, {&(0x7f00000002c0)=""/231, 0xe7}, {&(0x7f00000003c0)=""/146, 0x92}, {&(0x7f0000000040)=""/39, 0x27}, {&(0x7f00000001c0)=""/32, 0x20}, {&(0x7f0000000480)=""/9, 0x9}], 0x6, &(0x7f0000000540)=""/144, 0x90}, 0x0, 0x40000000, 0x0, {0x3, r9}}, 0x5) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:36:27 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 35) 04:36:27 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000040)=0x14) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r2}, 0xff24) 04:36:27 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x6c12000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:36:27 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 40) 04:36:27 executing program 4: unshare(0x480) unshare(0x0) unshare(0x200) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = getpid() ftruncate(0xffffffffffffffff, 0x1000003) [ 1542.311981] entry_SYSCALL_64_after_hwframe+0x62/0xc7 r2 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x1, &(0x7f0000000600)=ANY=[]) ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f00000001c0)={0xfffffffe, 0x0, 0x0, 0x0, 0x40000000}) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000680)=ANY=[@ANYRESOCT=r0], 0x5bc) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x3201, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0xc81, 0x4, 0x0, 0x3, 0x4}, 0x0, 0xfffffffeffffffff, 0xffffffffffffffff, 0x2) prlimit64(r1, 0x0, &(0x7f0000000000), 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)) perf_event_open(&(0x7f0000000140)={0x0, 0x15, 0x40, 0x5, 0x7f, 0x0, 0x0, 0x3, 0x0, 0x7, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x10910, 0x4, 0x6, 0x2, 0x854a, 0xde91, 0x0, 0x0, 0x7, 0x0, 0x8000}, 0xffffffffffffffff, 0x0, r3, 0x1) prlimit64(0x0, 0x0, &(0x7f0000000080)={0x7}, &(0x7f00000000c0)) r4 = getpgid(0x0) ptrace$setopts(0x4206, r4, 0x0, 0x200001) kcmp(0x0, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f00000000c0)={0x0, 0x0, 0x20}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000280)={0x0, 0x8001, 0xdc0e}) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f00000006c0)={0x0, 0x2, {0x9, @usage=0x6, r5, 0x2b, 0xe000000000000000, 0x57, 0x5, 0x9, 0x4a, @struct={0x2}, 0x400, 0x5, [0x3, 0x9fa, 0x8, 0x100000000, 0x9, 0x4]}, {0xcdb, @struct={0x4000000, 0x4}, 0x0, 0x4, 0xe9e, 0x0, 0x0, 0x0, 0x40, @struct={0x8, 0x6}, 0x4, 0x9, [0x4, 0x5, 0x9, 0x5, 0x0, 0x1]}, {0x1141577f, @usage=0x1, 0x0, 0x100, 0x100, 0xa8fc, 0x1, 0x7, 0x10, @usage=0x5, 0x2, 0x8c, [0x1f, 0x84, 0x101, 0x8, 0x9, 0x2]}, {0xffffffffffff0003, 0xfffffffffffffffc}}) [ 1542.313321] RIP: 0033:0x7fc91209f8d7 [ 1542.314240] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.318351] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1542.319946] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1542.321447] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1542.322981] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1542.324663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1542.326130] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1542.346833] FAULT_INJECTION: forcing a failure. [ 1542.346833] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.349403] CPU: 0 PID: 14132 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1542.350956] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.352838] Call Trace: [ 1542.353439] dump_stack+0x107/0x167 [ 1542.354278] should_fail.cold+0x5/0xa [ 1542.355150] ? anon_vma_fork+0x1ff/0x640 [ 1542.356071] should_failslab+0x5/0x20 [ 1542.356946] kmem_cache_alloc+0x5b/0x310 [ 1542.357875] anon_vma_fork+0x1ff/0x640 [ 1542.358757] copy_process+0x7218/0x7800 [ 1542.359703] ? __cleanup_sighand+0xb0/0xb0 [ 1542.360682] ? lock_acquire+0x197/0x470 [ 1542.361581] ? find_held_lock+0x2c/0x110 [ 1542.362498] kernel_clone+0xe7/0x980 [ 1542.362607] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1542.363331] ? lock_downgrade+0x6d0/0x6d0 [ 1542.363350] ? find_held_lock+0x2c/0x110 [ 1542.363376] ? create_io_thread+0xf0/0xf0 [ 1542.367715] ? ksys_write+0x12d/0x260 [ 1542.368594] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1542.369684] __do_sys_fork+0x8a/0xc0 [ 1542.370523] ? kernel_thread+0xf0/0xf0 [ 1542.371426] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.372622] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.373768] ? trace_hardirqs_on+0x5b/0x180 [ 1542.374732] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.375887] do_syscall_64+0x33/0x40 [ 1542.376738] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1542.377880] RIP: 0033:0x7fa6a3da0b19 [ 1542.378714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.382813] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1542.384533] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1542.386124] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1542.387722] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1542.389324] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1542.390924] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1542.394950] FAULT_INJECTION: forcing a failure. [ 1542.394950] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.397366] CPU: 1 PID: 14134 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1542.398775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.400496] Call Trace: [ 1542.401041] dump_stack+0x107/0x167 [ 1542.401786] should_fail.cold+0x5/0xa [ 1542.402554] ? create_object.isra.0+0x3a/0xa20 [ 1542.403476] should_failslab+0x5/0x20 [ 1542.404249] kmem_cache_alloc+0x5b/0x310 [ 1542.405076] create_object.isra.0+0x3a/0xa20 [ 1542.405965] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1542.406989] kmem_cache_alloc+0x159/0x310 [ 1542.407834] __pmd_alloc+0x94/0x5e0 [ 1542.408587] copy_page_range+0x2bd8/0x3810 [ 1542.408609] ? SOFTIRQ_verbose+0x10/0x10 [ 1542.408627] ? lock_chain_count+0x20/0x20 [ 1542.408691] ? up_write+0x191/0x550 [ 1542.408711] ? vm_iomap_memory+0x190/0x190 [ 1542.408730] ? downgrade_write+0x3a0/0x3a0 [ 1542.408753] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1542.408781] ? __vma_link_rb+0x540/0x700 [ 1542.408811] copy_process+0x759b/0x7800 [ 1542.408873] ? __cleanup_sighand+0xb0/0xb0 [ 1542.408901] ? lock_acquire+0x197/0x470 [ 1542.408929] ? find_held_lock+0x2c/0x110 [ 1542.408955] kernel_clone+0xe7/0x980 [ 1542.408976] ? lock_downgrade+0x6d0/0x6d0 [ 1542.408992] ? find_held_lock+0x2c/0x110 [ 1542.409011] ? create_io_thread+0xf0/0xf0 [ 1542.409034] ? ksys_write+0x12d/0x260 [ 1542.409065] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1542.409095] __do_sys_fork+0x8a/0xc0 [ 1542.409114] ? kernel_thread+0xf0/0xf0 [ 1542.409155] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.426650] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.427693] ? trace_hardirqs_on+0x5b/0x180 [ 1542.428571] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.429606] do_syscall_64+0x33/0x40 [ 1542.430358] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1542.431420] RIP: 0033:0x7fc140e06b19 [ 1542.432177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.435845] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1542.437396] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1542.438826] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1542.440264] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1542.441751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1542.443194] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:36:27 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x8cffffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:36:27 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 36) 04:36:27 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r0, 0x0, 0x2) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x400}, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'netdevsim0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'hsr0\x00'}) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r3}, 0x14) 04:36:27 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 41) 04:36:27 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0xb, 0x7) connect$inet(0xffffffffffffffff, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2a}}, 0x10) shutdown(r1, 0x1) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x4e22, @loopback}, 0x10) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) mkdirat(r2, &(0x7f0000000600)='./file0\x00', 0x0) recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000400)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e24, 0x3}}, 0x80) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r3, 0x40189429, &(0x7f0000000640)={0x1, 0x6}) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000540)={0x0, 0x0}, &(0x7f0000000580)=0xc) fsetxattr$security_capability(r0, &(0x7f0000000000), &(0x7f00000005c0)=@v3={0x3000000, [{0x2, 0x9}, {0x5, 0xfffffff9}], r4}, 0x18, 0x0) clone3(&(0x7f00000004c0)={0x200001000, &(0x7f0000000140), &(0x7f0000000180), &(0x7f00000001c0)=0x0, {0x31}, &(0x7f0000000200)=""/5, 0x5, &(0x7f0000000300)=""/237, &(0x7f0000000480)=[0x0, 0x0], 0x2}, 0x58) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x4, 0x1f, 0x0, 0x6, 0x0, 0x9, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000080), 0x4}, 0x18e8, 0x3, 0x2, 0x6, 0x6, 0x5b7, 0x0, 0x0, 0x9, 0x0, 0x4}, r5, 0xffffffffffffffff, r0, 0x1) r6 = openat$sr(0xffffffffffffff9c, &(0x7f00000002c0), 0x1c1e02, 0x0) ioctl$CDROMRESET(r6, 0x5329) unshare(0x48020200) 04:36:27 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 29) [ 1542.626006] FAULT_INJECTION: forcing a failure. [ 1542.626006] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.628334] CPU: 1 PID: 14255 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1542.629755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.631439] Call Trace: [ 1542.631980] dump_stack+0x107/0x167 [ 1542.632746] should_fail.cold+0x5/0xa [ 1542.633528] ? create_object.isra.0+0x3a/0xa20 [ 1542.634469] should_failslab+0x5/0x20 [ 1542.635250] kmem_cache_alloc+0x5b/0x310 [ 1542.636090] create_object.isra.0+0x3a/0xa20 [ 1542.636997] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1542.638037] kmem_cache_alloc+0x159/0x310 [ 1542.638894] anon_vma_fork+0x1ff/0x640 [ 1542.639709] copy_process+0x7218/0x7800 [ 1542.640568] ? __cleanup_sighand+0xb0/0xb0 [ 1542.641445] ? lock_acquire+0x197/0x470 [ 1542.642257] ? find_held_lock+0x2c/0x110 [ 1542.643093] kernel_clone+0xe7/0x980 [ 1542.643851] ? lock_downgrade+0x6d0/0x6d0 [ 1542.644722] ? find_held_lock+0x2c/0x110 [ 1542.645554] ? create_io_thread+0xf0/0xf0 [ 1542.646415] ? ksys_write+0x12d/0x260 [ 1542.647190] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1542.648177] __do_sys_fork+0x8a/0xc0 [ 1542.648945] ? kernel_thread+0xf0/0xf0 [ 1542.649765] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.650839] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.651897] ? trace_hardirqs_on+0x5b/0x180 [ 1542.652796] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.653868] do_syscall_64+0x33/0x40 [ 1542.654630] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1542.655670] RIP: 0033:0x7fa6a3da0b19 [ 1542.656433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.660182] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1542.661749] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1542.663193] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1542.664647] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1542.666097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1542.667521] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:36:27 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x8000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1542.688929] FAULT_INJECTION: forcing a failure. [ 1542.688929] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1542.691366] CPU: 1 PID: 14264 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1542.692785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.694480] Call Trace: [ 1542.695028] dump_stack+0x107/0x167 [ 1542.695777] should_fail.cold+0x5/0xa [ 1542.696570] __alloc_pages_nodemask+0x182/0x600 [ 1542.697523] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1542.698747] ? find_held_lock+0x2c/0x110 [ 1542.699591] ? __pmd_alloc+0x2db/0x5e0 [ 1542.700406] ? lock_downgrade+0x6d0/0x6d0 [ 1542.701262] ? do_raw_spin_lock+0x121/0x260 [ 1542.702146] alloc_pages_current+0x187/0x280 [ 1542.703046] pte_alloc_one+0x16/0x1a0 [ 1542.703823] __pte_alloc+0x1d/0x330 [ 1542.704582] copy_page_range+0x1b62/0x3810 [ 1542.705442] ? SOFTIRQ_verbose+0x10/0x10 [ 1542.706262] ? lock_chain_count+0x20/0x20 [ 1542.707146] ? up_write+0x191/0x550 [ 1542.707883] ? vm_iomap_memory+0x190/0x190 [ 1542.708751] ? downgrade_write+0x3a0/0x3a0 [ 1542.709612] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1542.710707] ? __vma_link_rb+0x540/0x700 [ 1542.711536] copy_process+0x759b/0x7800 [ 1542.712395] ? __cleanup_sighand+0xb0/0xb0 [ 1542.713272] ? lock_acquire+0x197/0x470 [ 1542.714088] ? find_held_lock+0x2c/0x110 [ 1542.714921] kernel_clone+0xe7/0x980 [ 1542.715669] ? lock_downgrade+0x6d0/0x6d0 [ 1542.716514] ? find_held_lock+0x2c/0x110 [ 1542.717337] ? create_io_thread+0xf0/0xf0 [ 1542.718188] ? ksys_write+0x12d/0x260 [ 1542.718956] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1542.719948] __do_sys_fork+0x8a/0xc0 [ 1542.720729] ? kernel_thread+0xf0/0xf0 [ 1542.721548] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1542.722624] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.723647] ? trace_hardirqs_on+0x5b/0x180 [ 1542.724534] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1542.725561] do_syscall_64+0x33/0x40 [ 1542.726327] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1542.727362] RIP: 0033:0x7fc140e06b19 [ 1542.728112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.731825] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1542.733385] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1542.734825] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1542.736253] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1542.737704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1542.739141] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:36:27 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1542.751054] FAULT_INJECTION: forcing a failure. [ 1542.751054] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.753352] CPU: 1 PID: 14267 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1542.754756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.756507] Call Trace: [ 1542.757046] dump_stack+0x107/0x167 [ 1542.757786] should_fail.cold+0x5/0xa [ 1542.758559] ? create_object.isra.0+0x3a/0xa20 [ 1542.759496] should_failslab+0x5/0x20 [ 1542.760273] kmem_cache_alloc+0x5b/0x310 [ 1542.761119] create_object.isra.0+0x3a/0xa20 [ 1542.762026] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1542.763068] kmem_cache_alloc+0x159/0x310 [ 1542.763921] __kernfs_new_node+0xd4/0x860 [ 1542.764770] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1542.765732] ? lock_downgrade+0x6d0/0x6d0 [ 1542.766593] ? mutex_lock_io_nested+0xf30/0xf30 [ 1542.767537] ? __kernfs_new_node+0x549/0x860 [ 1542.768453] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1542.769459] kernfs_new_node+0x93/0x120 [ 1542.770275] __kernfs_create_file+0x51/0x350 [ 1542.771168] sysfs_add_file_mode_ns+0x221/0x560 [ 1542.772127] internal_create_group+0x324/0xb30 [ 1542.773065] ? sysfs_remove_group+0x170/0x170 [ 1542.773986] ? lockdep_init_map_type+0x2c7/0x780 [ 1542.774946] ? blk_queue_flag_set+0x22/0x30 [ 1542.775816] ? __loop_update_dio+0x2d2/0x690 [ 1542.776727] loop_configure+0x954/0x1480 [ 1542.777565] lo_ioctl+0xa72/0x1760 [ 1542.778299] ? avc_has_extended_perms+0x7f1/0xf40 [ 1542.779290] ? loop_set_status_old+0x250/0x250 [ 1542.780229] ? avc_ss_reset+0x180/0x180 [ 1542.781040] ? lock_acquire+0x197/0x470 [ 1542.781844] ? find_held_lock+0x2c/0x110 [ 1542.782675] ? __lock_acquire+0xbb1/0x5b00 [ 1542.783628] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1542.784688] ? generic_block_fiemap+0x60/0x60 [ 1542.785607] ? loop_set_status_old+0x250/0x250 [ 1542.786538] blkdev_ioctl+0x291/0x710 [ 1542.787322] ? blkdev_common_ioctl+0x1870/0x1870 [ 1542.788287] ? selinux_file_ioctl+0xb6/0x270 [ 1542.789199] block_ioctl+0xf9/0x140 [ 1542.789918] ? blkdev_read_iter+0x1c0/0x1c0 [ 1542.790801] __x64_sys_ioctl+0x19a/0x210 [ 1542.791680] do_syscall_64+0x33/0x40 [ 1542.792450] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1542.793488] RIP: 0033:0x7fc91209f8d7 [ 1542.794255] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1542.797990] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1542.799532] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1542.800994] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1542.802446] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1542.803881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1542.805333] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1542.821475] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:36:27 executing program 0: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000}, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmsg$sock(r6, &(0x7f0000000640)={&(0x7f0000000240)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x5}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000400)="c6b8835f36c63c4299db2184a5bf48fa0cc9ee2b8451fff168fecafbb6c1682a64ef8ffaddb01f4b789280b18f88464ac34c271e7990f661d5d90ba08e899a3321b30980509a50658d51b901586ae99732657b33fc42c824a94b91036043314bd3ee779b40ea5fd255c33b9e942998e21dd985f1bba69905aed8fa8f78b473ae1d71b640c9e66222615f319fe40f82d4aec65f81a04603938ee13fcae615792da99eb87f8417ed96a056e98adf48863ddd6d659094063085340e14fe650f9281452047e193f0aee39038defe9da22d3c5c741aba", 0xd4}, {&(0x7f0000000500)="2d6c8f84657f96c7fbc33c0d3fd975a0423d8c54e3ea4cf3b6d02fa3410e38d9a68436cf5122ee9e2bff5ecc818c7abbaf615dadb867c0e8e4619107b8899ea9815d9647e378764db4681bd7fc46a8e923f0330679e76f3440c6c459aa74581ab93207a60170dd0539a9c4dd17e970323565a5898a49bc040f0a67e258a43f5c8bf666dfb19ebb4fbb687fab292a8cecb3d39bc17aa907082d2c21167aa2230a0390fc381c87b49c9a9bbd77507c15ec39ebe8784f5a541d99d3b2b002a1b9f85457d4261f987c7f754b263ddc8ee0fc791ef4f03b50b5a7fadfeea939825968d13d00b0fd0cd1adfdea50c167a72082218a662a346a", 0xf6}], 0x2}, 0x20008050) sendmmsg$inet6(r6, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_io_uring_submit(r0, r4, &(0x7f00000001c0)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r6, 0x0, &(0x7f0000000140)="76ac725301168b7bf005311b206b9f34d6abfb2e83a1e2f5cdcf2f033ac29d47b20d6a96e605f7cf134668d71514d352441858b7688a75a1ccabc18583051711746a5f04848206a4586acde97136214fe7775f6927b4f034d8192872cdeba8c3804215a0", 0x64, 0x4040000}, 0x39) syz_io_uring_setup(0x798e, &(0x7f0000000040)={0x0, 0x2b26, 0x1, 0x1, 0xa1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) 04:36:27 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 30) [ 1542.980866] FAULT_INJECTION: forcing a failure. [ 1542.980866] name failslab, interval 1, probability 0, space 0, times 0 [ 1542.983180] CPU: 1 PID: 14389 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1542.984580] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1542.986250] Call Trace: [ 1542.986786] dump_stack+0x107/0x167 [ 1542.987523] should_fail.cold+0x5/0xa [ 1542.988295] ? __kernfs_new_node+0xd4/0x860 [ 1542.989194] should_failslab+0x5/0x20 [ 1542.989956] kmem_cache_alloc+0x5b/0x310 [ 1542.990777] __kernfs_new_node+0xd4/0x860 [ 1542.991613] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1542.992578] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1542.993552] ? wait_for_completion_io+0x270/0x270 [ 1542.994525] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1542.995575] kernfs_new_node+0x93/0x120 [ 1542.996374] __kernfs_create_file+0x51/0x350 [ 1542.997277] sysfs_add_file_mode_ns+0x221/0x560 [ 1542.998215] internal_create_group+0x324/0xb30 [ 1542.999136] ? sysfs_remove_group+0x170/0x170 [ 1543.000033] ? lockdep_init_map_type+0x2c7/0x780 [ 1543.000990] ? blk_queue_flag_set+0x22/0x30 [ 1543.001850] ? __loop_update_dio+0x2d2/0x690 [ 1543.002758] loop_configure+0x954/0x1480 [ 1543.003589] lo_ioctl+0xa72/0x1760 [ 1543.004323] ? avc_has_extended_perms+0x7f1/0xf40 [ 1543.005298] ? loop_set_status_old+0x250/0x250 [ 1543.006238] ? avc_ss_reset+0x180/0x180 [ 1543.007037] ? lock_acquire+0x197/0x470 [ 1543.007831] ? find_held_lock+0x2c/0x110 [ 1543.008672] ? __lock_acquire+0xbb1/0x5b00 [ 1543.009567] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1543.010607] ? generic_block_fiemap+0x60/0x60 [ 1543.011530] ? loop_set_status_old+0x250/0x250 [ 1543.012448] blkdev_ioctl+0x291/0x710 [ 1543.013208] ? blkdev_common_ioctl+0x1870/0x1870 [ 1543.014153] ? selinux_file_ioctl+0xb6/0x270 [ 1543.015041] block_ioctl+0xf9/0x140 [ 1543.015774] ? blkdev_read_iter+0x1c0/0x1c0 [ 1543.016653] __x64_sys_ioctl+0x19a/0x210 [ 1543.017499] do_syscall_64+0x33/0x40 [ 1543.018243] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1543.019290] RIP: 0033:0x7fc91209f8d7 [ 1543.020036] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1543.023749] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1543.025273] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1543.026688] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1543.028108] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1543.029551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1543.030969] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1543.042109] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1556.575130] FAULT_INJECTION: forcing a failure. [ 1556.575130] name failslab, interval 1, probability 0, space 0, times 0 [ 1556.576792] CPU: 0 PID: 14405 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1556.577768] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.578925] Call Trace: [ 1556.579302] dump_stack+0x107/0x167 [ 1556.579819] should_fail.cold+0x5/0xa [ 1556.580361] ? ptlock_alloc+0x1d/0x70 [ 1556.580914] should_failslab+0x5/0x20 [ 1556.581451] kmem_cache_alloc+0x5b/0x310 [ 1556.582024] ptlock_alloc+0x1d/0x70 [ 1556.582538] pte_alloc_one+0x68/0x1a0 [ 1556.583070] __pte_alloc+0x1d/0x330 [ 1556.583472] copy_page_range+0x1b62/0x3810 [ 1556.584065] ? SOFTIRQ_verbose+0x10/0x10 [ 1556.584641] ? lock_chain_count+0x20/0x20 [ 1556.585248] ? up_write+0x191/0x550 [ 1556.585710] ? vm_iomap_memory+0x190/0x190 [ 1556.586167] ? downgrade_write+0x3a0/0x3a0 [ 1556.586620] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1556.587201] ? __vma_link_rb+0x540/0x700 [ 1556.587647] copy_process+0x759b/0x7800 [ 1556.588100] ? __cleanup_sighand+0xb0/0xb0 [ 1556.588569] ? lock_acquire+0x197/0x470 [ 1556.589004] ? find_held_lock+0x2c/0x110 [ 1556.589437] kernel_clone+0xe7/0x980 [ 1556.589835] ? lock_downgrade+0x6d0/0x6d0 [ 1556.590272] ? find_held_lock+0x2c/0x110 [ 1556.590708] ? create_io_thread+0xf0/0xf0 [ 1556.591159] ? ksys_write+0x12d/0x260 [ 1556.591588] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1556.592128] __do_sys_fork+0x8a/0xc0 [ 1556.592538] ? kernel_thread+0xf0/0xf0 [ 1556.593122] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1556.593681] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.594400] ? trace_hardirqs_on+0x5b/0x180 [ 1556.594863] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.595432] do_syscall_64+0x33/0x40 [ 1556.595831] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1556.596417] RIP: 0033:0x7fc140e06b19 [ 1556.596824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1556.598975] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1556.599855] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1556.600899] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1556.601649] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1556.602475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1556.603319] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:36:41 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 42) 04:36:41 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)=0x28) sendfile(0xffffffffffffffff, r0, 0x0, 0x7) fcntl$getflags(r0, 0x401) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000001c0)={0x0}, &(0x7f0000000200)=0xc) socket$netlink(0x10, 0x3, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000002700210c00000000000000000000000097f5e00d5c8782b19814c3904e5b089c06acfc75f5cd1fcb86e71972baa7611d2a77392d1757f50574a76e4c249ae057c2ff324db74ab5d7694072ef50373294e45e137ad8b14413c218aefc5a02e18c6c10d67817f8ad1ae94c112b"], 0x14}}, 0x0) perf_event_open(0x0, r3, 0xb, 0xffffffffffffffff, 0x1) creat(&(0x7f00000000c0)='./file0\x00', 0x5e) r4 = fcntl$getown(r2, 0x9) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r4, 0xffffffffffffffff, r1, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0xffffffffffffff00, 0x39}, 0x2112, 0x0, 0x0, 0x0, 0x0, 0x20}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') writev(r5, &(0x7f0000002b80)=[{&(0x7f0000000080)='1', 0x1}], 0x1) 04:36:41 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, 0x0, 0x2, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x40, 0x5}}}}, [@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x44008044) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1fd}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r1, 0xaba, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:36:41 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:36:41 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 37) 04:36:41 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 31) 04:36:41 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f0000000100)={0x1a0002008}) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'}) r5 = syz_genetlink_get_family_id$batadv(0x0, r3) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r4, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0x8, &(0x7f00000003c0)={&(0x7f0000000380)={0x24, r5, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0xfec6, 0x39, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x200000c0}, 0x14050884) r6 = socket$packet(0x11, 0x3, 0x300) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r6, 0x107, 0x1, &(0x7f0000000100)={r8, 0x3, 0x6}, 0x10) setsockopt$packet_add_memb(r6, 0x107, 0x1, &(0x7f0000000080)={r8, 0x1, 0x6, @dev}, 0x10) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r5, 0x2, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040010}, 0x40040) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000280)={'syztnl2\x00', &(0x7f0000000200)={'syztnl2\x00', r1, 0x29, 0x51, 0x9, 0x8001, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x20, 0x7800, 0x1}}) sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x3c, r5, 0x318, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xc8}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r9}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xffff6605}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44081}, 0x8800) socketpair(0x22, 0x4, 0x8, &(0x7f0000000000)={0xffffffffffffffff}) pread64(r10, &(0x7f0000000040)=""/102, 0x66, 0xff) 04:36:41 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xe0ffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1556.611244] 9pnet: Unknown protocol version 9 [ 1556.639171] FAULT_INJECTION: forcing a failure. [ 1556.639171] name failslab, interval 1, probability 0, space 0, times 0 [ 1556.641657] CPU: 1 PID: 14410 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1556.643069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.644749] Call Trace: [ 1556.645295] dump_stack+0x107/0x167 [ 1556.646054] should_fail.cold+0x5/0xa [ 1556.646846] ? __kernfs_new_node+0xd4/0x860 [ 1556.647730] ? __kernfs_new_node+0xd4/0x860 [ 1556.648644] should_failslab+0x5/0x20 [ 1556.649435] kmem_cache_alloc+0x5b/0x310 [ 1556.650281] __kernfs_new_node+0xd4/0x860 [ 1556.651144] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1556.652119] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1556.653118] ? wait_for_completion_io+0x270/0x270 [ 1556.654115] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1556.655193] kernfs_new_node+0x93/0x120 [ 1556.656012] __kernfs_create_file+0x51/0x350 [ 1556.656927] sysfs_add_file_mode_ns+0x221/0x560 [ 1556.657888] internal_create_group+0x324/0xb30 [ 1556.658826] ? sysfs_remove_group+0x170/0x170 [ 1556.659746] ? lockdep_init_map_type+0x2c7/0x780 [ 1556.660736] ? blk_queue_flag_set+0x22/0x30 [ 1556.661614] ? __loop_update_dio+0x2d2/0x690 [ 1556.662514] loop_configure+0x954/0x1480 [ 1556.663356] lo_ioctl+0xa72/0x1760 [ 1556.664084] ? avc_has_extended_perms+0x7f1/0xf40 [ 1556.665103] ? loop_set_status_old+0x250/0x250 [ 1556.666048] ? avc_ss_reset+0x180/0x180 [ 1556.666863] ? lock_acquire+0x197/0x470 [ 1556.667668] ? find_held_lock+0x2c/0x110 [ 1556.668496] ? __lock_acquire+0xbb1/0x5b00 [ 1556.669421] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1556.670473] ? generic_block_fiemap+0x60/0x60 [ 1556.670813] FAULT_INJECTION: forcing a failure. [ 1556.670813] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1556.671380] ? loop_set_status_old+0x250/0x250 [ 1556.671401] blkdev_ioctl+0x291/0x710 [ 1556.674355] ? blkdev_common_ioctl+0x1870/0x1870 [ 1556.675304] ? selinux_file_ioctl+0xb6/0x270 [ 1556.676190] block_ioctl+0xf9/0x140 [ 1556.676933] ? blkdev_read_iter+0x1c0/0x1c0 [ 1556.677789] __x64_sys_ioctl+0x19a/0x210 [ 1556.678601] do_syscall_64+0x33/0x40 [ 1556.679343] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1556.680357] RIP: 0033:0x7fc91209f8d7 [ 1556.681106] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1556.684761] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1556.686270] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1556.687680] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1556.689108] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1556.690521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1556.691932] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1556.693378] CPU: 0 PID: 14415 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1556.694191] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.695142] Call Trace: [ 1556.695450] dump_stack+0x107/0x167 [ 1556.695870] should_fail.cold+0x5/0xa [ 1556.696318] __alloc_pages_nodemask+0x182/0x600 [ 1556.696875] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1556.697583] ? copy_page_range+0x28e1/0x3810 [ 1556.698097] alloc_pages_current+0x187/0x280 [ 1556.698612] get_zeroed_page+0x14/0xb0 [ 1556.699064] __pud_alloc+0x33/0x270 [ 1556.699449] copy_page_range+0x2ca1/0x3810 [ 1556.699943] ? SOFTIRQ_verbose+0x10/0x10 [ 1556.700376] ? lock_chain_count+0x20/0x20 04:36:41 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:36:41 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 43) [ 1556.700886] ? lock_downgrade+0x6d0/0x6d0 [ 1556.701456] ? up_write+0x191/0x550 [ 1556.701866] ? vm_iomap_memory+0x190/0x190 [ 1556.702353] ? downgrade_write+0x3a0/0x3a0 [ 1556.702839] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1556.703461] ? __vma_link_rb+0x540/0x700 [ 1556.703931] copy_process+0x759b/0x7800 [ 1556.704409] ? __cleanup_sighand+0xb0/0xb0 [ 1556.704913] ? lock_acquire+0x197/0x470 [ 1556.705369] ? find_held_lock+0x2c/0x110 [ 1556.705835] kernel_clone+0xe7/0x980 [ 1556.706259] ? lock_downgrade+0x6d0/0x6d0 [ 1556.706731] ? find_held_lock+0x2c/0x110 [ 1556.707192] ? create_io_thread+0xf0/0xf0 [ 1556.707663] ? ksys_write+0x12d/0x260 [ 1556.708110] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1556.708680] __do_sys_fork+0x8a/0xc0 [ 1556.709106] ? kernel_thread+0xf0/0xf0 [ 1556.709560] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1556.710155] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.710743] ? trace_hardirqs_on+0x5b/0x180 [ 1556.711233] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.711823] do_syscall_64+0x33/0x40 [ 1556.712247] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1556.712834] RIP: 0033:0x7fa6a3da0b19 [ 1556.713257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1556.715344] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1556.716215] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1556.717025] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1556.717833] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1556.718635] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1556.719433] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:36:41 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x100000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:36:41 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 38) 04:36:41 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) mincore(&(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000140)=""/107) [ 1556.788605] FAULT_INJECTION: forcing a failure. [ 1556.788605] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1556.791184] CPU: 1 PID: 14522 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1556.792608] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.794290] Call Trace: [ 1556.794829] dump_stack+0x107/0x167 [ 1556.795574] should_fail.cold+0x5/0xa [ 1556.796349] __alloc_pages_nodemask+0x182/0x600 [ 1556.797304] ? lock_acquire+0x197/0x470 [ 1556.798118] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1556.799340] ? lock_downgrade+0x6d0/0x6d0 [ 1556.800188] ? do_raw_spin_lock+0x121/0x260 [ 1556.801084] alloc_pages_current+0x187/0x280 [ 1556.801972] __pmd_alloc+0x37/0x5e0 [ 1556.802705] copy_page_range+0x2bd8/0x3810 [ 1556.803565] ? SOFTIRQ_verbose+0x10/0x10 [ 1556.804380] ? lock_chain_count+0x20/0x20 [ 1556.805289] ? up_write+0x191/0x550 [ 1556.806018] ? vm_iomap_memory+0x190/0x190 [ 1556.806880] ? downgrade_write+0x3a0/0x3a0 [ 1556.807732] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1556.808847] ? __vma_link_rb+0x540/0x700 [ 1556.809670] copy_process+0x759b/0x7800 [ 1556.810511] ? __cleanup_sighand+0xb0/0xb0 [ 1556.811378] ? lock_acquire+0x197/0x470 [ 1556.812182] ? find_held_lock+0x2c/0x110 [ 1556.813010] kernel_clone+0xe7/0x980 [ 1556.813754] ? lock_downgrade+0x6d0/0x6d0 04:36:41 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)=0x28) sendfile(0xffffffffffffffff, r0, 0x0, 0x7) fcntl$getflags(r0, 0x401) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000001c0)={0x0}, &(0x7f0000000200)=0xc) socket$netlink(0x10, 0x3, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000002700210c00000000000000000000000097f5e00d5c8782b19814c3904e5b089c06acfc75f5cd1fcb86e71972baa7611d2a77392d1757f50574a76e4c249ae057c2ff324db74ab5d7694072ef50373294e45e137ad8b14413c218aefc5a02e18c6c10d67817f8ad1ae94c112b"], 0x14}}, 0x0) perf_event_open(0x0, r3, 0xb, 0xffffffffffffffff, 0x1) creat(&(0x7f00000000c0)='./file0\x00', 0x5e) r4 = fcntl$getown(r2, 0x9) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r4, 0xffffffffffffffff, r1, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0xffffffffffffff00, 0x39}, 0x2112, 0x0, 0x0, 0x0, 0x0, 0x20}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') writev(r5, &(0x7f0000002b80)=[{&(0x7f0000000080)='1', 0x1}], 0x1) [ 1556.814600] ? find_held_lock+0x2c/0x110 [ 1556.815536] ? create_io_thread+0xf0/0xf0 [ 1556.816374] ? ksys_write+0x12d/0x260 [ 1556.817157] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1556.818125] __do_sys_fork+0x8a/0xc0 [ 1556.818867] ? kernel_thread+0xf0/0xf0 [ 1556.819680] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1556.820733] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.821768] ? trace_hardirqs_on+0x5b/0x180 [ 1556.822634] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.823680] do_syscall_64+0x33/0x40 [ 1556.824429] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1556.825496] RIP: 0033:0x7fa6a3da0b19 [ 1556.826249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1556.829908] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1556.831476] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1556.832912] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1556.834332] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1556.835749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1556.837182] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1556.862946] FAULT_INJECTION: forcing a failure. [ 1556.862946] name failslab, interval 1, probability 0, space 0, times 0 [ 1556.865226] CPU: 1 PID: 14530 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1556.866635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1556.868298] Call Trace: [ 1556.868836] dump_stack+0x107/0x167 [ 1556.869577] should_fail.cold+0x5/0xa [ 1556.870342] ? create_object.isra.0+0x3a/0xa20 [ 1556.871274] should_failslab+0x5/0x20 [ 1556.872034] kmem_cache_alloc+0x5b/0x310 [ 1556.872871] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1556.874081] create_object.isra.0+0x3a/0xa20 [ 1556.874981] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1556.876015] kmem_cache_alloc+0x159/0x310 [ 1556.876887] ptlock_alloc+0x1d/0x70 [ 1556.877622] pte_alloc_one+0x68/0x1a0 [ 1556.878388] __pte_alloc+0x1d/0x330 [ 1556.879137] copy_page_range+0x1b62/0x3810 [ 1556.879992] ? SOFTIRQ_verbose+0x10/0x10 [ 1556.880810] ? lock_chain_count+0x20/0x20 [ 1556.881678] ? up_write+0x191/0x550 [ 1556.882413] ? vm_iomap_memory+0x190/0x190 [ 1556.883256] ? downgrade_write+0x3a0/0x3a0 [ 1556.884106] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1556.885206] ? __vma_link_rb+0x540/0x700 [ 1556.886029] copy_process+0x759b/0x7800 [ 1556.886862] ? __cleanup_sighand+0xb0/0xb0 [ 1556.887714] ? lock_acquire+0x197/0x470 [ 1556.888517] ? find_held_lock+0x2c/0x110 [ 1556.889340] kernel_clone+0xe7/0x980 [ 1556.890083] ? lock_downgrade+0x6d0/0x6d0 [ 1556.890906] ? find_held_lock+0x2c/0x110 [ 1556.891714] ? create_io_thread+0xf0/0xf0 [ 1556.892542] ? ksys_write+0x12d/0x260 [ 1556.893318] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1556.894285] __do_sys_fork+0x8a/0xc0 [ 1556.895028] ? kernel_thread+0xf0/0xf0 [ 1556.895842] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1556.896903] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.897953] ? trace_hardirqs_on+0x5b/0x180 [ 1556.898817] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1556.899874] do_syscall_64+0x33/0x40 [ 1556.900634] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1556.901654] RIP: 0033:0x7fc140e06b19 [ 1556.902417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1556.906083] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1556.907608] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1556.909043] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1556.910459] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1556.911877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1556.913302] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1556.945387] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1556.954107] 9pnet: Unknown protocol version 9 [ 1556.962059] 9pnet: Unknown protocol version 9 04:36:41 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 39) 04:36:41 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 32) [ 1557.008868] FAULT_INJECTION: forcing a failure. [ 1557.008868] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.011378] CPU: 1 PID: 14616 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1557.012800] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.014505] Call Trace: [ 1557.015047] dump_stack+0x107/0x167 [ 1557.015811] should_fail.cold+0x5/0xa [ 1557.016615] ? create_object.isra.0+0x3a/0xa20 [ 1557.017557] should_failslab+0x5/0x20 [ 1557.018332] kmem_cache_alloc+0x5b/0x310 [ 1557.019163] create_object.isra.0+0x3a/0xa20 [ 1557.020052] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1557.021088] kmem_cache_alloc+0x159/0x310 [ 1557.021940] anon_vma_fork+0x1ff/0x640 04:36:41 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xffffffff, 0x46}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder1\x00', 0x800, 0x0) r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) syz_io_uring_submit(r7, r6, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) lstat(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_virtio(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', &(0x7f0000000400), 0x102060, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=virtio,posixacl,dfltgid=', @ANYRESHEX=r8, @ANYBLOB=',noextend,access=user,smackfsfloor=%\'\\e^-\'^^,subj_role=]},uid>', @ANYRESDEC=0x0, @ANYBLOB="2c646f6e745f686173682c61756469742c66736d616769633d3078303030303030303030305f757365723d2c686173682c662b0dd72453fd43da347eeb756e633d4b455845435f494e495452d2"]) r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x6, 0x810, r0, 0x10000000) syz_io_uring_submit(r7, r9, &(0x7f00000001c0)=@IORING_OP_MADVISE={0x19, 0x5, 0x0, 0x0, 0x0, &(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x1}, 0x27b) fstat(r3, &(0x7f0000000140)) [ 1557.022734] copy_process+0x7218/0x7800 [ 1557.023683] ? __cleanup_sighand+0xb0/0xb0 [ 1557.024550] ? lock_acquire+0x197/0x470 [ 1557.025394] ? find_held_lock+0x2c/0x110 [ 1557.026221] kernel_clone+0xe7/0x980 [ 1557.026976] ? lock_downgrade+0x6d0/0x6d0 [ 1557.027813] ? find_held_lock+0x2c/0x110 [ 1557.028642] ? create_io_thread+0xf0/0xf0 [ 1557.029483] ? ksys_write+0x12d/0x260 [ 1557.030267] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1557.031259] __do_sys_fork+0x8a/0xc0 [ 1557.032013] ? kernel_thread+0xf0/0xf0 04:36:41 executing program 4: syz_emit_ethernet(0x4e, &(0x7f00000003c0)={@multicast, @random="18ed71366dbe", @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x18, 0x3a, 0xff, @private2, @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0xc1, '\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}}}}, 0x0) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0) write$tun(r0, &(0x7f0000000040)={@void, @val={0x0, 0x3, 0x97a1, 0x6, 0x4, 0x7}, @ipv4=@icmp={{0x20, 0x4, 0x2, 0x2, 0x117, 0x65, 0x0, 0x5c, 0x1, 0x0, @empty, @local, {[@cipso={0x86, 0xa, 0x1, [{0x696f2ce3de193c31, 0x4, "e15f"}]}, @timestamp_addr={0x44, 0x3c, 0x4d, 0x1, 0x1, [{@multicast1, 0x400}, {@local, 0x8}, {@loopback, 0x81}, {@dev={0xac, 0x14, 0x14, 0x31}, 0x100}, {@remote, 0x5}, {@remote, 0x10001}, {@remote, 0x400}]}, @lsrr={0x83, 0x1f, 0xa3, [@loopback, @loopback, @broadcast, @local, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x1a}, @rand_addr=0x64010101]}, @ssrr={0x89, 0x7, 0x2e, [@empty]}]}}, @redirect={0x5, 0x0, 0x0, @private=0xa010102, {0x23, 0x4, 0x1, 0x1a, 0xad9b, 0x64, 0x7, 0x81, 0x33, 0x9, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, {[@ra={0x94, 0x4, 0x1}, @timestamp_prespec={0x44, 0x54, 0xa, 0x3, 0x5, [{@broadcast, 0x3f}, {@broadcast, 0x2}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x5}, {@multicast1, 0x2}, {@broadcast, 0x2}, {@local}, {@multicast2, 0x7f}, {@multicast1, 0x1ff}, {@broadcast}, {@multicast2, 0x4}]}, @timestamp={0x44, 0x1c, 0x61, 0x0, 0x5, [0x3ff, 0x7fff, 0x80000001, 0x1f, 0x58, 0x1f]}, @ra={0x94, 0x4, 0x1}]}}, "8bdb53"}}}, 0x121) [ 1557.032841] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1557.034003] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.035069] ? trace_hardirqs_on+0x5b/0x180 [ 1557.035932] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1557.036994] do_syscall_64+0x33/0x40 [ 1557.037742] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1557.038784] RIP: 0033:0x7fa6a3da0b19 [ 1557.039531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.043297] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1557.044828] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1557.046266] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1557.047702] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1557.049152] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1557.050594] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:36:41 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:36:41 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x200000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:36:41 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x72, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x0) fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000600)={0x1}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xa0743, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000000c0)={0x100, 0x2}) [ 1557.092373] FAULT_INJECTION: forcing a failure. [ 1557.092373] name failslab, interval 1, probability 0, space 0, times 0 [ 1557.093852] CPU: 0 PID: 14655 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1557.094561] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1557.095428] Call Trace: [ 1557.095705] dump_stack+0x107/0x167 [ 1557.096083] should_fail.cold+0x5/0xa [ 1557.096483] ? create_object.isra.0+0x3a/0xa20 [ 1557.096972] should_failslab+0x5/0x20 [ 1557.097364] kmem_cache_alloc+0x5b/0x310 [ 1557.097787] create_object.isra.0+0x3a/0xa20 [ 1557.098243] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1557.098772] kmem_cache_alloc+0x159/0x310 [ 1557.099206] __kernfs_new_node+0xd4/0x860 [ 1557.099637] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1557.100130] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1557.100628] ? wait_for_completion_io+0x270/0x270 [ 1557.101123] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1557.101674] kernfs_new_node+0x93/0x120 [ 1557.102087] __kernfs_create_file+0x51/0x350 [ 1557.102543] sysfs_add_file_mode_ns+0x221/0x560 [ 1557.103033] internal_create_group+0x324/0xb30 [ 1557.103507] ? sysfs_remove_group+0x170/0x170 [ 1557.103984] ? lockdep_init_map_type+0x2c7/0x780 [ 1557.104468] ? blk_queue_flag_set+0x22/0x30 [ 1557.104927] ? __loop_update_dio+0x2d2/0x690 [ 1557.105379] loop_configure+0x954/0x1480 [ 1557.105813] lo_ioctl+0xa72/0x1760 [ 1557.106188] ? avc_has_extended_perms+0x7f1/0xf40 [ 1557.106689] ? loop_set_status_old+0x250/0x250 [ 1557.107168] ? avc_ss_reset+0x180/0x180 [ 1557.107583] ? lock_acquire+0x197/0x470 [ 1557.107986] ? find_held_lock+0x2c/0x110 [ 1557.108406] ? __lock_acquire+0xbb1/0x5b00 [ 1557.108884] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1557.109427] ? generic_block_fiemap+0x60/0x60 [ 1557.109898] ? loop_set_status_old+0x250/0x250 [ 1557.110370] blkdev_ioctl+0x291/0x710 [ 1557.110765] ? blkdev_common_ioctl+0x1870/0x1870 [ 1557.111258] ? selinux_file_ioctl+0xb6/0x270 [ 1557.111710] block_ioctl+0xf9/0x140 [ 1557.112082] ? blkdev_read_iter+0x1c0/0x1c0 [ 1557.112519] __x64_sys_ioctl+0x19a/0x210 [ 1557.112950] do_syscall_64+0x33/0x40 [ 1557.113326] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1557.113857] RIP: 0033:0x7fc91209f8d7 [ 1557.114235] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1557.116116] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1557.116927] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1557.117665] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1557.118411] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1557.119156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1557.119906] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1557.156855] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1557.201294] 9pnet: Unknown protocol version 9 04:36:54 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 44) 04:36:54 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb, 0x30, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x110, 0xffffffffffffffff, 0x10000000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) syz_io_uring_submit(r0, r3, &(0x7f0000000280)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x0, @fd_index=0xfffffff8, 0x6, 0x2, 0x3c, 0xb}, 0x6b) ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000040)={{0x0, 0x1}}) r4 = dup2(r1, r2) r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r2) sendmsg$SEG6_CMD_SETHMAC(r5, 0x0, 0x0) syz_io_uring_setup(0x6349, &(0x7f0000000380)={0x0, 0x4d6d, 0x10, 0x0, 0x28d, 0x0, r4}, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000400), &(0x7f0000000440)=0x0) syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x199}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000240)) syz_io_uring_submit(r0, r6, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r5, 0x0, 0x0, 0x0, {0x8000}}, 0x8) mount$9p_unix(&(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x1001000, &(0x7f00000001c0)=ANY=[@ANYBLOB="9c45cb289520a000000000000003ff4477258c59b47e45f5af7c6cc58be2912302a30a941821400c62f07f0d7da90830e4106ca54d64133ef17d282b6c60cfc0d7e9809d843becbf9f45447d1d03292cc66d4f40da3d4f18f164c340d9f2e3cb1be7a1e79c63edf5295e9b9f5cf71c3556d8d1d0e0bde6f33ed0e759b269705d1d60e77474c68805ca9675f46ecb4ac49f4f25ff22dbd60e44dda2c3b1e4174ae124b65c9404918e15065591b541ae477f3d69b3e2c5f7dd7905fae3e023"]) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'rose0\x00'}) mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x20, 0x0) 04:36:54 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x300000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:36:54 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x3, 0x0, @fd=r3, 0x6, 0x0, 0x6}, 0x6) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x80, 0x0, 0x1}, 0x100) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) syz_io_uring_setup(0x5f9d, &(0x7f0000000140)={0x0, 0x2fe6, 0x1, 0x3, 0x118, 0x0, r0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000040)=0x0, &(0x7f00000001c0)=0x0) r6 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) syz_io_uring_submit(r9, r8, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r10 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x7f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000240)) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r10, 0x9, 0x0, 0x0) syz_io_uring_submit(r11, 0x0, &(0x7f0000000380)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd, 0x5ab, 0x0, 0x1, 0x4, 0x1, {0x0, r12}}, 0x401) syz_io_uring_submit(r9, r5, &(0x7f0000000340)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000300), 0x0, 0x0, 0x80000, 0x0, {0x0, r12}}, 0xffff) syz_io_uring_submit(r4, r5, &(0x7f0000000280)=@IORING_OP_SEND={0x1a, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000240)="45f6de310c65ba09108f4e0dd84856c142c5", 0x12}, 0x400) 04:36:54 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:36:54 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 40) 04:36:54 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 33) 04:36:54 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="ac010000", @ANYRES16=0x0, @ANYBLOB="00012abd7000fddbdf25050000002400028008000100620d000008000200ff03000008000200ff0f000004000400040004000c00028008000100060000006800028008000100060000000400040034000380080002000500000008000100ffffff7f08000100070000000800020000000000080001007f0000000800010001040000040004000800010006000000080001000800000008000200f7ffffff08000100ff030000"], 0xac}, 0x1, 0x0, 0x0, 0x4040001}, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r3, 0x0, 0x2) r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r4, 0x0, r3, 0x0, 0x200f5ef, 0x0) r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000500), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r3, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x60, r5, 0x800, 0x70bd2d, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xffff}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x40}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4040080}, 0x4008000) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r2, &(0x7f000000b080)=[{{0x0, 0x42, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)={0x18c, 0x0, 0x1, 0x70bd2b, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}]}, 0x18c}, 0x1, 0x0, 0x0, 0x4080}, 0x4008004) dup3(r0, r2, 0x80000) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r6, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) [ 1569.941515] FAULT_INJECTION: forcing a failure. [ 1569.941515] name failslab, interval 1, probability 0, space 0, times 0 [ 1569.944434] CPU: 0 PID: 14796 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1569.945973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1569.947654] Call Trace: [ 1569.948185] dump_stack+0x107/0x167 [ 1569.948932] should_fail.cold+0x5/0xa [ 1569.949714] ? create_object.isra.0+0x3a/0xa20 [ 1569.950647] should_failslab+0x5/0x20 [ 1569.951424] kmem_cache_alloc+0x5b/0x310 [ 1569.952266] create_object.isra.0+0x3a/0xa20 [ 1569.953171] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1569.954208] kmem_cache_alloc+0x159/0x310 [ 1569.955058] __pmd_alloc+0x94/0x5e0 [ 1569.955803] copy_page_range+0x2bd8/0x3810 [ 1569.956665] ? SOFTIRQ_verbose+0x10/0x10 [ 1569.957510] ? lock_chain_count+0x20/0x20 [ 1569.958397] ? up_write+0x191/0x550 [ 1569.959138] ? vm_iomap_memory+0x190/0x190 [ 1569.960000] ? downgrade_write+0x3a0/0x3a0 [ 1569.960871] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1569.961977] ? __vma_link_rb+0x540/0x700 [ 1569.962816] copy_process+0x759b/0x7800 [ 1569.963716] ? __cleanup_sighand+0xb0/0xb0 [ 1569.964638] ? lock_acquire+0x197/0x470 [ 1569.965526] ? find_held_lock+0x2c/0x110 [ 1569.966413] kernel_clone+0xe7/0x980 [ 1569.967222] ? lock_downgrade+0x6d0/0x6d0 [ 1569.968113] ? find_held_lock+0x2c/0x110 [ 1569.968987] ? create_io_thread+0xf0/0xf0 [ 1569.969878] ? ksys_write+0x12d/0x260 [ 1569.970701] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1569.971736] __do_sys_fork+0x8a/0xc0 [ 1569.972528] ? kernel_thread+0xf0/0xf0 [ 1569.973393] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1569.974508] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1569.975608] ? trace_hardirqs_on+0x5b/0x180 [ 1569.976545] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1569.977662] do_syscall_64+0x33/0x40 [ 1569.978464] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1569.979573] RIP: 0033:0x7fa6a3da0b19 [ 1569.980376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1569.984299] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1569.985954] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1569.987468] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1569.989006] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1569.990525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1569.992056] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1569.994655] 9pnet: Unknown protocol version 9 [ 1570.007715] FAULT_INJECTION: forcing a failure. [ 1570.007715] name failslab, interval 1, probability 0, space 0, times 0 [ 1570.009248] CPU: 1 PID: 14797 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1570.010057] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1570.010984] Call Trace: [ 1570.011301] dump_stack+0x107/0x167 [ 1570.011712] should_fail.cold+0x5/0xa [ 1570.012165] ? __kernfs_new_node+0xd4/0x860 [ 1570.012657] should_failslab+0x5/0x20 [ 1570.013118] kmem_cache_alloc+0x5b/0x310 [ 1570.013572] __kernfs_new_node+0xd4/0x860 [ 1570.014062] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1570.014593] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1570.015164] ? wait_for_completion_io+0x270/0x270 [ 1570.015698] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1570.016312] kernfs_new_node+0x93/0x120 [ 1570.016768] __kernfs_create_file+0x51/0x350 [ 1570.017282] sysfs_add_file_mode_ns+0x221/0x560 [ 1570.017825] internal_create_group+0x324/0xb30 [ 1570.018359] ? sysfs_remove_group+0x170/0x170 [ 1570.018889] ? lockdep_init_map_type+0x2c7/0x780 [ 1570.019445] ? blk_queue_flag_set+0x22/0x30 [ 1570.019945] ? __loop_update_dio+0x2d2/0x690 [ 1570.020460] loop_configure+0x954/0x1480 [ 1570.020946] lo_ioctl+0xa72/0x1760 [ 1570.021364] ? avc_has_extended_perms+0x7f1/0xf40 [ 1570.021925] ? loop_set_status_old+0x250/0x250 [ 1570.022459] ? avc_ss_reset+0x180/0x180 [ 1570.022920] ? lock_acquire+0x197/0x470 [ 1570.023380] ? find_held_lock+0x2c/0x110 [ 1570.023855] ? __lock_acquire+0xbb1/0x5b00 [ 1570.024374] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1570.024995] ? generic_block_fiemap+0x60/0x60 [ 1570.025520] ? loop_set_status_old+0x250/0x250 [ 1570.026049] blkdev_ioctl+0x291/0x710 [ 1570.026489] ? blkdev_common_ioctl+0x1870/0x1870 [ 1570.027042] ? selinux_file_ioctl+0xb6/0x270 [ 1570.027553] block_ioctl+0xf9/0x140 [ 1570.027973] ? blkdev_read_iter+0x1c0/0x1c0 [ 1570.028483] __x64_sys_ioctl+0x19a/0x210 [ 1570.028963] do_syscall_64+0x33/0x40 [ 1570.029397] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1570.029986] RIP: 0033:0x7fc91209f8d7 [ 1570.030435] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1570.032546] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1570.033435] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1570.034255] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1570.035075] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1570.035891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1570.036711] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1570.042116] FAULT_INJECTION: forcing a failure. [ 1570.042116] name failslab, interval 1, probability 0, space 0, times 0 [ 1570.043409] CPU: 1 PID: 14831 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1570.044180] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1570.045133] Call Trace: [ 1570.045435] dump_stack+0x107/0x167 [ 1570.045864] should_fail.cold+0x5/0xa [ 1570.046305] ? __pmd_alloc+0x94/0x5e0 [ 1570.046748] should_failslab+0x5/0x20 [ 1570.047181] kmem_cache_alloc+0x5b/0x310 [ 1570.047655] __pmd_alloc+0x94/0x5e0 [ 1570.048059] copy_page_range+0x2bd8/0x3810 [ 1570.048543] ? SOFTIRQ_verbose+0x10/0x10 [ 1570.049017] ? lock_chain_count+0x20/0x20 [ 1570.049519] ? up_write+0x191/0x550 [ 1570.049935] ? vm_iomap_memory+0x190/0x190 [ 1570.050420] ? downgrade_write+0x3a0/0x3a0 [ 1570.050911] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1570.051546] ? __vma_link_rb+0x540/0x700 [ 1570.052016] copy_process+0x759b/0x7800 [ 1570.052497] ? __cleanup_sighand+0xb0/0xb0 [ 1570.052989] ? lock_acquire+0x197/0x470 [ 1570.053451] ? find_held_lock+0x2c/0x110 [ 1570.053922] kernel_clone+0xe7/0x980 [ 1570.054348] ? lock_downgrade+0x6d0/0x6d0 [ 1570.054800] ? find_held_lock+0x2c/0x110 [ 1570.055267] ? create_io_thread+0xf0/0xf0 [ 1570.055749] ? ksys_write+0x12d/0x260 [ 1570.056190] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1570.056748] __do_sys_fork+0x8a/0xc0 [ 1570.057170] ? kernel_thread+0xf0/0xf0 [ 1570.057616] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1570.058207] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1570.058794] ? trace_hardirqs_on+0x5b/0x180 [ 1570.059284] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1570.059879] do_syscall_64+0x33/0x40 [ 1570.060307] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1570.060900] RIP: 0033:0x7fc140e06b19 [ 1570.061321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1570.063402] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1570.064264] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1570.065082] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1570.065879] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1570.066687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1570.067495] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:36:54 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000000)={'erspan0\x00', &(0x7f00000001c0)={'gretap0\x00', r1, 0x7800, 0x20, 0x7, 0x8, {{0x36, 0x4, 0x0, 0x9, 0xd8, 0x64, 0x0, 0x2, 0x29, 0x0, @rand_addr=0x64010102, @private=0xa010101, {[@lsrr={0x83, 0x23, 0xfd, [@broadcast, @dev={0xac, 0x14, 0x14, 0x44}, @broadcast, @private=0xa010100, @remote, @rand_addr=0x64010100, @private=0xa010101, @broadcast]}, @timestamp_prespec={0x44, 0xc, 0x6c, 0x3, 0x0, [{@private=0xa010102, 0x100}]}, @cipso={0x86, 0x27, 0x2, [{0x5, 0xb, "49eaba79f09fb58609"}, {0x7, 0xb, "8ec8635abfd5a93ceb"}, {0x1, 0xb, "07a095d74147066610"}]}, @lsrr={0x83, 0x13, 0x29, [@private=0xa010100, @loopback, @loopback, @multicast2]}, @timestamp_addr={0x44, 0x2c, 0xa6, 0x1, 0xb, [{@loopback, 0x2}, {@remote, 0x15e0dc3e}, {@remote, 0x6}, {@multicast1, 0x5}, {@multicast2, 0x2}]}, @cipso={0x86, 0x18, 0x0, [{0x6, 0x9, "b9a71255955456"}, {0x6, 0x9, "199ad044d87136"}]}, @timestamp={0x44, 0x14, 0x39, 0x0, 0xc, [0x1, 0x6eb, 0x6, 0x7c]}]}}}}}) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r3}, 0x14) 04:36:54 executing program 0: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) syz_io_uring_setup(0x656c, &(0x7f00000004c0)={0x0, 0xadb8, 0x0, 0x0, 0x33b, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00003fe000/0xc00000)=nil, &(0x7f0000000540)=0x0, &(0x7f0000000580)) syz_io_uring_submit(r1, 0x0, &(0x7f00000005c0)=@IORING_OP_FSYNC={0x3, 0x5, 0x0, @fd, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x5) syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x20, 0x0, 0x3df, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)) recvmmsg$unix(r0, &(0x7f00000001c0)=[{{&(0x7f0000000140), 0x6e, &(0x7f0000000040)=[{&(0x7f0000000240)=""/225, 0xe1}], 0x1, &(0x7f0000000340)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x130}}], 0x1, 0x60, &(0x7f0000000480)) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000600)={'vxcan1\x00'}) io_uring_enter(r2, 0x58ab, 0x80000000, 0x3, 0x0, 0x0) fsmount(r0, 0x0, 0xf3) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:36:54 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 41) 04:36:55 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x400000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1570.189416] FAULT_INJECTION: forcing a failure. [ 1570.189416] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1570.190346] EXT4-fs (sda): re-mounted. Opts: (null) [ 1570.192094] CPU: 0 PID: 15005 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1570.193973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1570.195735] Call Trace: [ 1570.196303] dump_stack+0x107/0x167 [ 1570.197115] should_fail.cold+0x5/0xa [ 1570.197937] __alloc_pages_nodemask+0x182/0x600 [ 1570.198936] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1570.200209] ? find_held_lock+0x2c/0x110 [ 1570.201105] ? __pmd_alloc+0x2db/0x5e0 [ 1570.201938] ? lock_downgrade+0x6d0/0x6d0 [ 1570.202824] ? do_raw_spin_lock+0x121/0x260 [ 1570.203745] alloc_pages_current+0x187/0x280 [ 1570.204684] pte_alloc_one+0x16/0x1a0 [ 1570.205498] __pte_alloc+0x1d/0x330 [ 1570.206279] copy_page_range+0x1b62/0x3810 [ 1570.207180] ? SOFTIRQ_verbose+0x10/0x10 [ 1570.208041] ? lock_chain_count+0x20/0x20 [ 1570.208986] ? up_write+0x191/0x550 [ 1570.209766] ? vm_iomap_memory+0x190/0x190 [ 1570.210664] ? downgrade_write+0x3a0/0x3a0 [ 1570.211570] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1570.212726] ? __vma_link_rb+0x540/0x700 [ 1570.213620] copy_process+0x759b/0x7800 [ 1570.214512] ? __cleanup_sighand+0xb0/0xb0 [ 1570.215428] ? lock_acquire+0x197/0x470 [ 1570.216289] ? find_held_lock+0x2c/0x110 [ 1570.217180] kernel_clone+0xe7/0x980 [ 1570.217978] ? lock_downgrade+0x6d0/0x6d0 [ 1570.218861] ? find_held_lock+0x2c/0x110 [ 1570.219725] ? create_io_thread+0xf0/0xf0 [ 1570.220612] ? ksys_write+0x12d/0x260 [ 1570.221441] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1570.222480] __do_sys_fork+0x8a/0xc0 [ 1570.223274] ? kernel_thread+0xf0/0xf0 [ 1570.224131] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1570.225251] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1570.226345] ? trace_hardirqs_on+0x5b/0x180 [ 1570.227267] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1570.228360] do_syscall_64+0x33/0x40 [ 1570.229179] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1570.230274] RIP: 0033:0x7fa6a3da0b19 [ 1570.231071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1570.234963] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1570.236581] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1570.238112] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1570.239625] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1570.241153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1570.242669] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1570.248927] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1570.321082] EXT4-fs (sda): re-mounted. Opts: (null) 04:37:09 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 45) 04:37:09 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:37:09 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 34) 04:37:09 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb, 0x30, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x110, 0xffffffffffffffff, 0x10000000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) syz_io_uring_submit(r0, r3, &(0x7f0000000280)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x0, @fd_index=0xfffffff8, 0x6, 0x2, 0x3c, 0xb}, 0x6b) ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000040)={{0x0, 0x1}}) r4 = dup2(r1, r2) r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r2) sendmsg$SEG6_CMD_SETHMAC(r5, 0x0, 0x0) syz_io_uring_setup(0x6349, &(0x7f0000000380)={0x0, 0x4d6d, 0x10, 0x0, 0x28d, 0x0, r4}, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000400), &(0x7f0000000440)=0x0) syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x199}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000240)) syz_io_uring_submit(r0, r6, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r5, 0x0, 0x0, 0x0, {0x8000}}, 0x8) mount$9p_unix(&(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x1001000, &(0x7f00000001c0)=ANY=[@ANYBLOB="9c45cb289520a000000000000003ff4477258c59b47e45f5af7c6cc58be2912302a30a941821400c62f07f0d7da90830e4106ca54d64133ef17d282b6c60cfc0d7e9809d843becbf9f45447d1d03292cc66d4f40da3d4f18f164c340d9f2e3cb1be7a1e79c63edf5295e9b9f5cf71c3556d8d1d0e0bde6f33ed0e759b269705d1d60e77474c68805ca9675f46ecb4ac49f4f25ff22dbd60e44dda2c3b1e4174ae124b65c9404918e15065591b541ae477f3d69b3e2c5f7dd7905fae3e023"]) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'rose0\x00'}) mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x20, 0x0) 04:37:09 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:37:09 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 42) 04:37:09 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x500000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:37:09 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd=r3, 0x74c, {0x0, r4}, 0x3, 0x1, 0x0, {0x0, r5, r0}}, 0x3) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000300)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4, r0, 0xffffffffffffffff], 0x6) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000240)={@remote, 0x9, 0x2, 0xff, 0x9, 0x7ff, 0x269}, &(0x7f0000000280)=0x20) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wg2\x00', 0x0}) sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB="08010000", @ANYRES16=r6, @ANYBLOB="000828bd7000ffdbdf25130000002000018014000200626f6e6430000000010000000000000008000300030000004800feffff2f13d1b725ee0002006e657464657673696d300000000000001400020073797a6b616c6c65723000000000000014000200626f6e645f736c6176655f31000000000800030002000000500001801400020076657468305f6d4163767461700000001400020076657468315f6d61637674617000000008000100", @ANYRES32=0x0, @ANYBLOB="0800030002000000140002006d6163767461703000000000000000003c00018008000100", @ANYRES32=r8, @ANYBLOB="1400020076657468305f746f5f7465616d000000140002006e65747063693000000000000000000008000100", @ANYRES32=r9, @ANYBLOB], 0x108}, 0x1, 0x0, 0x0, 0x4000000}, 0x804) [ 1584.935350] FAULT_INJECTION: forcing a failure. [ 1584.935350] name failslab, interval 1, probability 0, space 0, times 0 [ 1584.937808] CPU: 1 PID: 15127 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1584.939213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1584.940896] Call Trace: [ 1584.941444] dump_stack+0x107/0x167 [ 1584.942195] should_fail.cold+0x5/0xa [ 1584.942966] ? create_object.isra.0+0x3a/0xa20 [ 1584.943892] should_failslab+0x5/0x20 [ 1584.944667] kmem_cache_alloc+0x5b/0x310 [ 1584.945505] create_object.isra.0+0x3a/0xa20 [ 1584.946399] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1584.947438] kmem_cache_alloc+0x159/0x310 [ 1584.948287] vm_area_dup+0x78/0x290 [ 1584.949055] ? _cond_resched+0x12/0x80 [ 1584.949848] ? copy_page_range+0x24e9/0x3810 [ 1584.950778] ? vm_area_alloc+0x110/0x110 [ 1584.951612] ? up_write+0x191/0x550 [ 1584.952352] ? vm_iomap_memory+0x190/0x190 [ 1584.953245] ? downgrade_write+0x3a0/0x3a0 [ 1584.954102] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1584.955206] ? __vma_link_rb+0x540/0x700 [ 1584.956040] copy_process+0x291b/0x7800 [ 1584.956884] ? __cleanup_sighand+0xb0/0xb0 [ 1584.957752] ? lock_acquire+0x197/0x470 [ 1584.958564] ? find_held_lock+0x2c/0x110 [ 1584.959393] kernel_clone+0xe7/0x980 [ 1584.960154] ? lock_downgrade+0x6d0/0x6d0 [ 1584.961019] ? find_held_lock+0x2c/0x110 [ 1584.961849] ? create_io_thread+0xf0/0xf0 [ 1584.962703] ? ksys_write+0x12d/0x260 [ 1584.962732] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1584.962763] __do_sys_fork+0x8a/0xc0 [ 1584.962782] ? kernel_thread+0xf0/0xf0 [ 1584.962821] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1584.962839] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1584.962856] ? trace_hardirqs_on+0x5b/0x180 [ 1584.962877] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1584.962898] do_syscall_64+0x33/0x40 [ 1584.962921] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1584.962935] RIP: 0033:0x7fc140e06b19 [ 1584.962956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1584.962967] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1584.962989] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1584.963001] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1584.963013] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1584.963024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1584.963037] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1584.972625] FAULT_INJECTION: forcing a failure. [ 1584.972625] name failslab, interval 1, probability 0, space 0, times 0 [ 1584.998676] CPU: 1 PID: 15142 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1585.000096] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.001796] Call Trace: [ 1585.002340] dump_stack+0x107/0x167 [ 1585.003095] should_fail.cold+0x5/0xa [ 1585.003894] ? ptlock_alloc+0x1d/0x70 [ 1585.004673] should_failslab+0x5/0x20 [ 1585.005467] kmem_cache_alloc+0x5b/0x310 [ 1585.006308] ptlock_alloc+0x1d/0x70 [ 1585.007065] pte_alloc_one+0x68/0x1a0 [ 1585.007857] __pte_alloc+0x1d/0x330 [ 1585.008616] copy_page_range+0x1b62/0x3810 [ 1585.009490] ? SOFTIRQ_verbose+0x10/0x10 [ 1585.010321] ? lock_chain_count+0x20/0x20 [ 1585.011214] ? up_write+0x191/0x550 [ 1585.011972] ? vm_iomap_memory+0x190/0x190 [ 1585.012849] ? downgrade_write+0x3a0/0x3a0 [ 1585.013739] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1585.014850] ? __vma_link_rb+0x540/0x700 [ 1585.015689] copy_process+0x759b/0x7800 [ 1585.016594] ? __cleanup_sighand+0xb0/0xb0 [ 1585.017486] ? lock_acquire+0x197/0x470 [ 1585.018321] ? find_held_lock+0x2c/0x110 [ 1585.019161] kernel_clone+0xe7/0x980 [ 1585.019923] ? lock_downgrade+0x6d0/0x6d0 [ 1585.020777] ? find_held_lock+0x2c/0x110 [ 1585.021612] ? create_io_thread+0xf0/0xf0 [ 1585.022456] ? ksys_write+0x12d/0x260 [ 1585.023241] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1585.024232] __do_sys_fork+0x8a/0xc0 [ 1585.024995] ? kernel_thread+0xf0/0xf0 [ 1585.025807] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1585.026873] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1585.027938] ? trace_hardirqs_on+0x5b/0x180 [ 1585.028820] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1585.029904] do_syscall_64+0x33/0x40 [ 1585.030670] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1585.031721] RIP: 0033:0x7fa6a3da0b19 [ 1585.032487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.036258] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1585.037814] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1585.039265] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1585.040703] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.042160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.043591] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1585.046990] FAULT_INJECTION: forcing a failure. [ 1585.046990] name failslab, interval 1, probability 0, space 0, times 0 [ 1585.049327] CPU: 1 PID: 15140 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1585.050741] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.052426] Call Trace: [ 1585.052975] dump_stack+0x107/0x167 [ 1585.053733] should_fail.cold+0x5/0xa [ 1585.054521] ? create_object.isra.0+0x3a/0xa20 [ 1585.055441] should_failslab+0x5/0x20 [ 1585.056206] kmem_cache_alloc+0x5b/0x310 [ 1585.057037] create_object.isra.0+0x3a/0xa20 [ 1585.057922] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1585.058953] kmem_cache_alloc+0x159/0x310 [ 1585.059795] __kernfs_new_node+0xd4/0x860 [ 1585.060643] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1585.061619] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1585.062596] ? wait_for_completion_io+0x270/0x270 [ 1585.063564] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1585.064635] kernfs_new_node+0x93/0x120 [ 1585.065452] __kernfs_create_file+0x51/0x350 [ 1585.066335] sysfs_add_file_mode_ns+0x221/0x560 [ 1585.067284] internal_create_group+0x324/0xb30 [ 1585.068210] ? sysfs_remove_group+0x170/0x170 [ 1585.069141] ? lockdep_init_map_type+0x2c7/0x780 [ 1585.070118] ? blk_queue_flag_set+0x22/0x30 [ 1585.070996] ? __loop_update_dio+0x2d2/0x690 [ 1585.071906] loop_configure+0x954/0x1480 [ 1585.072752] lo_ioctl+0xa72/0x1760 [ 1585.073497] ? avc_has_extended_perms+0x7f1/0xf40 [ 1585.074473] ? loop_set_status_old+0x250/0x250 [ 1585.075420] ? avc_ss_reset+0x180/0x180 [ 1585.076228] ? lock_acquire+0x197/0x470 [ 1585.077038] ? find_held_lock+0x2c/0x110 [ 1585.077874] ? __lock_acquire+0xbb1/0x5b00 [ 1585.078788] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1585.079849] ? generic_block_fiemap+0x60/0x60 [ 1585.080759] ? loop_set_status_old+0x250/0x250 [ 1585.081705] blkdev_ioctl+0x291/0x710 [ 1585.082470] ? blkdev_common_ioctl+0x1870/0x1870 [ 1585.083433] ? selinux_file_ioctl+0xb6/0x270 [ 1585.084328] block_ioctl+0xf9/0x140 [ 1585.085070] ? blkdev_read_iter+0x1c0/0x1c0 [ 1585.085942] __x64_sys_ioctl+0x19a/0x210 [ 1585.086770] do_syscall_64+0x33/0x40 [ 1585.087527] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1585.088570] RIP: 0033:0x7fc91209f8d7 [ 1585.089328] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.093053] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.094580] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1585.096046] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1585.097510] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1585.098961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1585.100403] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 04:37:09 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) [ 1585.121366] 9pnet: Unknown protocol version 9 04:37:09 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x600000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1585.244185] EXT4-fs (sda): re-mounted. Opts: (null) [ 1585.304073] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:37:24 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb, 0x30, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x110, 0xffffffffffffffff, 0x10000000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)) syz_io_uring_submit(r0, r3, &(0x7f0000000280)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x0, @fd_index=0xfffffff8, 0x6, 0x2, 0x3c, 0xb}, 0x6b) ioctl$SNDRV_TIMER_IOCTL_SELECT(r2, 0x40345410, &(0x7f0000000040)={{0x0, 0x1}}) r4 = dup2(r1, r2) r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r2) sendmsg$SEG6_CMD_SETHMAC(r5, 0x0, 0x0) syz_io_uring_setup(0x6349, &(0x7f0000000380)={0x0, 0x4d6d, 0x10, 0x0, 0x28d, 0x0, r4}, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000400), &(0x7f0000000440)=0x0) syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x199}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000240)) syz_io_uring_submit(r0, r6, &(0x7f0000000080)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r5, 0x0, 0x0, 0x0, {0x8000}}, 0x8) mount$9p_unix(&(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x1001000, &(0x7f00000001c0)=ANY=[@ANYBLOB="9c45cb289520a000000000000003ff4477258c59b47e45f5af7c6cc58be2912302a30a941821400c62f07f0d7da90830e4106ca54d64133ef17d282b6c60cfc0d7e9809d843becbf9f45447d1d03292cc66d4f40da3d4f18f164c340d9f2e3cb1be7a1e79c63edf5295e9b9f5cf71c3556d8d1d0e0bde6f33ed0e759b269705d1d60e77474c68805ca9675f46ecb4ac49f4f25ff22dbd60e44dda2c3b1e4174ae124b65c9404918e15065591b541ae477f3d69b3e2c5f7dd7905fae3e023"]) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'rose0\x00'}) mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x20, 0x0) 04:37:24 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000040)={'team_slave_0\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:37:24 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x700000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:37:24 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 46) 04:37:24 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:37:24 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r4, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r5, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r6, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f0000000100)=[r3, r5, r6, r0], 0x4) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r3, 0x660c) 04:37:24 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 43) 04:37:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 35) [ 1600.001374] FAULT_INJECTION: forcing a failure. [ 1600.001374] name failslab, interval 1, probability 0, space 0, times 0 [ 1600.002859] CPU: 1 PID: 15469 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1600.003712] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1600.004737] Call Trace: [ 1600.005090] dump_stack+0x107/0x167 [ 1600.005553] should_fail.cold+0x5/0xa [ 1600.006031] ? __kernfs_new_node+0xd4/0x860 [ 1600.006568] should_failslab+0x5/0x20 [ 1600.007035] kmem_cache_alloc+0x5b/0x310 [ 1600.007548] __kernfs_new_node+0xd4/0x860 [ 1600.008067] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1600.008655] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1600.009294] ? wait_for_completion_io+0x270/0x270 [ 1600.009899] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1600.010556] kernfs_new_node+0x93/0x120 [ 1600.011057] __kernfs_create_file+0x51/0x350 [ 1600.011619] sysfs_add_file_mode_ns+0x221/0x560 [ 1600.012227] internal_create_group+0x324/0xb30 [ 1600.012825] ? sysfs_remove_group+0x170/0x170 [ 1600.013406] ? lockdep_init_map_type+0x2c7/0x780 [ 1600.014016] ? blk_queue_flag_set+0x22/0x30 [ 1600.014577] ? __loop_update_dio+0x2d2/0x690 [ 1600.015126] loop_configure+0x954/0x1480 [ 1600.015655] lo_ioctl+0xa72/0x1760 [ 1600.016120] ? avc_has_extended_perms+0x7f1/0xf40 [ 1600.016401] FAULT_INJECTION: forcing a failure. [ 1600.016401] name failslab, interval 1, probability 0, space 0, times 0 [ 1600.016736] ? loop_set_status_old+0x250/0x250 [ 1600.019556] ? avc_ss_reset+0x180/0x180 [ 1600.020101] ? lock_acquire+0x197/0x470 [ 1600.020605] ? find_held_lock+0x2c/0x110 [ 1600.021137] ? __lock_acquire+0xbb1/0x5b00 [ 1600.021708] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1600.022375] ? generic_block_fiemap+0x60/0x60 [ 1600.022955] ? loop_set_status_old+0x250/0x250 [ 1600.023533] blkdev_ioctl+0x291/0x710 [ 1600.024015] ? blkdev_common_ioctl+0x1870/0x1870 [ 1600.024620] ? selinux_file_ioctl+0xb6/0x270 [ 1600.025200] block_ioctl+0xf9/0x140 [ 1600.025649] ? blkdev_read_iter+0x1c0/0x1c0 [ 1600.026197] __x64_sys_ioctl+0x19a/0x210 [ 1600.026724] do_syscall_64+0x33/0x40 [ 1600.027196] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1600.027824] RIP: 0033:0x7fc91209f8d7 [ 1600.028280] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1600.030575] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1600.031543] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1600.032453] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1600.033378] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1600.034286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1600.035186] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1600.036110] CPU: 0 PID: 15480 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1600.037522] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1600.039204] Call Trace: [ 1600.039743] dump_stack+0x107/0x167 [ 1600.040490] should_fail.cold+0x5/0xa [ 1600.041286] ? create_object.isra.0+0x3a/0xa20 [ 1600.042207] should_failslab+0x5/0x20 [ 1600.042978] kmem_cache_alloc+0x5b/0x310 [ 1600.043797] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1600.044998] create_object.isra.0+0x3a/0xa20 [ 1600.045899] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1600.046916] kmem_cache_alloc+0x159/0x310 [ 1600.047755] ptlock_alloc+0x1d/0x70 [ 1600.048506] pte_alloc_one+0x68/0x1a0 [ 1600.049297] __pte_alloc+0x1d/0x330 [ 1600.050036] copy_page_range+0x1b62/0x3810 [ 1600.050886] ? SOFTIRQ_verbose+0x10/0x10 [ 1600.051701] ? lock_chain_count+0x20/0x20 [ 1600.052579] ? up_write+0x191/0x550 [ 1600.053333] ? vm_iomap_memory+0x190/0x190 [ 1600.054182] ? downgrade_write+0x3a0/0x3a0 [ 1600.055037] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1600.056144] ? __vma_link_rb+0x540/0x700 [ 1600.056969] copy_process+0x759b/0x7800 [ 1600.057818] ? __cleanup_sighand+0xb0/0xb0 [ 1600.058673] ? lock_acquire+0x197/0x470 [ 1600.059478] ? find_held_lock+0x2c/0x110 [ 1600.060295] kernel_clone+0xe7/0x980 [ 1600.061040] ? lock_downgrade+0x6d0/0x6d0 [ 1600.061668] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1600.061877] ? find_held_lock+0x2c/0x110 [ 1600.061896] ? create_io_thread+0xf0/0xf0 [ 1600.061921] ? ksys_write+0x12d/0x260 [ 1600.065282] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1600.066257] __do_sys_fork+0x8a/0xc0 [ 1600.067004] ? kernel_thread+0xf0/0xf0 [ 1600.067803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1600.068845] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.069876] ? trace_hardirqs_on+0x5b/0x180 [ 1600.070737] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.071767] do_syscall_64+0x33/0x40 [ 1600.072519] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1600.073553] RIP: 0033:0x7fa6a3da0b19 [ 1600.074298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1600.077945] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1600.079458] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1600.080875] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1600.082302] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1600.083717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1600.085138] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1600.092318] 9pnet: Unknown protocol version 9 [ 1600.097182] FAULT_INJECTION: forcing a failure. [ 1600.097182] name failslab, interval 1, probability 0, space 0, times 0 [ 1600.099427] CPU: 0 PID: 15474 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1600.100806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1600.102471] Call Trace: [ 1600.102997] dump_stack+0x107/0x167 [ 1600.103728] should_fail.cold+0x5/0xa [ 1600.104490] ? vm_area_dup+0x78/0x290 [ 1600.105260] should_failslab+0x5/0x20 [ 1600.106019] kmem_cache_alloc+0x5b/0x310 [ 1600.106837] vm_area_dup+0x78/0x290 [ 1600.107584] ? copy_page_range+0x24e9/0x3810 [ 1600.108522] ? vm_area_alloc+0x110/0x110 [ 1600.109373] ? vm_iomap_memory+0x190/0x190 [ 1600.110251] ? __vma_link_rb+0x540/0x700 [ 1600.111088] copy_process+0x291b/0x7800 [ 1600.111935] ? __cleanup_sighand+0xb0/0xb0 [ 1600.112804] ? lock_acquire+0x197/0x470 [ 1600.113628] ? find_held_lock+0x2c/0x110 [ 1600.114461] kernel_clone+0xe7/0x980 [ 1600.115225] ? lock_downgrade+0x6d0/0x6d0 [ 1600.116065] ? find_held_lock+0x2c/0x110 [ 1600.116891] ? create_io_thread+0xf0/0xf0 [ 1600.117748] ? ksys_write+0x12d/0x260 [ 1600.118532] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1600.119504] __do_sys_fork+0x8a/0xc0 [ 1600.120264] ? kernel_thread+0xf0/0xf0 [ 1600.121076] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1600.122155] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.123200] ? trace_hardirqs_on+0x5b/0x180 [ 1600.124082] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.125142] do_syscall_64+0x33/0x40 [ 1600.125907] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1600.126949] RIP: 0033:0x7fc140e06b19 [ 1600.127708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1600.131455] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1600.133003] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1600.134465] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1600.135913] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1600.137371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1600.138821] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:37:25 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 47) 04:37:25 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 36) 04:37:25 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x200100, 0xb2, 0x15}, 0x18) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000100)={'vlan0\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) recvmmsg$unix(r0, &(0x7f0000000840)=[{{&(0x7f00000001c0)=@abs, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000240)=""/67, 0x43}, {&(0x7f00000002c0)=""/195, 0xc3}, {&(0x7f00000003c0)=""/106, 0x6a}, {&(0x7f0000000440)=""/255, 0xff}, {&(0x7f0000000540)=""/234, 0xea}, {&(0x7f0000000000)=""/51, 0x33}, {&(0x7f0000000640)=""/224, 0xe0}], 0x7, &(0x7f00000007c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x48}}], 0x1, 0x10000, 0x0) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000880)=r3) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) [ 1600.271638] FAULT_INJECTION: forcing a failure. [ 1600.271638] name failslab, interval 1, probability 0, space 0, times 0 [ 1600.272988] CPU: 1 PID: 15672 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1600.273779] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1600.274709] Call Trace: [ 1600.275016] dump_stack+0x107/0x167 [ 1600.275431] should_fail.cold+0x5/0xa [ 1600.275872] ? create_object.isra.0+0x3a/0xa20 [ 1600.276388] should_failslab+0x5/0x20 [ 1600.276825] kmem_cache_alloc+0x5b/0x310 [ 1600.277301] create_object.isra.0+0x3a/0xa20 [ 1600.277809] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1600.278379] kmem_cache_alloc+0x159/0x310 [ 1600.278850] vm_area_dup+0x78/0x290 [ 1600.279281] ? copy_page_range+0x24e9/0x3810 [ 1600.279794] ? vm_area_alloc+0x110/0x110 [ 1600.280250] ? vm_iomap_memory+0x190/0x190 [ 1600.280753] ? __vma_link_rb+0x540/0x700 [ 1600.281213] copy_process+0x291b/0x7800 [ 1600.281689] ? __cleanup_sighand+0xb0/0xb0 [ 1600.282205] ? lock_acquire+0x197/0x470 [ 1600.282650] ? find_held_lock+0x2c/0x110 [ 1600.283140] kernel_clone+0xe7/0x980 [ 1600.283568] ? lock_downgrade+0x6d0/0x6d0 [ 1600.284018] ? find_held_lock+0x2c/0x110 [ 1600.284489] ? create_io_thread+0xf0/0xf0 [ 1600.284947] ? ksys_write+0x12d/0x260 [ 1600.285404] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1600.285969] __do_sys_fork+0x8a/0xc0 [ 1600.286399] ? kernel_thread+0xf0/0xf0 [ 1600.286860] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1600.287430] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.288026] ? trace_hardirqs_on+0x5b/0x180 [ 1600.288497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.289089] do_syscall_64+0x33/0x40 [ 1600.289512] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1600.290102] RIP: 0033:0x7fc140e06b19 [ 1600.290530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1600.292616] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1600.293500] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1600.294307] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1600.295119] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1600.295948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1600.296765] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1600.317571] EXT4-fs (sda): re-mounted. Opts: (null) 04:37:25 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 44) 04:37:25 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1600.340787] FAULT_INJECTION: forcing a failure. [ 1600.340787] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1600.342154] CPU: 1 PID: 15694 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1600.342916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1600.343833] Call Trace: [ 1600.344134] dump_stack+0x107/0x167 [ 1600.344546] should_fail.cold+0x5/0xa [ 1600.344974] __alloc_pages_nodemask+0x182/0x600 [ 1600.345490] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1600.346142] ? find_held_lock+0x2c/0x110 [ 1600.346600] ? __pmd_alloc+0x2db/0x5e0 [ 1600.347018] ? lock_downgrade+0x6d0/0x6d0 [ 1600.347473] ? do_raw_spin_lock+0x121/0x260 [ 1600.347947] alloc_pages_current+0x187/0x280 [ 1600.348428] pte_alloc_one+0x16/0x1a0 [ 1600.348848] __pte_alloc+0x1d/0x330 [ 1600.349273] copy_page_range+0x1b62/0x3810 [ 1600.349739] ? SOFTIRQ_verbose+0x10/0x10 [ 1600.350181] ? lock_chain_count+0x20/0x20 [ 1600.350665] ? up_write+0x191/0x550 [ 1600.351078] ? vm_iomap_memory+0x190/0x190 [ 1600.351526] ? downgrade_write+0x3a0/0x3a0 [ 1600.352001] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1600.352607] ? __vma_link_rb+0x540/0x700 [ 1600.353051] copy_process+0x759b/0x7800 [ 1600.353541] ? __cleanup_sighand+0xb0/0xb0 [ 1600.354020] ? lock_acquire+0x197/0x470 [ 1600.354469] ? find_held_lock+0x2c/0x110 [ 1600.354926] kernel_clone+0xe7/0x980 [ 1600.355347] ? lock_downgrade+0x6d0/0x6d0 [ 1600.355812] ? find_held_lock+0x2c/0x110 [ 1600.356263] ? create_io_thread+0xf0/0xf0 [ 1600.356732] ? ksys_write+0x12d/0x260 [ 1600.357154] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1600.357711] __do_sys_fork+0x8a/0xc0 [ 1600.358128] ? kernel_thread+0xf0/0xf0 [ 1600.358580] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1600.359170] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.359741] ? trace_hardirqs_on+0x5b/0x180 [ 1600.360225] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.360805] do_syscall_64+0x33/0x40 [ 1600.361242] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1600.361812] RIP: 0033:0x7fa6a3da0b19 [ 1600.362225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1600.364273] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1600.365130] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1600.365930] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1600.366725] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1600.367519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1600.368395] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:37:25 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) sendmmsg$sock(0xffffffffffffffff, &(0x7f0000006c80)=[{{&(0x7f0000000140)=@pppoe={0x18, 0x0, {0x1, @random="1c93110ea5ce", 'dummy0\x00'}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000040)="6b8554b1b68769bd50c5968e6a33401479b691449d6c16455351902d73a5fa91d64f6ce84249d50210611a", 0x2b}], 0x1, &(0x7f0000000240)=[@mark={{0x14, 0x1, 0x24, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x7}}, @txtime={{0x18, 0x1, 0x3d, 0x80000001}}, @timestamping={{0x14, 0x1, 0x25, 0x7734}}], 0x60}}, {{&(0x7f00000002c0)=@pppoe={0x18, 0x0, {0x0, @multicast, 'veth0_to_batadv\x00'}}, 0x80, &(0x7f0000001780)=[{&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000001340)="2483d0217f405298848305ecb57e5140fc3a73dc7e28d2a967140bd52b55abaeff23be3ed9461c2ab5d21e586af82af3acf28b8dae00c9dc72e358ed0bc3711ba32ccb89b5e6f71f820a94eeea95a8aa026cb66bc15b289a456b7c2d6c87c39d33214f83c9e79496cb5d2a5292927ab475386a82b288de2aa2e2f65698affa7cfc4cb87fd40aad1675818c45879da579df6788c4967fb05ed098d9397419d62c7cb5226b20ef46385081bb203367460aa0db9ae656d0106c903f8aacd5345b353950ddb5d072a919c147254c97d183f23416ae4fc6c54afc9d87186dd225eebbecf93d170bacf8e5def8", 0xea}, {&(0x7f0000001440)="e8087cd640a6c7407d25e5eadf3e8fef04c48f14dd7d1f0380db1e7a37004b08bea555fba0d2645d012443c0c8544de319b63dae20d57ba7893f1c8333431f2902916bb104699cf9704651085c53629585720977c1e4878530b8f60f245e57cdd810a040f6a0909824aa2bd7be53f5559d8f601cd8b40f1b035dec2365c75f165a635366868fa2df83ff181f7bb319915678b3df9cd57c24bbdd220e9b70", 0x9e}, {&(0x7f0000001500)="c45010ad5740f6111e89c839349b9a818162819071f461df7285ac96f113bf99c3bf1d3b44135233d082340b1f6ffcdd341b16e5ea4c046ea5f408856b32b5c96866a0201fafd105", 0x48}, {&(0x7f0000001580)="cc5b8a3509f136176cccb3bdb1e3b7d2d575cdc12ec4aecacfac0304c9707be33347ca5dd237866bd0671ed00530191b48f838c7c3ec236ad203c6c927f7ec45032080f4d73292f4407d35e77e41a1e0779bec988f55a93aee41ef0caa3749ca36349b0db9", 0x65}, {&(0x7f0000001600)="33f9c26b2ba1572e3c48bf6d29c1b80382e5f38298dcf5695e395bea8fc23424101720d1ebbc2eafdcaa0873a6de8c9a8fb43338eeadc5012f3af3b5c108627625c468e9fcadb4ea3ed31d12bc4924a56b29847dee98500567887bc7ca63687ddb370d27ee30a0935c271e31422c84cf37fc33508a79b7f029c45e9a8337f7e16cbf0efbe7ca9be05e5eb1027791aa5481689cd4e29947d6ffdb03e1af4665b259a0f4ba7f1b0d67f111e228db82d09d9f3163326d0fb350ab0eeae7975a4164ec3bccf24b01c1fd9e537b32a3ddd76106b6be", 0xd3}, {&(0x7f0000001700)="c059a5f5ce6d22f925734888d3397240b8346b4fb85177ca67a9a39043fb317adf29f8e46e11864b41a377064c9b048f1541b3e5d3841636be3e7afb3a4090118c376ccc38c431b8d69580a2e9745eb7572d6aaa41198fe4bed5f6747421f52e7cf7032a8e222ae48dac700b5cbc770a30", 0x71}], 0x7, &(0x7f0000001800)=[@mark={{0x14, 0x1, 0x24, 0x8001}}, @mark={{0x14, 0x1, 0x24, 0x5}}, @mark={{0x14, 0x1, 0x24, 0xb6}}, @txtime={{0x18}}, @mark={{0x14, 0x1, 0x24, 0x80000000}}, @timestamping={{0x14, 0x1, 0x25, 0x5}}], 0x90}}, {{&(0x7f00000018c0)=@pppol2tpv3={0x18, 0x1, {0x0, r3, {0x2, 0x4e23, @loopback}, 0x2, 0x3}}, 0x80, &(0x7f0000002bc0)=[{&(0x7f0000001940)="794a95d50b78a308a15e38b4634b91c22ff7a502c405e7cae53fc050d7ea4b81c7fb05fe5bf75f840bf7292137bdbaf2d48c", 0x32}, {&(0x7f0000001980)="b2040476db9693402441b07cc8ea4d4945493e1e1d713206c9a0fc1e36b5420286300610ff0bc7b44e1b8ae1150b5dd7e44fae566d43ce9214041336c82d", 0x3e}, {&(0x7f00000019c0)="02103db830e302e1afef0a206abf9b261129a0f299ad2c547979f2c867ef55461a3a510ccdcf56ca05750f4dc8314c368d5afbc104584316f5e86d18fe09fea81503f5abfdf689aa5dee0c60b848b221e4fc3467f092a9e37330c0f08e4fc807d59e88f794d5f38437d3f0d31af4a63b", 0x70}, {&(0x7f0000001a40)="1c43dac5eb75b3d282be0428c5d1d397f2dcca0d539f49277f89ea42a145e0b2112749f95bb1fee9af39420b6de4f3a6ee5053f0888b569518cc672d5456b32074c3f28ae02d4fd819aa39ffce02491c24dbd8f4c5ee71f38c0062e9858b7beb9d8535deebb76f36349a02ba208e8f05f1466cb5fb59807221ebf713c7adea4871c80f3aa83710886c2fadff7a6b6af8692091418c", 0x95}, {&(0x7f0000001b00)="2f54b567fa2c131e0639457fd4f38aec9241b21b450ff0c9e7debb21b9e9eec8558d4929332a4f94a197dbb002c83b654808af092fcd249400d3636c4db99b65462cf5ee253881456044ce749e6a24fae17e0c234f21f8afde0125f34f002eef3b959de9001f322cdfa198041b11aac7b56764062d18fa8f442196f3e97d8a67263b076f04f03bd1614ee136eca016fd90f8d678dda291ed7702e3bf561020", 0x9f}, {&(0x7f0000001bc0)="e676878370b0aba8becfc9e034a64ecfb7b1892e0c21e7c48f7a22baa78217822f10b42f1f980be99b1a26224464413a343090ab138b1db37c1f031e30b9cb0aa67b5d2930ee3da6aab747bd88781824b0fdfa92922909c29ff98629ff0c8e6a8aa55fff7661228b584efc7e3069d1da93686bfea3efb599796ac0857052d7df8bf865832e0d3b1ae584c2b607257d988fd059393a4f9f694b29cc8ca95071a6e09359de2391d7cf66777060f06493d73666f135763a764446af248e754564a01a323578c1ea498b2e796dc9f2f7562aeae3033b713ffaaff762099021f790e6b49a948713bc949c65ace8d2eaa266303ab08507e5e7ce57d88c94daac77b5d8abf75cdad6f8dd0aacc73286d010cd51c4ed4b260b6744809b42079dd008c04276f28c17c32964c1897befd58d29411babf4e188c71274d5f7efb96f4ac3ee2b7dd676705d24b267acd8d00107e0f20e16136051cf1e3f909733439d53a1457f510553aeb207edfc4d7f27d60218b6c86958a7a81b9a3cfa7f1d3d6e71bc6934c419f3e7e94075ea7864212fbba5edd999ac87f4882054a7d0e0dd4329291075ab577e4482ac17afa4f461dc15157f1ea65affc3d68db26811f2d34d001fb9493e309205547c73bcc31ba3af7a078616bc5f422542a9c904ade7635c914884a0541d0e53cf12d6d55ff92b45f569003fefe467b81b148ff709b266843830cf5b1e5fe8074c462c9dcc76f6b8d58ef6c1fbfa195489b4fa03fefbc761760ca66b3ac50c7e52eb09dd84b654b16585702549a30b86a7084afbb473f8793cb365498aafe51d592961560ce48fd06ddbbcc4a35b78075dd526962602e9f14009dcd8849d96d0017ac6fd6061137743a171fd31db3360cf9acc7d766f3ace58199ae5d81e88c7402784d814a54081d2b3f79e6554c4077207f3f20a7c8351e887af9355f7d5b7e3c6c7ff5e179e66bc414ec172a6e9116e8b6fb6a92a1d60e9a37f0ac305597524f8180ab70d7003b7d1f94cb1aa2f36f40916ec2683a0130151e7120f21e270337dc4ae886f9d6b810ee01471ae5649a26f7c22ff2c85d4956710e0d348c38b4af3e4f66f7a1356e9cb0805c110955f41c38a724cf1046cfd392f10f43173da3fd340287c6cc5b958cc36904f3e007dbe4c9a003f8e4775a9f56b24c0dd2b1f433ba5afa89d45e31ca3e39ff910b7ca05288039e2a0bf3b4822b367bc00354f003be0d35d5989b9010e5ba0c6d0c3a23846fb624067fee38004e4e7efbef2f789345b55f86644c8f89a3545dab9a64fdab4fc7bc7cd158b45c0de7474dbc5222b256e9fcada7d8a32db95c6a7b648a5d522575e32a1b5f10701c09fc6c6549c185c88bc36d00020789f6be9626bae751061f39827f47be2bf2006be65a59119766af48f5147b35bb9ef2b80be96166b918824948f66b3c69492838b6beff2d9f5b91e201661099bea1585b63ad20b9a19fc5cf5e842c71375a21447365416eadbb47f4d8ef0a07f738450eb6f3757b58409d7ed0fe0c85601dc6d8bae5d91d0909422f9fa6bd33ddfa9345b0928954733d233ae620e227d13ebfe02ffe217041031c54dafd85894ca3ee4af61d555bf03fa3fdfce25baffc5a8799665d24f168d4123801994186469f02a2d8bfb4499ffd32f10c9f0e0817b5de3bff5bfd700783b0a0860579e8266018582d0ede222f852bc95a2b3cbbd930eb419633e87491f9c1fb7bf4519f99378fef27bfa262436e5d9fe2c719e593a13854407eb33ee9c943a073e68764e95b7bf6b122aac04206a5cfe0bd4999ce269828178944df931588782ac2dcd6f07e253f532540060646570c74a33c1f23e6a1f48bc944730933106130359467ee56fefc6f1658a0af4f2a1a5d12e04a1d15a965f0d52a78b3248b7605dad4b4a64e2f0df3905a6333f0cb62226803f69a4f08907a3cdb3e03a18c9a32975650b491bf0c013954159c79ba4123eb44456cdf94fd9e0d5b094924422bc4b94df12ccfc39c8d565500d632841630f6009c159d515ea0bb61a87d5a583d7ae0fd3fc245ffdddd0ac89dc28f974eda81f92e6a51a694182053ce25ed8251aee2b6dcdccefae7aea27e0bf901bfe5f1ebe2999fe7860eeb06df1af58923ad165713996f36f585ffdae3b0da3981002d553f3bb0e742b3446d74dd72a8f0a26d9885ecb77782f2a38c039221c88b7ba24611fd570c8821abc87f019bced21a7974b543a91aa5382b36a09589286c92e077f3b059feb2d546b837e0175e981f2ed848abd91fddb55f524bd391357dc47c61073dfdce86e5ccf2cde9ced5e2ccc832f1b297f29a6c4d9af67cddc960eb1e5f089daae5e632714297f1d0d46e83203de33b8db1ee5bf10388a349e6a32319c13eae0ef3a87e7256636e1a185223ccee39ee96a8d301f12a1fe4e5a0954e5e6d08de7e72362fcbfe7b09a0dee4724c601b35c258ac9ca17d8c540dd9db7f43fa82b33764585134d393e6e01b49b18f43723938a28a6ece9f506f18288a204c245f2b5f4d72f4d1ed5afb448aea1705973d65abd93f6fb2128fa452ae624acdaa546f2da2c929368bf0a59be3b4077ff3d5ab34e6fbbfd14e2ab26fe96eb4e1836a48e4d16ee5b6de758a5edcd8d08967dcdd1bd5f56407f17879f6bd1e78cc786216d26147e53e9431eef919bda897494807bc230dea0b0cf8d43015e257700452159949f72625921e0fafee3a9120a2b6f6e4a9d24548c9f34740fafebba6007800512727df211b8c3bd7c55ca90dee75d4fc3e019c1edcc9a76ee58a848bc0e4c42d9f495d4ecc681386623ac7d5b4bdcd603d8e3769201407736b10085d80a5880567463aaa0c76c5884ff5902881ebbf730af0e5a799e46a1964317ab78fef87c689f13b1a2037ddc960660501396411715f1b4fff9a8b1d8adbc9b498fec5a7b7426d579015d0b591e4f0113d8487312e288a77cba487f9a74bd9b5f3629d7592bae5d6b6b069104b8396851bf51cd98fea675ec0aa9f4fc3efdcf635b8a39dc45e8939c18ccefb22f75f7c114265299e5563eb71323653a784955feea9469f044454a9a27a1e94a302305bdc25480b304e72226cd62797381c811b19146310f5978f28fd80ba0a95d90a2d93feac51102eec87317cff1d615599d90a152c73a37313ce8edcb6888d41b242c77d738cc6b80b96f8453935ecf75d5916de4268b346600f89f111e4ebe1fe303640cc3339f3b3474e32afc0ac2b631f61672ffab31b89733c1af7fe727b87fe68e17e7630a98be2552a152d8e5eaec4621a07e293a77ee73e7aa43bfc6f4e1614b43497f053ef1ed51c79de8f7d64341bc037be958689bf4b5f9b7804e10d58f9659bc6181d19a476172f7138c5b3e2b96b207c16f2df394c1b95d3cabdf6e29d632e4f66f3ce4b4c5131119995422d2675b192dc577e9a6761e7c2476b8c0553c4547b760ff425f7cd3c8e8e01c711df367e3cec9f243900d260867400fd0a82f5f18ee6eb0b971a760ab0b7a451c69606057eb258141b1b635be8372efe2112521ce896a16d2edb87a0f6ae6fa9225729831cc6cdee31290644e92417987e0bddd52712859bb8c97d4852dfeaad9440be411d6a61c2e462ca6e878608c4710dd73c1c28c4b7984005c256d3fcf003bf4db59c1589f6caaecd4dab8fc91684792fe7782021eee807428227971c77ab96ca3c39ff469e991b5be1f21e851d9cb5f77fbab9866c31492fc9a4ec366bb4e8d8ed5250194823d4ade4e8e1aecac51c2d7c91cb3232ded3d73910af94629fe1630ad591d45b5e511d16d30699a67fa1ada6efbb56cf4a4eff6b8f0e11117f67e149e7266bd6aae650dd78022486d316fc0ffe2743fdf4d390122476410722c33693b5ed7014dd13e9712da8172063190b2f93c41643855d41c6f36ccc7eecda58e1212ceb5b0f98ea1c43f8eebb7557af24b35b48e04b0740ad7cf5b532b1927efecace91be89398377de3bea083182ed0f613c46e9045151d7dfdd1fd1de863a4adf9f4c933675069e4f98864fc78132da7c541110ef1fe8032a92ed122d62cb889ace902168e929377e09855cbdec62fd762db28ddccbcb1c8e2d81a47ef3e5f232d632f9a84c412e4c206424c496575f1e0bdc0bad5de9cb733790633cdf240010494a2971597803357ffdba875415fb0b3980e3206adafba6406acdb23fe95c3c6635161a99da7760701b6a1ad4f3b7620440005cb205d2164dc607403e376826e1067d4a107963ecd27d339495e185fab9abbb613e550b1ab2ea3456d8ca9dfbeb42b0bae735140e6ef8c1c2a12ed46721111152dcc568aa55cff09aabc5dc01528f71f11d67d7118de2cfc5a783fdd5b5da28d90f34343f828db0ae37886bc1c940620477ad4a1efedb40f4209312d1810c6b6ece15fd3cbf41b896e1044f914a324239f554d137423b5b2e0b37f29b205a48fae6218c1758a7299d6c3d7067e7f096e0972a429296e202a2462ff22af78dcb49ae1e97f2392077e4125be364a7f2a6aa7a9b955b3c5e14dc5cc69c3032382230b3dbafaa41f7a94151805ffa41c819fe8c4ccd1a2b5df783b9bf9415c2c2765f3a537f5396dbc042e3c256077b4c73e50aa6eec3b5188b236dbad9236913d55111598a1381450d24f790c717df04fa1c8e452801a46969d5f48faa4952ba8cffaa42c4122f706839b3fb15fac307bbf7b3ba4d7aceec931786bbb40355508455813f9c4d62851582fc4b39eb55dab74cb27051dc46b2e0c9a9572c3fe80cc5cf563ea0b6db6db81b5d11b43fccdc1c0458ea69f61b6ab7003615c7aaea3a7d598aa2d1c6ec74fcfd9cfa02c13ceee3827e5e0fb7f150d8ac8a7baeacaec104e8427f0a2fb278c088dc910f91678ac440403c6e308888e7f916ecc83775b8e1b6927dc628485e8b7797e5615ac063a10b59fb49b92f9ea595b45f068daccfa4e5b998dafaabcfdceb69abf27a48bc6ab290589f9fc7cba066aa42e051e376e9c1dec61a265428456a477dcb226d82852ec9248f0a113bdc513af29c00a8b23564e779eb686c721ba9bf50bc108e68c526ca21b3343d899b4d3d7b5d1a3ad3547dfd85d08b30d62cd14eeee29509c29a94cef51c6ecaa619ab747235e387013be591bd9b14c68b09c9943753177298b7bcf46a4d1faf9d30694a2178e540ee2ee8d9b184bfb61bf562c612272a3a5c2b9ac151c46fb9ac4aa4719adfb89b55b7f2b6a29d9245a1ff1034e63d67fd10d57c959c8df8fb037cf11bff72809dd2f992563d791d72312fd90d668e1279c7e2e71b63a50863937c86af8a8081b5195e872ce6029250593c11c324b6ee7e43b04c100c3b71dcae72131b6bd6ea0813f618d1385ad8b03fbfc2b28da788548a21546d6421468468f4a220e3ae0d5a8fc3490a78ced0f1ba8d2de19aecddc8b2b0b1a1b48416c663f5d56953667ed2f4c80f8a49755a100ddc7f0f8372c856aeb85f24ec499593cbf99a8c18125bb8df13abee59089db3c7cb113c3b9a14f8812dba2ab9bf3f7e3060fe494e80b5c20f88620fb88c6c8017c6f454502c3bed0cd5e2a3173c53ac49237c2e7a257c7abeb1bcca5daf36e4cf3f36efbb76259342a26a63188ee445367ba87751161574c2d02bbb46435966a31eda02d02f3f6ca9e7427cc0338478394165eed511684cf7217d89fd3a818d50811980b24bbd70989bdce53cae03f338f5b68d71d165bf833c02bb1a2bfdeaad275ea42b0d3e74cc5436453f78e361a828d6bf8ac52d314640c3d2239c69950fe09c87824e7e70fb9b2d3", 0x1000}], 0x6, &(0x7f0000002c40)=[@mark={{0x14, 0x1, 0x24, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x81}}, @txtime={{0x18, 0x1, 0x3d, 0x8}}], 0x48}}, {{&(0x7f0000002cc0)=@vsock={0x28, 0x0, 0xffffffff, @hyper}, 0x80, &(0x7f0000002d40), 0x0, &(0x7f0000002d80)=[@timestamping={{0x14, 0x1, 0x25, 0xfffffff7}}, @timestamping={{0x14}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @txtime={{0x18, 0x1, 0x3d, 0x81}}, @timestamping={{0x14, 0x1, 0x25, 0x1}}, @txtime={{0x18, 0x1, 0x3d, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x9}}], 0xa8}}, {{&(0x7f0000002e40)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e23, 0x80000000, @empty, 0x6}}, 0x80, &(0x7f0000003ec0)=[{&(0x7f0000002ec0)="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", 0x1000}], 0x1, &(0x7f0000003f00)=[@timestamping={{0x14, 0x1, 0x25, 0x8000}}, @timestamping={{0x14, 0x1, 0x25, 0x3ff}}, @txtime={{0x18, 0x1, 0x3d, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x400}}, @txtime={{0x18, 0x1, 0x3d, 0x5}}, @timestamping={{0x14, 0x1, 0x25, 0x101}}, @mark={{0x14, 0x1, 0x24, 0x800}}, @mark={{0x14, 0x1, 0x24, 0xffffff0a}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x3}}], 0xf0}}, {{&(0x7f0000004000)=@in={0x2, 0x4e22, @multicast2}, 0x80, &(0x7f0000004180)=[{&(0x7f0000004080)="73425a4926d5c246043a8c221411d007534c6e7e53ffd6c7e49b57c69f809c41e2ba67562758ec85f3aa274edf69a10e803c751b1668d0e14a8d84bfdd86ebbeb5d3e470cb30e9b47e4e60705dde32ec560ee673f1807bc74b1fa12daa85a75870462ad326bf22960a197189286fdc4628c5a3d44bf2e9f63954d228f33e057f7285560606704d5ca873efd6036b4d41a7dc0c46e0f739a3300d1c1ab56704bc08d9adcfad1743fcbfee68bc9e1651756c32e9aad8d60b07c055e4fee27ae0ba0a54cbb57c4892238875ca76eaf6e5af94474644684999b5abbd55d45bc4e5ed4cc48969144e9d66e963a93f9afe", 0xee}], 0x1, &(0x7f00000041c0)=[@timestamping={{0x14, 0x1, 0x25, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xfff}}, @mark={{0x14, 0x1, 0x24, 0x6}}, @timestamping={{0x14, 0x1, 0x25, 0x8001}}, @mark={{0x14, 0x1, 0x24, 0x6}}], 0x90}}, {{0x0, 0x0, &(0x7f00000066c0)=[{&(0x7f0000004280)="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", 0x1000}, {&(0x7f0000005280)="1c1d72b80f6e50927eb4aa4d72a846bd3830acc8d1bd172cf3ea863de23bb86bad3b485ed8fd95430d6aad3f652b1038b42c799ae91c242a41f715996a4c26adacf443c93eed9906cad606864460b60c89785db07fe3ed8ba6ee2cd0d37464761058f1348a8d559f0dc342e0a891e464aaae6e35fbe045465cb50be74689b2e8aa8667e80e98cfe5595b497d127e246433eaa0f0d2d961f26768af1f20cf2020f55f4f6412", 0xa5}, {&(0x7f0000005340)="1b0518a328f57d6486a08a2e1bc577d1e99c925bc18bde81cd78da33bfe8e9edc41ca4ecf63bf96b1fd343a187d78d4d460df5f8e4ea2f0755489175ad262c0ef797f801d2051f37dd7fa441124866605d805fd096b25f5cebd72be15b881f61c4778a93649133bf3aecc5e457b0e5aec3d1920c404f113b92d1faff88a199a116d573eed7e742ea4a3115b1dcd1c555e372e61558ccaa4ae946c219239c3d73a1c38d16649190683c7aad607a2d21508d7641e828e1b0b3298414251c939c939844d4bb2b2afa5badb7d97de5771beda8bbe75f", 0xd4}, {&(0x7f0000005440)="2bfb23c20341953cf9f6fb236d4646e5fff2de4e90cdec6a0051483aed1aa91feae69ef25b33d443bffb913d8464d786f8bfda2506cf902a7d60c93bdfc729184533a494dfe0631da95c9e6ec053968407c810928add79dd749344524debdb6eecf777dcfb5d3400d470cd3069aa2ecff58a1fdb2c615535aa4d307dcdfac93a0bfc12f01a631562dc0548d975", 0x8d}, {&(0x7f0000005500)="7962ed5c7b50f479644eadfaa6ffe944f985e5bd235831345eb7514c074e363ec0c33e6f19760fea9cfbfd96eb8799efa053552a083e6e1644f3b007c79a27599fe6ddddbdc7f39b542eda981ef63836ac86af32bccecbbfa00438c3b4916e9ee9e3d64ce6e233bf8f7e1e81b7f7e395a797f515b27b7bbb295856fb4d8a31a1425774bdab1f66c07ef10c948dba6df492f335a88d7e67f2", 0x98}, {&(0x7f00000055c0)="cf7f4dd1b6a963434e713f215feaad276210f9c84e9750b00faf9325303841a2aae470ac8dc2f3a2d98fbf26a9795e6886b54a067e2f8d30f9a022ac5e37cfdcc164cc0f3fa1d69867aed5bf27683c1fec5138cb4ec555d9", 0x58}, {&(0x7f0000005640)="d32a50b065d4a6c3772ec1ab86400be0dbe74b7897a49a00a50a65f13d21", 0x1e}, {&(0x7f0000005680)="e23d80f299f0e2f85563cdc98745fae67f7a6bac4a31f27e3d940854b41c3fa21de133f4fe68f0a7d1cd1ff8963d51a4ce73c553809d7afa8344", 0x3a}, {&(0x7f00000056c0)="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", 0x1000}], 0x9}}, {{0x0, 0x0, &(0x7f0000006880)=[{&(0x7f0000006780)="cd0d89550d8b64ea30420c0ce703ae33e9c3ffe1316860e6d7f8b830ef9aca0f17e5e90c5fd3817ea3db562742c089bcd3fb2178b253d98c00533f9244d8501f598254a52ebdcc6bb28aebeb77ebcf85c8e4d8e3f7ab191fc648caf79ca4f4500632266c0e8d10907339b64fe5707413bcd8f7cfafc2f8ef7d72f2bdc9947ceb8bea25fb711446abe17d3e81d34d85f2af99933fea8fa063d38c958ceca629e7947cebf49a8387d1028a5fb7ed3d5b55c033379fc56125248f2e9732b2c6e3326ce33266f4dd72e69c3a65bc94412bf8142dff8c6fd1eb54714238e668f1f457a4d805927ce889a0e0", 0xe9}], 0x1, &(0x7f00000068c0)=[@mark={{0x14, 0x1, 0x24, 0x5}}, @mark={{0x14, 0x1, 0x24, 0x8}}, @txtime={{0x18, 0x1, 0x3d, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xda}}, @txtime={{0x18, 0x1, 0x3d, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x81}}, @txtime={{0x18, 0x1, 0x3d, 0x8001}}, @timestamping={{0x14, 0x1, 0x25, 0x2}}], 0xf0}}, {{&(0x7f00000069c0)=@l2tp={0x2, 0x0, @broadcast, 0x1}, 0x80, &(0x7f0000006bc0)=[{&(0x7f0000006a40)="ec96bcd7ffe7fe7761d2e10ccb89314269fc4494b27af04e1cf88cdb1a877c13f5de7bf6fa01767a88412fa52b5272429f943ce33c79ba48bb9fe0f3562040e4c62f1f0c4938b3babcb1d185e207776dbd2a14ab50c9d4c23eca367f8fa3f9af290ba167b1f07bfffe500b2778612035ca44681b77e3b410c16a1a25a04b4f26244ee2369f18a3e44e0346ca6276890a0df459343f350781192646", 0x9b}, {&(0x7f0000006b00)="07bbae5f762992fcdbdd1b48c3e534bdaf7df87de4b039bac51dbccd71d935035c4124e5fdc8c9658fb3ae", 0x2b}, {&(0x7f0000006b40)="106484e8c1bf0016cd9f5e63b3d00be1eac37db0440c69d2d79f2d49525d754735d6c51ee0dcd28ac4f5ab533403b2f0a4c5a5ddea118663926f864a30acc399c1068a4d049b7d4173ffaa1858694efff05ae8a5908f3d0714f4", 0x5a}], 0x3, &(0x7f0000006c00)=[@mark={{0x14, 0x1, 0x24, 0xf3c}}, @mark={{0x14, 0x1, 0x24, 0x20}}, @mark={{0x14, 0x1, 0x24, 0x80}}, @mark={{0x14, 0x1, 0x24, 0x29467d57}}, @txtime={{0x18, 0x1, 0x3d, 0x6}}], 0x78}}], 0x9, 0x4000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r4}) sendmsg$inet6(r3, &(0x7f0000008140)={&(0x7f0000002d40)={0xa, 0x4e23, 0x2, @private2, 0x1}, 0x1c, &(0x7f0000007fc0)=[{&(0x7f0000006ec0)}, {&(0x7f0000006f00)="adabad665f6b2cd371bc34b25e72aad9cff3c9bf785a873b6d59b9d0ec49b2b128c54aaea23178f150032dc2a6210b0f3a5db068ceb594ce50ee68871e4883c550520963f7586db2ee50dba76cceca53c446a0ebac8c1b439b23ad23e525a6fc3691167ab33d4dcef6e3a4217e4f6f1105eadd94886d5c62d5528eb1c726fb072d92bc25f80a947dca375ad29b27443503b53f014c3e2a543d8374272878c27f7ef7e6d04e132cb050331ef8f69b0f23b7656cb9fc16d4909b5bb742ac26c2c2", 0xc0}, {&(0x7f0000006fc0)="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", 0x1000}], 0x3, &(0x7f0000008000)=[@hoplimit={{0x14, 0x29, 0x34, 0x8}}, @pktinfo={{0x24, 0x29, 0x32, {@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r4}}}, @rthdrdstopts={{0x98, 0x29, 0x37, {0x2f, 0xf, '\x00', [@jumbo={0xc2, 0x4, 0xffffffff}, @generic={0x7, 0x67, "62f1330ef762f0bd73ab779b47cc366f246c9a54e6940f08e2744acc25e8f0222e9acb1f1de4786b99380e2f44c973da4fff87c17461e450d6e75de89442fdf22df1323d7d154c658ec0c6b19f120b41213a35a1bd9e56f1f0da892a67314e96770ad3e03e7b22"}, @ra={0x5, 0x2, 0x3}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @tclass={{0x14, 0x29, 0x43, 0x29f}}], 0xf0}, 0x4000080) 04:37:25 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x2000000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:37:25 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x6) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r5]) [ 1600.402156] FAULT_INJECTION: forcing a failure. [ 1600.402156] name failslab, interval 1, probability 0, space 0, times 0 [ 1600.404132] 9pnet: Unknown protocol version 9 [ 1600.404446] CPU: 0 PID: 15699 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1600.406328] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1600.408005] Call Trace: [ 1600.408554] dump_stack+0x107/0x167 [ 1600.409340] should_fail.cold+0x5/0xa [ 1600.410114] ? create_object.isra.0+0x3a/0xa20 [ 1600.411048] should_failslab+0x5/0x20 [ 1600.411826] kmem_cache_alloc+0x5b/0x310 [ 1600.412667] create_object.isra.0+0x3a/0xa20 [ 1600.413570] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1600.414619] kmem_cache_alloc+0x159/0x310 [ 1600.415471] __kernfs_new_node+0xd4/0x860 [ 1600.416327] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1600.417308] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1600.418294] ? wait_for_completion_io+0x270/0x270 [ 1600.419283] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1600.420366] kernfs_new_node+0x93/0x120 [ 1600.421195] __kernfs_create_file+0x51/0x350 [ 1600.422096] sysfs_add_file_mode_ns+0x221/0x560 [ 1600.423060] internal_create_group+0x324/0xb30 [ 1600.424005] ? sysfs_remove_group+0x170/0x170 [ 1600.424919] ? lockdep_init_map_type+0x2c7/0x780 [ 1600.425899] ? blk_queue_flag_set+0x22/0x30 [ 1600.426776] ? __loop_update_dio+0x2d2/0x690 [ 1600.427684] loop_configure+0x954/0x1480 [ 1600.428523] lo_ioctl+0xa72/0x1760 [ 1600.429276] ? avc_has_extended_perms+0x7f1/0xf40 [ 1600.430260] ? loop_set_status_old+0x250/0x250 [ 1600.431181] ? avc_ss_reset+0x180/0x180 [ 1600.431992] ? lock_acquire+0x197/0x470 [ 1600.432789] ? find_held_lock+0x2c/0x110 [ 1600.433635] ? __lock_acquire+0xbb1/0x5b00 [ 1600.434538] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1600.435612] ? generic_block_fiemap+0x60/0x60 [ 1600.436521] ? loop_set_status_old+0x250/0x250 [ 1600.437453] blkdev_ioctl+0x291/0x710 [ 1600.438217] ? blkdev_common_ioctl+0x1870/0x1870 [ 1600.439167] ? selinux_file_ioctl+0xb6/0x270 [ 1600.440051] block_ioctl+0xf9/0x140 [ 1600.440799] ? blkdev_read_iter+0x1c0/0x1c0 [ 1600.441685] __x64_sys_ioctl+0x19a/0x210 [ 1600.442517] do_syscall_64+0x33/0x40 [ 1600.443265] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1600.444298] RIP: 0033:0x7fc91209f8d7 [ 1600.445046] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1600.448735] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1600.450278] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1600.451713] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1600.453159] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1600.454591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1600.456025] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 04:37:25 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 45) [ 1600.487052] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1600.533490] FAULT_INJECTION: forcing a failure. [ 1600.533490] name failslab, interval 1, probability 0, space 0, times 0 04:37:25 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 48) [ 1600.534818] CPU: 1 PID: 15853 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1600.535739] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1600.536674] Call Trace: [ 1600.536969] dump_stack+0x107/0x167 [ 1600.537404] should_fail.cold+0x5/0xa [ 1600.537834] ? ptlock_alloc+0x1d/0x70 [ 1600.538258] should_failslab+0x5/0x20 [ 1600.538682] kmem_cache_alloc+0x5b/0x310 [ 1600.539135] ptlock_alloc+0x1d/0x70 [ 1600.539538] pte_alloc_one+0x68/0x1a0 [ 1600.539947] __pte_alloc+0x1d/0x330 [ 1600.540340] copy_page_range+0x1b62/0x3810 [ 1600.540806] ? SOFTIRQ_verbose+0x10/0x10 [ 1600.541252] ? lock_chain_count+0x20/0x20 [ 1600.541726] ? up_write+0x191/0x550 [ 1600.542120] ? vm_iomap_memory+0x190/0x190 [ 1600.542581] ? downgrade_write+0x3a0/0x3a0 [ 1600.543045] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1600.543630] ? __vma_link_rb+0x540/0x700 [ 1600.544095] copy_process+0x759b/0x7800 [ 1600.544569] ? __cleanup_sighand+0xb0/0xb0 [ 1600.545052] ? lock_acquire+0x197/0x470 [ 1600.545494] ? find_held_lock+0x2c/0x110 [ 1600.545949] kernel_clone+0xe7/0x980 [ 1600.546377] ? lock_downgrade+0x6d0/0x6d0 [ 1600.546841] ? find_held_lock+0x2c/0x110 [ 1600.547291] ? create_io_thread+0xf0/0xf0 [ 1600.547758] ? ksys_write+0x12d/0x260 [ 1600.548192] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1600.548737] __do_sys_fork+0x8a/0xc0 [ 1600.549150] ? kernel_thread+0xf0/0xf0 [ 1600.549597] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1600.550161] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.550743] ? trace_hardirqs_on+0x5b/0x180 [ 1600.551211] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.551791] do_syscall_64+0x33/0x40 [ 1600.552207] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1600.552791] RIP: 0033:0x7fa6a3da0b19 04:37:25 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 37) [ 1600.553207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1600.555377] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1600.556223] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1600.557010] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1600.557817] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 04:37:25 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r3, 0x0, 0x2) r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r4, 0x0, r3, 0x0, 0x200f5ef, 0x0) execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1600.558610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1600.559535] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:37:25 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x300, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1600.586706] FAULT_INJECTION: forcing a failure. [ 1600.586706] name failslab, interval 1, probability 0, space 0, times 0 [ 1600.588021] CPU: 1 PID: 15904 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1600.588797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1600.589738] Call Trace: [ 1600.590033] dump_stack+0x107/0x167 [ 1600.590446] should_fail.cold+0x5/0xa [ 1600.590877] ? vm_area_dup+0x78/0x290 [ 1600.591307] should_failslab+0x5/0x20 [ 1600.591740] kmem_cache_alloc+0x5b/0x310 [ 1600.592210] vm_area_dup+0x78/0x290 [ 1600.592649] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1600.593186] ? lock_downgrade+0x6d0/0x6d0 [ 1600.593662] ? copy_page_range+0x24e9/0x3810 [ 1600.594163] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1600.594751] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1600.595272] ? avc_has_extended_perms+0xf40/0xf40 [ 1600.595814] ? copy_process+0x2b60/0x7800 [ 1600.596277] ? vm_area_alloc+0x110/0x110 [ 1600.596745] ? selinux_vm_enough_memory+0x114/0x180 [ 1600.597335] ? selinux_sb_statfs+0x250/0x250 [ 1600.597844] ? up_write+0x191/0x550 [ 1600.598263] ? percpu_counter_add_batch+0x8b/0x140 [ 1600.598821] ? __vm_enough_memory+0x184/0x360 [ 1600.599326] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1600.599898] copy_process+0x291b/0x7800 [ 1600.600365] ? __cleanup_sighand+0xb0/0xb0 [ 1600.600841] ? lock_acquire+0x197/0x470 [ 1600.601299] ? find_held_lock+0x2c/0x110 [ 1600.601763] kernel_clone+0xe7/0x980 [ 1600.602190] ? lock_downgrade+0x6d0/0x6d0 [ 1600.602666] ? find_held_lock+0x2c/0x110 [ 1600.603132] ? create_io_thread+0xf0/0xf0 [ 1600.603400] FAULT_INJECTION: forcing a failure. [ 1600.603400] name failslab, interval 1, probability 0, space 0, times 0 [ 1600.603609] ? ksys_write+0x12d/0x260 [ 1600.606315] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1600.606868] __do_sys_fork+0x8a/0xc0 [ 1600.607295] ? kernel_thread+0xf0/0xf0 [ 1600.607734] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1600.608251] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1600.608836] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.609420] ? trace_hardirqs_on+0x5b/0x180 [ 1600.609899] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1600.610473] do_syscall_64+0x33/0x40 [ 1600.610895] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1600.611473] RIP: 0033:0x7fc140e06b19 [ 1600.611894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1600.613958] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1600.614806] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1600.615601] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1600.616402] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1600.617217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1600.618013] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1600.618838] CPU: 0 PID: 15908 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1600.620265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1600.621946] Call Trace: [ 1600.622490] dump_stack+0x107/0x167 [ 1600.623232] should_fail.cold+0x5/0xa [ 1600.624008] ? __kernfs_new_node+0xd4/0x860 [ 1600.624888] should_failslab+0x5/0x20 [ 1600.625680] kmem_cache_alloc+0x5b/0x310 [ 1600.626519] __kernfs_new_node+0xd4/0x860 [ 1600.627375] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1600.628349] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1600.629337] ? wait_for_completion_io+0x270/0x270 [ 1600.630318] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1600.631389] kernfs_new_node+0x93/0x120 [ 1600.632212] __kernfs_create_file+0x51/0x350 [ 1600.633144] sysfs_add_file_mode_ns+0x221/0x560 [ 1600.634109] internal_create_group+0x324/0xb30 [ 1600.635040] ? sysfs_remove_group+0x170/0x170 [ 1600.635946] ? lockdep_init_map_type+0x2c7/0x780 [ 1600.636904] ? blk_queue_flag_set+0x22/0x30 [ 1600.637776] ? __loop_update_dio+0x2d2/0x690 [ 1600.638237] 9pnet: Unknown protocol version 9 [ 1600.638668] loop_configure+0x954/0x1480 [ 1600.640012] lo_ioctl+0xa72/0x1760 [ 1600.640738] ? avc_has_extended_perms+0x7f1/0xf40 [ 1600.641720] ? loop_set_status_old+0x250/0x250 [ 1600.642650] ? avc_ss_reset+0x180/0x180 [ 1600.643471] ? lock_acquire+0x197/0x470 [ 1600.644290] ? find_held_lock+0x2c/0x110 [ 1600.645146] ? __lock_acquire+0xbb1/0x5b00 [ 1600.646064] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1600.647136] ? generic_block_fiemap+0x60/0x60 [ 1600.648067] ? loop_set_status_old+0x250/0x250 [ 1600.649005] blkdev_ioctl+0x291/0x710 [ 1600.649795] ? blkdev_common_ioctl+0x1870/0x1870 [ 1600.650756] ? selinux_file_ioctl+0xb6/0x270 [ 1600.651664] block_ioctl+0xf9/0x140 [ 1600.652396] ? blkdev_read_iter+0x1c0/0x1c0 [ 1600.653289] __x64_sys_ioctl+0x19a/0x210 [ 1600.654118] do_syscall_64+0x33/0x40 [ 1600.654879] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1600.655919] RIP: 0033:0x7fc91209f8d7 [ 1600.656673] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1600.660381] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1600.661928] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1600.663368] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1600.664806] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1600.666248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1600.667684] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1600.676734] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:37:41 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x6) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r5]) 04:37:41 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x2010000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:37:41 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) clone3(&(0x7f0000000340)={0x182000, &(0x7f0000000040)=0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000100), {0x13}, &(0x7f00000001c0)=""/73, 0x49, &(0x7f0000000240)=""/166, &(0x7f0000000300)=[0x0], 0x1}, 0x58) fallocate(r0, 0x41, 0x6, 0x7f) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmmsg$inet6(0xffffffffffffffff, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) finit_module(0xffffffffffffffff, &(0x7f0000000e00)='(,)*-\\)#^^{\\\\#\x00', 0x1) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r2, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) sendfile(r4, r3, 0x0, 0xffffffff000) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000002580)={0x0, 0x0, {}, {}, {0x0, @struct, 0x0}}) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f00000000c0)={r5, 0x0, 0x20}) ioctl$BTRFS_IOC_SCRUB(r4, 0xc400941b, &(0x7f0000000280)={r5, 0x8001, 0xdc0e}) ioctl$BTRFS_IOC_DEV_REPLACE(r2, 0xca289435, &(0x7f00000003c0)={0x0, 0x7, @start={r5, 0x0, "d1c558a56d0c9b66af2042e78cb43a3ac1258c24df99b3e1e89cee770d96ea80f5d3f809eb0f8e21b6c30ff524accb9e167c5e4ef94bc85aff9c04e1998ae98acf01709e576d484efc5f42daace2cc7565e5df8a529707d5fe76a1370afd0a16202b719402fe0d8a4090ad202bfa003dda7ccac697396d5ae0f0a9eb7608b10dfb6fe5fd0864ccbd4f2fea6bfd51304bc18e05485f00e76808d62a1d92b058ca1393534bf3bdda3e45d2d9abc5999f4db87ae327d5193da5a5618c42aa4f8da5d9a9a7514cde00675c7c429928391e785971028498c5936b6c823d88b632612afaa22f99b2632b75e8d12f88b064d4115587d9ee60d16f2f779074954df96e25784c68edf9b85968350798d23626a0ecc65dc324c3d28975c79c8397f779e54e7acdacb9d6a7f09c10bc329648e826a44c3f72ed7d5128dbe87faf198c12e1527592d2f7f1aba76253c7ca66c373ca147e2860b58fbc4f3d4d4a8732f3831199a4e51a19627bc1d4030b52a95c51218a4eab087d2bed006440acca7eff60a3f6f1a0c21395b2de1fd1d88b9706c7123982e960f82720493b4c320769f98d67b953619cae03c6a5dc76c70822afcc4c77dc4374688f0aa5279b66e13d01514effc37a9311a8562f0d1191159f11e93c5ac482e3f2bfcfb6d395f459013a1f8f16ec5b76e81088d777867dee17d2f1c0c80481956830ac6c25dd737d0032b98d119099f809fb8dd3c48f060b94a5975d8335dc66c2364609ee0e7cb2d3805b088049877e29f57aa7e99469367570ac30f8b5fe0ffaf3ffd43f17ac39cbc4459b7eb61813e10149554314749f0b9c30424c847f21fa6f52ac34d17f91242a7ae29bdad7cecec22a22fe5d903213e72ebed3bf3109fab2165daa70f282604046d2175e46b5f48db90fb6274fa2ee2acafeb97350efbc5e5e0ddebbd6b92521ef51e13af387b865706f469b8f0cb44cc602cc9e33ebef450b9ba45217fe131fb9e36ca34dd777679c94e6b848870d37028e287c8d412b4b16b00ffeba7c8ba8c2f637c9a980ec578b8d05037f6057526b6a50a4f2a4d5e8f8f1df4db09b81c72abcd35b58cc89260bebb1f7b61f4299d107458c73c0ce22383278261c49b6e4323c362ddd2db2a036ad666a5016da0c9fd361f14c0c17ee88e6136bd2f2eda7d2d72a9be598c15d1e75bc104634ea2f9957f0068f0774b27079cdd48909ec040b56ba98ed6d1ab2c8bbe13c6a51c74bca67a8f89dfc91a04ba0e99be127298dcc7d38a16ceae0a1a3b26e66a388ca4966eb1f56d0343245b694f736d6692f010c1d744c4548e06705c060a5853c7d98eb04cf0a9aa81774b5adbd9022c100375d60a7b1b84c4e6b07df9fafa5c15b6441443117accb02646700d59282c6876edbf980c93fa0d7dd293582e789518252bafb792129a1a80da1c7d9370ae859e4ba24beb1", "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"}, [0x8000, 0x0, 0x0, 0x0, 0x9, 0x2, 0x6, 0x3, 0x8, 0xfffffffffffffff7, 0xa79b, 0x80000001, 0x3, 0x1, 0xfffffffffffff801, 0x7e0704f9, 0x10000000000, 0x618, 0xe2, 0x3, 0x0, 0x1, 0x8, 0x3, 0xfffffffffffffff9, 0x80, 0xfffffffffffffff9, 0x200, 0x7, 0x2, 0x7, 0xff, 0xff, 0x7, 0x5, 0x3, 0x1, 0x1, 0x6, 0x6, 0x6, 0x7f, 0x8, 0x101, 0x3, 0x3, 0x4659, 0xffffffffffffff80, 0x3, 0x5b, 0x7, 0x9, 0x865, 0x1, 0x3ad3d5f1, 0x0, 0x8, 0xf1, 0x80000001, 0x9, 0xfffffffffffffffa, 0xd427, 0x10001]}) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r6}, 0x14) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_inet_SIOCSIFNETMASK(r7, 0x891c, &(0x7f0000000000)={'batadv_slave_1\x00', {0x2, 0x0, @initdev}}) 04:37:41 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 46) 04:37:41 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xfffffffc}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:37:41 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 38) 04:37:41 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x500, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:37:41 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 49) [ 1616.673879] FAULT_INJECTION: forcing a failure. [ 1616.673879] name failslab, interval 1, probability 0, space 0, times 0 [ 1616.676335] CPU: 1 PID: 16039 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1616.678039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1616.679283] FAULT_INJECTION: forcing a failure. [ 1616.679283] name failslab, interval 1, probability 0, space 0, times 0 [ 1616.679736] Call Trace: [ 1616.679762] dump_stack+0x107/0x167 [ 1616.679793] should_fail.cold+0x5/0xa [ 1616.683550] ? vm_area_dup+0x78/0x290 [ 1616.684490] should_failslab+0x5/0x20 [ 1616.685295] kmem_cache_alloc+0x5b/0x310 [ 1616.686307] vm_area_dup+0x78/0x290 [ 1616.687074] ? copy_page_range+0x24e9/0x3810 [ 1616.688192] ? vm_area_alloc+0x110/0x110 [ 1616.689039] ? vm_iomap_memory+0x190/0x190 [ 1616.690111] ? __vma_link_rb+0x540/0x700 [ 1616.690959] copy_process+0x291b/0x7800 [ 1616.691972] ? __cleanup_sighand+0xb0/0xb0 [ 1616.692854] ? lock_acquire+0x197/0x470 [ 1616.693857] ? find_held_lock+0x2c/0x110 [ 1616.694699] kernel_clone+0xe7/0x980 [ 1616.695608] ? lock_downgrade+0x6d0/0x6d0 [ 1616.696451] ? find_held_lock+0x2c/0x110 [ 1616.697448] ? create_io_thread+0xf0/0xf0 [ 1616.698305] ? ksys_write+0x12d/0x260 [ 1616.699246] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1616.700245] __do_sys_fork+0x8a/0xc0 [ 1616.701151] ? kernel_thread+0xf0/0xf0 [ 1616.701997] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1616.703149] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1616.704187] ? trace_hardirqs_on+0x5b/0x180 [ 1616.705068] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1616.706324] do_syscall_64+0x33/0x40 [ 1616.707087] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1616.708330] RIP: 0033:0x7fa6a3da0b19 [ 1616.709093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1616.713460] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1616.715009] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1616.716446] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1616.717900] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1616.719355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1616.720785] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1616.722262] CPU: 0 PID: 16043 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1616.723187] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1616.724342] Call Trace: [ 1616.724714] dump_stack+0x107/0x167 [ 1616.725238] should_fail.cold+0x5/0xa [ 1616.725796] ? create_object.isra.0+0x3a/0xa20 [ 1616.726451] should_failslab+0x5/0x20 [ 1616.726987] kmem_cache_alloc+0x5b/0x310 [ 1616.727566] create_object.isra.0+0x3a/0xa20 [ 1616.728192] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1616.728914] kmem_cache_alloc+0x159/0x310 [ 1616.729527] __kernfs_new_node+0xd4/0x860 [ 1616.730118] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1616.730790] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1616.731470] ? wait_for_completion_io+0x270/0x270 [ 1616.732155] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1616.732901] kernfs_new_node+0x93/0x120 [ 1616.733490] __kernfs_create_file+0x51/0x350 [ 1616.734118] sysfs_add_file_mode_ns+0x221/0x560 [ 1616.734787] internal_create_group+0x324/0xb30 [ 1616.735442] ? sysfs_remove_group+0x170/0x170 [ 1616.736075] ? lockdep_init_map_type+0x2c7/0x780 [ 1616.736741] ? blk_queue_flag_set+0x22/0x30 [ 1616.737349] ? __loop_update_dio+0x2d2/0x690 [ 1616.737970] loop_configure+0x954/0x1480 [ 1616.738551] lo_ioctl+0xa72/0x1760 [ 1616.739054] ? avc_has_extended_perms+0x7f1/0xf40 [ 1616.739730] ? loop_set_status_old+0x250/0x250 [ 1616.740368] ? avc_ss_reset+0x180/0x180 [ 1616.740925] ? lock_acquire+0x197/0x470 [ 1616.741489] ? find_held_lock+0x2c/0x110 [ 1616.742068] ? __lock_acquire+0xbb1/0x5b00 [ 1616.742696] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1616.743429] ? generic_block_fiemap+0x60/0x60 [ 1616.744058] ? loop_set_status_old+0x250/0x250 [ 1616.744693] blkdev_ioctl+0x291/0x710 [ 1616.745220] ? blkdev_common_ioctl+0x1870/0x1870 [ 1616.745897] ? selinux_file_ioctl+0xb6/0x270 [ 1616.746512] block_ioctl+0xf9/0x140 [ 1616.747020] ? blkdev_read_iter+0x1c0/0x1c0 [ 1616.747621] __x64_sys_ioctl+0x19a/0x210 [ 1616.748188] do_syscall_64+0x33/0x40 [ 1616.748709] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1616.749424] RIP: 0033:0x7fc91209f8d7 [ 1616.749942] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1616.752473] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1616.753537] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1616.754552] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1616.755541] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1616.756527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1616.757524] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1616.763528] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1616.775506] FAULT_INJECTION: forcing a failure. [ 1616.775506] name failslab, interval 1, probability 0, space 0, times 0 [ 1616.778234] CPU: 1 PID: 16053 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1616.779821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1616.781757] Call Trace: [ 1616.782360] dump_stack+0x107/0x167 [ 1616.783195] should_fail.cold+0x5/0xa [ 1616.784066] ? create_object.isra.0+0x3a/0xa20 [ 1616.785106] should_failslab+0x5/0x20 [ 1616.785979] kmem_cache_alloc+0x5b/0x310 [ 1616.786909] create_object.isra.0+0x3a/0xa20 [ 1616.787905] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1616.789055] kmem_cache_alloc+0x159/0x310 [ 1616.790003] vm_area_dup+0x78/0x290 [ 1616.790832] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1616.791911] ? lock_downgrade+0x6d0/0x6d0 [ 1616.792850] ? copy_page_range+0x24e9/0x3810 [ 1616.793883] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1616.795105] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1616.796180] ? avc_has_extended_perms+0xf40/0xf40 [ 1616.797288] ? copy_process+0x2b60/0x7800 [ 1616.798255] ? vm_area_alloc+0x110/0x110 04:37:41 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 47) [ 1616.799199] ? selinux_vm_enough_memory+0x114/0x180 [ 1616.800479] ? selinux_sb_statfs+0x250/0x250 [ 1616.801497] ? up_write+0x191/0x550 [ 1616.802334] ? percpu_counter_add_batch+0x8b/0x140 [ 1616.803463] ? __vm_enough_memory+0x184/0x360 [ 1616.804493] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1616.805679] copy_process+0x291b/0x7800 [ 1616.806630] ? __cleanup_sighand+0xb0/0xb0 [ 1616.807606] ? lock_acquire+0x197/0x470 [ 1616.808527] ? find_held_lock+0x2c/0x110 [ 1616.809469] kernel_clone+0xe7/0x980 [ 1616.810314] ? lock_downgrade+0x6d0/0x6d0 [ 1616.811250] ? find_held_lock+0x2c/0x110 [ 1616.811356] FAULT_INJECTION: forcing a failure. [ 1616.811356] name failslab, interval 1, probability 0, space 0, times 0 [ 1616.812168] ? create_io_thread+0xf0/0xf0 [ 1616.812198] ? ksys_write+0x12d/0x260 [ 1616.815397] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1616.816511] __do_sys_fork+0x8a/0xc0 [ 1616.817371] ? kernel_thread+0xf0/0xf0 [ 1616.818294] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1616.819490] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1616.820664] ? trace_hardirqs_on+0x5b/0x180 [ 1616.821668] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1616.822849] do_syscall_64+0x33/0x40 [ 1616.823713] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1616.824885] RIP: 0033:0x7fc140e06b19 [ 1616.825750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1616.829908] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1616.831623] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1616.833232] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1616.834851] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1616.836451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1616.838057] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1616.839684] CPU: 0 PID: 16058 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1616.840626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1616.841744] Call Trace: [ 1616.842100] dump_stack+0x107/0x167 [ 1616.842588] should_fail.cold+0x5/0xa [ 1616.843095] ? create_object.isra.0+0x3a/0xa20 [ 1616.843721] should_failslab+0x5/0x20 [ 1616.844248] kmem_cache_alloc+0x5b/0x310 [ 1616.844876] create_object.isra.0+0x3a/0xa20 [ 1616.845489] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1616.846269] kmem_cache_alloc+0x159/0x310 [ 1616.846823] vm_area_dup+0x78/0x290 [ 1616.847396] ? copy_page_range+0x24e9/0x3810 [ 1616.848005] ? vm_area_alloc+0x110/0x110 [ 1616.848629] ? vm_iomap_memory+0x190/0x190 [ 1616.849196] ? __vma_link_rb+0x540/0x700 [ 1616.849834] copy_process+0x291b/0x7800 [ 1616.850388] ? __cleanup_sighand+0xb0/0xb0 [ 1616.851036] ? lock_acquire+0x197/0x470 [ 1616.851575] ? find_held_lock+0x2c/0x110 [ 1616.852122] kernel_clone+0xe7/0x980 [ 1616.852617] ? lock_downgrade+0x6d0/0x6d0 [ 1616.853156] ? find_held_lock+0x2c/0x110 [ 1616.853716] ? create_io_thread+0xf0/0xf0 [ 1616.854284] ? ksys_write+0x12d/0x260 [ 1616.854787] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1616.855430] __do_sys_fork+0x8a/0xc0 [ 1616.855927] ? kernel_thread+0xf0/0xf0 [ 1616.856449] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1616.857132] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1616.857806] ? trace_hardirqs_on+0x5b/0x180 [ 1616.858372] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1616.859042] do_syscall_64+0x33/0x40 [ 1616.859531] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1616.860197] RIP: 0033:0x7fa6a3da0b19 [ 1616.860688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1616.863120] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1616.864113] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1616.865053] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1616.865995] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1616.866944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1616.867896] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1616.871994] 9pnet: Unknown protocol version 9 04:37:41 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 39) [ 1616.914422] device lo left promiscuous mode [ 1616.916444] FAULT_INJECTION: forcing a failure. [ 1616.916444] name failslab, interval 1, probability 0, space 0, times 0 [ 1616.917971] CPU: 0 PID: 16111 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1616.918859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1616.919928] Call Trace: [ 1616.920276] dump_stack+0x107/0x167 [ 1616.920756] should_fail.cold+0x5/0xa [ 1616.921263] ? __kernfs_new_node+0xd4/0x860 [ 1616.921839] should_failslab+0x5/0x20 [ 1616.922330] kmem_cache_alloc+0x5b/0x310 [ 1616.922865] __kernfs_new_node+0xd4/0x860 [ 1616.923406] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1616.924039] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1616.924665] ? wait_for_completion_io+0x270/0x270 [ 1616.925292] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1616.925990] kernfs_new_node+0x93/0x120 [ 1616.926499] __kernfs_create_file+0x51/0x350 [ 1616.927061] sysfs_add_file_mode_ns+0x221/0x560 [ 1616.927662] internal_create_group+0x324/0xb30 [ 1616.928251] ? sysfs_remove_group+0x170/0x170 [ 1616.928774] ? lockdep_init_map_type+0x2c7/0x780 [ 1616.929401] ? blk_queue_flag_set+0x22/0x30 [ 1616.929951] ? __loop_update_dio+0x2d2/0x690 [ 1616.930513] loop_configure+0x954/0x1480 [ 1616.931044] lo_ioctl+0xa72/0x1760 [ 1616.931505] ? avc_has_extended_perms+0x7f1/0xf40 [ 1616.932125] ? loop_set_status_old+0x250/0x250 [ 1616.932716] ? avc_ss_reset+0x180/0x180 [ 1616.933228] ? lock_acquire+0x197/0x470 [ 1616.933746] ? find_held_lock+0x2c/0x110 [ 1616.934276] ? __lock_acquire+0xbb1/0x5b00 [ 1616.934856] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1616.935520] ? generic_block_fiemap+0x60/0x60 [ 1616.936085] ? loop_set_status_old+0x250/0x250 [ 1616.936672] blkdev_ioctl+0x291/0x710 [ 1616.937160] ? blkdev_common_ioctl+0x1870/0x1870 [ 1616.937786] ? selinux_file_ioctl+0xb6/0x270 [ 1616.938344] block_ioctl+0xf9/0x140 [ 1616.938807] ? blkdev_read_iter+0x1c0/0x1c0 [ 1616.939358] __x64_sys_ioctl+0x19a/0x210 [ 1616.939879] do_syscall_64+0x33/0x40 [ 1616.940346] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1616.941000] RIP: 0033:0x7fc91209f8d7 [ 1616.941484] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1616.943830] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1616.944802] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1616.945716] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1616.946620] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1616.947519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1616.948437] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1616.972909] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:37:41 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x8}}, './file0\x00'}) io_uring_enter(r3, 0x2b87, 0x9207, 0x2, &(0x7f0000000040)={[0x4]}, 0x8) creat(&(0x7f0000000140)='./file0\x00', 0x40) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:37:41 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x8cffffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:37:41 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 50) [ 1617.174291] FAULT_INJECTION: forcing a failure. [ 1617.174291] name failslab, interval 1, probability 0, space 0, times 0 [ 1617.176668] CPU: 1 PID: 16349 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1617.178075] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1617.179733] Call Trace: [ 1617.180269] dump_stack+0x107/0x167 [ 1617.181010] should_fail.cold+0x5/0xa [ 1617.181788] ? anon_vma_clone+0xdc/0x590 [ 1617.182603] should_failslab+0x5/0x20 [ 1617.183369] kmem_cache_alloc+0x5b/0x310 [ 1617.184218] anon_vma_clone+0xdc/0x590 [ 1617.185008] anon_vma_fork+0x82/0x640 [ 1617.185782] ? __vm_enough_memory+0x184/0x360 [ 1617.186684] copy_process+0x7218/0x7800 [ 1617.187522] ? __cleanup_sighand+0xb0/0xb0 [ 1617.188398] ? lock_acquire+0x197/0x470 [ 1617.189205] ? find_held_lock+0x2c/0x110 [ 1617.190050] kernel_clone+0xe7/0x980 [ 1617.190803] ? lock_downgrade+0x6d0/0x6d0 [ 1617.191644] ? find_held_lock+0x2c/0x110 [ 1617.192531] ? create_io_thread+0xf0/0xf0 [ 1617.193376] ? ksys_write+0x12d/0x260 [ 1617.194156] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1617.195135] __do_sys_fork+0x8a/0xc0 [ 1617.195889] ? kernel_thread+0xf0/0xf0 [ 1617.196692] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1617.197756] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1617.198788] ? trace_hardirqs_on+0x5b/0x180 [ 1617.199654] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1617.200693] do_syscall_64+0x33/0x40 [ 1617.201469] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1617.202494] RIP: 0033:0x7fc140e06b19 [ 1617.203241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1617.206913] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1617.208432] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1617.209876] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1617.211299] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1617.212724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1617.214160] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:37:55 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 40) 04:37:55 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 51) 04:37:55 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 48) 04:37:55 executing program 4: rename(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)='./file0\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$getflags(r0, 0x40a) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @in=@dev={0xac, 0x14, 0x14, 0x2a}, 0x4e23, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0xfffffffe, 0x6e6bba, 0x2}, {{@in=@empty, 0x0, 0x6c}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}, 0xe8) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r0, &(0x7f0000000080), 0x0, 0x40081, 0x0, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @broadcast}, 0x10) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_IO(r1, 0x2285, 0x0) ioctl$DVD_READ_STRUCT(r1, 0x5390, &(0x7f0000000440)=@manufact={0x4, 0x2, 0x800, "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"}) ftruncate(r1, 0x1000003) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='cgroup\x00') preadv2(r2, &(0x7f0000000580)=[{&(0x7f0000000380)=""/72, 0x48}], 0x1, 0x0, 0x0, 0x17) bind$inet(r2, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x29}}, 0x10) unshare(0x48020200) unshare(0x10000) 04:37:55 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0xf9, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x8) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x2}, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xf78}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x13, &(0x7f00000010c0)={@dev}, 0x14) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r2 = openat2(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x101043, 0x134}, 0x18) writev(r2, &(0x7f0000000800)=[{&(0x7f00000001c0)="bf35ce46eae0ff814d8253921d555fcd67dab4b474cf4c50f54c1577a6b52fed0350e6eb07e69e9aaea815948c8578285f6d8e574c5ae9050268393bddae1ab0bcf1fceb4cc117172064442aa89c3cf7bac0c848aef839b15cd88f776d003112ca3542e80f18a2d9939a70d81de42b0ec5ac469da5c8d3da312ce228d73db990c3f2873d16d7cf3732654c2ffebd510e7bf2f38d8a6d77fd0e294cfb27", 0x9d}, {&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000000280)="c07e6bb8a5b7f793b5e01e752c0f4bc64e2bfcd96ab148b0242a8cc52e850e77319924f1b6aa5c946451925267a6b76760aa894b147eb6ad16f1fe31f75c0491395676d97bd35f3f9a0ee29a11365d9001ab2477aed54e90e3ef192aafd61aedfe23fab55044728d608a71ce386bbc34f417696653939a9838b4509efb9ee16fac136e53a2879b9334857b3f8d87f691f54318e2528b9da52d4f258c936030d81d5c2b556f867333e27c809a54b257b0d584ba87a676155c768212045140d0603d45a084aaf9193f8f2331", 0xcb}, {&(0x7f0000000380)="8790ff74c1845f8f0eadf3754346cb82d7aa45bb465a172eba211ef7faa2b69819df1d1d1314f3874c1f84b3da0bf25afc5a576c681ca0878ac1d568834285600e74b79f880267b2000cda1643fa8605bd17a2cc8daa56c4bf8a344de4c1ad60662911ed50f6d6e9a0603c3b0c0fe28a3c61fd6aab8f656840530185f253cc464640ef8bb448595ff088138a4a5f8d2a0519a3863813ad3f01b444981252b05c28c3485ce2575f6fd951de575599dce0eda1cd36caa0e9714a689c47000db3048c3ce78d9be725847f373b41145f615f8042bf82a29bbb724d83d197e0a9c7792c70ef720f29cd3873f743db", 0xec}, {&(0x7f0000000100)="8cd4a56bfcbabf000f0b3cc8a1bb226100e651db4c58604394113809dc776a80", 0x20}, {&(0x7f0000000500)="19960788d706dc5b151438c20a7270d3b1449ab0e9fe18719324e47ef88b18077b2d164db087042e84e0aabb123342450826d04321c3ff177bb93c8335593be1d5f1e99d6d7453c679eeb5fb83ca92292c2ed62cb7e419c18365da585545a0a4a1ce163aeac6bd5d998a1123506d6071f4aeb11238bf9e013fa5f7189cd91207bf5a43590051f2a56931ff776fd9f053449f60a2c4f5f026dfd05d40d7bfd45a5c6d4e9801bb043da270aabc4094474e4b5682df1fa01f615a9b79f76ab896c5935e6717ba84c31a451ddb2695bfef82ede4fa50700a033173eac28f7fe1672b93ea28606d3fc6d382b5aa3e68ddc0c8bcd4630d52", 0xf5}, {&(0x7f0000000600)="f0193fb7c0436f9364499ffbe8df2845bd841c04f277b477393279591375ac09ab3aa0cb233b4b8e30dc990a375d31fbee14bf3831503ced8b36b4bcc4c6e37bb096e5", 0x43}, {&(0x7f0000000680)="947f8ba9aa7a3c3b028f3badf0f970bce93a559676482c7c22473cbd35807d5b74d7e57288ed5b720537b97d0891f16f24bdc1b4e209c137e641107396047e4dc7b8de5ccb529ac2817369c2e87c79ab4dc9a7475dab0c005dccbcac2c857d2cf19220d24ab666837f2573c4920aa03ee8e547ac642582a21c4079ae808c477cf544b9f7e5e84760f321e74cee453db0f9865047a6c076ab0dd7a4907d69509ad9930926f7a79072be47ca853c72eca8a5af88754187d04790a42bd74f861e567e8eff87754d7f9d03448bf127f2bc4c8057210031c57f67176386d1e37e6473b974fa", 0xe3}, {&(0x7f0000000780)="cc61f97da08be368444fac3a003f066643ab5475d6f310e0c405f5a8ea46f5b5ccd002ab1c6cb847fce23470cce409ee0f4e730b", 0x34}, {&(0x7f00000007c0)="711df1b202d15d1e4d4f08d8375b747f3ff3ee2e251c8023", 0x18}], 0xa) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r4}, 0x14) 04:37:55 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x600, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:37:55 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xd310000000000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:37:55 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) r3 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x7f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000240)) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f0000000380)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd, 0x5ab, 0x0, 0x1, 0x4, 0x1, {0x0, r5}}, 0x401) syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x8) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000040)='\x00', 0x0, 0x0, 0x1100) io_uring_enter(r0, 0x2984, 0x5a01, 0x0, &(0x7f0000000180)={[0x8]}, 0x8) ioctl$sock_inet_SIOCGIFNETMASK(0xffffffffffffffff, 0x891b, &(0x7f0000000140)={'veth0_macvtap\x00', {0x2, 0x0, @broadcast}}) [ 1630.883287] FAULT_INJECTION: forcing a failure. [ 1630.883287] name failslab, interval 1, probability 0, space 0, times 0 [ 1630.883635] FAULT_INJECTION: forcing a failure. [ 1630.883635] name failslab, interval 1, probability 0, space 0, times 0 [ 1630.885667] CPU: 1 PID: 16384 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1630.888359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1630.890079] Call Trace: [ 1630.890628] dump_stack+0x107/0x167 [ 1630.891389] should_fail.cold+0x5/0xa [ 1630.892178] ? create_object.isra.0+0x3a/0xa20 [ 1630.893125] should_failslab+0x5/0x20 [ 1630.893947] kmem_cache_alloc+0x5b/0x310 [ 1630.894776] create_object.isra.0+0x3a/0xa20 [ 1630.895668] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1630.896702] kmem_cache_alloc+0x159/0x310 [ 1630.897571] anon_vma_clone+0xdc/0x590 [ 1630.898379] anon_vma_fork+0x82/0x640 [ 1630.899168] ? __vm_enough_memory+0x184/0x360 [ 1630.900089] copy_process+0x7218/0x7800 [ 1630.900932] ? __cleanup_sighand+0xb0/0xb0 [ 1630.901815] ? lock_acquire+0x197/0x470 [ 1630.902651] ? find_held_lock+0x2c/0x110 [ 1630.903496] kernel_clone+0xe7/0x980 [ 1630.904266] ? lock_downgrade+0x6d0/0x6d0 [ 1630.905123] ? find_held_lock+0x2c/0x110 [ 1630.905987] ? create_io_thread+0xf0/0xf0 [ 1630.906854] ? ksys_write+0x12d/0x260 [ 1630.907648] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1630.908652] __do_sys_fork+0x8a/0xc0 [ 1630.909410] ? kernel_thread+0xf0/0xf0 [ 1630.910239] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1630.911309] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1630.912342] ? trace_hardirqs_on+0x5b/0x180 [ 1630.913211] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1630.914282] do_syscall_64+0x33/0x40 [ 1630.915038] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1630.916087] RIP: 0033:0x7fc140e06b19 [ 1630.916843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1630.920598] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1630.922151] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1630.923591] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1630.925036] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1630.926514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1630.927976] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1630.929460] CPU: 0 PID: 16396 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1630.930301] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1630.931289] Call Trace: [ 1630.931606] dump_stack+0x107/0x167 [ 1630.932049] should_fail.cold+0x5/0xa [ 1630.932502] ? vm_area_dup+0x78/0x290 [ 1630.932844] 9pnet: Unknown protocol version 9 [ 1630.932962] should_failslab+0x5/0x20 [ 1630.932976] kmem_cache_alloc+0x5b/0x310 [ 1630.932995] vm_area_dup+0x78/0x290 [ 1630.935311] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1630.935819] ? lock_downgrade+0x6d0/0x6d0 [ 1630.936329] ? copy_page_range+0x24e9/0x3810 [ 1630.936805] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1630.937468] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1630.938050] ? avc_has_extended_perms+0xf40/0xf40 [ 1630.938630] ? copy_process+0x2b60/0x7800 [ 1630.939143] ? vm_area_alloc+0x110/0x110 [ 1630.939649] ? selinux_vm_enough_memory+0x114/0x180 [ 1630.940261] ? selinux_sb_statfs+0x250/0x250 [ 1630.940792] ? up_write+0x191/0x550 [ 1630.941241] ? percpu_counter_add_batch+0x8b/0x140 [ 1630.941786] ? __vm_enough_memory+0x184/0x360 [ 1630.942344] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1630.942965] copy_process+0x291b/0x7800 [ 1630.943470] ? __cleanup_sighand+0xb0/0xb0 [ 1630.943988] ? lock_acquire+0x197/0x470 [ 1630.944485] ? find_held_lock+0x2c/0x110 [ 1630.944982] kernel_clone+0xe7/0x980 [ 1630.945445] ? lock_downgrade+0x6d0/0x6d0 [ 1630.945963] ? find_held_lock+0x2c/0x110 [ 1630.946458] ? create_io_thread+0xf0/0xf0 [ 1630.946968] ? ksys_write+0x12d/0x260 [ 1630.947439] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1630.948029] __do_sys_fork+0x8a/0xc0 [ 1630.948487] ? kernel_thread+0xf0/0xf0 [ 1630.948973] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1630.949610] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1630.950164] ? trace_hardirqs_on+0x5b/0x180 [ 1630.950691] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1630.951246] do_syscall_64+0x33/0x40 [ 1630.951702] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1630.952315] RIP: 0033:0x7fa6a3da0b19 [ 1630.952766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1630.954964] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1630.955877] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1630.956729] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1630.957603] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1630.958443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1630.959294] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1630.966707] device lo entered promiscuous mode [ 1630.990703] FAULT_INJECTION: forcing a failure. [ 1630.990703] name failslab, interval 1, probability 0, space 0, times 0 [ 1630.993095] CPU: 1 PID: 16397 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1630.994531] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1630.996175] Call Trace: [ 1630.996724] dump_stack+0x107/0x167 [ 1630.997591] should_fail.cold+0x5/0xa [ 1630.998475] ? create_object.isra.0+0x3a/0xa20 [ 1630.999487] should_failslab+0x5/0x20 [ 1631.000362] kmem_cache_alloc+0x5b/0x310 [ 1631.001338] create_object.isra.0+0x3a/0xa20 [ 1631.002305] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1631.003450] kmem_cache_alloc+0x159/0x310 [ 1631.004345] __kernfs_new_node+0xd4/0x860 [ 1631.005225] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1631.006275] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1631.007276] ? wait_for_completion_io+0x270/0x270 [ 1631.008221] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1631.009279] kernfs_new_node+0x93/0x120 [ 1631.010103] __kernfs_create_file+0x51/0x350 [ 1631.010975] sysfs_add_file_mode_ns+0x221/0x560 [ 1631.011966] internal_create_group+0x324/0xb30 [ 1631.012860] ? sysfs_remove_group+0x170/0x170 [ 1631.013719] ? lockdep_init_map_type+0x2c7/0x780 [ 1631.014585] ? blk_queue_flag_set+0x22/0x30 [ 1631.015418] ? __loop_update_dio+0x2d2/0x690 [ 1631.016296] loop_configure+0x954/0x1480 [ 1631.017115] lo_ioctl+0xa72/0x1760 [ 1631.017825] ? avc_has_extended_perms+0x7f1/0xf40 [ 1631.018783] ? loop_set_status_old+0x250/0x250 [ 1631.019703] ? avc_ss_reset+0x180/0x180 [ 1631.020518] ? lock_acquire+0x197/0x470 [ 1631.021312] ? find_held_lock+0x2c/0x110 [ 1631.022145] ? __lock_acquire+0xbb1/0x5b00 [ 1631.023051] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1631.024100] ? generic_block_fiemap+0x60/0x60 [ 1631.025006] ? loop_set_status_old+0x250/0x250 [ 1631.025917] blkdev_ioctl+0x291/0x710 [ 1631.026677] ? blkdev_common_ioctl+0x1870/0x1870 [ 1631.027636] ? selinux_file_ioctl+0xb6/0x270 [ 1631.028527] block_ioctl+0xf9/0x140 [ 1631.029255] ? blkdev_read_iter+0x1c0/0x1c0 [ 1631.030158] __x64_sys_ioctl+0x19a/0x210 [ 1631.030981] do_syscall_64+0x33/0x40 [ 1631.031741] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1631.032757] RIP: 0033:0x7fc91209f8d7 [ 1631.033554] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1631.037256] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1631.038795] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1631.040201] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1631.041618] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1631.043068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1631.044494] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 04:37:55 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x41) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) timerfd_create(0x5, 0x80000) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @private0}, 0x1c) sendmmsg$inet6(r2, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@mcast2, r1}, 0x14) [ 1631.070742] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1631.100281] device lo left promiscuous mode [ 1631.113118] 9pnet: Unknown protocol version 9 04:37:55 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x2010, r0, 0x20052000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:37:55 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x700, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:37:55 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 52) 04:37:55 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:37:55 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 41) [ 1631.197869] FAULT_INJECTION: forcing a failure. [ 1631.197869] name failslab, interval 1, probability 0, space 0, times 0 [ 1631.200218] CPU: 0 PID: 16734 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1631.201116] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1631.202040] Call Trace: [ 1631.202340] dump_stack+0x107/0x167 [ 1631.202751] should_fail.cold+0x5/0xa [ 1631.203181] ? down_write+0xe0/0x160 [ 1631.203595] ? anon_vma_clone+0xdc/0x590 [ 1631.204050] should_failslab+0x5/0x20 [ 1631.204472] kmem_cache_alloc+0x5b/0x310 [ 1631.204927] anon_vma_clone+0xdc/0x590 [ 1631.205358] anon_vma_fork+0x82/0x640 [ 1631.205784] ? __vm_enough_memory+0x184/0x360 [ 1631.206285] copy_process+0x7218/0x7800 [ 1631.206742] ? __cleanup_sighand+0xb0/0xb0 [ 1631.207205] ? lock_acquire+0x197/0x470 [ 1631.207661] ? find_held_lock+0x2c/0x110 [ 1631.208105] kernel_clone+0xe7/0x980 [ 1631.208513] ? lock_downgrade+0x6d0/0x6d0 [ 1631.208970] ? find_held_lock+0x2c/0x110 [ 1631.209419] ? create_io_thread+0xf0/0xf0 [ 1631.209898] ? ksys_write+0x12d/0x260 [ 1631.210329] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1631.210867] __do_sys_fork+0x8a/0xc0 [ 1631.211271] ? kernel_thread+0xf0/0xf0 [ 1631.211713] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1631.212283] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1631.212851] ? trace_hardirqs_on+0x5b/0x180 [ 1631.213331] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1631.213918] do_syscall_64+0x33/0x40 [ 1631.214328] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1631.214898] RIP: 0033:0x7fc140e06b19 [ 1631.215310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1631.217324] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1631.218168] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1631.218646] device lo entered promiscuous mode [ 1631.218947] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1631.220742] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1631.221561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1631.222349] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:37:56 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000000)={'sit0\x00', r1, 0x29, 0x7f, 0xbf, 0x8001, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x80, 0x40, 0x4, 0x3}}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r4}) setsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', r2}, 0x14) [ 1631.254138] FAULT_INJECTION: forcing a failure. [ 1631.254138] name failslab, interval 1, probability 0, space 0, times 0 [ 1631.255375] CPU: 0 PID: 16793 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1631.256136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1631.257044] Call Trace: [ 1631.257336] dump_stack+0x107/0x167 [ 1631.257751] should_fail.cold+0x5/0xa [ 1631.258184] ? kobject_uevent_env+0x22b/0xf90 [ 1631.258688] ? dev_uevent_filter+0xd0/0xd0 [ 1631.259164] should_failslab+0x5/0x20 [ 1631.259586] kmem_cache_alloc_trace+0x55/0x320 [ 1631.260086] ? loop_configure+0xad2/0x1480 [ 1631.260553] ? dev_uevent_filter+0xd0/0xd0 [ 1631.261022] kobject_uevent_env+0x22b/0xf90 [ 1631.261504] loop_configure+0x116c/0x1480 [ 1631.261989] lo_ioctl+0xa72/0x1760 [ 1631.262375] ? avc_has_extended_perms+0x7f1/0xf40 [ 1631.262910] ? loop_set_status_old+0x250/0x250 [ 1631.263422] ? avc_ss_reset+0x180/0x180 [ 1631.263855] ? lock_acquire+0x197/0x470 [ 1631.264286] ? find_held_lock+0x2c/0x110 [ 1631.264740] ? __lock_acquire+0xbb1/0x5b00 [ 1631.265234] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1631.265828] ? generic_block_fiemap+0x60/0x60 [ 1631.266334] ? loop_set_status_old+0x250/0x250 [ 1631.266840] blkdev_ioctl+0x291/0x710 [ 1631.267252] ? blkdev_common_ioctl+0x1870/0x1870 [ 1631.267781] ? selinux_file_ioctl+0xb6/0x270 [ 1631.268281] block_ioctl+0xf9/0x140 [ 1631.268688] ? blkdev_read_iter+0x1c0/0x1c0 [ 1631.269170] __x64_sys_ioctl+0x19a/0x210 [ 1631.269630] do_syscall_64+0x33/0x40 [ 1631.270044] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1631.270610] RIP: 0033:0x7fc91209f8d7 [ 1631.271030] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1631.273045] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1631.273904] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1631.274690] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1631.275481] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1631.276273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1631.277059] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 04:37:56 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 49) [ 1631.317681] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1631.339556] FAULT_INJECTION: forcing a failure. [ 1631.339556] name failslab, interval 1, probability 0, space 0, times 0 [ 1631.342018] CPU: 1 PID: 16833 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1631.343472] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1631.345197] Call Trace: [ 1631.345775] dump_stack+0x107/0x167 [ 1631.346553] should_fail.cold+0x5/0xa [ 1631.347341] ? create_object.isra.0+0x3a/0xa20 [ 1631.348296] should_failslab+0x5/0x20 [ 1631.349068] kmem_cache_alloc+0x5b/0x310 [ 1631.349920] create_object.isra.0+0x3a/0xa20 [ 1631.350863] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1631.351904] kmem_cache_alloc+0x159/0x310 [ 1631.352762] vm_area_dup+0x78/0x290 [ 1631.353544] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1631.354517] ? lock_downgrade+0x6d0/0x6d0 [ 1631.355380] ? copy_page_range+0x24e9/0x3810 [ 1631.356275] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1631.357372] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1631.358334] ? avc_has_extended_perms+0xf40/0xf40 [ 1631.359309] ? copy_process+0x2b60/0x7800 [ 1631.360155] ? vm_area_alloc+0x110/0x110 [ 1631.360997] ? selinux_vm_enough_memory+0x114/0x180 [ 1631.362022] ? selinux_sb_statfs+0x250/0x250 [ 1631.362910] ? up_write+0x191/0x550 [ 1631.363661] ? percpu_counter_add_batch+0x8b/0x140 [ 1631.364675] ? __vm_enough_memory+0x184/0x360 [ 1631.365622] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1631.366706] copy_process+0x291b/0x7800 [ 1631.367550] ? __cleanup_sighand+0xb0/0xb0 [ 1631.368422] ? lock_acquire+0x197/0x470 [ 1631.369247] ? find_held_lock+0x2c/0x110 [ 1631.370091] kernel_clone+0xe7/0x980 [ 1631.370859] ? lock_downgrade+0x6d0/0x6d0 [ 1631.371732] ? find_held_lock+0x2c/0x110 [ 1631.372580] ? create_io_thread+0xf0/0xf0 [ 1631.373439] ? ksys_write+0x12d/0x260 [ 1631.374258] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1631.375245] __do_sys_fork+0x8a/0xc0 [ 1631.376000] ? kernel_thread+0xf0/0xf0 [ 1631.376826] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1631.377917] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1631.378976] ? trace_hardirqs_on+0x5b/0x180 [ 1631.379881] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1631.380939] do_syscall_64+0x33/0x40 [ 1631.381720] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1631.382754] RIP: 0033:0x7fa6a3da0b19 [ 1631.383519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1631.387280] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1631.388848] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1631.390311] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1631.391778] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1631.393224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1631.394675] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1631.593338] sr 1:0:0:0: [sr0] CDROM not ready. Make sure there is a disc in the drive. 04:38:09 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 50) 04:38:09 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:38:09 executing program 4: rename(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)='./file0\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$getflags(r0, 0x40a) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @in=@dev={0xac, 0x14, 0x14, 0x2a}, 0x4e23, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0xfffffffe, 0x6e6bba, 0x2}, {{@in=@empty, 0x0, 0x6c}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}, 0xe8) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r0, &(0x7f0000000080), 0x0, 0x40081, 0x0, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @broadcast}, 0x10) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_IO(r1, 0x2285, 0x0) ioctl$DVD_READ_STRUCT(r1, 0x5390, &(0x7f0000000440)=@manufact={0x4, 0x2, 0x800, "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"}) ftruncate(r1, 0x1000003) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='cgroup\x00') preadv2(r2, &(0x7f0000000580)=[{&(0x7f0000000380)=""/72, 0x48}], 0x1, 0x0, 0x0, 0x17) bind$inet(r2, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x29}}, 0x10) unshare(0x48020200) unshare(0x10000) 04:38:09 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)) r1 = syz_io_uring_setup(0x4d34, &(0x7f0000000140)={0x0, 0xa55f, 0x4, 0x0, 0x1fc}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000000040)=0x0, 0xffffffffffffffff) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x8, 0x100010, r1, 0x0) syz_io_uring_setup(0x5d41, &(0x7f0000000380)={0x0, 0xe91a, 0x2, 0x3, 0x13d}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000400)=0x0, &(0x7f0000000440)=0x0) syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x7, 0x0, 0x0, 0x0, 0x1}, 0xdd72) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, 0x30, r0, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) syz_io_uring_setup(0x3431, &(0x7f0000000240)={0x0, 0x8879, 0x4, 0x0, 0x9e}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000002c0)=0x0) r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, &(0x7f0000000340), 0x1) syz_io_uring_submit(r2, r5, &(0x7f0000000300)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd=r6, 0x2, {0x0, r1}, 0x2, 0xa, 0x1, {0x0, 0x0, r0}}, 0x53f8) [ 1645.154727] FAULT_INJECTION: forcing a failure. [ 1645.154727] name failslab, interval 1, probability 0, space 0, times 0 [ 1645.157995] CPU: 0 PID: 16842 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1645.159678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1645.161705] Call Trace: [ 1645.162372] dump_stack+0x107/0x167 [ 1645.163285] should_fail.cold+0x5/0xa [ 1645.164225] ? anon_vma_clone+0xdc/0x590 [ 1645.165214] should_failslab+0x5/0x20 [ 1645.166166] kmem_cache_alloc+0x5b/0x310 [ 1645.167166] anon_vma_clone+0xdc/0x590 [ 1645.168127] anon_vma_fork+0x82/0x640 [ 1645.169053] ? __vm_enough_memory+0x184/0x360 [ 1645.170164] copy_process+0x7218/0x7800 [ 1645.171178] ? __cleanup_sighand+0xb0/0xb0 [ 1645.172218] ? lock_acquire+0x197/0x470 [ 1645.173198] ? find_held_lock+0x2c/0x110 [ 1645.174219] kernel_clone+0xe7/0x980 04:38:09 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x1020, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:38:09 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r0, 0x0, 0x2) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = fcntl$dupfd(r0, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x92}, 0x40010) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) splice(r0, &(0x7f0000000000)=0x3ff, r1, &(0x7f0000000040)=0x100, 0x5, 0x8) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r4}, 0x14) 04:38:09 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 42) 04:38:09 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 53) [ 1645.175124] ? lock_downgrade+0x6d0/0x6d0 [ 1645.176304] ? find_held_lock+0x2c/0x110 [ 1645.177131] ? create_io_thread+0xf0/0xf0 [ 1645.178156] ? ksys_write+0x12d/0x260 [ 1645.178942] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1645.180120] __do_sys_fork+0x8a/0xc0 [ 1645.180883] ? kernel_thread+0xf0/0xf0 [ 1645.182033] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1645.183214] 9pnet: Insufficient options for proto=fd [ 1645.183322] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1645.185601] ? trace_hardirqs_on+0x5b/0x180 [ 1645.186698] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1645.186723] do_syscall_64+0x33/0x40 [ 1645.186750] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1645.186767] RIP: 0033:0x7fa6a3da0b19 [ 1645.186796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1645.186808] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1645.186834] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1645.186847] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1645.186861] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1645.186885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1645.203059] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1645.253207] FAULT_INJECTION: forcing a failure. [ 1645.253207] name failslab, interval 1, probability 0, space 0, times 0 [ 1645.255729] CPU: 0 PID: 16934 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1645.257164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1645.258876] Call Trace: [ 1645.259412] dump_stack+0x107/0x167 [ 1645.260166] should_fail.cold+0x5/0xa [ 1645.260950] ? create_object.isra.0+0x3a/0xa20 [ 1645.261907] should_failslab+0x5/0x20 [ 1645.262693] kmem_cache_alloc+0x5b/0x310 [ 1645.263545] create_object.isra.0+0x3a/0xa20 [ 1645.264446] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1645.265492] kmem_cache_alloc+0x159/0x310 [ 1645.266372] anon_vma_clone+0xdc/0x590 [ 1645.267189] anon_vma_fork+0x82/0x640 [ 1645.267958] ? __vm_enough_memory+0x184/0x360 [ 1645.268893] copy_process+0x7218/0x7800 [ 1645.269748] ? __cleanup_sighand+0xb0/0xb0 [ 1645.270647] ? lock_acquire+0x197/0x470 [ 1645.271466] ? find_held_lock+0x2c/0x110 [ 1645.272332] kernel_clone+0xe7/0x980 [ 1645.273117] ? lock_downgrade+0x6d0/0x6d0 [ 1645.273963] ? find_held_lock+0x2c/0x110 [ 1645.274815] ? create_io_thread+0xf0/0xf0 [ 1645.275663] ? ksys_write+0x12d/0x260 [ 1645.276466] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1645.277465] __do_sys_fork+0x8a/0xc0 [ 1645.278238] ? kernel_thread+0xf0/0xf0 [ 1645.279054] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1645.280123] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1645.281148] ? trace_hardirqs_on+0x5b/0x180 [ 1645.282032] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1645.283078] do_syscall_64+0x33/0x40 [ 1645.283830] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1645.284877] RIP: 0033:0x7fc140e06b19 [ 1645.285631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1645.289422] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1645.290989] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1645.292471] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1645.293964] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1645.295481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1645.296950] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1645.318132] FAULT_INJECTION: forcing a failure. [ 1645.318132] name failslab, interval 1, probability 0, space 0, times 0 [ 1645.320661] CPU: 0 PID: 16935 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1645.322098] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1645.323781] Call Trace: [ 1645.324321] dump_stack+0x107/0x167 [ 1645.325053] should_fail.cold+0x5/0xa [ 1645.325851] ? create_object.isra.0+0x3a/0xa20 [ 1645.326781] should_failslab+0x5/0x20 [ 1645.327567] kmem_cache_alloc+0x5b/0x310 [ 1645.328397] create_object.isra.0+0x3a/0xa20 [ 1645.329295] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1645.330340] kmem_cache_alloc_trace+0x151/0x320 [ 1645.331296] ? dev_uevent_filter+0xd0/0xd0 [ 1645.332155] kobject_uevent_env+0x22b/0xf90 [ 1645.333049] loop_configure+0x116c/0x1480 [ 1645.333905] lo_ioctl+0xa72/0x1760 [ 1645.334629] ? avc_has_extended_perms+0x7f1/0xf40 [ 1645.335606] ? loop_set_status_old+0x250/0x250 [ 1645.336536] ? avc_ss_reset+0x180/0x180 [ 1645.337347] ? lock_acquire+0x197/0x470 [ 1645.338168] ? find_held_lock+0x2c/0x110 [ 1645.338993] ? __lock_acquire+0xbb1/0x5b00 [ 1645.339903] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1645.340953] ? generic_block_fiemap+0x60/0x60 [ 1645.341882] ? loop_set_status_old+0x250/0x250 [ 1645.342791] blkdev_ioctl+0x291/0x710 [ 1645.343572] ? blkdev_common_ioctl+0x1870/0x1870 [ 1645.344538] ? selinux_file_ioctl+0xb6/0x270 [ 1645.345439] block_ioctl+0xf9/0x140 [ 1645.346179] ? blkdev_read_iter+0x1c0/0x1c0 [ 1645.347059] __x64_sys_ioctl+0x19a/0x210 [ 1645.347875] do_syscall_64+0x33/0x40 [ 1645.348638] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1645.349676] RIP: 0033:0x7fc91209f8d7 [ 1645.350453] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1645.354183] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1645.355733] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1645.357180] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1645.358631] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1645.360086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1645.361570] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 04:38:10 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:38:10 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x126c, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:38:10 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) fcntl$dupfd(r3, 0x406, r2) 04:38:10 executing program 0: r0 = syz_io_uring_setup(0x3a74, &(0x7f0000000080)={0x0, 0x4, 0x0, 0x0, 0x2e1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x769d}}, './file0\x00'}) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) fcntl$dupfd(r4, 0x406, r3) io_uring_enter(r3, 0x6677, 0xe6c3, 0x3, &(0x7f0000000140)={[0xfffffffffffffffd]}, 0x8) execveat(0xffffffffffffffff, &(0x7f0000000180)='\x00', 0x0, 0x0, 0x1100) 04:38:10 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 51) [ 1645.551966] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:38:10 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x14, 0x7, 0x1, 0x3, 0x0, 0x0, {0x7, 0x0, 0x2}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2000c854}, 0x8004) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r2, 0x0, 0x2) r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) sendmsg$NL80211_CMD_DEL_MPATH(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8016eb235fc2a128}, 0xc, &(0x7f0000000040)={&(0x7f00000001c0)={0x98, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8001, 0x7a}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x98}, 0x1, 0x0, 0x0, 0x1}, 0x40c4) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:38:10 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 54) [ 1645.632662] 9pnet: Insufficient options for proto=fd [ 1645.642344] FAULT_INJECTION: forcing a failure. [ 1645.642344] name failslab, interval 1, probability 0, space 0, times 0 [ 1645.644877] CPU: 0 PID: 17104 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1645.646361] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1645.647735] FAULT_INJECTION: forcing a failure. [ 1645.647735] name failslab, interval 1, probability 0, space 0, times 0 [ 1645.648143] Call Trace: [ 1645.648168] dump_stack+0x107/0x167 [ 1645.648194] should_fail.cold+0x5/0xa [ 1645.648221] ? create_object.isra.0+0x3a/0xa20 [ 1645.653457] should_failslab+0x5/0x20 [ 1645.654247] kmem_cache_alloc+0x5b/0x310 [ 1645.655081] create_object.isra.0+0x3a/0xa20 [ 1645.655982] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1645.657026] kmem_cache_alloc+0x159/0x310 [ 1645.657892] vm_area_dup+0x78/0x290 [ 1645.658652] ? copy_page_range+0x24e9/0x3810 [ 1645.659604] ? vm_area_alloc+0x110/0x110 [ 1645.660453] ? vm_iomap_memory+0x190/0x190 [ 1645.661375] ? __vma_link_rb+0x540/0x700 [ 1645.662229] copy_process+0x291b/0x7800 [ 1645.663083] ? __cleanup_sighand+0xb0/0xb0 [ 1645.663951] ? lock_acquire+0x197/0x470 [ 1645.664773] ? find_held_lock+0x2c/0x110 [ 1645.665612] kernel_clone+0xe7/0x980 [ 1645.666390] ? lock_downgrade+0x6d0/0x6d0 [ 1645.667235] ? find_held_lock+0x2c/0x110 [ 1645.668063] ? create_io_thread+0xf0/0xf0 [ 1645.668933] ? ksys_write+0x12d/0x260 [ 1645.669748] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1645.670798] __do_sys_fork+0x8a/0xc0 [ 1645.671561] ? kernel_thread+0xf0/0xf0 [ 1645.672412] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1645.673478] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1645.674588] ? trace_hardirqs_on+0x5b/0x180 [ 1645.675481] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1645.676595] do_syscall_64+0x33/0x40 [ 1645.677370] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1645.678442] RIP: 0033:0x7fa6a3da0b19 [ 1645.679208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1645.682953] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1645.684508] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1645.685978] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1645.687424] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1645.688874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1645.690353] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1645.691841] CPU: 1 PID: 17127 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1645.693271] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1645.694995] Call Trace: [ 1645.695545] dump_stack+0x107/0x167 [ 1645.696311] should_fail.cold+0x5/0xa [ 1645.697092] ? create_object.isra.0+0x3a/0xa20 [ 1645.698052] should_failslab+0x5/0x20 [ 1645.698828] kmem_cache_alloc+0x5b/0x310 [ 1645.699659] create_object.isra.0+0x3a/0xa20 [ 1645.700561] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1645.701598] kmem_cache_alloc+0x159/0x310 [ 1645.702482] anon_vma_clone+0xdc/0x590 [ 1645.703295] anon_vma_fork+0x82/0x640 [ 1645.704092] ? __vm_enough_memory+0x184/0x360 [ 1645.705025] copy_process+0x7218/0x7800 [ 1645.705889] ? __cleanup_sighand+0xb0/0xb0 [ 1645.706770] ? lock_acquire+0x197/0x470 [ 1645.707592] ? find_held_lock+0x2c/0x110 [ 1645.708428] kernel_clone+0xe7/0x980 [ 1645.709192] ? lock_downgrade+0x6d0/0x6d0 [ 1645.710061] ? find_held_lock+0x2c/0x110 [ 1645.710895] ? create_io_thread+0xf0/0xf0 [ 1645.711752] ? ksys_write+0x12d/0x260 [ 1645.712553] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1645.713555] __do_sys_fork+0x8a/0xc0 [ 1645.714328] ? kernel_thread+0xf0/0xf0 [ 1645.715150] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1645.716218] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1645.717270] ? trace_hardirqs_on+0x5b/0x180 [ 1645.718201] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1645.719320] do_syscall_64+0x33/0x40 [ 1645.720144] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1645.721259] RIP: 0033:0x7fc140e06b19 [ 1645.722092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1645.726085] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1645.727721] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1645.729255] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1645.730812] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1645.732408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1645.733980] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:38:10 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 43) 04:38:10 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='./file0\x00') 04:38:10 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x3d, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) [ 1645.871109] FAULT_INJECTION: forcing a failure. [ 1645.871109] name failslab, interval 1, probability 0, space 0, times 0 [ 1645.874256] CPU: 1 PID: 17297 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1645.875659] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1645.877332] Call Trace: [ 1645.877892] dump_stack+0x107/0x167 [ 1645.878639] should_fail.cold+0x5/0xa [ 1645.879413] ? __alloc_skb+0x6d/0x5b0 [ 1645.880190] should_failslab+0x5/0x20 [ 1645.880965] kmem_cache_alloc_node+0x55/0x330 [ 1645.881887] __alloc_skb+0x6d/0x5b0 [ 1645.882629] alloc_uevent_skb+0x7b/0x210 [ 1645.883456] kobject_uevent_env+0x99a/0xf90 [ 1645.884355] loop_configure+0x116c/0x1480 [ 1645.885208] lo_ioctl+0xa72/0x1760 [ 1645.885979] ? avc_has_extended_perms+0x7f1/0xf40 [ 1645.886960] ? loop_set_status_old+0x250/0x250 [ 1645.887926] ? avc_ss_reset+0x180/0x180 [ 1645.888733] ? lock_acquire+0x197/0x470 [ 1645.889547] ? find_held_lock+0x2c/0x110 [ 1645.890408] ? __lock_acquire+0xbb1/0x5b00 [ 1645.891337] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1645.892397] ? generic_block_fiemap+0x60/0x60 [ 1645.893331] ? loop_set_status_old+0x250/0x250 [ 1645.894269] blkdev_ioctl+0x291/0x710 [ 1645.895069] ? blkdev_common_ioctl+0x1870/0x1870 [ 1645.896034] ? selinux_file_ioctl+0xb6/0x270 [ 1645.896958] block_ioctl+0xf9/0x140 [ 1645.897692] ? blkdev_read_iter+0x1c0/0x1c0 [ 1645.898606] __x64_sys_ioctl+0x19a/0x210 [ 1645.899437] do_syscall_64+0x33/0x40 [ 1645.900197] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1645.901239] RIP: 0033:0x7fc91209f8d7 [ 1645.902012] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1645.905794] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1645.907431] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1645.908959] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1645.910512] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1645.912075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1645.913634] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1645.924942] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:38:10 executing program 4: rename(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)='./file0\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$getflags(r0, 0x40a) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000380)={{{@in6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, @in=@dev={0xac, 0x14, 0x14, 0x2a}, 0x4e23, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0xfffffffe, 0x6e6bba, 0x2}, {{@in=@empty, 0x0, 0x6c}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}, 0xe8) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) sendto$inet(r0, &(0x7f0000000080), 0x0, 0x40081, 0x0, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @broadcast}, 0x10) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_IO(r1, 0x2285, 0x0) ioctl$DVD_READ_STRUCT(r1, 0x5390, &(0x7f0000000440)=@manufact={0x4, 0x2, 0x800, "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"}) ftruncate(r1, 0x1000003) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='cgroup\x00') preadv2(r2, &(0x7f0000000580)=[{&(0x7f0000000380)=""/72, 0x48}], 0x1, 0x0, 0x0, 0x17) bind$inet(r2, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x29}}, 0x10) unshare(0x48020200) unshare(0x10000) 04:38:10 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:38:10 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:38:10 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 44) 04:38:10 executing program 0: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:38:10 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:38:10 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 55) [ 1646.152815] FAULT_INJECTION: forcing a failure. [ 1646.152815] name failslab, interval 1, probability 0, space 0, times 0 [ 1646.153105] FAULT_INJECTION: forcing a failure. [ 1646.153105] name failslab, interval 1, probability 0, space 0, times 0 [ 1646.155202] CPU: 0 PID: 17315 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1646.158666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1646.160412] Call Trace: [ 1646.160967] dump_stack+0x107/0x167 [ 1646.161755] should_fail.cold+0x5/0xa [ 1646.162534] ? create_object.isra.0+0x3a/0xa20 [ 1646.163473] should_failslab+0x5/0x20 [ 1646.164250] kmem_cache_alloc+0x5b/0x310 [ 1646.165086] create_object.isra.0+0x3a/0xa20 [ 1646.165990] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1646.167024] kmem_cache_alloc+0x159/0x310 [ 1646.167881] anon_vma_clone+0xdc/0x590 [ 1646.168682] anon_vma_fork+0x82/0x640 [ 1646.169473] ? __vm_enough_memory+0x184/0x360 [ 1646.170412] copy_process+0x7218/0x7800 [ 1646.171263] ? __cleanup_sighand+0xb0/0xb0 [ 1646.172134] ? lock_acquire+0x197/0x470 [ 1646.172953] ? find_held_lock+0x2c/0x110 [ 1646.173800] kernel_clone+0xe7/0x980 [ 1646.174561] ? lock_downgrade+0x6d0/0x6d0 [ 1646.175505] ? find_held_lock+0x2c/0x110 [ 1646.176317] ? create_io_thread+0xf0/0xf0 [ 1646.177151] ? ksys_write+0x12d/0x260 [ 1646.177936] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1646.178913] __do_sys_fork+0x8a/0xc0 [ 1646.179661] ? kernel_thread+0xf0/0xf0 [ 1646.180458] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1646.181503] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1646.182538] ? trace_hardirqs_on+0x5b/0x180 [ 1646.183404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1646.184434] do_syscall_64+0x33/0x40 [ 1646.185179] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1646.186210] RIP: 0033:0x7fc140e06b19 [ 1646.186955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1646.190632] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1646.192154] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1646.193576] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1646.195005] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1646.196429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1646.197861] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1646.199312] CPU: 1 PID: 17311 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1646.200543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1646.202007] Call Trace: [ 1646.202473] dump_stack+0x107/0x167 [ 1646.203118] should_fail.cold+0x5/0xa [ 1646.203795] ? create_object.isra.0+0x3a/0xa20 [ 1646.204614] should_failslab+0x5/0x20 [ 1646.205284] kmem_cache_alloc+0x5b/0x310 [ 1646.205992] ? kmem_cache_alloc_trace+0x151/0x320 [ 1646.206830] create_object.isra.0+0x3a/0xa20 [ 1646.207593] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1646.208478] __kmalloc+0x16e/0x390 [ 1646.209100] ? trace_hardirqs_on+0x5b/0x180 [ 1646.209872] kobject_get_path+0xc4/0x1d0 [ 1646.210582] kobject_uevent_env+0x251/0xf90 [ 1646.211343] loop_configure+0x116c/0x1480 [ 1646.212072] lo_ioctl+0xa72/0x1760 [ 1646.212692] ? avc_has_extended_perms+0x7f1/0xf40 [ 1646.213527] ? loop_set_status_old+0x250/0x250 [ 1646.214334] ? avc_ss_reset+0x180/0x180 [ 1646.215031] ? lock_acquire+0x197/0x470 [ 1646.215720] ? find_held_lock+0x2c/0x110 [ 1646.216494] ? __lock_acquire+0xbb1/0x5b00 [ 1646.217344] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1646.218330] ? generic_block_fiemap+0x60/0x60 [ 1646.219251] ? loop_set_status_old+0x250/0x250 [ 1646.220100] blkdev_ioctl+0x291/0x710 [ 1646.220814] ? blkdev_common_ioctl+0x1870/0x1870 [ 1646.221725] ? selinux_file_ioctl+0xb6/0x270 [ 1646.222556] block_ioctl+0xf9/0x140 [ 1646.223238] ? blkdev_read_iter+0x1c0/0x1c0 [ 1646.224042] __x64_sys_ioctl+0x19a/0x210 [ 1646.224804] do_syscall_64+0x33/0x40 [ 1646.225493] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1646.226446] RIP: 0033:0x7fc91209f8d7 [ 1646.227130] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1646.230505] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1646.231901] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1646.233210] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1646.234533] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1646.235841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1646.237153] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1646.242567] 9pnet: Insufficient options for proto=fd [ 1646.245908] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:38:24 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 52) 04:38:24 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2010, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:38:24 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'macvlan1\x00', 0x0}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r2, 0x0, 0x2) r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0) sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="280000200a00c00000252485e06ce3d0260000000800000006115f021786a0d0ef0dbbe07510d9ea96e8b987b90033f4566beef588e8b91b2a55d21e4377834b1e1150d805cd47c912c15ae5967f5efadaaedff086afbd"], 0x28}, 0x1, 0x0, 0x0, 0x44804}, 0x20002440) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) dup(r2) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f00000000c0)={@private0={0xfc, 0x0, '\x00', 0x1}, r1}, 0x14) r5 = accept(r0, 0x0, &(0x7f0000000040)) getsockopt$inet6_mreq(r5, 0x29, 0x1b, &(0x7f0000000080)={@private1}, &(0x7f0000000100)=0x14) 04:38:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r0, 0x0, 0x2) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x200f5ef, 0x0) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) r5 = mq_open(&(0x7f0000000140)='\x00', 0x800, 0x20, &(0x7f0000000180)={0x101, 0x2, 0xbe39, 0x4}) ftruncate(r5, 0x80) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) dup(r2) 04:38:24 executing program 4: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f00000000c0), 0x614000, 0x0) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000780)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_COALESCE(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="0172032dec7fd8f7029a722a000000002ef0d2d66f08097d2d7400bd10ad0000", @ANYRES32=0x0, @ANYBLOB="d77662fea97a101f78936bda3824eda0b9e07a10aa7916f6f1c1c20d6a55bb2c19933d79b1c2090c30a041f77749faa62ed7b64113961ef439008bd0ce9914e6cbd0998e548a7f1cc4034c7630274306d584c0fe2b58d3d514594377dd2ffc8b0ce5d88ccbb6bb9287a5a83891b88ee5aebc3a1a456475fc0b26e418a24307b5d4dc3f452cba1e8a871d3b"], 0x1c}}, 0x0) sendmsg$NL80211_CMD_JOIN_OCB(r2, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x20, r4, 0x10, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x401, 0x3d}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x40880}, 0x4000041) sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="00002cbd7000fcdbdf254a0000000800030002000209"], 0x1c}, 0x1, 0x0, 0x0, 0x8800}, 0x48004) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r0, &(0x7f0000000740)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000340)={&(0x7f0000000600)={0x11c, r1, 0x200, 0x70bd2b, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x4080}, 0x0) sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r0, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000480)={0x144, r1, 0x800, 0x70bd29, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xfff}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x10000}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xa7e0}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xe0000003}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x1}}]}, 0x144}, 0x1, 0x0, 0x0, 0x4040014}, 0x4000000) syz_emit_ethernet(0xc7, &(0x7f0000000380)={@multicast, @multicast, @void, {@ipv6={0x86dd, @generic={0x8, 0x6, "e81d14", 0x91, 0x3c, 0xff, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, @mcast1, {[@hopopts={0x0, 0x3, '\x00', [@enc_lim={0x4, 0x1, 0x8}, @enc_lim={0x4, 0x1, 0x6}, @hao={0xc9, 0x10, @private2}]}, @routing={0x11, 0xa, 0x2, 0x5, 0x0, [@mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, @private1={0xfc, 0x1, '\x00', 0x1}]}, @dstopts={0x2f, 0x0, '\x00', [@jumbo={0xc2, 0x4, 0xfff}]}], "6b32b3333a7032bbd1"}}}}}, 0x0) clock_gettime(0x6, &(0x7f0000000000)) 04:38:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 45) 04:38:24 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:38:24 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 56) [ 1659.634754] FAULT_INJECTION: forcing a failure. [ 1659.634754] name failslab, interval 1, probability 0, space 0, times 0 [ 1659.637186] CPU: 1 PID: 17543 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1659.638609] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1659.640272] Call Trace: [ 1659.640811] dump_stack+0x107/0x167 [ 1659.641555] should_fail.cold+0x5/0xa [ 1659.642352] ? down_write+0xe0/0x160 [ 1659.643107] ? anon_vma_clone+0xdc/0x590 [ 1659.643939] should_failslab+0x5/0x20 [ 1659.644710] kmem_cache_alloc+0x5b/0x310 [ 1659.645542] anon_vma_clone+0xdc/0x590 [ 1659.646350] anon_vma_fork+0x82/0x640 [ 1659.647118] ? __vm_enough_memory+0x184/0x360 [ 1659.648028] copy_process+0x7218/0x7800 [ 1659.648869] ? __cleanup_sighand+0xb0/0xb0 [ 1659.649729] ? lock_acquire+0x197/0x470 [ 1659.650555] ? find_held_lock+0x2c/0x110 [ 1659.651381] kernel_clone+0xe7/0x980 [ 1659.652131] ? lock_downgrade+0x6d0/0x6d0 [ 1659.652962] ? find_held_lock+0x2c/0x110 [ 1659.653780] ? create_io_thread+0xf0/0xf0 [ 1659.654636] ? ksys_write+0x12d/0x260 [ 1659.655421] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1659.656405] __do_sys_fork+0x8a/0xc0 [ 1659.657156] ? kernel_thread+0xf0/0xf0 [ 1659.657983] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1659.659038] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1659.660072] ? trace_hardirqs_on+0x5b/0x180 [ 1659.660944] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1659.661999] do_syscall_64+0x33/0x40 [ 1659.662754] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1659.663787] RIP: 0033:0x7fa6a3da0b19 [ 1659.664538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1659.668229] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1659.669755] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1659.671193] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1659.672619] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1659.674056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1659.675484] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1659.691429] FAULT_INJECTION: forcing a failure. [ 1659.691429] name failslab, interval 1, probability 0, space 0, times 0 [ 1659.693963] CPU: 0 PID: 17558 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1659.694132] 9pnet: Insufficient options for proto=fd [ 1659.695353] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1659.698466] Call Trace: [ 1659.698488] dump_stack+0x107/0x167 [ 1659.698515] should_fail.cold+0x5/0xa [ 1659.700496] ? __alloc_skb+0x6d/0x5b0 [ 1659.701264] should_failslab+0x5/0x20 [ 1659.702053] kmem_cache_alloc_node+0x55/0x330 [ 1659.702959] __alloc_skb+0x6d/0x5b0 [ 1659.703698] alloc_uevent_skb+0x7b/0x210 [ 1659.704535] kobject_uevent_env+0x99a/0xf90 [ 1659.705422] loop_configure+0x116c/0x1480 [ 1659.706290] lo_ioctl+0xa72/0x1760 [ 1659.707011] ? avc_has_extended_perms+0x7f1/0xf40 [ 1659.707992] ? loop_set_status_old+0x250/0x250 [ 1659.708912] ? avc_ss_reset+0x180/0x180 [ 1659.709713] ? lock_acquire+0x197/0x470 [ 1659.710518] ? find_held_lock+0x2c/0x110 [ 1659.711348] ? __lock_acquire+0xbb1/0x5b00 [ 1659.712254] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1659.713307] ? generic_block_fiemap+0x60/0x60 [ 1659.714235] ? loop_set_status_old+0x250/0x250 [ 1659.715150] blkdev_ioctl+0x291/0x710 [ 1659.715915] ? blkdev_common_ioctl+0x1870/0x1870 [ 1659.716866] ? selinux_file_ioctl+0xb6/0x270 [ 1659.717755] block_ioctl+0xf9/0x140 [ 1659.718493] ? blkdev_read_iter+0x1c0/0x1c0 [ 1659.719357] __x64_sys_ioctl+0x19a/0x210 [ 1659.720176] do_syscall_64+0x33/0x40 [ 1659.720926] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1659.721964] RIP: 0033:0x7fc91209f8d7 [ 1659.722712] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1659.726384] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1659.727909] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1659.729334] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1659.730769] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1659.732197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1659.733618] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1659.737255] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1659.750944] FAULT_INJECTION: forcing a failure. [ 1659.750944] name failslab, interval 1, probability 0, space 0, times 0 [ 1659.753256] CPU: 0 PID: 17588 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1659.754657] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1659.756318] Call Trace: [ 1659.756852] dump_stack+0x107/0x167 [ 1659.757599] should_fail.cold+0x5/0xa [ 1659.758382] ? anon_vma_fork+0xf1/0x640 [ 1659.759198] should_failslab+0x5/0x20 [ 1659.759978] kmem_cache_alloc+0x5b/0x310 [ 1659.760931] anon_vma_fork+0xf1/0x640 [ 1659.761719] ? __vm_enough_memory+0x184/0x360 [ 1659.762663] copy_process+0x7218/0x7800 [ 1659.763522] ? __cleanup_sighand+0xb0/0xb0 [ 1659.764395] ? lock_acquire+0x197/0x470 [ 1659.765217] ? find_held_lock+0x2c/0x110 [ 1659.766060] kernel_clone+0xe7/0x980 [ 1659.766833] ? lock_downgrade+0x6d0/0x6d0 [ 1659.767682] ? find_held_lock+0x2c/0x110 [ 1659.768516] ? create_io_thread+0xf0/0xf0 [ 1659.769368] ? ksys_write+0x12d/0x260 [ 1659.770152] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1659.771128] __do_sys_fork+0x8a/0xc0 [ 1659.771885] ? kernel_thread+0xf0/0xf0 [ 1659.772686] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1659.773747] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1659.774789] ? trace_hardirqs_on+0x5b/0x180 [ 1659.775670] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1659.776706] do_syscall_64+0x33/0x40 [ 1659.777469] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1659.778506] RIP: 0033:0x7fc140e06b19 [ 1659.779266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1659.782938] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1659.784507] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1659.785951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1659.787376] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1659.788834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1659.790264] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:38:24 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:38:24 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)=0x0) io_uring_enter(r0, 0x3, 0x7a3b, 0x2, &(0x7f0000000280)={[0x4]}, 0x8) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000440)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x231}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000400)=ANY=[@ANYBLOB="000000004b57000009d601b3", @ANYRES32=r2, @ANYBLOB="061a002e2f66696c6531002c"]) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x110, r6, 0x8000000) syz_io_uring_submit(r5, r1, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x3, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0x9) r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r7, 0x0, 0x2) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x200f5ef, 0x0) io_uring_enter(0xffffffffffffffff, 0x6221, 0x67c4, 0x0, &(0x7f0000000480)={[0xffffffff]}, 0x8) r8 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) r9 = openat2(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)={0x115c42, 0x40}, 0x18) openat(r9, &(0x7f0000000240)='./file0\x00', 0x200, 0x40) copy_file_range(r8, 0x0, r7, 0x0, 0x200f5ef, 0x0) io_uring_enter(r8, 0x5b36, 0xac53, 0x3, &(0x7f0000000040)={[0x9]}, 0x8) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1659.813976] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1659.864620] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1659.867417] 9pnet: Insufficient options for proto=fd 04:38:24 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 53) [ 1659.958024] FAULT_INJECTION: forcing a failure. [ 1659.958024] name failslab, interval 1, probability 0, space 0, times 0 [ 1659.960520] CPU: 0 PID: 17835 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1659.961926] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1659.963611] Call Trace: [ 1659.964151] dump_stack+0x107/0x167 [ 1659.964895] should_fail.cold+0x5/0xa [ 1659.965667] ? create_object.isra.0+0x3a/0xa20 [ 1659.966601] should_failslab+0x5/0x20 [ 1659.967367] kmem_cache_alloc+0x5b/0x310 [ 1659.968190] create_object.isra.0+0x3a/0xa20 [ 1659.969074] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1659.970130] kmem_cache_alloc+0x159/0x310 [ 1659.970971] anon_vma_clone+0xdc/0x590 [ 1659.971771] anon_vma_fork+0x82/0x640 [ 1659.972546] ? __vm_enough_memory+0x184/0x360 [ 1659.973473] copy_process+0x7218/0x7800 [ 1659.974318] ? __cleanup_sighand+0xb0/0xb0 [ 1659.975185] ? lock_acquire+0x197/0x470 [ 1659.975992] ? find_held_lock+0x2c/0x110 [ 1659.976822] kernel_clone+0xe7/0x980 [ 1659.977574] ? lock_downgrade+0x6d0/0x6d0 [ 1659.978427] ? find_held_lock+0x2c/0x110 [ 1659.979243] ? create_io_thread+0xf0/0xf0 [ 1659.980079] ? ksys_write+0x12d/0x260 [ 1659.980856] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1659.981831] __do_sys_fork+0x8a/0xc0 [ 1659.982597] ? kernel_thread+0xf0/0xf0 [ 1659.983399] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1659.984474] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1659.985503] ? trace_hardirqs_on+0x5b/0x180 [ 1659.986388] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1659.987428] do_syscall_64+0x33/0x40 [ 1659.988191] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1659.989218] RIP: 0033:0x7fa6a3da0b19 [ 1659.989980] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1659.993645] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1659.995182] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1659.996608] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1659.998041] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1659.999465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1660.000890] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:38:38 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 54) 04:38:38 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000000)={'gre0\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:38:38 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:38:38 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 46) 04:38:38 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x0) mknodat$null(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1, 0x103) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) vmsplice(r0, &(0x7f0000000440)=[{&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000001740)="85f471f94f9e330e1f2cc5ed5b52ddcf1ac27ab9a4c721ed12762552bd4650bffd5b9ceffb715c4d4606803b5adb1856cb3a0927f23a6db24f136523af7ad1cff3e3e8d20390febebbb91f68dd88a5d6709830e08f7c4b5d1f238ef7136bf9e4ec2b21223ef25aaa954405cb033530e0cdbc479489614d1508de4ddf7b832bb8e6e0a0dfa7df4bbb217da11742623d1a620184a588a045ab831f1a97b1324610cf5fa44307986bf8320ace29306cc0fc435c83682c0fabe5feced42e6d37ddf87ea37980c8bd59", 0xc7}, {&(0x7f0000000300)="41f7c6cb02e6f0cea57ae3dc32bf9085aac428cc10bdba966844969002fbde831c7e609f6b2eb81631d80b1bfd28d9c381dae8f0be68da417dfdd14f4ceb31e0852f6fc844473645f5989357c889f2a742b9028484454cc1d61bd2dc19ff35be493093c5fc25aec5600f54f359a1eb9794b73a32ffc8fe7338095ed91a40c4", 0x7f}, {&(0x7f0000000180)="ee361e46f7455cd05b04a571445e3a6e4f543ab6581644", 0x17}], 0x4, 0x4) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file1\x00', 0x1000) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r2, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {&(0x7f0000003640)=""/128, 0x80}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$FICLONE(r4, 0x40049409, r3) getsockopt$inet6_int(r3, 0x29, 0x43, 0x0, &(0x7f0000000080)) lseek(r2, 0x27b, 0x2) 04:38:38 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6c12, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:38:38 executing program 0: r0 = syz_io_uring_setup(0xa0f, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x260}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x1, 0x4007, @fd_index=0x9, 0x3, 0x0, 0x0, 0x8}, 0x7fffffff) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:38:38 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 57) [ 1673.797182] FAULT_INJECTION: forcing a failure. [ 1673.797182] name failslab, interval 1, probability 0, space 0, times 0 [ 1673.799594] CPU: 0 PID: 17876 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1673.800989] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1673.801925] 9pnet: Insufficient options for proto=fd [ 1673.802673] Call Trace: [ 1673.802696] dump_stack+0x107/0x167 [ 1673.802731] should_fail.cold+0x5/0xa [ 1673.805700] ? create_object.isra.0+0x3a/0xa20 [ 1673.806638] should_failslab+0x5/0x20 [ 1673.807408] kmem_cache_alloc+0x5b/0x310 [ 1673.808229] ? kmem_cache_alloc_trace+0x151/0x320 [ 1673.809210] create_object.isra.0+0x3a/0xa20 [ 1673.810123] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1673.810148] __kmalloc+0x16e/0x390 [ 1673.810164] ? trace_hardirqs_on+0x5b/0x180 [ 1673.810191] kobject_get_path+0xc4/0x1d0 [ 1673.810216] kobject_uevent_env+0x251/0xf90 [ 1673.810253] loop_configure+0x116c/0x1480 [ 1673.810286] lo_ioctl+0xa72/0x1760 [ 1673.810308] ? avc_has_extended_perms+0x7f1/0xf40 [ 1673.810331] ? loop_set_status_old+0x250/0x250 [ 1673.810355] ? avc_ss_reset+0x180/0x180 [ 1673.810381] ? lock_acquire+0x197/0x470 [ 1673.819591] ? find_held_lock+0x2c/0x110 [ 1673.820425] ? __lock_acquire+0xbb1/0x5b00 [ 1673.821334] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1673.822416] ? generic_block_fiemap+0x60/0x60 [ 1673.823330] ? loop_set_status_old+0x250/0x250 [ 1673.824248] blkdev_ioctl+0x291/0x710 [ 1673.825019] ? blkdev_common_ioctl+0x1870/0x1870 [ 1673.825975] ? selinux_file_ioctl+0xb6/0x270 [ 1673.826886] block_ioctl+0xf9/0x140 [ 1673.827622] ? blkdev_read_iter+0x1c0/0x1c0 [ 1673.828491] __x64_sys_ioctl+0x19a/0x210 [ 1673.829316] do_syscall_64+0x33/0x40 [ 1673.830081] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1673.831110] RIP: 0033:0x7fc91209f8d7 [ 1673.831865] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1673.835569] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1673.837105] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1673.838544] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1673.839986] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1673.841426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1673.842871] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1673.868931] FAULT_INJECTION: forcing a failure. [ 1673.868931] name failslab, interval 1, probability 0, space 0, times 0 [ 1673.871239] CPU: 0 PID: 17890 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1673.872620] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1673.874307] Call Trace: [ 1673.874850] dump_stack+0x107/0x167 [ 1673.875600] should_fail.cold+0x5/0xa [ 1673.876387] ? anon_vma_clone+0xdc/0x590 [ 1673.877243] should_failslab+0x5/0x20 [ 1673.878006] kmem_cache_alloc+0x5b/0x310 [ 1673.878854] anon_vma_clone+0xdc/0x590 [ 1673.879653] anon_vma_fork+0x82/0x640 [ 1673.880427] ? __vm_enough_memory+0x184/0x360 [ 1673.881339] copy_process+0x7218/0x7800 [ 1673.882203] ? __cleanup_sighand+0xb0/0xb0 [ 1673.883065] ? lock_acquire+0x197/0x470 [ 1673.883877] ? find_held_lock+0x2c/0x110 [ 1673.884703] kernel_clone+0xe7/0x980 [ 1673.885455] ? lock_downgrade+0x6d0/0x6d0 [ 1673.886295] ? find_held_lock+0x2c/0x110 [ 1673.887113] ? create_io_thread+0xf0/0xf0 [ 1673.887956] ? ksys_write+0x12d/0x260 04:38:38 executing program 0: syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140), 0x6e, &(0x7f0000000240)=[{&(0x7f0000000040)=""/2, 0x2}, {&(0x7f00000001c0)=""/16, 0x10}], 0x2, &(0x7f0000000280)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}, 0x12040) io_uring_enter(r2, 0x60ce, 0x56ed, 0x1, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1673.888735] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1673.889847] __do_sys_fork+0x8a/0xc0 [ 1673.890623] ? kernel_thread+0xf0/0xf0 [ 1673.891436] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1673.892488] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1673.893537] ? trace_hardirqs_on+0x5b/0x180 [ 1673.894416] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1673.895473] do_syscall_64+0x33/0x40 [ 1673.896228] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1673.897274] RIP: 0033:0x7fa6a3da0b19 [ 1673.898027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1673.901743] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1673.903309] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1673.904751] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1673.906191] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1673.907639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1673.909075] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1673.913891] FAULT_INJECTION: forcing a failure. [ 1673.913891] name failslab, interval 1, probability 0, space 0, times 0 [ 1673.916340] CPU: 0 PID: 17884 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1673.917740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1673.919409] Call Trace: [ 1673.919946] dump_stack+0x107/0x167 [ 1673.920692] should_fail.cold+0x5/0xa [ 1673.921471] ? create_object.isra.0+0x3a/0xa20 [ 1673.922404] should_failslab+0x5/0x20 [ 1673.923191] kmem_cache_alloc+0x5b/0x310 [ 1673.924028] create_object.isra.0+0x3a/0xa20 [ 1673.924920] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1673.925954] kmem_cache_alloc+0x159/0x310 [ 1673.926820] anon_vma_fork+0xf1/0x640 [ 1673.927589] ? __vm_enough_memory+0x184/0x360 [ 1673.928499] copy_process+0x7218/0x7800 [ 1673.929340] ? __cleanup_sighand+0xb0/0xb0 [ 1673.930217] ? lock_acquire+0x197/0x470 [ 1673.931028] ? find_held_lock+0x2c/0x110 [ 1673.931854] kernel_clone+0xe7/0x980 [ 1673.932608] ? lock_downgrade+0x6d0/0x6d0 [ 1673.933447] ? find_held_lock+0x2c/0x110 [ 1673.934287] ? create_io_thread+0xf0/0xf0 [ 1673.935128] ? ksys_write+0x12d/0x260 [ 1673.935903] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1673.936886] __do_sys_fork+0x8a/0xc0 [ 1673.937637] ? kernel_thread+0xf0/0xf0 [ 1673.938455] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1673.939511] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1673.940547] ? trace_hardirqs_on+0x5b/0x180 [ 1673.941419] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1673.942480] do_syscall_64+0x33/0x40 [ 1673.943238] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1673.944270] RIP: 0033:0x7fc140e06b19 [ 1673.945027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1673.948736] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1673.950283] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1673.951723] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1673.953164] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1673.954622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1673.956066] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:38:38 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:38:38 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xedc0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1674.053237] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1674.107210] 9pnet: Insufficient options for proto=fd 04:38:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 47) 04:38:56 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x0) mknodat$null(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1, 0x103) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) vmsplice(r0, &(0x7f0000000440)=[{&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000001740)="85f471f94f9e330e1f2cc5ed5b52ddcf1ac27ab9a4c721ed12762552bd4650bffd5b9ceffb715c4d4606803b5adb1856cb3a0927f23a6db24f136523af7ad1cff3e3e8d20390febebbb91f68dd88a5d6709830e08f7c4b5d1f238ef7136bf9e4ec2b21223ef25aaa954405cb033530e0cdbc479489614d1508de4ddf7b832bb8e6e0a0dfa7df4bbb217da11742623d1a620184a588a045ab831f1a97b1324610cf5fa44307986bf8320ace29306cc0fc435c83682c0fabe5feced42e6d37ddf87ea37980c8bd59", 0xc7}, {&(0x7f0000000300)="41f7c6cb02e6f0cea57ae3dc32bf9085aac428cc10bdba966844969002fbde831c7e609f6b2eb81631d80b1bfd28d9c381dae8f0be68da417dfdd14f4ceb31e0852f6fc844473645f5989357c889f2a742b9028484454cc1d61bd2dc19ff35be493093c5fc25aec5600f54f359a1eb9794b73a32ffc8fe7338095ed91a40c4", 0x7f}, {&(0x7f0000000180)="ee361e46f7455cd05b04a571445e3a6e4f543ab6581644", 0x17}], 0x4, 0x4) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file1\x00', 0x1000) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r2, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {&(0x7f0000003640)=""/128, 0x80}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$FICLONE(r4, 0x40049409, r3) getsockopt$inet6_int(r3, 0x29, 0x43, 0x0, &(0x7f0000000080)) lseek(r2, 0x27b, 0x2) 04:38:56 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x80000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:38:56 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 55) 04:38:56 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 58) 04:38:56 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x300, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:38:56 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) [ 1691.881692] FAULT_INJECTION: forcing a failure. [ 1691.881692] name failslab, interval 1, probability 0, space 0, times 0 [ 1691.883110] CPU: 0 PID: 18327 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1691.883948] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1691.884945] Call Trace: [ 1691.885276] dump_stack+0x107/0x167 [ 1691.885730] should_fail.cold+0x5/0xa [ 1691.886199] ? anon_vma_fork+0x1ff/0x640 [ 1691.886728] should_failslab+0x5/0x20 [ 1691.887194] kmem_cache_alloc+0x5b/0x310 [ 1691.887691] anon_vma_fork+0x1ff/0x640 [ 1691.888174] copy_process+0x7218/0x7800 [ 1691.888683] ? __cleanup_sighand+0xb0/0xb0 [ 1691.889205] ? lock_acquire+0x197/0x470 [ 1691.889698] ? find_held_lock+0x2c/0x110 [ 1691.890196] kernel_clone+0xe7/0x980 [ 1691.890666] ? lock_downgrade+0x6d0/0x6d0 [ 1691.891166] ? find_held_lock+0x2c/0x110 [ 1691.891654] ? create_io_thread+0xf0/0xf0 [ 1691.892162] ? ksys_write+0x12d/0x260 [ 1691.892630] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1691.893212] __do_sys_fork+0x8a/0xc0 [ 1691.893658] ? kernel_thread+0xf0/0xf0 [ 1691.894138] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1691.894804] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1691.895446] ? trace_hardirqs_on+0x5b/0x180 [ 1691.895984] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1691.896625] do_syscall_64+0x33/0x40 [ 1691.897101] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1691.897735] RIP: 0033:0x7fc140e06b19 [ 1691.898217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1691.900503] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1691.901457] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1691.902364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1691.903248] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1691.904148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1691.905057] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1691.911661] FAULT_INJECTION: forcing a failure. [ 1691.911661] name failslab, interval 1, probability 0, space 0, times 0 [ 1691.913203] CPU: 0 PID: 18333 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1691.914060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1691.915101] Call Trace: [ 1691.915423] dump_stack+0x107/0x167 [ 1691.915863] should_fail.cold+0x5/0xa [ 1691.916317] ? create_object.isra.0+0x3a/0xa20 [ 1691.916858] should_failslab+0x5/0x20 [ 1691.917305] kmem_cache_alloc+0x5b/0x310 [ 1691.917792] create_object.isra.0+0x3a/0xa20 [ 1691.918317] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1691.918619] device lo left promiscuous mode [ 1691.918916] kmem_cache_alloc+0x159/0x310 [ 1691.918934] anon_vma_clone+0xdc/0x590 [ 1691.918955] anon_vma_fork+0x82/0x640 [ 1691.918969] ? __vm_enough_memory+0x184/0x360 [ 1691.918991] copy_process+0x7218/0x7800 [ 1691.922306] ? __cleanup_sighand+0xb0/0xb0 [ 1691.922838] ? lock_acquire+0x197/0x470 [ 1691.923249] 9pnet: Insufficient options for proto=fd [ 1691.923342] ? find_held_lock+0x2c/0x110 [ 1691.924860] kernel_clone+0xe7/0x980 [ 1691.925323] ? lock_downgrade+0x6d0/0x6d0 [ 1691.925842] ? find_held_lock+0x2c/0x110 [ 1691.926864] ? create_io_thread+0xf0/0xf0 04:38:56 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0xaf4a7d72fd2c8441, 0x30, r0, 0x8000000) r3 = syz_io_uring_setup(0x2e9c, &(0x7f0000000240)={0x0, 0x92f7, 0x0, 0x3, 0x3cd, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000002c0), &(0x7f0000000300)) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3, 0x12, r0, 0x0) syz_io_uring_submit(r5, r2, &(0x7f00000001c0)=@IORING_OP_OPENAT={0x12, 0x5, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)='./file0\x00', 0x4c, 0x40, 0x12345}, 0x7e60) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) fsetxattr$security_selinux(r4, &(0x7f0000000040), &(0x7f0000000140)='system_u:object_r:public_content_rw_t:s0\x00', 0x29, 0x3) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1691.926879] ? ksys_write+0x12d/0x260 [ 1691.926898] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1691.926916] __do_sys_fork+0x8a/0xc0 [ 1691.926928] ? kernel_thread+0xf0/0xf0 [ 1691.926952] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1691.926964] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1691.926973] ? trace_hardirqs_on+0x5b/0x180 [ 1691.926986] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1691.926998] do_syscall_64+0x33/0x40 [ 1691.927011] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1691.927019] RIP: 0033:0x7fa6a3da0b19 [ 1691.927031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1691.927038] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1691.927050] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1691.927057] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1691.927064] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1691.927071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1691.927078] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1691.947281] FAULT_INJECTION: forcing a failure. [ 1691.947281] name failslab, interval 1, probability 0, space 0, times 0 [ 1691.947294] CPU: 0 PID: 18336 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1691.947301] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1691.947305] Call Trace: [ 1691.947316] dump_stack+0x107/0x167 [ 1691.947331] should_fail.cold+0x5/0xa [ 1691.947348] should_failslab+0x5/0x20 [ 1691.947361] __kmalloc_node_track_caller+0x74/0x3b0 [ 1691.947373] ? alloc_uevent_skb+0x7b/0x210 [ 1691.947389] __alloc_skb+0xb1/0x5b0 [ 1691.947405] alloc_uevent_skb+0x7b/0x210 [ 1691.947419] kobject_uevent_env+0x99a/0xf90 [ 1691.947442] loop_configure+0x116c/0x1480 [ 1691.947461] lo_ioctl+0xa72/0x1760 [ 1691.947475] ? avc_has_extended_perms+0x7f1/0xf40 [ 1691.947489] ? loop_set_status_old+0x250/0x250 [ 1691.947504] ? avc_ss_reset+0x180/0x180 [ 1691.947517] ? lock_acquire+0x197/0x470 [ 1691.947527] ? find_held_lock+0x2c/0x110 [ 1691.947546] ? __lock_acquire+0xbb1/0x5b00 [ 1691.947590] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1691.947602] ? generic_block_fiemap+0x60/0x60 [ 1691.947620] ? loop_set_status_old+0x250/0x250 [ 1691.947630] blkdev_ioctl+0x291/0x710 [ 1691.947642] ? blkdev_common_ioctl+0x1870/0x1870 [ 1691.947656] ? selinux_file_ioctl+0xb6/0x270 [ 1691.947671] block_ioctl+0xf9/0x140 [ 1691.947681] ? blkdev_read_iter+0x1c0/0x1c0 [ 1691.947694] __x64_sys_ioctl+0x19a/0x210 [ 1691.947709] do_syscall_64+0x33/0x40 [ 1691.947722] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1691.947729] RIP: 0033:0x7fc91209f8d7 [ 1691.947741] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1691.947751] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1691.947764] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1691.947772] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1691.947779] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1691.947786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1691.947793] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1691.956923] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1691.962446] audit: type=1400 audit(1698554336.776:16): avc: denied { relabelto } for pid=18353 comm="syz-executor.0" name="RAWv6" dev="sockfs" ino=34507 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:public_content_rw_t:s0 tclass=rawip_socket permissive=1 [ 1692.050320] device lo entered promiscuous mode 04:38:56 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r2}, 0x14) 04:38:56 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x91}, 0x2000c000) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:38:56 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 59) 04:38:56 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xe0ffff, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:38:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 48) 04:38:56 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x500, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1692.133305] device lo left promiscuous mode 04:38:56 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 56) [ 1692.143501] FAULT_INJECTION: forcing a failure. [ 1692.143501] name failslab, interval 1, probability 0, space 0, times 0 [ 1692.144798] CPU: 0 PID: 18556 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1692.145553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1692.146444] Call Trace: [ 1692.146739] dump_stack+0x107/0x167 [ 1692.147139] should_fail.cold+0x5/0xa [ 1692.147561] ? create_object.isra.0+0x3a/0xa20 [ 1692.148057] should_failslab+0x5/0x20 [ 1692.148468] kmem_cache_alloc+0x5b/0x310 [ 1692.148913] create_object.isra.0+0x3a/0xa20 [ 1692.149388] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1692.149941] kmem_cache_alloc+0x159/0x310 [ 1692.150408] anon_vma_fork+0x1ff/0x640 [ 1692.150836] copy_process+0x7218/0x7800 [ 1692.151291] ? __cleanup_sighand+0xb0/0xb0 [ 1692.151759] ? lock_acquire+0x197/0x470 [ 1692.152193] ? find_held_lock+0x2c/0x110 [ 1692.152634] kernel_clone+0xe7/0x980 [ 1692.153051] ? lock_downgrade+0x6d0/0x6d0 [ 1692.153506] ? find_held_lock+0x2c/0x110 [ 1692.153951] ? create_io_thread+0xf0/0xf0 [ 1692.154429] ? ksys_write+0x12d/0x260 [ 1692.154859] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1692.155386] __do_sys_fork+0x8a/0xc0 [ 1692.155824] ? kernel_thread+0xf0/0xf0 [ 1692.156256] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1692.156854] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1692.157408] ? trace_hardirqs_on+0x5b/0x180 [ 1692.157906] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1692.158478] do_syscall_64+0x33/0x40 [ 1692.158897] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1692.159447] RIP: 0033:0x7fc140e06b19 [ 1692.159875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1692.161831] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1692.162722] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1692.163529] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1692.164358] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1692.165173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1692.166003] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1692.181561] 9pnet: Insufficient options for proto=fd [ 1692.185739] FAULT_INJECTION: forcing a failure. [ 1692.185739] name failslab, interval 1, probability 0, space 0, times 0 [ 1692.187030] CPU: 0 PID: 18564 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1692.187788] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1692.188679] Call Trace: [ 1692.188974] dump_stack+0x107/0x167 [ 1692.189368] should_fail.cold+0x5/0xa [ 1692.189787] ? anon_vma_fork+0xf1/0x640 [ 1692.190229] should_failslab+0x5/0x20 [ 1692.190667] kmem_cache_alloc+0x5b/0x310 [ 1692.191108] anon_vma_fork+0xf1/0x640 [ 1692.191531] ? __vm_enough_memory+0x184/0x360 [ 1692.192025] copy_process+0x7218/0x7800 [ 1692.192473] ? __cleanup_sighand+0xb0/0xb0 [ 1692.192931] ? lock_acquire+0x197/0x470 [ 1692.193377] ? find_held_lock+0x2c/0x110 [ 1692.193822] kernel_clone+0xe7/0x980 [ 1692.194225] ? lock_downgrade+0x6d0/0x6d0 [ 1692.194677] ? find_held_lock+0x2c/0x110 [ 1692.195109] ? create_io_thread+0xf0/0xf0 [ 1692.195564] ? ksys_write+0x12d/0x260 [ 1692.195982] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1692.196504] __do_sys_fork+0x8a/0xc0 [ 1692.196907] ? kernel_thread+0xf0/0xf0 [ 1692.197339] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1692.197901] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1692.198458] ? trace_hardirqs_on+0x5b/0x180 [ 1692.198923] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1692.199443] FAULT_INJECTION: forcing a failure. [ 1692.199443] name failslab, interval 1, probability 0, space 0, times 0 [ 1692.199471] do_syscall_64+0x33/0x40 [ 1692.199493] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1692.202681] RIP: 0033:0x7fa6a3da0b19 [ 1692.203087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1692.205162] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1692.205963] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1692.206795] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1692.207595] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1692.208409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1692.209224] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1692.210079] CPU: 1 PID: 18559 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1692.211517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1692.213220] Call Trace: [ 1692.213773] dump_stack+0x107/0x167 [ 1692.214546] should_fail.cold+0x5/0xa [ 1692.215336] should_failslab+0x5/0x20 [ 1692.216102] __kmalloc_node_track_caller+0x74/0x3b0 [ 1692.217126] ? alloc_uevent_skb+0x7b/0x210 [ 1692.218000] __alloc_skb+0xb1/0x5b0 [ 1692.218749] alloc_uevent_skb+0x7b/0x210 [ 1692.219582] kobject_uevent_env+0x99a/0xf90 [ 1692.220468] loop_configure+0x116c/0x1480 [ 1692.221331] lo_ioctl+0xa72/0x1760 [ 1692.222063] ? avc_has_extended_perms+0x7f1/0xf40 04:38:57 executing program 0: setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000040)='cubic\x00', 0x6) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000340)=0x0) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x4, 0x20010, r0, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0) r3 = socket$inet6_icmp(0xa, 0x2, 0x3a) r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000140), &(0x7f0000000240)={0x0, 0xfb, 0xd0, 0x5, 0x80, "cb7e33c01959b91e48d32a1029b44083", "d27606604c766bac74a1ed1b7cf58213fe6a98a4b96bdd554d58fbe3c123e21f279812e71c0f88921e252b9ce7d797dd3e70122639d162bb0fb9c368e9acbec497e72b0d2589de0aa92cf7a3e23270b7f4c05491aac2036ddd8bdb1c36061466ec2dc88b9b6e8737557ff8330c2717e3270ea3fb092b1eaa9b635b3895427b59349b661ee1cb822bd3ae7eefd97bb4b3bbaa6eca0345d7274339dbc097245df8fafd475e9b77b48958f172ce9edf91affd1b18d40690f5fb355fe8"}, 0xd0, 0x0) getsockopt$sock_linger(r3, 0x1, 0xd, &(0x7f0000000180), &(0x7f00000001c0)=0x8) r5 = fsmount(0xffffffffffffffff, 0x1, 0x8) io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000004, 0x10010, r0, 0x8000000) syz_io_uring_setup(0x664a, &(0x7f0000000380)={0x0, 0x6ff9, 0x20, 0x0, 0x35, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000400)=0x0) r8 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r9 = syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x7f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000240)) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r10, 0x0, &(0x7f0000000380)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd, 0x5ab, 0x0, 0x1, 0x4, 0x1, {0x0, r11}}, 0x401) syz_io_uring_submit(r6, r7, &(0x7f0000000440)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r11}}, 0xf5) syz_io_uring_submit(r2, r1, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r4, 0x5, 0x0, 0x400}, 0x8) io_uring_enter(r9, 0x6e99, 0xb97, 0x2, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1692.223056] ? loop_set_status_old+0x250/0x250 [ 1692.224135] ? avc_ss_reset+0x180/0x180 [ 1692.224955] ? lock_acquire+0x197/0x470 [ 1692.225769] ? find_held_lock+0x2c/0x110 04:38:57 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'wg0\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r4}) ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000380)={'ip6_vti0\x00', r1, 0x4, 0x2, 0x20, 0x800, 0x42, @loopback, @local, 0x8, 0x1, 0x1}}) sendmmsg$inet(r2, &(0x7f0000001600)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000001c0)="0c9935b81840dcfda03e9a67d052a15652a156102487f15dea14aca2bfdd0b300a4dd3559c4bef0daae5fd6297d1e935fd93fb16bc039d98be6e9d1cf4093524aee5f3759efc5ef87ab3fc12c808a842cb8bad0107069c59e6fe12bdb8c7d75929069c4b18c63c8321ad76f783771441b199c922e27eb7df9410bdc26b00debe75d656ca163bc8d928d7ce61ab9606032ce027d3b1cf396e9b390fb1", 0x9c}, {&(0x7f0000000280)="3f8a80f304ab46ca92435d2322541d17462634b4099efa42a2f6f2ba91e82a638daf4a6db33e06db71178e273ad7ed1515790d285b57bbcb57632f4c5a8d2a26e796dd6809776ef7185d9deecd350fe2fcb2b6f45b5f5b0ff368e5b61b386b61b1bdae1b35dfa731063463c8100028ba4b5c80dc3063237afa1a0cabfcdc3ad02527c4293d7c6ed734bff4dad4466237d2883117f622e2e43c02f2baf08102b597dba17eb4c32c859d61f9aae5e6c62ae2991a51c9be14842352d2e7cd13809b60dbc9305980ec17325a17a0aa5d75555dd7731eea53dc2408672084cf2aff3e816b531889e7f1", 0xe7}], 0x2, &(0x7f0000000400)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @local, @loopback}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x5ca7ce47}}, @ip_ttl={{0x14, 0x0, 0x2, 0x4}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @remote, @broadcast}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x10001}}], 0x88}}, {{&(0x7f0000000100)={0x2, 0x4e24, @loopback}, 0x10, &(0x7f0000001540)=[{&(0x7f00000004c0)="fb2a37d61ed18c055f017f64cffacc04d57f758a5322db6c9d995f86ca5ad29940094f084f23a58cf5e3976a5b3addcd6cdcbaaed14e418f735def", 0x3b}, {&(0x7f0000000500)="8427ae92aeefaa844d2d981447399f138839cf0f6bf3ebc3837a2cce044d70", 0x1f}, {&(0x7f0000000540)="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", 0x1000}], 0x3, &(0x7f0000001580)=[@ip_ttl={{0x14, 0x0, 0x2, 0x1}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1f}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x46}}], 0x48}}], 0x2, 0xc1) [ 1692.226799] ? __lock_acquire+0xbb1/0x5b00 [ 1692.227813] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1692.228874] ? generic_block_fiemap+0x60/0x60 [ 1692.229796] ? loop_set_status_old+0x250/0x250 [ 1692.230734] blkdev_ioctl+0x291/0x710 [ 1692.231509] ? blkdev_common_ioctl+0x1870/0x1870 [ 1692.232484] ? selinux_file_ioctl+0xb6/0x270 [ 1692.233389] block_ioctl+0xf9/0x140 [ 1692.234131] ? blkdev_read_iter+0x1c0/0x1c0 [ 1692.235033] __x64_sys_ioctl+0x19a/0x210 [ 1692.235875] do_syscall_64+0x33/0x40 [ 1692.236638] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1692.237681] RIP: 0033:0x7fc91209f8d7 [ 1692.238454] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1692.242191] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1692.243753] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1692.245206] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1692.246663] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1692.248118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1692.249570] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1692.274722] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:38:57 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x0) mknodat$null(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1, 0x103) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) vmsplice(r0, &(0x7f0000000440)=[{&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000001740)="85f471f94f9e330e1f2cc5ed5b52ddcf1ac27ab9a4c721ed12762552bd4650bffd5b9ceffb715c4d4606803b5adb1856cb3a0927f23a6db24f136523af7ad1cff3e3e8d20390febebbb91f68dd88a5d6709830e08f7c4b5d1f238ef7136bf9e4ec2b21223ef25aaa954405cb033530e0cdbc479489614d1508de4ddf7b832bb8e6e0a0dfa7df4bbb217da11742623d1a620184a588a045ab831f1a97b1324610cf5fa44307986bf8320ace29306cc0fc435c83682c0fabe5feced42e6d37ddf87ea37980c8bd59", 0xc7}, {&(0x7f0000000300)="41f7c6cb02e6f0cea57ae3dc32bf9085aac428cc10bdba966844969002fbde831c7e609f6b2eb81631d80b1bfd28d9c381dae8f0be68da417dfdd14f4ceb31e0852f6fc844473645f5989357c889f2a742b9028484454cc1d61bd2dc19ff35be493093c5fc25aec5600f54f359a1eb9794b73a32ffc8fe7338095ed91a40c4", 0x7f}, {&(0x7f0000000180)="ee361e46f7455cd05b04a571445e3a6e4f543ab6581644", 0x17}], 0x4, 0x4) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file1\x00', 0x1000) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r2, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {&(0x7f0000003640)=""/128, 0x80}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$FICLONE(r4, 0x40049409, r3) getsockopt$inet6_int(r3, 0x29, 0x43, 0x0, &(0x7f0000000080)) lseek(r2, 0x27b, 0x2) 04:39:10 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x600, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:39:11 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x0) mknodat$null(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1, 0x103) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) vmsplice(r0, &(0x7f0000000440)=[{&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000001740)="85f471f94f9e330e1f2cc5ed5b52ddcf1ac27ab9a4c721ed12762552bd4650bffd5b9ceffb715c4d4606803b5adb1856cb3a0927f23a6db24f136523af7ad1cff3e3e8d20390febebbb91f68dd88a5d6709830e08f7c4b5d1f238ef7136bf9e4ec2b21223ef25aaa954405cb033530e0cdbc479489614d1508de4ddf7b832bb8e6e0a0dfa7df4bbb217da11742623d1a620184a588a045ab831f1a97b1324610cf5fa44307986bf8320ace29306cc0fc435c83682c0fabe5feced42e6d37ddf87ea37980c8bd59", 0xc7}, {&(0x7f0000000300)="41f7c6cb02e6f0cea57ae3dc32bf9085aac428cc10bdba966844969002fbde831c7e609f6b2eb81631d80b1bfd28d9c381dae8f0be68da417dfdd14f4ceb31e0852f6fc844473645f5989357c889f2a742b9028484454cc1d61bd2dc19ff35be493093c5fc25aec5600f54f359a1eb9794b73a32ffc8fe7338095ed91a40c4", 0x7f}, {&(0x7f0000000180)="ee361e46f7455cd05b04a571445e3a6e4f543ab6581644", 0x17}], 0x4, 0x4) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file1\x00', 0x1000) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r2, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {&(0x7f0000003640)=""/128, 0x80}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$FICLONE(r4, 0x40049409, r3) getsockopt$inet6_int(r3, 0x29, 0x43, 0x0, &(0x7f0000000080)) lseek(r2, 0x27b, 0x2) 04:39:11 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001240)=[{{&(0x7f00000001c0), 0x6e, &(0x7f0000000080)=[{&(0x7f0000000240)=""/167, 0xa7}], 0x1, &(0x7f0000000300)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd0}}, {{&(0x7f0000000400), 0x6e, &(0x7f0000000a80)=[{&(0x7f0000000480)=""/178, 0xb2}, {&(0x7f0000000540)=""/78, 0x4e}, {&(0x7f00000005c0)=""/93, 0x5d}, {&(0x7f0000000640)=""/80, 0x50}, {&(0x7f0000000100)=""/11, 0xb}, {&(0x7f00000006c0)=""/139, 0x8b}, {&(0x7f0000000780)=""/102, 0x66}, {&(0x7f0000000800)=""/168, 0xa8}, {&(0x7f00000008c0)=""/220, 0xdc}, {&(0x7f00000009c0)=""/188, 0xbc}], 0xa, &(0x7f0000000b40)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}, {{&(0x7f0000000b80)=@abs, 0x6e, &(0x7f0000000d80)=[{&(0x7f0000000c00)=""/47, 0x2f}, {&(0x7f0000000c40)=""/94, 0x5e}, {&(0x7f0000000cc0)=""/191, 0xbf}], 0x3}}, {{0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000dc0)=""/204, 0xcc}, {&(0x7f0000000ec0)=""/250, 0xfa}, {&(0x7f0000000fc0)=""/242, 0xf2}, {&(0x7f00000010c0)=""/47, 0x2f}, {&(0x7f0000001100)=""/24, 0x18}, {&(0x7f0000001140)=""/103, 0x67}], 0x6}}], 0x4, 0x0, &(0x7f0000001340)={0x0, 0x3938700}) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_POOL_GET(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000015c0)={&(0x7f00000014c0)={0xc8, 0x0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x8000}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1}, {0x6, 0x11, 0x9}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3fe0000}, {0x6, 0x11, 0x8000}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0x1}}]}, 0xc8}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_COALESCE(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000540)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="0172032dec7fd8f7029a722a000000002ef0d2d66f08097d2d7400bd10ad0000", @ANYRES32=0x0, @ANYBLOB="d77662fea97a101f78936bda3824eda0b9e07a10aa7916f6f1c1c20d6a55bb2c19933d79b1c2090c30a041f77749faa62ed7b64113961ef439008bd0ce9914e6cbd0998e548a7f1cc4034c7630274306d584c0fe2b58d3d514594377dd2ffc8b0ce5d88ccbb6bb9287a5a83891b88ee5aebc3a1a456475fc0b26e418a24307b5d4dc3f452cba1e8a871d3b"], 0x1c}}, 0x0) sendmsg$NL80211_CMD_DEL_INTERFACE(r3, &(0x7f0000001440)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001400)={&(0x7f00000013c0)={0x1c, r5, 0x400, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8004}, 0x40) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r6, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/vt', 0x2000, 0x8) bind$inet6(r7, &(0x7f0000000000)={0xa, 0x4e24, 0x1, @local, 0x1}, 0x1c) [ 1706.192593] 9pnet: Insufficient options for proto=fd 04:39:11 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 60) 04:39:11 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 49) [ 1706.201889] device lo entered promiscuous mode 04:39:11 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 57) 04:39:11 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x1000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1706.212685] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1706.218277] FAULT_INJECTION: forcing a failure. [ 1706.218277] name failslab, interval 1, probability 0, space 0, times 0 [ 1706.219504] CPU: 0 PID: 18793 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1706.220234] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.221167] Call Trace: [ 1706.221468] dump_stack+0x107/0x167 [ 1706.221882] should_fail.cold+0x5/0xa [ 1706.222312] ? skb_clone+0x14f/0x3d0 [ 1706.222742] should_failslab+0x5/0x20 [ 1706.223172] kmem_cache_alloc+0x5b/0x310 [ 1706.223633] skb_clone+0x14f/0x3d0 [ 1706.224035] netlink_broadcast_filtered+0xa08/0xdc0 [ 1706.224604] netlink_broadcast+0x35/0x50 [ 1706.225067] kobject_uevent_env+0x93d/0xf90 [ 1706.225565] loop_configure+0x116c/0x1480 [ 1706.226037] lo_ioctl+0xa72/0x1760 [ 1706.226440] ? avc_has_extended_perms+0x7f1/0xf40 [ 1706.226996] ? loop_set_status_old+0x250/0x250 [ 1706.227509] ? avc_ss_reset+0x180/0x180 [ 1706.227960] ? lock_acquire+0x197/0x470 [ 1706.228406] ? find_held_lock+0x2c/0x110 [ 1706.228868] ? __lock_acquire+0xbb1/0x5b00 [ 1706.229378] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1706.229967] ? generic_block_fiemap+0x60/0x60 [ 1706.230484] ? loop_set_status_old+0x250/0x250 [ 1706.231002] blkdev_ioctl+0x291/0x710 [ 1706.231434] ? blkdev_common_ioctl+0x1870/0x1870 [ 1706.231969] ? selinux_file_ioctl+0xb6/0x270 [ 1706.232467] block_ioctl+0xf9/0x140 [ 1706.232883] ? blkdev_read_iter+0x1c0/0x1c0 [ 1706.233370] __x64_sys_ioctl+0x19a/0x210 [ 1706.233830] do_syscall_64+0x33/0x40 [ 1706.234266] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.234873] RIP: 0033:0x7fc91209f8d7 [ 1706.235317] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.237466] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1706.238325] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1706.239133] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1706.239931] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1706.240727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1706.241526] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1706.248792] FAULT_INJECTION: forcing a failure. [ 1706.248792] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1706.250102] CPU: 0 PID: 18811 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1706.250834] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.251718] Call Trace: [ 1706.252007] dump_stack+0x107/0x167 [ 1706.252408] should_fail.cold+0x5/0xa [ 1706.252815] __alloc_pages_nodemask+0x182/0x600 [ 1706.253319] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1706.253963] ? copy_page_range+0x28e1/0x3810 [ 1706.254441] alloc_pages_current+0x187/0x280 [ 1706.254931] get_zeroed_page+0x14/0xb0 [ 1706.255354] __pud_alloc+0x33/0x270 [ 1706.255740] copy_page_range+0x2ca1/0x3810 [ 1706.256199] ? SOFTIRQ_verbose+0x10/0x10 [ 1706.256630] ? lock_chain_count+0x20/0x20 [ 1706.257083] ? lock_downgrade+0x6d0/0x6d0 [ 1706.257532] ? up_write+0x191/0x550 [ 1706.257934] ? vm_iomap_memory+0x190/0x190 [ 1706.258380] ? downgrade_write+0x3a0/0x3a0 [ 1706.258837] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1706.259422] ? __vma_link_rb+0x540/0x700 [ 1706.259889] copy_process+0x759b/0x7800 [ 1706.260344] ? __cleanup_sighand+0xb0/0xb0 [ 1706.260799] ? lock_acquire+0x197/0x470 [ 1706.261224] ? find_held_lock+0x2c/0x110 [ 1706.261663] kernel_clone+0xe7/0x980 [ 1706.262061] ? lock_downgrade+0x6d0/0x6d0 [ 1706.262511] ? find_held_lock+0x2c/0x110 [ 1706.262958] ? create_io_thread+0xf0/0xf0 [ 1706.263417] ? ksys_write+0x12d/0x260 [ 1706.263845] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1706.264385] __do_sys_fork+0x8a/0xc0 [ 1706.264799] ? kernel_thread+0xf0/0xf0 [ 1706.265237] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1706.265819] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.266384] ? trace_hardirqs_on+0x5b/0x180 [ 1706.266882] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.267455] do_syscall_64+0x33/0x40 [ 1706.267868] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.268435] RIP: 0033:0x7fc140e06b19 [ 1706.268849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.270874] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1706.271695] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1706.272509] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1706.273289] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1706.274068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1706.274855] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1706.277312] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1706.281427] FAULT_INJECTION: forcing a failure. [ 1706.281427] name failslab, interval 1, probability 0, space 0, times 0 [ 1706.282700] CPU: 0 PID: 18845 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1706.283444] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.284337] Call Trace: [ 1706.284624] dump_stack+0x107/0x167 [ 1706.285022] should_fail.cold+0x5/0xa [ 1706.285433] ? create_object.isra.0+0x3a/0xa20 [ 1706.285929] should_failslab+0x5/0x20 [ 1706.286340] kmem_cache_alloc+0x5b/0x310 [ 1706.286789] create_object.isra.0+0x3a/0xa20 [ 1706.287282] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1706.287824] kmem_cache_alloc+0x159/0x310 [ 1706.288275] anon_vma_fork+0xf1/0x640 [ 1706.288685] ? __vm_enough_memory+0x184/0x360 [ 1706.289179] copy_process+0x7218/0x7800 [ 1706.289626] ? __cleanup_sighand+0xb0/0xb0 [ 1706.290099] ? lock_acquire+0x197/0x470 [ 1706.290554] ? find_held_lock+0x2c/0x110 [ 1706.290998] kernel_clone+0xe7/0x980 [ 1706.291401] ? lock_downgrade+0x6d0/0x6d0 [ 1706.291844] ? find_held_lock+0x2c/0x110 [ 1706.292290] ? create_io_thread+0xf0/0xf0 [ 1706.292739] ? ksys_write+0x12d/0x260 [ 1706.293164] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1706.293681] __do_sys_fork+0x8a/0xc0 [ 1706.294094] ? kernel_thread+0xf0/0xf0 [ 1706.294523] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1706.295094] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.295638] ? trace_hardirqs_on+0x5b/0x180 [ 1706.296115] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.296663] do_syscall_64+0x33/0x40 [ 1706.297072] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.297611] RIP: 0033:0x7fa6a3da0b19 [ 1706.298023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.299958] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1706.300790] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1706.301545] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1706.302291] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1706.303048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1706.303802] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1706.320832] 9pnet: Unknown protocol version 9 04:39:11 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) dup2(r3, r4) 04:39:11 executing program 1: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/power/pm_test', 0x20000, 0x8) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x20000801) openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x181482, 0x4) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000200)={r1, 0x7d37fef0, 0x8, 0x5089843}) ioctl$RTC_UIE_ON(r2, 0x7003) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x30, 0x1, 0x1, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@CTA_LABELS={0x14, 0x16, 0x1, 0x0, [0x9f, 0x80, 0x3ff, 0x7]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x9}]}, 0x30}, 0x1, 0x0, 0x0, 0x4048043}, 0x48000) setsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r3}, 0x14) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4000, 0x8) [ 1706.402481] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:39:11 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)) r2 = mmap$IORING_OFF_SQES(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000002, 0x40010, r0, 0x10000000) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x3, 0x0, @fd=r0, 0x8, &(0x7f0000000040)=[{&(0x7f0000000240)="436aa016e228b7790f50720c3c7fdefefd05e484d6d6b888e7a767bb2c554ef952f588f4f471021b54c2ccc1b56afc95016ee60d659aa4158c74efe5e40387e4f10f9dad26f7f38abb52d4bf968977bede13d3ba06c6797f4dd46ead3e69393afb6922eb303142b346e8004bacce283e65acbab4daa536647e66fb9eb2d345bb9336a44bffdce784df8703b2b954b5e11effb1f005d40672ffb9c3e020ef4a77a67fe5b86b5adfd31ba5cc00ee719f1f10456400d181ceac8daaf731dd5af457b7cead0510e264474cf404fc393cd48b1a486198192992656a5a2e0da8985d5cf04e4a054b221e46", 0x13b}, {&(0x7f0000000340)="a3d4200ddb9988cece80ec4f41290e15786d84252aebc2d69db198f9532430db09af6dcaf96893b633fcf1adf302aea53c9a2e466d56c41be5ff811d25a3b5f69ee9693012817febf69f753a2a8ad39396ba3177716391356a9d3cbb8f892d297be971a51fa488c2ddaa7e0d1f72524745237349c0d4b0b61967d59b3dd12c8a1e5ca4fa3eb31a62a5fe197893ea5c471d8bc9b51c6fce82a23e5a92574eb83bcef6bb399fdd78b770dcec8749e90483b3d291bade2d55e349a2a92cd32e9703ca04859b8b14dbbc1c48d26e7ac0b0cd5dfecf4c42c6", 0xd6}], 0x2, 0x4, 0x1, {0x3}}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:39:11 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x700, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:39:11 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x0) mknodat$null(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1, 0x103) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) vmsplice(r0, &(0x7f0000000440)=[{&(0x7f0000001e00)="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", 0x1000}, {&(0x7f0000001740)="85f471f94f9e330e1f2cc5ed5b52ddcf1ac27ab9a4c721ed12762552bd4650bffd5b9ceffb715c4d4606803b5adb1856cb3a0927f23a6db24f136523af7ad1cff3e3e8d20390febebbb91f68dd88a5d6709830e08f7c4b5d1f238ef7136bf9e4ec2b21223ef25aaa954405cb033530e0cdbc479489614d1508de4ddf7b832bb8e6e0a0dfa7df4bbb217da11742623d1a620184a588a045ab831f1a97b1324610cf5fa44307986bf8320ace29306cc0fc435c83682c0fabe5feced42e6d37ddf87ea37980c8bd59", 0xc7}, {&(0x7f0000000300)="41f7c6cb02e6f0cea57ae3dc32bf9085aac428cc10bdba966844969002fbde831c7e609f6b2eb81631d80b1bfd28d9c381dae8f0be68da417dfdd14f4ceb31e0852f6fc844473645f5989357c889f2a742b9028484454cc1d61bd2dc19ff35be493093c5fc25aec5600f54f359a1eb9794b73a32ffc8fe7338095ed91a40c4", 0x7f}, {&(0x7f0000000180)="ee361e46f7455cd05b04a571445e3a6e4f543ab6581644", 0x17}], 0x4, 0x4) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file1\x00', 0x1000) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') readv(r2, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f00000003c0)=""/121, 0x79}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000014c0)=""/160, 0xa0}, {&(0x7f0000001640)=""/256, 0x100}, {&(0x7f0000003640)=""/128, 0x80}, {&(0x7f00000015c0)=""/51, 0x33}, {&(0x7f00000001c0)=""/57, 0x39}], 0x8) readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$FICLONE(r4, 0x40049409, r3) getsockopt$inet6_int(r3, 0x29, 0x43, 0x0, &(0x7f0000000080)) lseek(r2, 0x27b, 0x2) 04:39:11 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1706.459730] 9pnet: Insufficient options for proto=fd 04:39:11 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 50) [ 1706.532413] 9pnet: Unknown protocol version 9 04:39:11 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 58) 04:39:11 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 61) [ 1706.552315] FAULT_INJECTION: forcing a failure. [ 1706.552315] name failslab, interval 1, probability 0, space 0, times 0 [ 1706.554821] CPU: 1 PID: 19129 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1706.555651] FAULT_INJECTION: forcing a failure. [ 1706.555651] name failslab, interval 1, probability 0, space 0, times 0 [ 1706.556293] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.556301] Call Trace: [ 1706.556329] dump_stack+0x107/0x167 [ 1706.560572] should_fail.cold+0x5/0xa [ 1706.561390] ? create_object.isra.0+0x3a/0xa20 [ 1706.562371] should_failslab+0x5/0x20 [ 1706.563208] kmem_cache_alloc+0x5b/0x310 [ 1706.564076] ? find_held_lock+0x2c/0x110 [ 1706.564951] create_object.isra.0+0x3a/0xa20 [ 1706.565869] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1706.566947] kmem_cache_alloc+0x159/0x310 [ 1706.567856] skb_clone+0x14f/0x3d0 [ 1706.568627] netlink_broadcast_filtered+0xa08/0xdc0 [ 1706.569722] netlink_broadcast+0x35/0x50 [ 1706.570610] kobject_uevent_env+0x93d/0xf90 [ 1706.571556] loop_configure+0x116c/0x1480 [ 1706.572465] lo_ioctl+0xa72/0x1760 [ 1706.573234] ? avc_has_extended_perms+0x7f1/0xf40 [ 1706.574276] ? loop_set_status_old+0x250/0x250 [ 1706.575295] ? avc_ss_reset+0x180/0x180 [ 1706.576161] ? lock_acquire+0x197/0x470 [ 1706.577024] ? find_held_lock+0x2c/0x110 [ 1706.577912] ? __lock_acquire+0xbb1/0x5b00 [ 1706.578905] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1706.580034] ? generic_block_fiemap+0x60/0x60 [ 1706.581026] ? loop_set_status_old+0x250/0x250 [ 1706.582008] blkdev_ioctl+0x291/0x710 [ 1706.582837] ? blkdev_common_ioctl+0x1870/0x1870 [ 1706.583860] ? selinux_file_ioctl+0xb6/0x270 [ 1706.584811] block_ioctl+0xf9/0x140 [ 1706.585591] ? blkdev_read_iter+0x1c0/0x1c0 [ 1706.586536] __x64_sys_ioctl+0x19a/0x210 [ 1706.587417] do_syscall_64+0x33/0x40 [ 1706.588224] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.589323] RIP: 0033:0x7fc91209f8d7 [ 1706.590125] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.594069] RSP: 002b:00007fc90f614f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1706.595720] RAX: ffffffffffffffda RBX: 00007fc9120e9970 RCX: 00007fc91209f8d7 [ 1706.597224] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005 [ 1706.598751] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff [ 1706.600266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 1706.601795] R13: 0000000000000004 R14: 0000000020000218 R15: 0000000000000001 [ 1706.603345] CPU: 0 PID: 19134 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1706.604097] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.604980] Call Trace: [ 1706.605267] dump_stack+0x107/0x167 [ 1706.605660] should_fail.cold+0x5/0xa [ 1706.606071] ? anon_vma_fork+0x1ff/0x640 [ 1706.606522] should_failslab+0x5/0x20 [ 1706.606921] kmem_cache_alloc+0x5b/0x310 [ 1706.607359] anon_vma_fork+0x1ff/0x640 [ 1706.607788] copy_process+0x7218/0x7800 [ 1706.608196] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1706.608234] ? __cleanup_sighand+0xb0/0xb0 [ 1706.610363] ? lock_acquire+0x197/0x470 [ 1706.610862] ? find_held_lock+0x2c/0x110 [ 1706.611320] kernel_clone+0xe7/0x980 [ 1706.611734] ? lock_downgrade+0x6d0/0x6d0 [ 1706.612200] ? find_held_lock+0x2c/0x110 [ 1706.612673] ? create_io_thread+0xf0/0xf0 [ 1706.613162] ? ksys_write+0x12d/0x260 [ 1706.613597] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1706.614156] __do_sys_fork+0x8a/0xc0 [ 1706.614593] ? kernel_thread+0xf0/0xf0 [ 1706.615064] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1706.615718] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.616339] ? trace_hardirqs_on+0x5b/0x180 [ 1706.616840] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.617406] do_syscall_64+0x33/0x40 [ 1706.617818] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.618380] RIP: 0033:0x7fa6a3da0b19 [ 1706.618800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.620820] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1706.621657] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1706.622437] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1706.623232] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1706.624015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1706.624806] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1706.645891] FAULT_INJECTION: forcing a failure. [ 1706.645891] name failslab, interval 1, probability 0, space 0, times 0 [ 1706.648335] CPU: 1 PID: 19181 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1706.649821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.651591] Call Trace: [ 1706.652157] dump_stack+0x107/0x167 04:39:11 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x1020, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1706.652947] should_fail.cold+0x5/0xa [ 1706.653919] ? anon_vma_fork+0xf1/0x640 [ 1706.654802] should_failslab+0x5/0x20 [ 1706.655641] kmem_cache_alloc+0x5b/0x310 [ 1706.656526] anon_vma_fork+0xf1/0x640 [ 1706.657397] ? __vm_enough_memory+0x184/0x360 04:39:11 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001a00), 0x8400, 0x0) getsockopt$sock_buf(r1, 0x1, 0x3b, &(0x7f0000001a40)=""/4096, &(0x7f0000002a40)=0x1000) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r2}, 0x14) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r4, 0x10e, 0x1, &(0x7f0000000040)=0x18, 0x4) [ 1706.658375] copy_process+0x7218/0x7800 [ 1706.659397] ? __cleanup_sighand+0xb0/0xb0 [ 1706.660364] ? lock_acquire+0x197/0x470 [ 1706.661234] ? find_held_lock+0x2c/0x110 [ 1706.662143] kernel_clone+0xe7/0x980 [ 1706.662982] ? lock_downgrade+0x6d0/0x6d0 [ 1706.663869] ? find_held_lock+0x2c/0x110 [ 1706.664754] ? create_io_thread+0xf0/0xf0 [ 1706.665668] ? ksys_write+0x12d/0x260 [ 1706.666513] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1706.667573] __do_sys_fork+0x8a/0xc0 [ 1706.668381] ? kernel_thread+0xf0/0xf0 [ 1706.669254] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1706.670402] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.671531] ? trace_hardirqs_on+0x5b/0x180 [ 1706.672474] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.673594] do_syscall_64+0x33/0x40 [ 1706.674422] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.675637] RIP: 0033:0x7fc140e06b19 04:39:11 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) syz_io_uring_setup(0x6603, &(0x7f0000000140)={0x0, 0xffc7, 0x8, 0x3, 0x322, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f00000001c0)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r4, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) syz_mount_image$msdos(&(0x7f0000000380), &(0x7f00000003c0)='./file0\x00', 0x8, 0x8, &(0x7f0000002800)=[{&(0x7f0000000400)="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", 0x1000, 0x1ff}, {&(0x7f0000001400)="b863df8464095cc3fc6d14b6e58cc17b7b13c4d405fb8caae221cf77979d84a5da0450931f47a6c2a166dbd6c61bc019e65575e16f7fb4c9aeda9505c36af91ef54d81b96ac9112c9d4e909894b326c04daa6acaa155824bd2b6cfd0b79b0a303ec86ca62a4cd13d2234c413a4313253273e34cacad01abcee9ed7ddabb624dd8ab6d0633d8bdb07f4699e5863ac8ea7ce4d1af6a42dedfd85c2c456dadc7654e447237ff88253c8b0220a34fe2ee355225f3ce558753f4a739001ab68c2e290", 0xc0, 0x3}, {&(0x7f00000014c0)="22420172b502b3c691726df9381fc7b09f5f062f1dbee3a74936826c5f8d632abf1ff4794a60a1da347b637a58526c61439f6da3e32e1b", 0x37, 0x3}, {&(0x7f0000001500)="dea1fbc6789efa74aab3dfc36e8706641e169f291851bf3571d2b5f19cdc99eecc6d78d2549037e9d3136553389efb271bd5b93079a11f2bea5adbb73e7a990d89a1483e956e852d698261a9bfde34b814ad68c75417fb3b4959ad9cb6cf229b9e5f0dfbb457162f73401567c0ebcad0bef312c3dece40bcd66e1a0fa314b0858da9d5929b942be57ef2237edba3ff80785815db", 0x94, 0x6}, {&(0x7f00000015c0)="657d36a95faadb3122b4906f83d62156121febc958dbcec36f2b79863437d7dfba88762326370f94f5155ffdd94e784bba4bbf145573df73c8dde5303ecf0b0fa1986d6eee3976d31fc31a52da70dd55c9489f419b1a175595e23da45b3bdf1b4906bbc80f87175ac30efbec24b40349be6fa2b2d9495ee6fabb4537e7d91a096a37c18a21a766e3a04f866a3f30f707f9d5df09461f5b47be15da67f99c4c55a075d838d474cce5173be9bf7ca8a476a428bea45b5adeba2d40fcf7f4f8293ac58943423e15d8a9", 0xc8, 0x9b}, {&(0x7f00000016c0)="618bd41e2749412fca2ceeb3b4181b1ab8540b12778195799fb4945c7cef547084858430395657af28a05895df9ce770ff940ec992a5f5636b10a2084f6cb072cf47d7fee1f6ade8f184470a8e075f1f7ec615152a19f0f7343e1eb8678afe1dee5340f340f4fd33ccf20bb4fd2b03018baefda0317bd4dd663549dccc76d95cbc8e129bdb37fc95e419f52e50c5c19cedc897c4efe2c7779f173cd33e91017a86ec133e4ed28beac5b964af0644d2adc9d32bcd116ba0e76d7047ebad6b8d77", 0xc0, 0x1000}, {&(0x7f0000001780)="6c444de67a2e8a65346d6d71de7b3b385f3a09d4d0c7b81bce2aa536b86c53ba1f17dbac0bd83d170a5282fd55a432cb3b71a1a8d7eca94c90a86154b402c2289b406e59b1b6729dfb79a08b9f1b96c00116c1c61a6b53b8b37c26e730b10f1bbee07fb658a793ea1e930dd18295ec1eadcdc1174046a64f344d2376fa6c4a7b664bec61fc096641f1e2755eeff1613f08b4bb4aa36e200b4997d4093cdccec575fbf427819aa2329fd8ce9d158799c7f7d889a620aadfa58b2f76f846564ceabb5ef43f94dc569365eebd760d5ab026539ccc50a7d7e188b6207292b252f3f0254b73ab1e4c8af1a9124b4de3c7a149c292b22752fe1e6dde289eac84347ecc9dae17f6bd0c25e5d25e1ac8a56789052247b42a3b437629a7d08784c6745d79ddba76e9ef1ace74e3ddb2bd907b7a4ea743ccdef6c947dfcae39ce1e34f607703224abcb242246bd7b250c73855514892da716661ab8b52a74299fcd35e317028fbb20d1bbbe12bf188f1f3cd48edf8db3b88242cfdcf518e7aedec8bb0d6e916a2c6ea5205cfea927262fb20d1485578ed47b137bd6af1160f0abe9f1fbc8e2dbb68d365be2675165c0e559eb67b835ad178e47bf11f27b6cf1225f4c5af3a1f8db7268d91aa73b454c21beea9c25c8cc3ae61ef07ab9e6a63d0b424f54c346e5d2bd3b0c756a79dcb4a8b83a987320fddb2feaa3b3bdd329d53404b179494547690de2b548acc6a7e591a81629ab3157a7b8dd01ac9b4f76e3a51c43a4ba3fa519879ebd8303ec16bc0694c3d1375b6b1f908eb6aa1bb87212c84497a4034b2564a10b0a4931b0b97f40781cabdd0bfefd0b54929a6934c2984978d2225be8cdfc0eb94eb11c0bf14b378780f9790ab31cf83d5d4d6af5697bfa95f20030c10b6e893fc6a15daa311774391bd7c115ab74b9ed6fb526093f4c616fee2f9e395e647f968aa5a656bb79baada35dfbda4ef81833fb976daf13d433f07add13a64d988d18b0fdb3dbbc4a095bbe1e45d08e1a4f86c34e1dec0d7cbbd88382428a77925aa6a56489d81e0c1bfa6863554e929a8ce42d1d2a03f71d48768516ffd2d030434984c6edab6003a69c7e5df8c6cde1cb1880af915fce0779f70cd4c55120aba106927ad2ea3b4e547ab74619f3fc6a13f51cd60e65f34fe72bc3f2e39c0295d1755755b4acdd36f104ceac303c7657e9d0fce117144aa44793bff975a7fd6e68dc26f0e79f266f229ff172848054109fc2f0b15b891469979ecd588754b221abf9da448ba8d09544f24da6eaa50dc94de5d444adfbd3ff25b93f1358034a574fde1fa662a12e3bcff6b4f2a8bbd074da8a5f3fc01a704b46e090ba608b956fd9d3e21e56863e2301087f4a6ac76ecfdb5ce5b606ab8a9b12c4691cbfaffcecbf7fd3c1f735023d3eb8ed18e9d16ef2a5c67d5485fac8b9f61df6214630f51fd0e8c6846e8fc4dc7733de4d5c9cea6e78025b77424a9c9262f2e761fff192304aa42327ead69bffc6649322ad919c06ca91715c618927368093df7a9cffc6a9a5107a875feb2a9c0811c44723d177328075290538de82113bb27e07e18795843a9f1999b7cf09ec4c5dbd6b3add5fa64b7a78c2405e72cb8b6644aba23999dbbf5d45f4ad62351b0e6b6ff4a3e26442a062a3f5fd0dcb98d9dc9650e21019bec4582f0605577b247742550c2f570045bbd27878eb254967a4922910eb76a7ef2e194b6b4bb165b7d2c7da09c513989dad27115d03cff228b90318b00b6625e80fa1fe435047c30ec42eac2a225b24b6ca2f2509cb2681739d1ce87b423835ee89206c23bb41648367997bf20b85291d53cc803433725408dce210e1e39a35777729001f52fe94a5ee11113d427e0be1c71df23103f85347c859f6e5bd1523e6bd60060b247f853330e8f724b92f8a539dc22d948b470873128d38c419f401ca8c154c16b098e228adaa0076cebf69609cbb4eaae985d683e3592282cc5b78f0bcede54bac7bacd74642bc5e9faea3bdd0cc33546a90a22c46c26e5390b68845b807b868a2da34ccad9888d68d6878038fc139462a400bb2c8374bcab41cc56911e2d3501801946c07a614ad913f9747a21eca96e4501afd469010615e77354487877bad05d455371b06aa0365192f73dde3f69c3f3446e8b7f341f43d6cb26484d9d597aae962416a521f912722bd0068d8603c3e2b9cab63f853dc7d90f4f2e145ead6ca61a565015c2c7bb9426a10c46cef06baed89a76a573dc0ed3f6abb51aadff97616258200a562d0b72c07d9bd3ab48bf5fd397b51270a3d55be4f5b3c64568c2440237fa6e0ca9561046289dcd79c8e515d2b552b951bf06850ffa414bfd3298185759ce8768bc024586243923e4a46c4c3a22d6b15cd595e665848ce4b43834f953caa3e1b19822517f918bae10ce13724eb607f2ba07a5e22eca2a2995af105342c58008592769803c300d38aa513be9add1fd25c41b6d73b1b46a4f8137809297b1958b694c443c2b9e5a73b7d68aad17d3f13b1579c137ec7f3dbfcea0bf3ba68be3b0d0f615b3db26e46fd52b0cce45116e38362fb07df11db29b443bbed93d36f634df218e0162ea22a0292eea6bc9a6e682a0c37d1ef3a79c2b2a03f4e8dec5dd60681502c11f624da76a4ab2ff789b29ee910a518fd0a910a295e7fdd5a709114cd1915c27ecba327bca89a0e8858f051b7d2be2f967bd9b2dce6ef8cf5f319763cc25e7e6432b6b216f0e711d4dd3df6ef6c38e5584f1fa398396ec65a06d316624a8688d8c9e61afbefdeda48084f3776df238636d2752df6f7bd8a295d891a7f926f29c793796de1444476dbb80fa133086ed211047ffec8d6418f5b6213629ebae1558ae8fc12d85c8e08ab45b1ebb70a258adc0871ed6f941032ef9e2ad7ac97e4f49b7247b50543144bff6d20e576d7b38e10a6c4411a5d7ac2614058bcf831043a9f16c3f9f45b281c089129ff83af5090255ab62995afa8c2fbf3b565022d61410153085dc95eef738576a451280abeccee867b0ea01e4f948248f414be7a47d7c60d73797a559c9b6a05e49968a986a6c771ace90293630bb3ed6a4c8e338c0099b7303691d3a1dd169d6d70a40dbf9dd91f8451921076fd4756dde359b02354fd220c5a68243f6c0fd5580a20af9034d833f65a7188042efdc7af20020c3027e8b0bf5cba85590ab58e792e367ffac0196ba839310ac5d9ec78a0862d033cc7345496ae391f9b153188cd392fe80957adc3b747566b9c13355573cd05493f3d83e4c352ea50db352e501d467816e607e13e14e11006484878477da687ed7fc741118a5ef63e0c05af7122a50eaf084f55e5cbbc1d6c54418721f9d08457f3234a0b01e1970e5a7a402b1766ccae40e009052f0547c54299dc43a1b1509955fc7f4ccd786160eb33f5992c7777a98226e9a13727cd2643207ec979228b81999cd569abaf7bf13a2f9612458448b6156b4b0379f2e6d1223fb9747373f20439c1840dfa0af64d306e7709f5c7040ec9206f9e3c25a8d7f199dca0ea251336721f007b5bb3030b968c77ee2966f2b03bd693b2638c43aa124f0dcef4b5f084ee5f02c02dcf2a282c9aa72a6f8ff265f8851654082ee7a7e5f51c149f3f73a670d21183eeb3273535e41b848cfaac28cf66100912ba4aa7db0482b77a8ce8e730bd9b6a9bf625647d240087f8b0bef6bf80cbc110432547cd5767c2d3b15feff4833841f894189b74ff87491db0eab9e2cf3bbbe87185b7414a086af2b3fea1a2dc5250ca34485c014206fd29188914177693439de7d5dc334c844e4614a88be4213dadab2b72e5324bc1a8c8fcd1ec11bef78b93415f14b436234b8757a1ba0726ce43513341c644a7a66dc59b8eb0d118480f1caa2945e1b2b77b1eb4314bd69f2dd317a68b35736b9fc13a52de99ed3990ad546e5676175a79d23aa79a8ec0c58dd3f9056ff57738ec7b4fa8c3a022b77e8711bfdf911573f1850db93015cae5b712ae70531703e5ca741ecfdf13db491617ee604b3b5433abcab48ef6ec50a826cf55cd4f93b280830bd5a0fcd3a74a194393dd00eb3e699ca10e15c3ebbdf3e5527f4962b05d0ee0350c03a969479256ff895effa4beba550b1612fa19e766b3ff1ed2c260fc6f9a15b17acae4b9841a7731da4a90a4899984a3b105f8eb68981d929425d1d1e2cda6f344c3b0cb3a06f969b897c736c96dbb894d54c51f6bca097d3a4fa98f04513ab253f5e29a002bfd5898f8846010fb481f2624d4ad506515877e0b0489d75bd3e2965dc362b030550ad4ccce65f23508f3c5d46836b2a33c5cc05f8095ad7cbf56836dbfea0bd907c6dfd6822530ad5fef31acfd71b6b56892180d000f9c7df74c01b809362a73e338575854a0e086a4a932064122dbb471cae17bd1c7cc21c521b74f22b2f46a9a4ba97751d2c05f77b1c635eb32aa1a4712bdf53d85d583fc31007bbc60c447ed8156e148b569137f647faa1a3b592645a2b0843588ca3ed1f5b23bc980077fc6b9598aad657f2704a29a51fb9254eea67d574eb7b4a501823552a7b589a729a860b7dbe33949a5a1685334b843f37c0f9d72540cc6ce027b6c63f737945b27b27b02e180e3977f53eea10598befc60e631a0f509d6671e1460984a4c4b3094030d5d5a4e510e1591f89b1241f4a06ddb808db9ff1a279afe05c5a1f6272e4e467dbbe513b6c8f8f416f83d64d6a85f3a4b08a62b39cb9e62fb7de27e15b9b5d202cb6deec2b7078cab8d4d9e9863fd8b89c39ccbc040a1b10777dbe38ab38908d01157832c319e5c7ccc360ff840c8639fbb9eee8abf3b9f1075765892a1312c06e25f1aa1875a81b5611636a217e6f65de47df52e7fed324f43838563516104a5edebd8692484e360fcae9c61a6c6d59408ed3d2de88afcb5af7df945bb9872838e427d1141461fa8093e65a96f09a8f1c37828e2198ea1a501bc7c5aaae3055e9d1712c71bd9289e568deeae585a36854d63ddf08dbd20ceb995bf2cc96392c07c3199836ffbc1d5669125a4d35e26a7233f3c211eb518e6bc5bed7bfba9c7942844f0c877d3244b5a9ac151e127cb70bd6574281803ab580cdad774f2a5a7d3439d064c2513ad9920428fde8adf4d401ddfe7b61e9afa230940b05ed8c90850468202cdf5599576dbd002a63dffe5d93fa1fd2098f0e4dfda7c201bd1589f33763db42f281f2ac0cd72e80f5819d34403f26ea72f8e96837d7a5c6115fb2f4da6492ed5b52486744594b66117c33bf611cfa3a48af9b6aab02f6180dc31127f0b5acffd8d604cc2eb8aa0a35ff2bb3088cbd842a54d771023b5af39f14c8b0fd31c2d920598e3214f2bf7d570f095b5d2d2afdcf5fdceeada100de62e2f03800feac95d17925fcb10b538040b7fe0fa0f23e64e94e231148d2c1accde8bceee73166875d6b02d6c1b64afd0f7fb3749f8351bbecaf34f8842922f1c89a3a2ce624e590b977bf24c5da599c3d5e8d748c84d637d5a497445d36c9dc0629ddcaa9a6c20f5dbb08395454b3550bca449861a459c3a68f36f6b28d20730e4746d91ce5368c6199d07ed1d4f52d86b0b9397d991777fbd9b0a98b34b98a1c52a2c9eb1e2c525aebc3a23d10c12b05ea184e2ea72097f87762bfe40291f69ea20935d5d94ebe532e77682d0c027a2493fd0ce0df9e57f391c80c239342d51d48bf99d9f937d6fad2702e8266a57b710e7aa7f7dc84a9d7f47d836b4c48f494685967391bb3bd461e96ecb896681a4bcf3b30c7d4d18b1d814480f3919fae3ac8", 0x1000, 0x401}, {&(0x7f0000002780)="a3a52e2d589c6777d92569bf881f488552f1887bf5ac40d59d4610afc3787e381960631408766b028e032303ed6c8c83aabe20cc2633778b9438a61d0c3692c2edae6f911711e993", 0x48, 0x800}], 0x1281010, &(0x7f00000028c0)={[{@dots}], [{@audit}, {@audit}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, '^([^'}}, {@uid_lt={'uid<', 0xee00}}, {@permit_directio}]}) r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r5, 0x0, 0x2) r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r6, 0x0, r5, 0x0, 0x200f5ef, 0x0) r7 = openat(r5, &(0x7f0000002940)='./file0\x00', 0x125142, 0x29) lseek(r7, 0x0, 0x2) r8 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r8, 0x0, r7, 0x0, 0x200f5ef, 0x0) faccessat(r7, &(0x7f0000000340)='./file0\x00', 0x8c) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) syz_io_uring_submit(r3, r2, &(0x7f0000000300)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r9, &(0x7f0000000280)={0x501082, 0x2a, 0x4}, &(0x7f00000002c0)='./file0\x00', 0x18, 0x0, 0x12345}, 0x5) [ 1706.676577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.680636] RSP: 002b:00007fc13e35b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1706.682296] RAX: ffffffffffffffda RBX: 00007fc140f1a020 RCX: 00007fc140e06b19 [ 1706.683876] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1706.685410] RBP: 00007fc13e35b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1706.686948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1706.688476] R13: 00007ffc9eb1e9df R14: 00007fc13e35b300 R15: 0000000000022000 04:39:11 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x3000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:39:11 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 62) [ 1706.756909] 9pnet: Unknown protocol version 9 [ 1706.783237] FAULT_INJECTION: forcing a failure. [ 1706.783237] name failslab, interval 1, probability 0, space 0, times 0 [ 1706.784541] CPU: 0 PID: 19350 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1706.785287] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.786179] Call Trace: [ 1706.786470] dump_stack+0x107/0x167 [ 1706.786882] should_fail.cold+0x5/0xa [ 1706.787367] ? __pmd_alloc+0x94/0x5e0 [ 1706.787779] should_failslab+0x5/0x20 [ 1706.788181] kmem_cache_alloc+0x5b/0x310 [ 1706.788623] __pmd_alloc+0x94/0x5e0 [ 1706.789020] copy_page_range+0x2bd8/0x3810 [ 1706.789481] ? SOFTIRQ_verbose+0x10/0x10 [ 1706.789911] ? lock_chain_count+0x20/0x20 [ 1706.790384] ? up_write+0x191/0x550 [ 1706.790787] ? vm_iomap_memory+0x190/0x190 [ 1706.791236] ? downgrade_write+0x3a0/0x3a0 [ 1706.791688] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1706.792267] ? __vma_link_rb+0x540/0x700 [ 1706.792705] copy_process+0x759b/0x7800 [ 1706.793154] ? __cleanup_sighand+0xb0/0xb0 [ 1706.793611] ? lock_acquire+0x197/0x470 [ 1706.794043] ? find_held_lock+0x2c/0x110 [ 1706.794474] kernel_clone+0xe7/0x980 [ 1706.794882] ? lock_downgrade+0x6d0/0x6d0 [ 1706.795328] ? find_held_lock+0x2c/0x110 [ 1706.795763] ? create_io_thread+0xf0/0xf0 [ 1706.796216] ? ksys_write+0x12d/0x260 [ 1706.796629] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1706.797169] __do_sys_fork+0x8a/0xc0 [ 1706.797564] ? kernel_thread+0xf0/0xf0 [ 1706.798000] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1706.798572] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.799139] ? trace_hardirqs_on+0x5b/0x180 [ 1706.799597] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.800164] do_syscall_64+0x33/0x40 [ 1706.800564] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.801119] RIP: 0033:0x7fc140e06b19 [ 1706.801535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.803532] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1706.804383] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1706.805148] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1706.805910] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1706.806696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1706.807472] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:39:11 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 51) [ 1706.833536] device lo left promiscuous mode 04:39:11 executing program 1: ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, &(0x7f0000000000)={0x6, 0x81}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) [ 1706.853317] FAULT_INJECTION: forcing a failure. [ 1706.853317] name failslab, interval 1, probability 0, space 0, times 0 [ 1706.854601] CPU: 0 PID: 19428 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1706.855325] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1706.856209] Call Trace: [ 1706.856494] dump_stack+0x107/0x167 [ 1706.856885] should_fail.cold+0x5/0xa [ 1706.857296] ? getname_flags.part.0+0x50/0x4f0 [ 1706.857780] should_failslab+0x5/0x20 [ 1706.858182] kmem_cache_alloc+0x5b/0x310 [ 1706.858625] ? __switch_to+0x572/0xf70 [ 1706.859040] ? __switch_to_asm+0x3a/0x60 [ 1706.859478] getname_flags.part.0+0x50/0x4f0 [ 1706.859949] getname_flags+0x9a/0xe0 [ 1706.860342] do_mkdirat+0x8f/0x2b0 [ 1706.860725] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1706.861295] ? user_path_create+0xf0/0xf0 [ 1706.861760] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1706.862313] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1706.862866] do_syscall_64+0x33/0x40 [ 1706.863263] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1706.863822] RIP: 0033:0x7fc91209ec27 [ 1706.864216] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1706.866187] RSP: 002b:00007fc90f614fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1706.867034] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fc91209ec27 [ 1706.867807] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 1706.868589] RBP: 00007fc90f615040 R08: 0000000000000000 R09: ffffffffffffffff [ 1706.869367] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1706.870141] R13: 0000000020000100 R14: 00007fc90f615000 R15: 0000000020013800 04:39:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 52) 04:39:24 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 63) 04:39:24 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x4000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:39:24 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 59) 04:39:24 executing program 4: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) syz_io_uring_setup(0x6603, &(0x7f0000000140)={0x0, 0xffc7, 0x8, 0x3, 0x322, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f00000001c0)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r4, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) syz_mount_image$msdos(&(0x7f0000000380), &(0x7f00000003c0)='./file0\x00', 0x8, 0x8, &(0x7f0000002800)=[{&(0x7f0000000400)="12845c5a92210ca7b60c1b80dd0280dc8e3ec202d9292a8fc4ebce7112aa01ba7a8ef1ce95ae58da76d35b3435f6dd1a08faa3814847b542b36cbaf7421fea4a685cd922a9fcf0ec5cc12a8a9f86b963ee2c7209acf9c62ef2c6b529fbab57ac2275f35be47add9823d494ce11c59719a1b22e4ddc1bbcb7c59af003932ee7cd6abcbc7ddc52381165d337550aaf2cf93e5fc882a49d36e332720802eeeefea894b8df7e3a0a16b93885b0235d851e5104a985266ea31b1752f5d510406cc7d834921a7fea07352c5ac03defe251ce48264c6793389ad539eb65c9141a1960b4e8290767e8d9f67e3069e2c7bca946460dd46aa907d3e9d34a86f3ac0ae2f03e95ddf0bbd9b42dd8b0eab7c81983e11be57758bdd5f9204634c6975c8261b7269e3fc95d250bd5f497edccea3e70c0167a83e3854f8bd85f80684ebc4420795ac4a18545f95f8ba0ae7550f8279093bed19225f7141c7c4449f1cb342338ba888df0695add6368369ffa36f9f558b515c95872abfd453f3352978c21752343f475d26bd987572f89c5e1a559e00faf2f028fa4bad76ff9f0a42027a828013b80132ae7a9c9362eee6fb2e1491da6d5ef3067c323db637608677c5d8626f6d863ab125b4ffe7e032072d78a21f11375bf502b2c61118f24579058e6a4f3de785a7b6fb2bb0d2483aa5679f296a7160fb33ac2886b6b2defb9b81e152aff0fe8e6cdbd377da620d407c367af9407a247dfb38961f7734b725b2b8d33bed9dbabed1633353c65c19fe3c06c0a6f68bab613b143cf1a01ea031102b28640bff9020822e8e201c076b88dc3cca7f71bee9519079991ad10ae2d8a9e4ad61d498e2fa5422dedb81821c433516471a837a41548c64ff2428407f22d226d6c48a4f6122fa3bb26085a561fb606aecbc117523d4bee1953b4203d99e3f680d8e879cb59178cdcb24eb7c85c56b2cfaac72ee26429ac853494a38f6421b525dbdcf57452f76524c3a89eb9fb9adcfb4a6e4cbe0f7a16da60386bbb35c9bb62db1e4fd9e1e07b0da809b349a08a2ac8aef1541fd8b7ba44f256584307b51c5e7ce084a6bfa46b1a41c37581e6283e694173af1e61ec8f52e3a520c13826fd9877f001ce7a7b71cd094cffa978cc1c697c1510a824d1397ec76ed73bfb8b488a812489c86f9f3cb9aab8f4f868347be57943e9054010dd8c91ead4aa490313b678b1da0b2c2af6f8546b623e86dd755613f0a12aa9141d9bebc2b23867f9fae9c1f30aefcab38790ad174d5afc8a1aef58aab8650d8db38740759332b59f1e556a10e291ad01ec745e4c13acdd4858467900780c892aaab1d3c76a330ca5477d04ce00e86af21915df11f80bc6041beb1fd135aa891c50d8cfc1edddec4e31691cbf918fb2854c82b3e8909b44fbaa61bcbc2dff09e46f20c78078ad3a45aa5270d7f28f9febe2a2edbb8d87327768fda899875a96ef0b2f3d1c26eb8a4ea49cf0686988820cfeeba2e22423e2aafe87ba6804778ecba69e2f1bdb23000925030e70f489039f41eb39d4925ae551053b21293b987baa62c42416e5e3b12152900f7852d2eb0dcd150a370aa9b10c6ac34b7f5321ebdfb458efc7b7d49ab26ba814edcb4d18c04853d85084521c2866045829aec0027bf757aaae02516bff3ca12f17a3bb6d3075958800eb4cbf796bc54c85fe78aab59a7e216ffa41367c922f64c28ea8b2cb58976aece82e675e09b9263b72153131410c586319eb38e8728833c3c847da2dd776e02a170c94f3fcfc2b3412cfdba19e9f36d425297e3b7b83493587861695c0226e7e49d503ed1454199eb957b94c701736904af2a8e79d43da9d0eda52fc13ced7dcd62285674aee0b3c27790298e75f230d9d5aed9d0cd9a50942e55709d84fa7e2657cad2bd1d4f4638fcc41bee4334292189a0f01b0811ba6cffa3ce7c4a3879998cc0cef8b9403bf97b4be7b5fb1ba2af942cfafa5e1b34c4ece9d5dadbea4ee7030a1b61ce8be2596f01f513f0fc1af8c80dd65b3e729e1f11e5f3e35a2109fa76b85e7e4b5e4191de3cb4bbc067f5daa3550d32fe37726912ba3a1aeeeea84ad811fabd2a62006ed37bcd067435a1c2550286147cbad302a3dc9b9c2ee24a6bd167553d7cb32ec28d5d48db418ec745ccdabb248660d0dc5c0d0c816fdec4a800371d781f483c24211b0c14794e9d9b2557a4a6a182219872449d26250282e9c11f6c4d2bd140f4898f6a2d4e38fc4bac370b6d066ae9dcbd9fe4e1b9a47b3a8e25597ffc995d2084bc9c72aa0d020909fc1577d42abe7f22fb72361d2eed0194a1277ff581ba30066ea481702c0ae85221ab08c7bfd6d4719c0bd660193df4edbedcd365f4ab7c3dc9944fbddd98012713ac7b92a58b2ae9a90603d78e3540971d2e2a0d41064796dc9c10359b8f582588dd877f42e37eb09f19860c63e8a065c42ba967a63ca487c0b57f99db6a25847338a54e793eb5306f804233f94df6e42788e669ff45cf12db9c1116d9d26f72915b2f406e2d6a796054a223d19d8c01c46177895ec0c8670766b46376ce78bb77f0407e5b7116af5dd0959b180d2081ab384049154942fb9558bdfbbb3421ad5f9694c0681dc5722c5ce19b40da7d14eb66cb3fb9bc06ca67b9dee516e6ddd271dd11a49fe1d591fe18ae9981e19f5938cd6ab97e1643fac7c273a986339c2c131afbbdaf62a7d5262fd16eede96d00b89649f97b824e74ab2a71c8a0f31393b79faa7db698c9d1be67193a3bf3efdbf9c0c9cae8de77eef587494800bfcee18738264bc7be05fb6558d658bf350c28e48186c7bb3c6eba98450491bf137cdd60be79c4ac7b298e5d9b8169e8c26d2fafe5072130d2adc72573714e5ee205f4ba72c758f80e67b516cee63210c44927d10fa68d91f00ba72e2c250a29bc40e11f075fbefbc7e372911245931bb1a68aa6352ab27eca54927c5444cb3cda623307cfb50b1c17fd2f9731879036171588f28d1347ef2aab22caf7ae706286a747d01ffd3c10960803c6f919bda9cef704fff9fc69e0b412e0ae0281ed372d16f70def7eecdb06988897fde7763c7004ab985046dd0ea3ec274f436e1a6b3995a40c159cb4d3484fee699cd42643db7148ed379c33dae71d866e2111164c450debe16194e479680173613b94782502446009073db7f5f7b4649fe6c9025397972dc3fd49469e9fbdfac66ea52ddfa3f13baa44246e7018b8e3129d596ef1e9e980cc2b77acac5bbc46cd395b0f839f792312e470085f4fa5444136f481b178f9c205588ee97110a09ab0a43898f2ca22050cc87f05fba04fb42800ac210d414629c34b8393f133fab422ce983e1923be89cbee29a440eb3ac8bba8485172a599b6e421cd717549941b876d2b800dfe987ba947a94c0cd8fd1f6a8b5c808c127a7f05406857daf76360b1339d99fa57aeb23f5e3884362e022de145e992ba6e1d54422d10aeead426088430eebef4d84e710ad7555660da12b7984871fb1d11bdf3260eec2c15b0791b9f1cbaa307ebae36b94c2b12fabd52c935d4e52aabc12e677b04b4ed2aaddcea947155b6ebc0984fb41de6c4c8ed04592548374610f337a8cb44c1daf749ea675a3bd79562e1c5e34185e6608b244ab1de06716bcf4281005b492047b6554b0aad178fb3c6bd91ee538c104a15dfcb48dfb545f7bc6fa792c3768d1b71152ead5fb97a94e37a70f60eca7cb4769efb2037a40ce7102f2878fc833721a2b8904187a1da5915bbcd6ac68aaf5f7180f0b237bc77453c4edfb77309069503e04b8e21b02e784232ad20a42ff2e7123f89dfc4f60eda745c9aa681e45954ac235d995f68e61fb9dff70fd155750fc98606e10032a14145ac201e81081365ec78ede9a0a1f61bba0426aded1268cce03891171e1109e1c02ed2bc262838f6198345eac72d5b119aa06cc6c7c1d1c38106c51c3df29bb0f08164a46550d2ba1d08cb6df5f96e7b21924c24e06778acc214c058886b5223ea60cda744e67a5fc89ca7abfd627ea66e13a29a079901264f7ac9eae17619d34b5deb65dbacd2bed9d3da91b784e3259badab41d6e7e50d242a08414ab9186c8edcfb4d118677290032d5b85992a3908699423b5d7c9b967157fcd1788c238bc20f8dc2b355641060221ba16670556a1f6e53dc7fe20ef24553a4639eddd12bb9985c707c27c3e41b0ce3bcae5d34180e22e65684bb88aa3fd6fc093197ca58c54386db31aed6fa596d918e5e2bb2af3fde17c9662a54103ee99858650d32723e34732bfe557a43c443a9524abbbb04496ee1120a5ebc7f241bb13730a0b0058fa804aef3d860cc97a71f594d1cb180993ef27f8bbab743942fb053a667f47b9cdf956233cc839e5d3b206f75330e6a0f88a776f36ff9651d2b65dd80d28d2a679c7b2d9ecc762bc41c555e5c372d05a3e3adaf73c261ab9bee3cffd9eedb0418d3567686a8c2dc471e81528d225e7b4e44b03cd2f7f7025d5ae4a3cedafe72d30799ad848dc451fbbc5299f9083fea4963fdd15ed39f89f03b6afb66bc6801d9b6f11752fd0d800763f0f41d0962c4963a8e6b4ae8dc3a83162d2b50bb34443726abd2d9cbdd3b52c02883ab0bf0d01482ae5d55d10e487b4a2fd94ac570fefe1f859ad27ccf68008a77ba08837584a4db55275be13c8c835e236e4859962f60d41562f663a368a271b500a016c069d576a7d5f468e83a429e981f8bee6df72cc95d83779f2093cc720960f5ac73be8fb38d72849c8963d6fe424e807f24de98e234cdaf3c6612f863162cfadbf427dac45332ef7090073299388350e7f81d9708980300567c7ea4675c22f94869fca6550836de0f4584f1176709cdef4638dc1bec05134d57cf9ef4f6e2164d715c868591a13685a403ccc597340012eb8b4824c9c98e2192795dcadd227049d203bf7508d80f37fa31aa0fb54bad3575e1918177aff1b211ec6d68ce86be044bbaed7961f95f65625e834fa1a11fde97c2ef925561a2c9f17e7a86eb9659903f805d41fbf57cd16f04bba4fe1687d9af3f1d015bc15f1fd55799670ac1cb8c619452472aaa1e8f0de34f9e8ae6a86a6f85bd6c41d984cb5331a7e42cf64b3e9d9dc54492c3bdcbbf6f8d54da6e6e281eb1e302ef7bd7fee04db770409d0a3b736e3d79f44f2c6bab8a2ea99a46cdbad183cfdf73571b503d27ae41e275a00278915c897813bdb79a109e64baf28aedb406dc3bc73c0351ada2b01176dc4ccc5945c17392ef650ca274eb04c287c4a367d8f8f1a3307dbca178202213f37b3d288f6ee5d44d9befdd3e679abaa7114b5dfae705fb9f70c21441403b62426dfba0c42651be4aa7e8c46f47520c9d51ac771ec27726e67713c75e1ae5e99aa94fc8d126dd73b4354243f1b9e5824242c19219475e694ef28a517678bc991b2fea9e3569ab7c96ba2b5a586dc6925b7d0fc0a8bafe2a0465fbca50a3682225e2a94a74185bc9a7ba9313de7bc7cd67cbbc3d9bbd5adf65308d23bfea050ed2e1d3bcc39d383a3b6d047b63abdaee98e6906ad44242eceaa2cfc44e0bd3ba3a5d9e24b6fa77a577bff38a8fc646616e640df9a55aaa1cffb2ee5b5692a7c5a09f0e9c43ba69ae4bd89cc574910260075b61aae2280641422bdb1faad7f121cd53b8cb32ad5c3492b10db3d40158b574eb635abf87f6f8d494086e8195b3bda3ef7b47f44fff4cc99ec6570558b7452021b4347cd01266d187ffb863544e3422dac308fd9464285d7c2b278413a219f9ad94cb0105e0a6f1e5d7cba1bc8707f29c24c", 0x1000, 0x1ff}, {&(0x7f0000001400)="b863df8464095cc3fc6d14b6e58cc17b7b13c4d405fb8caae221cf77979d84a5da0450931f47a6c2a166dbd6c61bc019e65575e16f7fb4c9aeda9505c36af91ef54d81b96ac9112c9d4e909894b326c04daa6acaa155824bd2b6cfd0b79b0a303ec86ca62a4cd13d2234c413a4313253273e34cacad01abcee9ed7ddabb624dd8ab6d0633d8bdb07f4699e5863ac8ea7ce4d1af6a42dedfd85c2c456dadc7654e447237ff88253c8b0220a34fe2ee355225f3ce558753f4a739001ab68c2e290", 0xc0, 0x3}, {&(0x7f00000014c0)="22420172b502b3c691726df9381fc7b09f5f062f1dbee3a74936826c5f8d632abf1ff4794a60a1da347b637a58526c61439f6da3e32e1b", 0x37, 0x3}, {&(0x7f0000001500)="dea1fbc6789efa74aab3dfc36e8706641e169f291851bf3571d2b5f19cdc99eecc6d78d2549037e9d3136553389efb271bd5b93079a11f2bea5adbb73e7a990d89a1483e956e852d698261a9bfde34b814ad68c75417fb3b4959ad9cb6cf229b9e5f0dfbb457162f73401567c0ebcad0bef312c3dece40bcd66e1a0fa314b0858da9d5929b942be57ef2237edba3ff80785815db", 0x94, 0x6}, {&(0x7f00000015c0)="657d36a95faadb3122b4906f83d62156121febc958dbcec36f2b79863437d7dfba88762326370f94f5155ffdd94e784bba4bbf145573df73c8dde5303ecf0b0fa1986d6eee3976d31fc31a52da70dd55c9489f419b1a175595e23da45b3bdf1b4906bbc80f87175ac30efbec24b40349be6fa2b2d9495ee6fabb4537e7d91a096a37c18a21a766e3a04f866a3f30f707f9d5df09461f5b47be15da67f99c4c55a075d838d474cce5173be9bf7ca8a476a428bea45b5adeba2d40fcf7f4f8293ac58943423e15d8a9", 0xc8, 0x9b}, {&(0x7f00000016c0)="618bd41e2749412fca2ceeb3b4181b1ab8540b12778195799fb4945c7cef547084858430395657af28a05895df9ce770ff940ec992a5f5636b10a2084f6cb072cf47d7fee1f6ade8f184470a8e075f1f7ec615152a19f0f7343e1eb8678afe1dee5340f340f4fd33ccf20bb4fd2b03018baefda0317bd4dd663549dccc76d95cbc8e129bdb37fc95e419f52e50c5c19cedc897c4efe2c7779f173cd33e91017a86ec133e4ed28beac5b964af0644d2adc9d32bcd116ba0e76d7047ebad6b8d77", 0xc0, 0x1000}, {&(0x7f0000001780)="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", 0x1000, 0x401}, {&(0x7f0000002780)="a3a52e2d589c6777d92569bf881f488552f1887bf5ac40d59d4610afc3787e381960631408766b028e032303ed6c8c83aabe20cc2633778b9438a61d0c3692c2edae6f911711e993", 0x48, 0x800}], 0x1281010, &(0x7f00000028c0)={[{@dots}], [{@audit}, {@audit}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@obj_role={'obj_role', 0x3d, '^([^'}}, {@uid_lt={'uid<', 0xee00}}, {@permit_directio}]}) r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r5, 0x0, 0x2) r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r6, 0x0, r5, 0x0, 0x200f5ef, 0x0) r7 = openat(r5, &(0x7f0000002940)='./file0\x00', 0x125142, 0x29) lseek(r7, 0x0, 0x2) r8 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r8, 0x0, r7, 0x0, 0x200f5ef, 0x0) faccessat(r7, &(0x7f0000000340)='./file0\x00', 0x8c) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) syz_io_uring_submit(r3, r2, &(0x7f0000000300)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r9, &(0x7f0000000280)={0x501082, 0x2a, 0x4}, &(0x7f00000002c0)='./file0\x00', 0x18, 0x0, 0x12345}, 0x5) 04:39:24 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x10d3, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:39:24 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000040)={0x3b, 0x0, 0x65, 0xffffffc0, 0x7ff}) r3 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/attr/current\x00', 0x2, 0x0) fchown(r3, 0xee00, 0xffffffffffffffff) signalfd4(r0, &(0x7f0000000140)={[0x2]}, 0x8, 0x0) 04:39:24 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'sit0\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) [ 1719.962865] FAULT_INJECTION: forcing a failure. [ 1719.962865] name failslab, interval 1, probability 0, space 0, times 0 [ 1719.964249] CPU: 1 PID: 19471 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1719.965147] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1719.966224] Call Trace: [ 1719.966572] dump_stack+0x107/0x167 [ 1719.967049] should_fail.cold+0x5/0xa [ 1719.967558] ? create_object.isra.0+0x3a/0xa20 [ 1719.968175] should_failslab+0x5/0x20 [ 1719.968669] kmem_cache_alloc+0x5b/0x310 [ 1719.969212] create_object.isra.0+0x3a/0xa20 [ 1719.969807] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1719.970479] kmem_cache_alloc+0x159/0x310 [ 1719.971014] anon_vma_fork+0x1ff/0x640 [ 1719.971545] copy_process+0x7218/0x7800 [ 1719.972076] ? __cleanup_sighand+0xb0/0xb0 [ 1719.972634] ? lock_acquire+0x197/0x470 [ 1719.973159] ? find_held_lock+0x2c/0x110 [ 1719.973703] kernel_clone+0xe7/0x980 [ 1719.974185] ? lock_downgrade+0x6d0/0x6d0 [ 1719.974736] ? find_held_lock+0x2c/0x110 [ 1719.975260] ? create_io_thread+0xf0/0xf0 [ 1719.975802] ? ksys_write+0x12d/0x260 [ 1719.976322] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1719.976966] __do_sys_fork+0x8a/0xc0 [ 1719.977463] ? kernel_thread+0xf0/0xf0 [ 1719.977998] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1719.978705] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1719.979371] ? trace_hardirqs_on+0x5b/0x180 [ 1719.979936] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1719.980617] do_syscall_64+0x33/0x40 [ 1719.981111] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1719.981796] RIP: 0033:0x7fa6a3da0b19 [ 1719.982292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1719.984718] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1719.985698] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1719.986612] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1719.986743] FAULT_INJECTION: forcing a failure. [ 1719.986743] name failslab, interval 1, probability 0, space 0, times 0 [ 1719.987525] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1719.987532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1719.987539] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1719.994138] CPU: 0 PID: 19479 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1719.994267] 9pnet: Unknown protocol version 9 [ 1719.995502] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1719.995508] Call Trace: [ 1719.995531] dump_stack+0x107/0x167 [ 1719.999018] should_fail.cold+0x5/0xa [ 1719.999865] ? create_object.isra.0+0x3a/0xa20 [ 1720.000878] should_failslab+0x5/0x20 [ 1720.001733] kmem_cache_alloc+0x5b/0x310 [ 1720.002643] create_object.isra.0+0x3a/0xa20 [ 1720.003637] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1720.004776] kmem_cache_alloc+0x159/0x310 [ 1720.005713] __pmd_alloc+0x94/0x5e0 [ 1720.006530] copy_page_range+0x2bd8/0x3810 [ 1720.007500] ? SOFTIRQ_verbose+0x10/0x10 [ 1720.008408] ? lock_chain_count+0x20/0x20 [ 1720.009386] ? up_write+0x191/0x550 [ 1720.010200] ? vm_iomap_memory+0x190/0x190 [ 1720.011157] ? downgrade_write+0x3a0/0x3a0 [ 1720.012110] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1720.013335] ? __vma_link_rb+0x540/0x700 [ 1720.014252] copy_process+0x759b/0x7800 [ 1720.015199] ? __cleanup_sighand+0xb0/0xb0 [ 1720.016150] ? SOFTIRQ_verbose+0x10/0x10 [ 1720.017080] ? finish_task_switch+0x126/0x5d0 [ 1720.018080] kernel_clone+0xe7/0x980 [ 1720.018926] ? create_io_thread+0xf0/0xf0 [ 1720.019848] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1720.020838] ? trace_hardirqs_on+0x5b/0x180 [ 1720.021797] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1720.022794] ? finish_task_switch+0x126/0x5d0 [ 1720.023785] ? finish_task_switch+0xef/0x5d0 [ 1720.024758] ? __switch_to+0x572/0xf70 [ 1720.025618] ? __switch_to_asm+0x3a/0x60 [ 1720.026516] ? __switch_to_asm+0x34/0x60 [ 1720.027429] ? __schedule+0x82c/0x1ea0 [ 1720.028302] __do_sys_fork+0x8a/0xc0 [ 1720.029129] ? kernel_thread+0xf0/0xf0 [ 1720.029991] ? io_schedule_timeout+0x140/0x140 [ 1720.031023] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1720.032058] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.033227] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.034371] ? trace_hardirqs_on+0x5b/0x180 [ 1720.035348] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.036493] do_syscall_64+0x33/0x40 [ 1720.037328] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1720.038455] RIP: 0033:0x7fc140e06b19 [ 1720.039296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.043324] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1720.044997] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1720.046560] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1720.048126] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1720.049696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1720.051279] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1720.053392] device sit0 entered promiscuous mode [ 1720.058439] FAULT_INJECTION: forcing a failure. [ 1720.058439] name failslab, interval 1, probability 0, space 0, times 0 [ 1720.061019] CPU: 0 PID: 19477 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1720.062543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1720.064384] Call Trace: [ 1720.064966] dump_stack+0x107/0x167 [ 1720.065776] should_fail.cold+0x5/0xa [ 1720.066613] ? create_object.isra.0+0x3a/0xa20 04:39:24 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 60) 04:39:24 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x5000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1720.067629] should_failslab+0x5/0x20 [ 1720.068588] kmem_cache_alloc+0x5b/0x310 [ 1720.069492] create_object.isra.0+0x3a/0xa20 [ 1720.070463] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1720.071593] kmem_cache_alloc+0x159/0x310 [ 1720.072507] ? generic_block_fiemap+0x60/0x60 [ 1720.073496] getname_flags.part.0+0x50/0x4f0 [ 1720.074458] getname_flags+0x9a/0xe0 [ 1720.075280] do_mkdirat+0x8f/0x2b0 [ 1720.076060] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1720.077234] ? user_path_create+0xf0/0xf0 [ 1720.078142] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.079295] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.080420] do_syscall_64+0x33/0x40 [ 1720.081232] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1720.082342] RIP: 0033:0x7fc91209ec27 [ 1720.083161] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.087154] RSP: 002b:00007fc90f614fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1720.088812] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fc91209ec27 [ 1720.090357] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 1720.091900] RBP: 00007fc90f615040 R08: 0000000000000000 R09: ffffffffffffffff [ 1720.093436] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1720.094973] R13: 0000000020000100 R14: 00007fc90f615000 R15: 0000000020013800 [ 1720.106107] FAULT_INJECTION: forcing a failure. [ 1720.106107] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1720.108843] CPU: 0 PID: 19595 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1720.110340] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1720.112145] Call Trace: [ 1720.112718] dump_stack+0x107/0x167 [ 1720.113523] should_fail.cold+0x5/0xa [ 1720.114364] __alloc_pages_nodemask+0x182/0x600 [ 1720.115409] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1720.116848] ? copy_page_range+0x28e1/0x3810 [ 1720.117799] alloc_pages_current+0x187/0x280 [ 1720.118760] get_zeroed_page+0x14/0xb0 [ 1720.119595] __pud_alloc+0x33/0x270 [ 1720.120374] copy_page_range+0x2ca1/0x3810 [ 1720.121273] ? SOFTIRQ_verbose+0x10/0x10 [ 1720.122135] ? lock_chain_count+0x20/0x20 [ 1720.123049] ? lock_downgrade+0x6d0/0x6d0 [ 1720.123953] ? up_write+0x191/0x550 [ 1720.124736] ? vm_iomap_memory+0x190/0x190 [ 1720.125641] ? downgrade_write+0x3a0/0x3a0 [ 1720.126552] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1720.127741] ? __vma_link_rb+0x540/0x700 [ 1720.128626] copy_process+0x759b/0x7800 [ 1720.129528] ? __cleanup_sighand+0xb0/0xb0 [ 1720.130444] ? lock_acquire+0x197/0x470 [ 1720.131318] ? find_held_lock+0x2c/0x110 [ 1720.132203] kernel_clone+0xe7/0x980 [ 1720.133011] ? lock_downgrade+0x6d0/0x6d0 [ 1720.133891] ? find_held_lock+0x2c/0x110 [ 1720.134775] ? create_io_thread+0xf0/0xf0 [ 1720.135666] ? ksys_write+0x12d/0x260 [ 1720.136489] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1720.137526] __do_sys_fork+0x8a/0xc0 [ 1720.138320] ? kernel_thread+0xf0/0xf0 [ 1720.139180] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.140295] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.141393] ? trace_hardirqs_on+0x5b/0x180 [ 1720.142314] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.143439] do_syscall_64+0x33/0x40 [ 1720.144246] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1720.145343] RIP: 0033:0x7fa6a3da0b19 [ 1720.146152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.150101] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1720.151755] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1720.153337] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1720.154943] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1720.156530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1720.158116] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:39:24 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1720.171716] audit: type=1400 audit(1698554364.986:17): avc: denied { setattr } for pid=19472 comm="syz-executor.0" name="current" dev="proc" ino=35513 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=file permissive=1 [ 1720.190267] 9pnet: Unknown protocol version 9 04:39:25 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) fremovexattr(r2, &(0x7f0000000000)=@known='system.sockprotoname\x00') close_range(r2, r0, 0x2) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:39:25 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 64) [ 1720.218170] device lo entered promiscuous mode [ 1720.221860] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1720.222019] FAULT_INJECTION: forcing a failure. [ 1720.222019] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1720.224856] CPU: 1 PID: 19708 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1720.225603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1720.226504] Call Trace: [ 1720.226809] dump_stack+0x107/0x167 [ 1720.227206] should_fail.cold+0x5/0xa [ 1720.227626] __alloc_pages_nodemask+0x182/0x600 [ 1720.228130] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1720.228787] ? find_held_lock+0x2c/0x110 [ 1720.229239] ? __pmd_alloc+0x2db/0x5e0 [ 1720.229663] ? lock_downgrade+0x6d0/0x6d0 [ 1720.230110] ? do_raw_spin_lock+0x121/0x260 [ 1720.230585] alloc_pages_current+0x187/0x280 [ 1720.231080] pte_alloc_one+0x16/0x1a0 [ 1720.231490] __pte_alloc+0x1d/0x330 [ 1720.231890] copy_page_range+0x1b62/0x3810 [ 1720.232339] ? SOFTIRQ_verbose+0x10/0x10 [ 1720.232776] ? lock_chain_count+0x20/0x20 [ 1720.232810] ? up_write+0x191/0x550 [ 1720.232821] ? vm_iomap_memory+0x190/0x190 [ 1720.232831] ? downgrade_write+0x3a0/0x3a0 [ 1720.232844] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1720.232859] ? __vma_link_rb+0x540/0x700 [ 1720.232875] copy_process+0x759b/0x7800 [ 1720.232907] ? __cleanup_sighand+0xb0/0xb0 04:39:25 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:39:25 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 65) 04:39:25 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 61) [ 1720.232921] ? lock_acquire+0x197/0x470 [ 1720.232936] ? find_held_lock+0x2c/0x110 [ 1720.232950] kernel_clone+0xe7/0x980 [ 1720.232961] ? lock_downgrade+0x6d0/0x6d0 [ 1720.232969] ? find_held_lock+0x2c/0x110 [ 1720.232979] ? create_io_thread+0xf0/0xf0 [ 1720.232993] ? ksys_write+0x12d/0x260 [ 1720.233010] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1720.233026] __do_sys_fork+0x8a/0xc0 [ 1720.233036] ? kernel_thread+0xf0/0xf0 [ 1720.233048] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1720.233067] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.233077] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.233087] ? trace_hardirqs_on+0x5b/0x180 [ 1720.233097] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.233109] do_syscall_64+0x33/0x40 [ 1720.233121] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1720.233129] RIP: 0033:0x7fc140e06b19 [ 1720.233140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.233146] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1720.233158] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1720.233165] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1720.233171] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1720.233177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1720.233184] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1720.276502] 9pnet: Unknown protocol version 9 [ 1720.291536] FAULT_INJECTION: forcing a failure. [ 1720.291536] name failslab, interval 1, probability 0, space 0, times 0 [ 1720.291550] CPU: 1 PID: 19724 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1720.291557] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1720.291561] Call Trace: [ 1720.291576] dump_stack+0x107/0x167 [ 1720.291594] should_fail.cold+0x5/0xa [ 1720.291608] ? ptlock_alloc+0x1d/0x70 [ 1720.291621] should_failslab+0x5/0x20 [ 1720.291632] kmem_cache_alloc+0x5b/0x310 [ 1720.291647] ptlock_alloc+0x1d/0x70 [ 1720.291659] pte_alloc_one+0x68/0x1a0 [ 1720.291670] __pte_alloc+0x1d/0x330 [ 1720.291684] copy_page_range+0x1b62/0x3810 [ 1720.291697] ? finish_task_switch+0x126/0x5d0 [ 1720.291730] ? up_write+0x191/0x550 [ 1720.291740] ? vm_iomap_memory+0x190/0x190 [ 1720.291751] ? downgrade_write+0x3a0/0x3a0 [ 1720.291763] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1720.291778] ? __vma_link_rb+0x540/0x700 [ 1720.291794] copy_process+0x759b/0x7800 [ 1720.291825] ? __cleanup_sighand+0xb0/0xb0 [ 1720.291839] ? lock_acquire+0x197/0x470 [ 1720.291854] ? find_held_lock+0x2c/0x110 [ 1720.291868] kernel_clone+0xe7/0x980 [ 1720.291878] ? lock_downgrade+0x6d0/0x6d0 [ 1720.291887] ? find_held_lock+0x2c/0x110 [ 1720.291897] ? create_io_thread+0xf0/0xf0 [ 1720.291911] ? ksys_write+0x12d/0x260 [ 1720.291928] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1720.291944] __do_sys_fork+0x8a/0xc0 [ 1720.291954] ? kernel_thread+0xf0/0xf0 [ 1720.291975] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.291985] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.291995] ? trace_hardirqs_on+0x5b/0x180 [ 1720.292006] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.292018] do_syscall_64+0x33/0x40 [ 1720.292031] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1720.292038] RIP: 0033:0x7fc140e06b19 [ 1720.292050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.292056] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1720.292068] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1720.292075] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1720.292081] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1720.292087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1720.292094] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1720.328432] FAULT_INJECTION: forcing a failure. [ 1720.328432] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1720.328455] CPU: 0 PID: 19784 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1720.328467] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1720.328474] Call Trace: [ 1720.328498] dump_stack+0x107/0x167 [ 1720.328525] should_fail.cold+0x5/0xa [ 1720.328553] __alloc_pages_nodemask+0x182/0x600 [ 1720.328576] ? lock_acquire+0x197/0x470 [ 1720.328598] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1720.328629] ? lock_downgrade+0x6d0/0x6d0 [ 1720.328652] ? do_raw_spin_lock+0x121/0x260 [ 1720.328683] alloc_pages_current+0x187/0x280 [ 1720.328709] __pmd_alloc+0x37/0x5e0 [ 1720.328735] copy_page_range+0x2bd8/0x3810 [ 1720.328761] ? SOFTIRQ_verbose+0x10/0x10 [ 1720.328780] ? lock_chain_count+0x20/0x20 [ 1720.328846] ? up_write+0x191/0x550 [ 1720.328868] ? vm_iomap_memory+0x190/0x190 [ 1720.328887] ? downgrade_write+0x3a0/0x3a0 [ 1720.328913] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1720.328941] ? __vma_link_rb+0x540/0x700 [ 1720.328973] copy_process+0x759b/0x7800 [ 1720.329035] ? __cleanup_sighand+0xb0/0xb0 [ 1720.329063] ? lock_acquire+0x197/0x470 [ 1720.329094] ? find_held_lock+0x2c/0x110 [ 1720.329120] kernel_clone+0xe7/0x980 [ 1720.329142] ? lock_downgrade+0x6d0/0x6d0 [ 1720.329159] ? find_held_lock+0x2c/0x110 [ 1720.329180] ? create_io_thread+0xf0/0xf0 [ 1720.329207] ? ksys_write+0x12d/0x260 [ 1720.329239] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1720.329271] __do_sys_fork+0x8a/0xc0 [ 1720.329290] ? kernel_thread+0xf0/0xf0 [ 1720.329331] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1720.329351] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.329368] ? trace_hardirqs_on+0x5b/0x180 [ 1720.329391] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1720.329418] do_syscall_64+0x33/0x40 [ 1720.329442] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1720.329456] RIP: 0033:0x7fa6a3da0b19 [ 1720.329478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1720.329490] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1720.329513] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1720.329526] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1720.329539] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1720.329551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1720.329564] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:39:40 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2010, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:39:40 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x46e2, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = socket$netlink(0x10, 0x3, 0x15) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c0000000000210c00000000000000000000008004000900"], 0x1c}}, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x1, 0x9, 0x0, 0x1ff}) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) fcntl$getown(r2, 0x9) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) write$binfmt_elf64(r3, &(0x7f0000000100)=ANY=[@ANYRESOCT, @ANYRESHEX], 0xfdef) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4, @perf_config_ext={0x0, 0xffffffffffff0bde}, 0x45, 0x53f, 0x0, 0x0, 0x0, 0xfffffff3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r3, 0x3, 0x4077, 0x8000) 04:39:40 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x8, 0x10, r0, 0x8000000) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r5 = syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) syz_io_uring_setup(0x49ff, &(0x7f00000002c0)={0x0, 0xd541, 0x8, 0x3, 0x7f}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000240)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, 0x0, &(0x7f0000000380)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd, 0x5ab, 0x0, 0x1, 0x4, 0x1, {0x0, r7}}, 0x401) syz_io_uring_submit(r3, r2, &(0x7f0000000780)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r4, 0x0, &(0x7f0000000740)={&(0x7f0000000240)=@ethernet={0x1, @remote}, 0x80, &(0x7f0000000640)=[{&(0x7f00000002c0)="03a301a4b5f5266381722380223e72262339c2f61cfdc53a2fdf6b083432ea44b1dde101bd0f4f068d7bb8209fbdcbaab961d65550b801dd80fa3389ea8e3d9f789e2cafd3bafb85c5263a5ade9b3f7840f6843ac52ebab2a523cef73a16e377270a40ceab152c5282b7f86e132f67f9d7feffa5cd3fc81fffbb834a110474c485bea67f5a64bd828c6756b48fb24c987065058b56cac7cc096b005564cc421bf112c586d25a615ce2717545bc3afd74d5a6008cff66fab880409890287436fb90f4b450e036756c0d741ae78a8d72", 0xcf}, {&(0x7f00000003c0)="00c362da490c954eada2b2187d659a67fdd60ef0c093d822eda61633e0fcc14c7a9fb1bc1241c99c0708b4759b", 0x2d}, {&(0x7f0000000400)="df3618f8d85bdd43e30d5005f01cf1645e83978e425f1838428c7447445eaa30a2d0d3d7caae49ebf66406de198965372944005978a52d9a7ab7e547dee1a2d6216961273bbafea09c90b59adb5a3d4251980ac14ba6dfedfe2ddc9f7b751c484b35373c46f02820b46877fe12af008c7bcc852f3ea9443d58b5471d28b53eb673fb9b3938229b1272883e7a3eb6b6c10c8e73", 0x93}, {&(0x7f00000004c0)="9ce254810322f768c9f80a0f5cf9b61e4a4b3cc3176e59e80e5b2c315707fab5e5faeaa0cf6d1134bf5b32d17090310e33bc15a9e17f9b20f624765dd73264ece9a81eac3b06896a87e2c4f08b110c1fa91bde65117aa2babff81f4285d3b83bf3fe5e990d4285ce7d00650e318e54600abd470a256a7fc2a6cd750da6ae22ccc594fe3e0afd7f71d13fcc31abbe7e16b3bb0352efc929623eab0ae25a", 0x9d}, {&(0x7f0000000580)="b1f670690a7a22fa17bd423726712cc172fd8587bebcac15d0c7d2451f2795c2243b8859d7f16adffd3fe7068d3024cc19036e216c4fc59fafde3f6833fd7776cf9429e89a6242c38de18d39dbd5", 0x4e}, {&(0x7f0000000600)="fd5df87212c7e216150bc4b49d16b91dcf9b5c167c1ab754e270df496e9061c4d63d321c42", 0x25}], 0x6, &(0x7f00000006c0)=[{0x58, 0x10f, 0x0, "77d9fbe681f24f2ad746845a7d6dde69fdd03666e833bf00001138af30c9b60726ae564420df9ca4d0c294b4f0533f5cae5e879efacf8c6e1aba52de168aa971433254"}], 0x58}, 0x0, 0x24000000, 0x1, {0x0, r7}}, 0x8) r8 = openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.pending_reads\x00', 0x80001, 0x20) r9 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000140)='syz0\x00', 0x200002, 0x0) syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x8, &(0x7f0000000180)=[r4, r0, r8, r0, r9, r0], 0x6}, 0x73dd6192) 04:39:40 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r10}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r10}) 04:39:40 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 53) 04:39:40 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 66) 04:39:40 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x7000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:39:40 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 62) [ 1736.163471] FAULT_INJECTION: forcing a failure. [ 1736.163471] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1736.166058] CPU: 1 PID: 19925 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1736.167588] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1736.169376] Call Trace: [ 1736.169948] dump_stack+0x107/0x167 [ 1736.170757] should_fail.cold+0x5/0xa [ 1736.171719] strncpy_from_user+0x34/0x470 [ 1736.172858] getname_flags.part.0+0x95/0x4f0 [ 1736.174035] getname_flags+0x9a/0xe0 [ 1736.175036] do_mkdirat+0x8f/0x2b0 [ 1736.175979] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1736.177188] ? user_path_create+0xf0/0xf0 [ 1736.178111] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1736.179280] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.180416] do_syscall_64+0x33/0x40 [ 1736.181248] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1736.182376] RIP: 0033:0x7fc91209ec27 [ 1736.183224] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.187225] RSP: 002b:00007fc90f614fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1736.188861] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fc91209ec27 [ 1736.190409] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 1736.191959] RBP: 00007fc90f615040 R08: 0000000000000000 R09: ffffffffffffffff [ 1736.193510] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1736.195054] R13: 0000000020000100 R14: 00007fc90f615000 R15: 0000000020013800 [ 1736.212881] FAULT_INJECTION: forcing a failure. [ 1736.212881] name failslab, interval 1, probability 0, space 0, times 0 [ 1736.215530] CPU: 1 PID: 19936 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1736.217390] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1736.219546] Call Trace: [ 1736.220251] dump_stack+0x107/0x167 [ 1736.221220] should_fail.cold+0x5/0xa [ 1736.222227] ? create_object.isra.0+0x3a/0xa20 [ 1736.223338] should_failslab+0x5/0x20 [ 1736.224174] kmem_cache_alloc+0x5b/0x310 [ 1736.225058] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1736.226363] create_object.isra.0+0x3a/0xa20 [ 1736.227334] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1736.228448] kmem_cache_alloc+0x159/0x310 [ 1736.229364] ptlock_alloc+0x1d/0x70 [ 1736.230147] pte_alloc_one+0x68/0x1a0 [ 1736.231010] __pte_alloc+0x1d/0x330 [ 1736.231808] copy_page_range+0x1b62/0x3810 [ 1736.232741] ? SOFTIRQ_verbose+0x10/0x10 [ 1736.233618] ? lock_chain_count+0x20/0x20 [ 1736.234562] ? up_write+0x191/0x550 [ 1736.235369] ? vm_iomap_memory+0x190/0x190 [ 1736.236294] ? downgrade_write+0x3a0/0x3a0 [ 1736.237221] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1736.238409] ? __vma_link_rb+0x540/0x700 [ 1736.239323] copy_process+0x759b/0x7800 [ 1736.240251] ? __cleanup_sighand+0xb0/0xb0 [ 1736.241186] ? lock_acquire+0x197/0x470 [ 1736.242050] ? find_held_lock+0x2c/0x110 [ 1736.242950] kernel_clone+0xe7/0x980 [ 1736.243761] ? lock_downgrade+0x6d0/0x6d0 [ 1736.244669] ? find_held_lock+0x2c/0x110 [ 1736.245550] ? create_io_thread+0xf0/0xf0 [ 1736.246464] ? ksys_write+0x12d/0x260 [ 1736.247324] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1736.248376] __do_sys_fork+0x8a/0xc0 [ 1736.249188] ? kernel_thread+0xf0/0xf0 [ 1736.250056] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1736.251206] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.252315] ? trace_hardirqs_on+0x5b/0x180 [ 1736.253249] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.254371] do_syscall_64+0x33/0x40 [ 1736.255199] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1736.256324] RIP: 0033:0x7fc140e06b19 [ 1736.257129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.261105] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1736.262757] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1736.264314] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1736.265850] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1736.267422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1736.268960] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1736.295591] FAULT_INJECTION: forcing a failure. [ 1736.295591] name failslab, interval 1, probability 0, space 0, times 0 [ 1736.297468] CPU: 0 PID: 19939 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1736.298489] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1736.299775] Call Trace: [ 1736.300169] dump_stack+0x107/0x167 [ 1736.300729] should_fail.cold+0x5/0xa [ 1736.301297] ? __pmd_alloc+0x94/0x5e0 [ 1736.301889] should_failslab+0x5/0x20 [ 1736.302446] kmem_cache_alloc+0x5b/0x310 [ 1736.303084] __pmd_alloc+0x94/0x5e0 [ 1736.303678] copy_page_range+0x2bd8/0x3810 [ 1736.304326] ? SOFTIRQ_verbose+0x10/0x10 [ 1736.304943] ? lock_chain_count+0x20/0x20 [ 1736.305599] ? up_write+0x191/0x550 [ 1736.306146] ? vm_iomap_memory+0x190/0x190 [ 1736.306778] ? downgrade_write+0x3a0/0x3a0 [ 1736.307424] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1736.308241] ? __vma_link_rb+0x540/0x700 [ 1736.308859] copy_process+0x759b/0x7800 [ 1736.309482] ? __cleanup_sighand+0xb0/0xb0 [ 1736.310122] ? lock_acquire+0x197/0x470 [ 1736.310726] ? find_held_lock+0x2c/0x110 [ 1736.311363] kernel_clone+0xe7/0x980 [ 1736.311921] ? lock_downgrade+0x6d0/0x6d0 [ 1736.312536] ? find_held_lock+0x2c/0x110 [ 1736.313143] ? create_io_thread+0xf0/0xf0 [ 1736.313771] ? ksys_write+0x12d/0x260 [ 1736.314349] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1736.315087] __do_sys_fork+0x8a/0xc0 [ 1736.315641] ? kernel_thread+0xf0/0xf0 [ 1736.316236] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1736.317020] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.317794] ? trace_hardirqs_on+0x5b/0x180 [ 1736.318433] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1736.319231] do_syscall_64+0x33/0x40 [ 1736.319790] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1736.320573] RIP: 0033:0x7fa6a3da0b19 [ 1736.321127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1736.323916] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1736.325038] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1736.326091] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1736.327154] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1736.328210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1736.329271] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1736.335476] 9pnet: Unknown protocol version 9 [ 1751.594541] FAULT_INJECTION: forcing a failure. [ 1751.594541] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.596286] CPU: 0 PID: 20157 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1751.597124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.598087] Call Trace: [ 1751.598401] dump_stack+0x107/0x167 [ 1751.598840] should_fail.cold+0x5/0xa [ 1751.599310] ? vm_area_dup+0x78/0x290 [ 1751.599766] should_failslab+0x5/0x20 [ 1751.600212] kmem_cache_alloc+0x5b/0x310 [ 1751.600694] ? lock_downgrade+0x6d0/0x6d0 [ 1751.601181] vm_area_dup+0x78/0x290 [ 1751.601623] ? _cond_resched+0x12/0x80 [ 1751.602084] ? copy_page_range+0x24e9/0x3810 [ 1751.602612] ? vm_area_alloc+0x110/0x110 [ 1751.603091] ? up_write+0x191/0x550 [ 1751.603507] ? vm_iomap_memory+0x190/0x190 [ 1751.603996] ? downgrade_write+0x3a0/0x3a0 [ 1751.604479] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1751.605206] ? __vma_link_rb+0x540/0x700 [ 1751.605726] copy_process+0x291b/0x7800 [ 1751.606264] ? __cleanup_sighand+0xb0/0xb0 [ 1751.606813] ? lock_acquire+0x197/0x470 [ 1751.607303] ? find_held_lock+0x2c/0x110 04:39:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 54) 04:39:56 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x46e2, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = socket$netlink(0x10, 0x3, 0x15) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c0000000000210c00000000000000000000008004000900"], 0x1c}}, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x1, 0x9, 0x0, 0x1ff}) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) fcntl$getown(r2, 0x9) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) write$binfmt_elf64(r3, &(0x7f0000000100)=ANY=[@ANYRESOCT, @ANYRESHEX], 0xfdef) openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/keys\x00', 0x0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4, @perf_config_ext={0x0, 0xffffffffffff0bde}, 0x45, 0x53f, 0x0, 0x0, 0x0, 0xfffffff3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r3, 0x3, 0x4077, 0x8000) 04:39:56 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x20000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:39:56 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r1, r5, &(0x7f0000000140)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x1, 0x0, 0x1}, 0x7fff) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) dup2(r0, r3) 04:39:56 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 67) [ 1751.607810] kernel_clone+0xe7/0x980 [ 1751.608448] ? lock_downgrade+0x6d0/0x6d0 [ 1751.608972] ? find_held_lock+0x2c/0x110 [ 1751.609499] ? create_io_thread+0xf0/0xf0 [ 1751.610048] ? ksys_write+0x12d/0x260 [ 1751.610545] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1751.611176] __do_sys_fork+0x8a/0xc0 [ 1751.611659] ? kernel_thread+0xf0/0xf0 [ 1751.612186] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.612872] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.613556] ? trace_hardirqs_on+0x5b/0x180 [ 1751.614105] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.614698] do_syscall_64+0x33/0x40 [ 1751.615172] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1751.615829] RIP: 0033:0x7fc140e06b19 [ 1751.616320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.618715] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1751.619727] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1751.620381] FAULT_INJECTION: forcing a failure. [ 1751.620381] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.620663] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1751.620678] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1751.624631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1751.625533] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:39:56 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 63) 04:39:56 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xd310, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:39:56 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) ioctl$sock_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000)) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080), 0x0, 0x40004) setsockopt$inet6_mreq(r3, 0x29, 0x1c, &(0x7f00000000c0)={@dev={0xfe, 0x80, '\x00', 0x14}, r2}, 0x14) [ 1751.626482] CPU: 1 PID: 20154 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1751.628059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.629736] Call Trace: [ 1751.630271] dump_stack+0x107/0x167 [ 1751.631016] should_fail.cold+0x5/0xa [ 1751.631800] ? create_object.isra.0+0x3a/0xa20 [ 1751.632728] should_failslab+0x5/0x20 [ 1751.633499] kmem_cache_alloc+0x5b/0x310 [ 1751.634330] create_object.isra.0+0x3a/0xa20 [ 1751.635239] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1751.636268] kmem_cache_alloc+0x159/0x310 [ 1751.637114] getname_flags.part.0+0x50/0x4f0 [ 1751.638006] getname_flags+0x9a/0xe0 [ 1751.638761] do_mkdirat+0x8f/0x2b0 [ 1751.639508] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1751.640605] ? user_path_create+0xf0/0xf0 [ 1751.641458] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.641476] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.641502] do_syscall_64+0x33/0x40 [ 1751.641524] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1751.641537] RIP: 0033:0x7fc91209ec27 [ 1751.641557] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.641568] RSP: 002b:00007fc90f614fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1751.641588] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fc91209ec27 [ 1751.641600] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 1751.641612] RBP: 00007fc90f615040 R08: 0000000000000000 R09: ffffffffffffffff [ 1751.641624] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1751.641636] R13: 0000000020000100 R14: 00007fc90f615000 R15: 0000000020013800 [ 1751.643441] 9pnet: Unknown protocol version 9 [ 1751.648078] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1751.659391] FAULT_INJECTION: forcing a failure. [ 1751.659391] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.659412] CPU: 1 PID: 20175 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1751.659423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.659429] Call Trace: [ 1751.659449] dump_stack+0x107/0x167 [ 1751.659475] should_fail.cold+0x5/0xa [ 1751.659497] ? create_object.isra.0+0x3a/0xa20 04:39:56 executing program 0: ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x8}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) io_uring_register$IORING_UNREGISTER_FILES(r0, 0x3, 0x0, 0x0) 04:39:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 55) [ 1751.659519] should_failslab+0x5/0x20 [ 1751.659538] kmem_cache_alloc+0x5b/0x310 [ 1751.659565] create_object.isra.0+0x3a/0xa20 [ 1751.659586] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1751.659612] kmem_cache_alloc+0x159/0x310 [ 1751.659641] __pmd_alloc+0x94/0x5e0 [ 1751.659667] copy_page_range+0x2bd8/0x3810 [ 1751.659686] ? SOFTIRQ_verbose+0x10/0x10 [ 1751.659704] ? lock_chain_count+0x20/0x20 [ 1751.659774] ? up_write+0x191/0x550 [ 1751.659794] ? vm_iomap_memory+0x190/0x190 [ 1751.659814] ? downgrade_write+0x3a0/0x3a0 [ 1751.659838] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1751.659867] ? __vma_link_rb+0x540/0x700 04:39:56 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 68) 04:39:56 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x20100000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1751.659897] copy_process+0x759b/0x7800 [ 1751.659958] ? __cleanup_sighand+0xb0/0xb0 [ 1751.659985] ? lock_acquire+0x197/0x470 [ 1751.660015] ? find_held_lock+0x2c/0x110 [ 1751.660041] kernel_clone+0xe7/0x980 [ 1751.660061] ? lock_downgrade+0x6d0/0x6d0 [ 1751.660078] ? find_held_lock+0x2c/0x110 [ 1751.660097] ? create_io_thread+0xf0/0xf0 [ 1751.660122] ? ksys_write+0x12d/0x260 [ 1751.660152] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1751.660183] __do_sys_fork+0x8a/0xc0 [ 1751.660202] ? kernel_thread+0xf0/0xf0 04:39:56 executing program 0: r0 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r1, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_SPLICE={0x1e, 0x4, 0x0, @fd_index=0x4, 0x7, {}, 0x80000000, 0x7, 0x0, {0x0, r0, r1}}, 0x18) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1751.660242] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.660260] ? syscall_enter_from_user_mode+0x1d/0x50 04:39:56 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 64) [ 1751.660277] ? trace_hardirqs_on+0x5b/0x180 [ 1751.660298] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.660321] do_syscall_64+0x33/0x40 [ 1751.660344] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1751.660356] RIP: 0033:0x7fa6a3da0b19 [ 1751.660377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 04:39:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 56) [ 1751.660389] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1751.660410] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1751.660421] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1751.660433] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1751.660444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1751.660456] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1751.788542] FAULT_INJECTION: forcing a failure. [ 1751.788542] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.788595] CPU: 0 PID: 20313 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1751.788601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.788605] Call Trace: [ 1751.788620] dump_stack+0x107/0x167 [ 1751.788635] should_fail.cold+0x5/0xa [ 1751.788649] ? __d_alloc+0x2a/0x990 [ 1751.788662] should_failslab+0x5/0x20 [ 1751.788674] kmem_cache_alloc+0x5b/0x310 [ 1751.788684] ? __d_lookup+0x3bf/0x760 [ 1751.788698] __d_alloc+0x2a/0x990 [ 1751.788712] d_alloc+0x46/0x1c0 [ 1751.788727] __lookup_hash+0xcc/0x190 [ 1751.788740] filename_create+0x186/0x4a0 [ 1751.788755] ? filename_parentat+0x570/0x570 [ 1751.788766] ? getname_flags.part.0+0x1dd/0x4f0 [ 1751.788782] do_mkdirat+0xa2/0x2b0 04:39:56 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6c120000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:39:56 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) (fail_nth: 57) [ 1751.788796] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1751.788807] ? user_path_create+0xf0/0xf0 [ 1751.788822] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.788834] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.788849] do_syscall_64+0x33/0x40 [ 1751.788862] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1751.788870] RIP: 0033:0x7fc91209ec27 [ 1751.788882] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.788888] RSP: 002b:00007fc90f614fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1751.788900] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fc91209ec27 [ 1751.788907] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 1751.788913] RBP: 00007fc90f615040 R08: 0000000000000000 R09: ffffffffffffffff [ 1751.788919] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1751.788926] R13: 0000000020000100 R14: 00007fc90f615000 R15: 0000000020013800 [ 1751.826226] FAULT_INJECTION: forcing a failure. [ 1751.826226] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.826250] CPU: 1 PID: 20377 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1751.826261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.826268] Call Trace: [ 1751.826290] dump_stack+0x107/0x167 [ 1751.826318] should_fail.cold+0x5/0xa [ 1751.826341] ? create_object.isra.0+0x3a/0xa20 [ 1751.826366] should_failslab+0x5/0x20 [ 1751.826386] kmem_cache_alloc+0x5b/0x310 [ 1751.826420] create_object.isra.0+0x3a/0xa20 [ 1751.826441] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1751.826469] kmem_cache_alloc+0x159/0x310 [ 1751.826499] vm_area_dup+0x78/0x290 [ 1751.826530] ? _cond_resched+0x12/0x80 [ 1751.826552] ? copy_page_range+0x24e9/0x3810 [ 1751.826615] ? vm_area_alloc+0x110/0x110 [ 1751.826640] ? up_write+0x191/0x550 [ 1751.826661] ? vm_iomap_memory+0x190/0x190 [ 1751.826680] ? downgrade_write+0x3a0/0x3a0 [ 1751.826706] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1751.826735] ? __vma_link_rb+0x540/0x700 [ 1751.826766] copy_process+0x291b/0x7800 [ 1751.826830] ? __cleanup_sighand+0xb0/0xb0 [ 1751.826859] ? lock_acquire+0x197/0x470 [ 1751.826890] ? find_held_lock+0x2c/0x110 [ 1751.826918] kernel_clone+0xe7/0x980 [ 1751.826940] ? lock_downgrade+0x6d0/0x6d0 [ 1751.826957] ? find_held_lock+0x2c/0x110 [ 1751.826978] ? create_io_thread+0xf0/0xf0 [ 1751.827003] ? ksys_write+0x12d/0x260 [ 1751.827035] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1751.827099] __do_sys_fork+0x8a/0xc0 [ 1751.827120] ? kernel_thread+0xf0/0xf0 [ 1751.827160] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.827180] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.827198] ? trace_hardirqs_on+0x5b/0x180 [ 1751.827220] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.827242] do_syscall_64+0x33/0x40 [ 1751.827266] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1751.827281] RIP: 0033:0x7fc140e06b19 [ 1751.827302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.827314] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1751.827338] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1751.827350] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1751.827362] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1751.827374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1751.827387] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1751.872668] FAULT_INJECTION: forcing a failure. [ 1751.872668] name failslab, interval 1, probability 0, space 0, times 0 [ 1751.872682] CPU: 0 PID: 20436 Comm: syz-executor.5 Not tainted 5.10.199 #1 [ 1751.872689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.872692] Call Trace: [ 1751.872707] dump_stack+0x107/0x167 [ 1751.872724] should_fail.cold+0x5/0xa [ 1751.872739] ? ext4_alloc_inode+0x1a/0x670 [ 1751.872757] should_failslab+0x5/0x20 [ 1751.872768] kmem_cache_alloc+0x5b/0x310 [ 1751.872781] ? security_compute_validatetrans.part.0+0x960/0x960 [ 1751.872795] ? ext4_init_journal_params+0x350/0x350 [ 1751.872807] ext4_alloc_inode+0x1a/0x670 [ 1751.872819] ? ext4_init_journal_params+0x350/0x350 [ 1751.872828] alloc_inode+0x63/0x240 [ 1751.872838] new_inode+0x23/0x250 [ 1751.872852] __ext4_new_inode+0x32c/0x5370 [ 1751.872863] ? avc_has_extended_perms+0xf40/0xf40 [ 1751.872888] ? ext4_mark_inode_used+0x14a0/0x14a0 [ 1751.872907] ? dquot_initialize_needed+0x290/0x290 [ 1751.872919] ? selinux_determine_inode_label+0x1ab/0x340 [ 1751.872938] ext4_mkdir+0x32c/0xb10 [ 1751.872956] ? ext4_rmdir+0xf70/0xf70 [ 1751.872974] vfs_mkdir+0x493/0x700 [ 1751.872988] do_mkdirat+0x150/0x2b0 [ 1751.873000] ? user_path_create+0xf0/0xf0 [ 1751.873015] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.873027] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.873042] do_syscall_64+0x33/0x40 [ 1751.873054] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1751.873062] RIP: 0033:0x7fc91209ec27 [ 1751.873073] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.873079] RSP: 002b:00007fc90f614fa8 EFLAGS: 00000213 ORIG_RAX: 0000000000000053 [ 1751.873092] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fc91209ec27 [ 1751.873098] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 0000000020000100 [ 1751.873105] RBP: 00007fc90f615040 R08: 0000000000000000 R09: ffffffffffffffff [ 1751.873111] R10: 0000000000000000 R11: 0000000000000213 R12: 0000000020000000 [ 1751.873118] R13: 0000000020000100 R14: 00007fc90f615000 R15: 0000000020013800 [ 1751.881562] FAULT_INJECTION: forcing a failure. [ 1751.881562] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1751.881583] CPU: 1 PID: 20450 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1751.881595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1751.881601] Call Trace: [ 1751.881621] dump_stack+0x107/0x167 [ 1751.881647] should_fail.cold+0x5/0xa [ 1751.881674] __alloc_pages_nodemask+0x182/0x600 [ 1751.881702] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1751.881720] ? find_held_lock+0x2c/0x110 [ 1751.881753] ? __pmd_alloc+0x2db/0x5e0 [ 1751.881774] ? lock_downgrade+0x6d0/0x6d0 [ 1751.881797] ? do_raw_spin_lock+0x121/0x260 [ 1751.881824] alloc_pages_current+0x187/0x280 [ 1751.881850] pte_alloc_one+0x16/0x1a0 [ 1751.881872] __pte_alloc+0x1d/0x330 [ 1751.881898] copy_page_range+0x1b62/0x3810 [ 1751.881918] ? SOFTIRQ_verbose+0x10/0x10 [ 1751.881936] ? lock_chain_count+0x20/0x20 [ 1751.882005] ? up_write+0x191/0x550 [ 1751.882027] ? vm_iomap_memory+0x190/0x190 [ 1751.882047] ? downgrade_write+0x3a0/0x3a0 [ 1751.882073] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1751.882102] ? __vma_link_rb+0x540/0x700 [ 1751.882134] copy_process+0x759b/0x7800 [ 1751.882198] ? __cleanup_sighand+0xb0/0xb0 [ 1751.882227] ? lock_acquire+0x197/0x470 [ 1751.882258] ? find_held_lock+0x2c/0x110 [ 1751.882286] kernel_clone+0xe7/0x980 [ 1751.882307] ? lock_downgrade+0x6d0/0x6d0 [ 1751.882325] ? find_held_lock+0x2c/0x110 [ 1751.882345] ? create_io_thread+0xf0/0xf0 [ 1751.882371] ? ksys_write+0x12d/0x260 [ 1751.882403] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1751.882436] __do_sys_fork+0x8a/0xc0 [ 1751.882456] ? kernel_thread+0xf0/0xf0 [ 1751.882498] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1751.882518] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.882535] ? trace_hardirqs_on+0x5b/0x180 [ 1751.882557] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1751.882579] do_syscall_64+0x33/0x40 [ 1751.882603] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1751.882616] RIP: 0033:0x7fa6a3da0b19 [ 1751.882638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1751.882650] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1751.882673] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1751.882685] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1751.882697] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1751.882710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1751.882722] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:40:10 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8cffffff, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:40:10 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000002, 0x10010, r0, 0x0) 04:40:10 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r10}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r10}) 04:40:10 executing program 1: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x7, 0x1, 0x401, 0x0, 0x0, {0x3, 0x0, 0x7}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x4004044) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f00000000c0)={@empty, r1}, 0x14) 04:40:10 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 65) 04:40:10 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 69) 04:40:10 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:40:10 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xedc0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1765.521233] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1765.523277] FAULT_INJECTION: forcing a failure. [ 1765.523277] name failslab, interval 1, probability 0, space 0, times 0 [ 1765.523293] CPU: 0 PID: 20622 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1765.523301] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1765.523305] Call Trace: [ 1765.523323] dump_stack+0x107/0x167 [ 1765.523341] should_fail.cold+0x5/0xa [ 1765.523357] ? ptlock_alloc+0x1d/0x70 [ 1765.523372] should_failslab+0x5/0x20 [ 1765.523385] kmem_cache_alloc+0x5b/0x310 [ 1765.523403] ptlock_alloc+0x1d/0x70 [ 1765.523418] pte_alloc_one+0x68/0x1a0 [ 1765.523431] __pte_alloc+0x1d/0x330 [ 1765.523447] copy_page_range+0x1b62/0x3810 [ 1765.523460] ? SOFTIRQ_verbose+0x10/0x10 [ 1765.523472] ? lock_chain_count+0x20/0x20 [ 1765.523512] ? up_write+0x191/0x550 [ 1765.523525] ? vm_iomap_memory+0x190/0x190 [ 1765.523537] ? downgrade_write+0x3a0/0x3a0 [ 1765.523553] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1765.523571] ? __vma_link_rb+0x540/0x700 [ 1765.523591] copy_process+0x759b/0x7800 [ 1765.523629] ? __cleanup_sighand+0xb0/0xb0 [ 1765.523646] ? lock_acquire+0x197/0x470 [ 1765.523665] ? find_held_lock+0x2c/0x110 [ 1765.523681] kernel_clone+0xe7/0x980 [ 1765.523694] ? lock_downgrade+0x6d0/0x6d0 [ 1765.523705] ? find_held_lock+0x2c/0x110 [ 1765.523718] ? create_io_thread+0xf0/0xf0 [ 1765.523734] ? ksys_write+0x12d/0x260 [ 1765.523758] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1765.523777] __do_sys_fork+0x8a/0xc0 [ 1765.523790] ? kernel_thread+0xf0/0xf0 [ 1765.523815] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1765.523827] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1765.523838] ? trace_hardirqs_on+0x5b/0x180 [ 1765.523852] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1765.523866] do_syscall_64+0x33/0x40 [ 1765.523881] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1765.523890] RIP: 0033:0x7fa6a3da0b19 [ 1765.523905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1765.523912] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1765.523926] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1765.523933] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1765.523941] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1765.523949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1765.523957] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1765.524841] device lo entered promiscuous mode [ 1765.533866] FAULT_INJECTION: forcing a failure. [ 1765.533866] name failslab, interval 1, probability 0, space 0, times 0 [ 1765.562976] CPU: 0 PID: 20629 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1765.563897] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1765.564999] Call Trace: [ 1765.565349] dump_stack+0x107/0x167 [ 1765.565844] should_fail.cold+0x5/0xa [ 1765.566360] ? vm_area_dup+0x78/0x290 [ 1765.566882] should_failslab+0x5/0x20 [ 1765.567421] kmem_cache_alloc+0x5b/0x310 [ 1765.567964] vm_area_dup+0x78/0x290 [ 1765.568466] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1765.569103] ? lock_downgrade+0x6d0/0x6d0 [ 1765.569649] ? copy_page_range+0x24e9/0x3810 [ 1765.570246] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1765.570873] ? avc_has_extended_perms+0xf40/0xf40 [ 1765.571536] ? vm_area_alloc+0x110/0x110 [ 1765.572084] ? selinux_vm_enough_memory+0x114/0x180 [ 1765.572747] ? selinux_sb_statfs+0x250/0x250 [ 1765.573353] ? percpu_counter_add_batch+0x8b/0x140 [ 1765.574005] ? __vm_enough_memory+0x184/0x360 [ 1765.574611] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1765.575317] copy_process+0x291b/0x7800 [ 1765.575887] ? __cleanup_sighand+0xb0/0xb0 [ 1765.576450] ? lock_acquire+0x197/0x470 [ 1765.577004] ? find_held_lock+0x2c/0x110 [ 1765.577531] kernel_clone+0xe7/0x980 [ 1765.578034] ? lock_downgrade+0x6d0/0x6d0 [ 1765.578589] ? find_held_lock+0x2c/0x110 [ 1765.579144] ? create_io_thread+0xf0/0xf0 [ 1765.579718] ? ksys_write+0x12d/0x260 [ 1765.580242] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1765.580893] __do_sys_fork+0x8a/0xc0 [ 1765.581392] ? kernel_thread+0xf0/0xf0 [ 1765.581935] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1765.582646] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1765.583345] ? trace_hardirqs_on+0x5b/0x180 [ 1765.583925] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1765.584624] do_syscall_64+0x33/0x40 [ 1765.585125] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1765.585808] RIP: 0033:0x7fc140e06b19 [ 1765.586306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1765.588803] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1765.589837] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1765.590801] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1765.591777] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1765.592737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1765.593698] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:40:10 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x2, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:40:10 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 66) 04:40:10 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0xa71e, 0x0, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:40:10 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r10}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r10}) [ 1765.719416] FAULT_INJECTION: forcing a failure. [ 1765.719416] name failslab, interval 1, probability 0, space 0, times 0 [ 1765.721829] CPU: 1 PID: 20841 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1765.723289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1765.725037] Call Trace: [ 1765.725600] dump_stack+0x107/0x167 [ 1765.726383] should_fail.cold+0x5/0xa [ 1765.727193] ? create_object.isra.0+0x3a/0xa20 [ 1765.728182] should_failslab+0x5/0x20 [ 1765.729000] kmem_cache_alloc+0x5b/0x310 [ 1765.729883] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1765.731172] create_object.isra.0+0x3a/0xa20 [ 1765.732122] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1765.733216] kmem_cache_alloc+0x159/0x310 [ 1765.734113] ptlock_alloc+0x1d/0x70 [ 1765.734895] pte_alloc_one+0x68/0x1a0 [ 1765.735726] __pte_alloc+0x1d/0x330 [ 1765.736506] copy_page_range+0x1b62/0x3810 [ 1765.737411] ? SOFTIRQ_verbose+0x10/0x10 [ 1765.738267] ? lock_chain_count+0x20/0x20 [ 1765.739202] ? up_write+0x191/0x550 [ 1765.740028] ? vm_iomap_memory+0x190/0x190 [ 1765.740933] ? downgrade_write+0x3a0/0x3a0 [ 1765.741841] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1765.743003] ? __vma_link_rb+0x540/0x700 [ 1765.743891] copy_process+0x759b/0x7800 [ 1765.744782] ? __cleanup_sighand+0xb0/0xb0 [ 1765.745693] ? lock_acquire+0x197/0x470 [ 1765.746552] ? find_held_lock+0x2c/0x110 [ 1765.747434] kernel_clone+0xe7/0x980 [ 1765.748233] ? lock_downgrade+0x6d0/0x6d0 [ 1765.749116] ? find_held_lock+0x2c/0x110 [ 1765.749986] ? create_io_thread+0xf0/0xf0 [ 1765.750878] ? ksys_write+0x12d/0x260 [ 1765.751725] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1765.752766] __do_sys_fork+0x8a/0xc0 [ 1765.753564] ? kernel_thread+0xf0/0xf0 [ 1765.754418] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1765.755546] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1765.756641] ? trace_hardirqs_on+0x5b/0x180 [ 1765.757561] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1765.758663] do_syscall_64+0x33/0x40 [ 1765.759494] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1765.760590] RIP: 0033:0x7fa6a3da0b19 [ 1765.761382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1765.765292] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1765.766898] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1765.768421] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1765.769941] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1765.771480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1765.772999] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:40:10 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xde, 0x86, 0x80, 0x4, 0x0, 0x3, 0x42400, 0x9, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x2, @perf_config_ext={0x7ff, 0x4}, 0x408, 0x3, 0x5, 0x6, 0xfffffffffffff800, 0x9, 0x8, 0x0, 0x7, 0x0, 0x8}, 0x0, 0x1, r0, 0x8) r1 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$set_timeout(0xf, r1, 0x80000001) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0xb9, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x80}, 0x0, 0x7, 0xffffffffffffffff, 0x0) unshare(0x480) r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) request_key(&(0x7f0000000240)='.request_key_auth\x00', &(0x7f0000000280)={'syz', 0x3}, &(0x7f0000000380)='dns_resolver\x00', r2) request_key(&(0x7f0000000100)='ceph\x00', &(0x7f0000000140)={'syz', 0x2}, &(0x7f00000002c0)='!\x00', r2) r3 = fork() keyctl$invalidate(0x15, 0x0) setgid(0x0) keyctl$chown(0x4, r1, 0xee01, 0x0) statx(0xffffffffffffffff, 0x0, 0x100, 0x8, &(0x7f00000001c0)) waitid(0x0, r3, &(0x7f0000000000), 0x0, 0x0) 04:40:24 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 67) 04:40:24 executing program 1: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) fcntl$setlease(r0, 0x400, 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) read$eventfd(r1, &(0x7f0000000040), 0x8) link(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='./file1\x00') unlink(&(0x7f0000000000)='./file1\x00') 04:40:24 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 70) 04:40:24 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xc0ed0000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:40:24 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x80000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:40:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x3, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:40:24 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r10}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r10}) 04:40:24 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$FS_IOC_MEASURE_VERITY(r3, 0xc0046686, &(0x7f0000000240)={0x2, 0xf8, "fce80801547710c5b4976dfb41ccb08488d9232f93e0ca4d93c474fd8bf2a2a2f7f76bad2ef62be8f82bcf162e3358b2b8a0bdbbc8272762ecd70b9ebbfc5b4bbb19b1143c2c9efca02bcdaa95ab19f485679d687d6f55d0313ebe278b5db20983e2fc5b3f52d5e041b7f37938510b609eb91eb0879778ef34594cafc930e7ae7bb19fa7d597a8a7e4e156b52061b9a1eb70087476f1ceb4f80b7dd33137a4774714efdfb39c7d7a65f8675d1b584abf5726a97354854145e07fca50809990f91e2afb7f1d0ebde7c795b3b7ca183c575da811e65b4950be59b0b6c25b818373a8b44dfaf3dd800ada9f3fe2835444e296cff3f79a3e349e"}) [ 1779.880274] FAULT_INJECTION: forcing a failure. [ 1779.880274] name failslab, interval 1, probability 0, space 0, times 0 [ 1779.881480] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1779.882838] CPU: 0 PID: 20872 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1779.885158] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1779.886910] Call Trace: [ 1779.887483] dump_stack+0x107/0x167 [ 1779.888267] should_fail.cold+0x5/0xa [ 1779.889082] ? ptlock_alloc+0x1d/0x70 [ 1779.889897] should_failslab+0x5/0x20 [ 1779.890706] kmem_cache_alloc+0x5b/0x310 [ 1779.891603] ptlock_alloc+0x1d/0x70 [ 1779.892380] pte_alloc_one+0x68/0x1a0 [ 1779.893188] __pte_alloc+0x1d/0x330 [ 1779.893967] copy_page_range+0x1b62/0x3810 [ 1779.894863] ? SOFTIRQ_verbose+0x10/0x10 [ 1779.895725] ? lock_chain_count+0x20/0x20 [ 1779.896647] ? up_write+0x191/0x550 [ 1779.897417] ? vm_iomap_memory+0x190/0x190 [ 1779.898308] ? downgrade_write+0x3a0/0x3a0 [ 1779.899203] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1779.900357] ? __vma_link_rb+0x540/0x700 [ 1779.901224] copy_process+0x759b/0x7800 [ 1779.902105] ? __cleanup_sighand+0xb0/0xb0 [ 1779.903021] ? lock_acquire+0x197/0x470 [ 1779.903889] ? find_held_lock+0x2c/0x110 [ 1779.904762] kernel_clone+0xe7/0x980 [ 1779.905554] ? lock_downgrade+0x6d0/0x6d0 [ 1779.906434] ? find_held_lock+0x2c/0x110 [ 1779.907294] ? create_io_thread+0xf0/0xf0 [ 1779.908187] ? ksys_write+0x12d/0x260 [ 1779.909006] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1779.910039] __do_sys_fork+0x8a/0xc0 [ 1779.910830] ? kernel_thread+0xf0/0xf0 [ 1779.911682] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1779.912789] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1779.913873] ? trace_hardirqs_on+0x5b/0x180 [ 1779.914782] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1779.915885] do_syscall_64+0x33/0x40 [ 1779.916677] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1779.917755] RIP: 0033:0x7fa6a3da0b19 [ 1779.918543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1779.922412] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1779.924024] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1779.925538] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1779.927050] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1779.928578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1779.930094] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1779.943189] FAULT_INJECTION: forcing a failure. [ 1779.943189] name failslab, interval 1, probability 0, space 0, times 0 [ 1779.944625] CPU: 1 PID: 20901 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1779.945439] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1779.946460] Call Trace: [ 1779.946784] dump_stack+0x107/0x167 [ 1779.947240] should_fail.cold+0x5/0xa [ 1779.947742] ? create_object.isra.0+0x3a/0xa20 [ 1779.948314] should_failslab+0x5/0x20 [ 1779.948792] kmem_cache_alloc+0x5b/0x310 [ 1779.949295] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1779.950031] create_object.isra.0+0x3a/0xa20 [ 1779.950542] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1779.951166] kmem_cache_alloc+0x159/0x310 [ 1779.951660] ptlock_alloc+0x1d/0x70 [ 1779.952127] pte_alloc_one+0x68/0x1a0 [ 1779.952576] __pte_alloc+0x1d/0x330 [ 1779.953045] copy_page_range+0x1b62/0x3810 [ 1779.953569] ? SOFTIRQ_verbose+0x10/0x10 [ 1779.954071] ? lock_chain_count+0x20/0x20 [ 1779.954608] ? up_write+0x191/0x550 [ 1779.955055] ? vm_iomap_memory+0x190/0x190 [ 1779.955582] ? downgrade_write+0x3a0/0x3a0 [ 1779.956115] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1779.956792] ? __vma_link_rb+0x540/0x700 [ 1779.957285] copy_process+0x759b/0x7800 [ 1779.957802] ? __cleanup_sighand+0xb0/0xb0 [ 1779.958316] ? lock_acquire+0x197/0x470 [ 1779.958801] ? find_held_lock+0x2c/0x110 [ 1779.959305] kernel_clone+0xe7/0x980 [ 1779.959770] ? lock_downgrade+0x6d0/0x6d0 [ 1779.960267] ? find_held_lock+0x2c/0x110 [ 1779.960758] ? create_io_thread+0xf0/0xf0 [ 1779.961252] ? ksys_write+0x12d/0x260 [ 1779.961731] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1779.962293] __do_sys_fork+0x8a/0xc0 [ 1779.962745] ? kernel_thread+0xf0/0xf0 [ 1779.963207] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1779.963861] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1779.964473] ? trace_hardirqs_on+0x5b/0x180 [ 1779.964998] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1779.965633] do_syscall_64+0x33/0x40 [ 1779.966083] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1779.966706] RIP: 0033:0x7fc140e06b19 [ 1779.967171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1779.969360] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1779.970255] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1779.971106] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1779.971964] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1779.972807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1779.973648] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1780.020040] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:40:24 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xe0ffff, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:40:24 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r10}) 04:40:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x4, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:40:24 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x5, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:40:24 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 71) 04:40:24 executing program 1: syz_mount_image$vfat(&(0x7f00000013c0), &(0x7f00000000c0)='./file0\x00', 0x41, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mount$cgroup(0x0, 0x0, &(0x7f0000000100), 0x180010, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) fallocate(r0, 0x10, 0x101, 0x8000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000300)=0x101) chroot(&(0x7f0000000280)='./file1\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write(r1, &(0x7f0000000380)="0249e99a7f0211ef77a2e6ddf80889819eecd945439d8a17fd966a028b5a0d7d6da10a8b16bf2bf2b67ed8b591", 0x2d) openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x202700, 0x0) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000003c0)={0x0, "a91f51fa5d7fcca1d4fb574218c55843"}) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0xfffffffffffffffc) socket$nl_audit(0x10, 0x3, 0x9) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000002e00)={r3, "d7885b01064cde863ef84a335a261f1b"}) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) sendfile(r1, r2, 0x0, 0x100000001) 04:40:24 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 68) 04:40:24 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) syz_io_uring_setup(0xdfb, &(0x7f0000000140)={0x0, 0x86b2, 0x10, 0x3, 0x2d4, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000040), &(0x7f00000001c0)) 04:40:24 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xf6ffffff, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:40:25 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x6, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:40:25 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c}) 04:40:25 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x1000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:40:25 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000240)={&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000140)="275b7eb79983ab68d10b66dca1b401078562d1bfe7cf727a020ee7df084a4f8fed0c145fccafd0e6e99479f820e0705e35c075b0c327ceb5b700dabcd129bd8a02d1e4101344bfcbe77d58312b98f6673d88e6ff8e18abb150f5f8144f05981b23131de54d6f615e57747abcc60c9d9da349f5cd610ecbb317cb6866c246c082577c17dcf77e6082e9e911bd1306dae3f820ab585f30cc32d169e923541bc2f4a72c7f9bb12ab581a5955776910f1f2b91840cf9947982321a", 0xb9, r3}, 0x68) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1780.299855] FAULT_INJECTION: forcing a failure. [ 1780.299855] name failslab, interval 1, probability 0, space 0, times 0 [ 1780.300542] FAULT_INJECTION: forcing a failure. [ 1780.300542] name failslab, interval 1, probability 0, space 0, times 0 [ 1780.301144] CPU: 1 PID: 21201 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1780.301151] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1780.301155] Call Trace: [ 1780.301180] dump_stack+0x107/0x167 [ 1780.305806] should_fail.cold+0x5/0xa [ 1780.306217] ? create_object.isra.0+0x3a/0xa20 [ 1780.306705] should_failslab+0x5/0x20 [ 1780.307120] kmem_cache_alloc+0x5b/0x310 [ 1780.307562] create_object.isra.0+0x3a/0xa20 [ 1780.308039] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1780.308578] kmem_cache_alloc+0x159/0x310 [ 1780.309023] vm_area_dup+0x78/0x290 [ 1780.309418] ? _cond_resched+0x12/0x80 [ 1780.309850] ? copy_page_range+0x24e9/0x3810 [ 1780.310340] ? vm_area_alloc+0x110/0x110 [ 1780.310774] ? up_write+0x191/0x550 [ 1780.311162] ? vm_iomap_memory+0x190/0x190 [ 1780.311630] ? downgrade_write+0x3a0/0x3a0 [ 1780.312080] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1780.312660] ? __vma_link_rb+0x540/0x700 [ 1780.313099] copy_process+0x291b/0x7800 [ 1780.313547] ? __cleanup_sighand+0xb0/0xb0 [ 1780.314005] ? lock_acquire+0x197/0x470 [ 1780.314431] ? find_held_lock+0x2c/0x110 [ 1780.314869] kernel_clone+0xe7/0x980 [ 1780.315270] ? lock_downgrade+0x6d0/0x6d0 [ 1780.315716] ? find_held_lock+0x2c/0x110 [ 1780.316158] ? create_io_thread+0xf0/0xf0 [ 1780.316602] ? ksys_write+0x12d/0x260 [ 1780.317015] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1780.317530] __do_sys_fork+0x8a/0xc0 [ 1780.317927] ? kernel_thread+0xf0/0xf0 [ 1780.318357] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1780.318909] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1780.319464] ? trace_hardirqs_on+0x5b/0x180 [ 1780.319925] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1780.320476] do_syscall_64+0x33/0x40 [ 1780.320886] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1780.321432] RIP: 0033:0x7fa6a3da0b19 [ 1780.321823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1780.323769] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1780.324578] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1780.325326] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1780.326069] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1780.326829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1780.327585] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1780.328376] CPU: 0 PID: 21211 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1780.329856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1780.331408] 9pnet: Insufficient options for proto=fd [ 1780.331632] Call Trace: [ 1780.332741] dump_stack+0x107/0x167 [ 1780.332770] should_fail.cold+0x5/0xa [ 1780.332795] ? create_object.isra.0+0x3a/0xa20 [ 1780.332820] should_failslab+0x5/0x20 [ 1780.332840] kmem_cache_alloc+0x5b/0x310 [ 1780.332870] create_object.isra.0+0x3a/0xa20 [ 1780.332892] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1780.332921] kmem_cache_alloc+0x159/0x310 [ 1780.332952] vm_area_dup+0x78/0x290 [ 1780.332984] ? _cond_resched+0x12/0x80 [ 1780.333006] ? copy_page_range+0x24e9/0x3810 [ 1780.333071] ? vm_area_alloc+0x110/0x110 [ 1780.333097] ? up_write+0x191/0x550 [ 1780.333119] ? vm_iomap_memory+0x190/0x190 [ 1780.333139] ? downgrade_write+0x3a0/0x3a0 [ 1780.333165] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1780.333195] ? __vma_link_rb+0x540/0x700 [ 1780.333226] copy_process+0x291b/0x7800 [ 1780.333290] ? __cleanup_sighand+0xb0/0xb0 [ 1780.333319] ? lock_acquire+0x197/0x470 [ 1780.333352] ? find_held_lock+0x2c/0x110 [ 1780.333381] kernel_clone+0xe7/0x980 [ 1780.333403] ? lock_downgrade+0x6d0/0x6d0 [ 1780.333421] ? find_held_lock+0x2c/0x110 [ 1780.333442] ? create_io_thread+0xf0/0xf0 [ 1780.333467] ? ksys_write+0x12d/0x260 [ 1780.333500] ? __mutex_unlock_slowpath+0xe1/0x600 04:40:25 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) ppoll(&(0x7f0000000040)=[{r3, 0x8021}, {r0, 0x1000}, {r0, 0x8}, {r4, 0x2300}, {r5, 0x50}, {r0, 0x20}], 0x6, &(0x7f0000000140)={0x0, 0x3938700}, &(0x7f0000000180)={[0x6]}, 0x8) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1780.333533] __do_sys_fork+0x8a/0xc0 [ 1780.333553] ? kernel_thread+0xf0/0xf0 [ 1780.333595] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1780.333615] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1780.333632] ? trace_hardirqs_on+0x5b/0x180 [ 1780.333655] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1780.333679] do_syscall_64+0x33/0x40 [ 1780.333705] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1780.333720] RIP: 0033:0x7fc140e06b19 [ 1780.333740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1780.333752] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1780.333775] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1780.333788] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1780.333800] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1780.333813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1780.333826] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1780.390116] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1780.457355] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:40:25 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c}) 04:40:25 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xffffe000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:40:38 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 69) 04:40:38 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x7, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:40:38 executing program 1: syz_mount_image$vfat(&(0x7f00000013c0), &(0x7f00000000c0)='./file0\x00', 0x41, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mount$cgroup(0x0, 0x0, &(0x7f0000000100), 0x180010, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) fallocate(r0, 0x10, 0x101, 0x8000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000300)=0x101) chroot(&(0x7f0000000280)='./file1\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write(r1, &(0x7f0000000380)="0249e99a7f0211ef77a2e6ddf80889819eecd945439d8a17fd966a028b5a0d7d6da10a8b16bf2bf2b67ed8b591", 0x2d) openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x202700, 0x0) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000003c0)={0x0, "a91f51fa5d7fcca1d4fb574218c55843"}) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0xfffffffffffffffc) socket$nl_audit(0x10, 0x3, 0x9) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000002e00)={r3, "d7885b01064cde863ef84a335a261f1b"}) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) sendfile(r1, r2, 0x0, 0x100000001) 04:40:38 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 72) 04:40:38 executing program 0: munlock(&(0x7f0000ffe000/0x1000)=nil, 0x1000) r0 = syz_io_uring_setup(0x382, &(0x7f0000000200)={0x0, 0xc02d, 0x4, 0x1}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x1, 0x0, 0x1}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) rt_sigprocmask(0x1, &(0x7f00000000c0)={[0x7fffffff]}, &(0x7f00000001c0), 0x8) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x200000e, 0x30, r3, 0x8000000) openat(r4, &(0x7f0000000080)='./file0\x00', 0xa000, 0x109) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r5, 0x0, 0x2) r6 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) copy_file_range(r6, 0x0, r5, 0x0, 0x200f5ef, 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(r5, 0x4, &(0x7f0000000140)='\x00', &(0x7f0000000280)='./file0\x00', 0xffffffffffffffff) r7 = openat$nvram(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0) listen(r7, 0x48658cdb) 04:40:38 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xffffff8c, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:40:38 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c}) 04:40:38 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) [ 1793.863067] FAULT_INJECTION: forcing a failure. [ 1793.863067] name failslab, interval 1, probability 0, space 0, times 0 [ 1793.865246] CPU: 1 PID: 21548 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1793.866560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1793.868152] Call Trace: [ 1793.868658] dump_stack+0x107/0x167 [ 1793.869355] should_fail.cold+0x5/0xa [ 1793.870082] ? vm_area_dup+0x78/0x290 [ 1793.870799] should_failslab+0x5/0x20 [ 1793.871524] kmem_cache_alloc+0x5b/0x310 [ 1793.872322] vm_area_dup+0x78/0x290 [ 1793.872996] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1793.873876] ? lock_downgrade+0x6d0/0x6d0 [ 1793.874641] ? copy_page_range+0x24e9/0x3810 [ 1793.875490] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1793.876382] ? avc_has_extended_perms+0xf40/0xf40 [ 1793.877316] ? vm_area_alloc+0x110/0x110 [ 1793.878075] ? selinux_vm_enough_memory+0x114/0x180 [ 1793.878999] ? selinux_sb_statfs+0x250/0x250 [ 1793.879864] ? percpu_counter_add_batch+0x8b/0x140 [ 1793.880779] ? __vm_enough_memory+0x184/0x360 [ 1793.881626] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1793.882576] copy_process+0x291b/0x7800 [ 1793.883363] ? __cleanup_sighand+0xb0/0xb0 [ 1793.884165] ? lock_acquire+0x197/0x470 [ 1793.884927] ? find_held_lock+0x2c/0x110 [ 1793.885689] kernel_clone+0xe7/0x980 [ 1793.886411] ? lock_downgrade+0x6d0/0x6d0 [ 1793.887175] ? find_held_lock+0x2c/0x110 [ 1793.887956] ? create_io_thread+0xf0/0xf0 [ 1793.888732] ? ksys_write+0x12d/0x260 [ 1793.889448] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1793.890346] __do_sys_fork+0x8a/0xc0 [ 1793.891191] ? kernel_thread+0xf0/0xf0 [ 1793.891909] FAULT_INJECTION: forcing a failure. [ 1793.891909] name failslab, interval 1, probability 0, space 0, times 0 [ 1793.893948] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1793.894919] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1793.895879] ? trace_hardirqs_on+0x5b/0x180 [ 1793.896675] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1793.897638] do_syscall_64+0x33/0x40 [ 1793.898336] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1793.899285] RIP: 0033:0x7fa6a3da0b19 [ 1793.900001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1793.903393] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1793.904809] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1793.906134] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1793.907485] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1793.908830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1793.910158] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1793.911524] CPU: 0 PID: 21545 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1793.912270] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1793.913111] Call Trace: [ 1793.913386] dump_stack+0x107/0x167 [ 1793.913763] should_fail.cold+0x5/0xa [ 1793.914153] ? create_object.isra.0+0x3a/0xa20 [ 1793.914607] should_failslab+0x5/0x20 [ 1793.915001] kmem_cache_alloc+0x5b/0x310 [ 1793.915405] create_object.isra.0+0x3a/0xa20 [ 1793.915860] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1793.916361] kmem_cache_alloc+0x159/0x310 [ 1793.916793] anon_vma_clone+0xdc/0x590 [ 1793.917184] anon_vma_fork+0x82/0x640 [ 1793.917571] ? __vm_enough_memory+0x184/0x360 [ 1793.918021] copy_process+0x7218/0x7800 [ 1793.918446] ? __cleanup_sighand+0xb0/0xb0 [ 1793.918872] ? lock_acquire+0x197/0x470 [ 1793.919285] ? find_held_lock+0x2c/0x110 [ 1793.919702] kernel_clone+0xe7/0x980 [ 1793.920086] ? lock_downgrade+0x6d0/0x6d0 [ 1793.920491] ? find_held_lock+0x2c/0x110 [ 1793.920906] ? create_io_thread+0xf0/0xf0 [ 1793.921319] ? ksys_write+0x12d/0x260 [ 1793.921719] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1793.922200] __do_sys_fork+0x8a/0xc0 [ 1793.922584] ? kernel_thread+0xf0/0xf0 [ 1793.922982] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1793.923519] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1793.924032] ? trace_hardirqs_on+0x5b/0x180 [ 1793.924475] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1793.924985] do_syscall_64+0x33/0x40 [ 1793.925377] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1793.925898] RIP: 0033:0x7fc140e06b19 [ 1793.926280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1793.928150] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1793.928930] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1793.929657] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1793.930387] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1793.931115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1793.931856] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1793.937943] 9pnet: Insufficient options for proto=fd [ 1793.946909] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1793.983262] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:40:55 executing program 1: syz_mount_image$vfat(&(0x7f00000013c0), &(0x7f00000000c0)='./file0\x00', 0x41, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mount$cgroup(0x0, 0x0, &(0x7f0000000100), 0x180010, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) fallocate(r0, 0x10, 0x101, 0x8000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000300)=0x101) chroot(&(0x7f0000000280)='./file1\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write(r1, &(0x7f0000000380)="0249e99a7f0211ef77a2e6ddf80889819eecd945439d8a17fd966a028b5a0d7d6da10a8b16bf2bf2b67ed8b591", 0x2d) openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x202700, 0x0) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000003c0)={0x0, "a91f51fa5d7fcca1d4fb574218c55843"}) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0xfffffffffffffffc) socket$nl_audit(0x10, 0x3, 0x9) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000002e00)={r3, "d7885b01064cde863ef84a335a261f1b"}) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) sendfile(r1, r2, 0x0, 0x100000001) 04:40:55 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r9}) 04:40:55 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 73) 04:40:55 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xfffffff6, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1810.660080] FAULT_INJECTION: forcing a failure. [ 1810.660080] name failslab, interval 1, probability 0, space 0, times 0 [ 1810.662365] CPU: 0 PID: 21771 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1810.663756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1810.665431] Call Trace: [ 1810.665967] dump_stack+0x107/0x167 [ 1810.666705] should_fail.cold+0x5/0xa [ 1810.667476] ? anon_vma_fork+0xf1/0x640 [ 1810.668302] should_failslab+0x5/0x20 [ 1810.669074] kmem_cache_alloc+0x5b/0x310 [ 1810.669909] anon_vma_fork+0xf1/0x640 [ 1810.670679] ? __vm_enough_memory+0x184/0x360 [ 1810.671605] copy_process+0x7218/0x7800 [ 1810.672463] ? __cleanup_sighand+0xb0/0xb0 [ 1810.673323] ? lock_acquire+0x197/0x470 [ 1810.674133] ? find_held_lock+0x2c/0x110 [ 1810.674956] kernel_clone+0xe7/0x980 [ 1810.675713] ? lock_downgrade+0x6d0/0x6d0 [ 1810.676556] ? find_held_lock+0x2c/0x110 [ 1810.677379] ? create_io_thread+0xf0/0xf0 [ 1810.678224] ? ksys_write+0x12d/0x260 [ 1810.679012] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1810.679057] 9pnet: Insufficient options for proto=fd [ 1810.680026] __do_sys_fork+0x8a/0xc0 [ 1810.680047] ? kernel_thread+0xf0/0xf0 [ 1810.680086] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1810.680105] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1810.680122] ? trace_hardirqs_on+0x5b/0x180 [ 1810.680146] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1810.680167] do_syscall_64+0x33/0x40 [ 1810.680190] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1810.680203] RIP: 0033:0x7fc140e06b19 [ 1810.680224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1810.680235] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1810.680257] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1810.680268] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1810.680280] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1810.680291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1810.680304] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1810.695588] FAULT_INJECTION: forcing a failure. [ 1810.695588] name failslab, interval 1, probability 0, space 0, times 0 [ 1810.706166] CPU: 0 PID: 21785 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1810.707574] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1810.709293] Call Trace: [ 1810.709841] dump_stack+0x107/0x167 [ 1810.710592] should_fail.cold+0x5/0xa [ 1810.711370] ? create_object.isra.0+0x3a/0xa20 [ 1810.712312] should_failslab+0x5/0x20 [ 1810.713080] kmem_cache_alloc+0x5b/0x310 [ 1810.713911] create_object.isra.0+0x3a/0xa20 [ 1810.714798] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1810.715852] kmem_cache_alloc+0x159/0x310 [ 1810.716717] vm_area_dup+0x78/0x290 [ 1810.717482] ? avc_has_perm_noaudit+0x1c9/0x3e0 [ 1810.718460] ? lock_downgrade+0x6d0/0x6d0 [ 1810.719312] ? copy_page_range+0x24e9/0x3810 [ 1810.720239] ? avc_has_perm_noaudit+0x1f7/0x3e0 [ 1810.721183] ? avc_has_extended_perms+0xf40/0xf40 [ 1810.722166] ? vm_area_alloc+0x110/0x110 [ 1810.722998] ? selinux_vm_enough_memory+0x114/0x180 [ 1810.724016] ? selinux_sb_statfs+0x250/0x250 [ 1810.724907] ? percpu_counter_add_batch+0x8b/0x140 [ 1810.725906] ? __vm_enough_memory+0x184/0x360 [ 1810.726816] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1810.727888] copy_process+0x291b/0x7800 [ 1810.728750] ? __cleanup_sighand+0xb0/0xb0 [ 1810.729634] ? lock_acquire+0x197/0x470 [ 1810.730484] ? find_held_lock+0x2c/0x110 [ 1810.731313] kernel_clone+0xe7/0x980 [ 1810.732105] ? lock_downgrade+0x6d0/0x6d0 [ 1810.732938] ? find_held_lock+0x2c/0x110 [ 1810.733756] ? create_io_thread+0xf0/0xf0 [ 1810.734592] ? ksys_write+0x12d/0x260 [ 1810.735371] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1810.736372] __do_sys_fork+0x8a/0xc0 [ 1810.737128] ? kernel_thread+0xf0/0xf0 [ 1810.737943] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1810.739021] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1810.740114] ? trace_hardirqs_on+0x5b/0x180 [ 1810.741000] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1810.742050] do_syscall_64+0x33/0x40 [ 1810.742804] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1810.743847] RIP: 0033:0x7fa6a3da0b19 [ 1810.744599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1810.748341] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1810.749912] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1810.751366] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1810.752828] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1810.754301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1810.755763] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1810.768029] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:40:55 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000180)=0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmmsg$inet6(r5, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x1, 0x0, r5, 0x0, 0x0, 0x0, 0x40010220, 0x1, {0x0, r6}}, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r7, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r7, r1, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) creat(&(0x7f0000000040)='./file0\x00', 0x40) 04:40:55 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 70) 04:40:55 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x8, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:40:55 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x3000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:40:55 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r9}) [ 1810.793274] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:40:55 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x9, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:40:55 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r6}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r8}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080), 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, r4, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4091}, 0x4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r9}) 04:40:55 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 74) 04:40:55 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x4000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:40:55 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xedc000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1811.006060] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:40:55 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 71) [ 1811.032863] FAULT_INJECTION: forcing a failure. [ 1811.032863] name failslab, interval 1, probability 0, space 0, times 0 [ 1811.035179] CPU: 0 PID: 22000 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1811.036592] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1811.038272] Call Trace: [ 1811.038808] dump_stack+0x107/0x167 [ 1811.039560] should_fail.cold+0x5/0xa [ 1811.040354] ? create_object.isra.0+0x3a/0xa20 [ 1811.041298] should_failslab+0x5/0x20 [ 1811.042081] kmem_cache_alloc+0x5b/0x310 [ 1811.042936] create_object.isra.0+0x3a/0xa20 [ 1811.043855] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1811.044925] kmem_cache_alloc+0x159/0x310 [ 1811.045793] anon_vma_fork+0xf1/0x640 [ 1811.046575] ? __vm_enough_memory+0x184/0x360 [ 1811.047502] copy_process+0x7218/0x7800 [ 1811.048367] ? __cleanup_sighand+0xb0/0xb0 [ 1811.049237] ? lock_acquire+0x197/0x470 [ 1811.050059] ? find_held_lock+0x2c/0x110 [ 1811.050892] kernel_clone+0xe7/0x980 [ 1811.051651] ? lock_downgrade+0x6d0/0x6d0 [ 1811.052515] ? find_held_lock+0x2c/0x110 [ 1811.053347] ? create_io_thread+0xf0/0xf0 [ 1811.054198] ? ksys_write+0x12d/0x260 [ 1811.054980] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1811.056005] __do_sys_fork+0x8a/0xc0 [ 1811.056758] ? kernel_thread+0xf0/0xf0 [ 1811.057581] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1811.058662] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1811.059706] ? trace_hardirqs_on+0x5b/0x180 [ 1811.060598] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1811.061650] do_syscall_64+0x33/0x40 [ 1811.062411] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1811.063463] RIP: 0033:0x7fc140e06b19 [ 1811.064237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1811.068062] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1811.069626] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1811.071069] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1811.072536] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1811.073984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1811.075425] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:40:55 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r5}) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r7}) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r9}) [ 1811.110658] FAULT_INJECTION: forcing a failure. [ 1811.110658] name failslab, interval 1, probability 0, space 0, times 0 [ 1811.113082] CPU: 1 PID: 22005 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1811.114505] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1811.116204] Call Trace: [ 1811.116749] dump_stack+0x107/0x167 [ 1811.117510] should_fail.cold+0x5/0xa [ 1811.118303] ? anon_vma_clone+0xdc/0x590 [ 1811.119149] should_failslab+0x5/0x20 [ 1811.119954] kmem_cache_alloc+0x5b/0x310 [ 1811.120800] anon_vma_clone+0xdc/0x590 [ 1811.121617] anon_vma_fork+0x82/0x640 [ 1811.122402] ? __vm_enough_memory+0x184/0x360 [ 1811.123331] copy_process+0x7218/0x7800 [ 1811.124205] ? __cleanup_sighand+0xb0/0xb0 [ 1811.124640] 9pnet: Insufficient options for proto=fd [ 1811.125078] ? lock_acquire+0x197/0x470 [ 1811.125114] ? find_held_lock+0x2c/0x110 [ 1811.127751] kernel_clone+0xe7/0x980 [ 1811.128551] ? lock_downgrade+0x6d0/0x6d0 [ 1811.129397] ? find_held_lock+0x2c/0x110 [ 1811.130223] ? create_io_thread+0xf0/0xf0 [ 1811.131086] ? ksys_write+0x12d/0x260 [ 1811.131879] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1811.132885] __do_sys_fork+0x8a/0xc0 [ 1811.133657] ? kernel_thread+0xf0/0xf0 [ 1811.134471] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1811.135543] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1811.135559] ? trace_hardirqs_on+0x5b/0x180 [ 1811.135580] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1811.135601] do_syscall_64+0x33/0x40 [ 1811.135623] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1811.135637] RIP: 0033:0x7fa6a3da0b19 [ 1811.135656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1811.135668] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1811.135690] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1811.135702] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1811.135713] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1811.135724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1811.135737] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:41:11 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 72) [ 1827.113902] FAULT_INJECTION: forcing a failure. [ 1827.113902] name failslab, interval 1, probability 0, space 0, times 0 [ 1827.116654] CPU: 1 PID: 22219 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1827.118318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1827.120336] Call Trace: [ 1827.120974] dump_stack+0x107/0x167 [ 1827.121740] should_fail.cold+0x5/0xa [ 1827.122502] ? create_object.isra.0+0x3a/0xa20 [ 1827.123425] should_failslab+0x5/0x20 [ 1827.124188] kmem_cache_alloc+0x5b/0x310 [ 1827.125006] create_object.isra.0+0x3a/0xa20 [ 1827.125879] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1827.126892] kmem_cache_alloc+0x159/0x310 [ 1827.127727] anon_vma_clone+0xdc/0x590 [ 1827.128536] anon_vma_fork+0x82/0x640 [ 1827.129314] ? __vm_enough_memory+0x184/0x360 [ 1827.130236] copy_process+0x7218/0x7800 [ 1827.131086] ? __cleanup_sighand+0xb0/0xb0 [ 1827.131922] ? lock_acquire+0x197/0x470 [ 1827.132753] ? find_held_lock+0x2c/0x110 [ 1827.133565] kernel_clone+0xe7/0x980 [ 1827.134319] ? lock_downgrade+0x6d0/0x6d0 [ 1827.135147] ? find_held_lock+0x2c/0x110 [ 1827.135959] ? create_io_thread+0xf0/0xf0 [ 1827.136779] ? ksys_write+0x12d/0x260 [ 1827.137564] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1827.138532] __do_sys_fork+0x8a/0xc0 [ 1827.139289] ? kernel_thread+0xf0/0xf0 [ 1827.140090] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1827.141127] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.142149] ? trace_hardirqs_on+0x5b/0x180 [ 1827.143024] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.144116] do_syscall_64+0x33/0x40 [ 1827.144866] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1827.145857] RIP: 0033:0x7fa6a3da0b19 [ 1827.146590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1827.150308] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1827.151800] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1827.153224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1827.154626] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1827.156069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1827.157503] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1827.183342] 9pnet: Insufficient options for proto=fd [ 1827.186756] FAULT_INJECTION: forcing a failure. [ 1827.186756] name failslab, interval 1, probability 0, space 0, times 0 [ 1827.188948] CPU: 0 PID: 22234 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1827.190409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1827.191900] Call Trace: [ 1827.192390] dump_stack+0x107/0x167 [ 1827.193075] should_fail.cold+0x5/0xa [ 1827.193768] ? anon_vma_fork+0xf1/0x640 [ 1827.194492] should_failslab+0x5/0x20 [ 1827.195183] kmem_cache_alloc+0x5b/0x310 [ 1827.195923] anon_vma_fork+0xf1/0x640 [ 1827.196639] ? __vm_enough_memory+0x184/0x360 [ 1827.197481] copy_process+0x7218/0x7800 [ 1827.198258] ? __cleanup_sighand+0xb0/0xb0 [ 1827.199068] ? lock_acquire+0x197/0x470 [ 1827.199818] ? find_held_lock+0x2c/0x110 [ 1827.200583] kernel_clone+0xe7/0x980 [ 1827.201299] ? lock_downgrade+0x6d0/0x6d0 [ 1827.202067] ? find_held_lock+0x2c/0x110 [ 1827.202820] ? create_io_thread+0xf0/0xf0 [ 1827.203593] ? ksys_write+0x12d/0x260 [ 1827.204314] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1827.205199] __do_sys_fork+0x8a/0xc0 [ 1827.205870] ? kernel_thread+0xf0/0xf0 [ 1827.206589] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1827.207547] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.208497] ? trace_hardirqs_on+0x5b/0x180 [ 1827.209283] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.210218] do_syscall_64+0x33/0x40 [ 1827.210885] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1827.211815] RIP: 0033:0x7fc140e06b19 [ 1827.212496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1827.215792] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1827.217180] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1827.218476] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1827.219753] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1827.221055] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1827.222348] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 04:41:11 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8000000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:41:11 executing program 1: syz_mount_image$vfat(&(0x7f00000013c0), &(0x7f00000000c0)='./file0\x00', 0x41, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mount$cgroup(0x0, 0x0, &(0x7f0000000100), 0x180010, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) fallocate(r0, 0x10, 0x101, 0x8000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000300)=0x101) chroot(&(0x7f0000000280)='./file1\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write(r1, &(0x7f0000000380)="0249e99a7f0211ef77a2e6ddf80889819eecd945439d8a17fd966a028b5a0d7d6da10a8b16bf2bf2b67ed8b591", 0x2d) openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x202700, 0x0) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000003c0)={0x0, "a91f51fa5d7fcca1d4fb574218c55843"}) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0xfffffffffffffffc) socket$nl_audit(0x10, 0x3, 0x9) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000002e00)={r3, "d7885b01064cde863ef84a335a261f1b"}) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) sendfile(r1, r2, 0x0, 0x100000001) 04:41:11 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x5000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:41:11 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0xa, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:41:11 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r5}) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00'}) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r8}) 04:41:11 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 75) 04:41:11 executing program 0: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x8100, 0x0) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40040140}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x30, r1, 0x300, 0x70bd26, 0x25dfdbff, {{}, {}, {0x14, 0x18, {0x800, @bearer=@udp='udp:syz0\x00'}}}, ["", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4040000}, 0x8880) sendmsg$TIPC_CMD_GET_BEARER_NAMES(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r1, 0x300, 0x70bd29, 0x25dfdbfe, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x480c1}, 0x44001) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r6, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r6, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) syz_io_uring_setup(0x20b4, &(0x7f0000000240)={0x0, 0xb803, 0x2, 0x2, 0x27d, 0x0, r6}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000040), &(0x7f00000001c0)) sendmmsg$inet6(r5, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) write$binfmt_script(r5, &(0x7f0000000140)={'#! ', './file0', [{0x20, '\x00'}, {0x20, 'v'}, {0x20, 'p'}, {0x20, '&'}, {0x20, '\x00'}, {0x20, '%/::\'!'}, {0x20, ':@#.}'}, {0x20, '\x00'}, {}, {0x20, '-\'(}.'}], 0xa, "ac6e2ff77ee8ad90813ab4ac27325f1415817f6a22999c4b5dc8ef0fb142135629385993c5d9b4ef1e939dfcd0ef79e525a299b48d61ad741703a938a5667978501ef173"}, 0x6f) [ 1827.235509] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:41:12 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r5}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r7}) [ 1827.341396] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:41:12 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x6000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:41:12 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0xe0ffff00000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1827.439793] 9pnet: Insufficient options for proto=fd 04:41:12 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0xb, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:41:12 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 76) 04:41:12 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 73) [ 1827.522832] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1827.525731] FAULT_INJECTION: forcing a failure. [ 1827.525731] name failslab, interval 1, probability 0, space 0, times 0 [ 1827.527392] CPU: 0 PID: 22613 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1827.528403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1827.529603] Call Trace: [ 1827.529995] dump_stack+0x107/0x167 [ 1827.530526] should_fail.cold+0x5/0xa [ 1827.531078] ? create_object.isra.0+0x3a/0xa20 [ 1827.531743] should_failslab+0x5/0x20 [ 1827.532296] kmem_cache_alloc+0x5b/0x310 [ 1827.532896] create_object.isra.0+0x3a/0xa20 [ 1827.533536] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1827.534262] kmem_cache_alloc+0x159/0x310 [ 1827.534861] anon_vma_fork+0x1ff/0x640 [ 1827.535431] copy_process+0x7218/0x7800 [ 1827.536045] ? __cleanup_sighand+0xb0/0xb0 [ 1827.536659] ? lock_acquire+0x197/0x470 [ 1827.537237] ? find_held_lock+0x2c/0x110 [ 1827.537813] kernel_clone+0xe7/0x980 [ 1827.538349] ? lock_downgrade+0x6d0/0x6d0 [ 1827.538936] ? create_io_thread+0xf0/0xf0 [ 1827.539526] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1827.540304] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1827.541077] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1827.541766] ? vfs_write+0x546/0xa70 [ 1827.542314] __do_sys_fork+0x8a/0xc0 [ 1827.542853] ? kernel_thread+0xf0/0xf0 [ 1827.543442] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1827.544203] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.544946] ? trace_hardirqs_on+0x5b/0x180 [ 1827.545557] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.546314] do_syscall_64+0x33/0x40 [ 1827.546851] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1827.547587] RIP: 0033:0x7fc140e06b19 [ 1827.548135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1827.550778] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1827.551885] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1827.552902] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1827.553911] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1827.554917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1827.555950] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1827.595355] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1827.605440] FAULT_INJECTION: forcing a failure. [ 1827.605440] name failslab, interval 1, probability 0, space 0, times 0 [ 1827.607851] CPU: 1 PID: 22665 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1827.609305] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1827.611038] Call Trace: [ 1827.611593] dump_stack+0x107/0x167 [ 1827.612362] should_fail.cold+0x5/0xa [ 1827.613148] ? anon_vma_fork+0xf1/0x640 [ 1827.613964] should_failslab+0x5/0x20 [ 1827.614746] kmem_cache_alloc+0x5b/0x310 [ 1827.615582] anon_vma_fork+0xf1/0x640 [ 1827.616390] ? __vm_enough_memory+0x184/0x360 [ 1827.617312] copy_process+0x7218/0x7800 [ 1827.618165] ? __cleanup_sighand+0xb0/0xb0 [ 1827.619036] ? lock_acquire+0x197/0x470 [ 1827.619853] ? find_held_lock+0x2c/0x110 [ 1827.620702] kernel_clone+0xe7/0x980 [ 1827.621475] ? lock_downgrade+0x6d0/0x6d0 [ 1827.622321] ? find_held_lock+0x2c/0x110 [ 1827.623169] ? create_io_thread+0xf0/0xf0 [ 1827.624063] ? ksys_write+0x12d/0x260 [ 1827.624865] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1827.625864] __do_sys_fork+0x8a/0xc0 [ 1827.626630] ? kernel_thread+0xf0/0xf0 [ 1827.627450] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1827.628550] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.629604] ? trace_hardirqs_on+0x5b/0x180 [ 1827.630500] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.631563] do_syscall_64+0x33/0x40 [ 1827.632336] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1827.633386] RIP: 0033:0x7fa6a3da0b19 [ 1827.634160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1827.637950] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1827.639509] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1827.640982] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1827.642446] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1827.643908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1827.645388] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:41:12 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r5}) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r7}) 04:41:12 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000140)={0x0, 0x0, 0x1c, 0x0, 0x2c7}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000240)={0x0, 0x9, 0x1}) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:41:12 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x100000000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:41:12 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 77) 04:41:12 executing program 1: syz_mount_image$vfat(&(0x7f00000013c0), &(0x7f00000000c0)='./file0\x00', 0x41, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mount$cgroup(0x0, 0x0, &(0x7f0000000100), 0x180010, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) fallocate(r0, 0x10, 0x101, 0x8000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000300)=0x101) chroot(&(0x7f0000000280)='./file1\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write(r1, &(0x7f0000000380)="0249e99a7f0211ef77a2e6ddf80889819eecd945439d8a17fd966a028b5a0d7d6da10a8b16bf2bf2b67ed8b591", 0x2d) openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x202700, 0x0) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000003c0)={0x0, "a91f51fa5d7fcca1d4fb574218c55843"}) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0xfffffffffffffffc) socket$nl_audit(0x10, 0x3, 0x9) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000002e00)={r3, "d7885b01064cde863ef84a335a261f1b"}) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) sendfile(r1, r2, 0x0, 0x100000001) 04:41:12 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x7000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:41:12 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0xd, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:41:12 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 74) [ 1827.769646] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1827.774422] 9pnet: Insufficient options for proto=fd [ 1827.781724] FAULT_INJECTION: forcing a failure. [ 1827.781724] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1827.783227] CPU: 0 PID: 22692 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1827.784039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1827.785005] Call Trace: [ 1827.785318] dump_stack+0x107/0x167 [ 1827.785752] should_fail.cold+0x5/0xa [ 1827.786197] __alloc_pages_nodemask+0x182/0x600 [ 1827.786739] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1827.787444] ? copy_page_range+0x28e1/0x3810 [ 1827.787953] alloc_pages_current+0x187/0x280 [ 1827.788471] get_zeroed_page+0x14/0xb0 [ 1827.788923] __pud_alloc+0x33/0x270 [ 1827.789362] copy_page_range+0x2ca1/0x3810 [ 1827.789860] ? SOFTIRQ_verbose+0x10/0x10 [ 1827.790335] ? lock_chain_count+0x20/0x20 [ 1827.790831] ? lock_downgrade+0x6d0/0x6d0 [ 1827.791322] ? up_write+0x191/0x550 [ 1827.791746] ? vm_iomap_memory+0x190/0x190 [ 1827.792275] ? downgrade_write+0x3a0/0x3a0 [ 1827.792797] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1827.793460] ? __vma_link_rb+0x540/0x700 [ 1827.793958] copy_process+0x759b/0x7800 [ 1827.794457] ? __cleanup_sighand+0xb0/0xb0 [ 1827.794971] ? lock_acquire+0x197/0x470 [ 1827.795426] ? find_held_lock+0x2c/0x110 [ 1827.795919] kernel_clone+0xe7/0x980 [ 1827.796380] ? lock_downgrade+0x6d0/0x6d0 [ 1827.796879] ? find_held_lock+0x2c/0x110 [ 1827.797366] ? create_io_thread+0xf0/0xf0 [ 1827.797874] ? ksys_write+0x12d/0x260 [ 1827.798342] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1827.798922] __do_sys_fork+0x8a/0xc0 [ 1827.799372] ? kernel_thread+0xf0/0xf0 [ 1827.799859] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1827.800473] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.801089] ? trace_hardirqs_on+0x5b/0x180 [ 1827.801606] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.802230] do_syscall_64+0x33/0x40 [ 1827.802684] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1827.803305] RIP: 0033:0x7fc140e06b19 [ 1827.803758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1827.805845] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1827.806751] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1827.807610] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1827.808477] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1827.809339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1827.810192] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1827.825206] FAULT_INJECTION: forcing a failure. [ 1827.825206] name failslab, interval 1, probability 0, space 0, times 0 [ 1827.826560] CPU: 0 PID: 22778 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1827.827332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1827.828273] Call Trace: [ 1827.828571] dump_stack+0x107/0x167 [ 1827.828992] should_fail.cold+0x5/0xa [ 1827.829430] ? create_object.isra.0+0x3a/0xa20 [ 1827.829957] should_failslab+0x5/0x20 [ 1827.830392] kmem_cache_alloc+0x5b/0x310 04:41:12 executing program 0: r0 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={0x60000, 0x8d, 0x4}, 0x18) setsockopt$inet6_tcp_int(r0, 0x6, 0x18, &(0x7f0000000180)=0x4, 0x4) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) fsetxattr$trusted_overlay_redirect(r4, &(0x7f00000001c0), &(0x7f0000000240)='./file0\x00', 0x8, 0x2) [ 1827.830860] create_object.isra.0+0x3a/0xa20 [ 1827.831489] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1827.832064] kmem_cache_alloc+0x159/0x310 [ 1827.832528] anon_vma_clone+0xdc/0x590 [ 1827.832974] anon_vma_fork+0x82/0x640 [ 1827.833398] ? __vm_enough_memory+0x184/0x360 [ 1827.833900] copy_process+0x7218/0x7800 [ 1827.834365] ? __cleanup_sighand+0xb0/0xb0 [ 1827.834869] ? lock_acquire+0x197/0x470 [ 1827.835391] ? find_held_lock+0x2c/0x110 [ 1827.835879] kernel_clone+0xe7/0x980 [ 1827.836308] ? lock_downgrade+0x6d0/0x6d0 [ 1827.836784] ? find_held_lock+0x2c/0x110 [ 1827.837253] ? create_io_thread+0xf0/0xf0 [ 1827.837740] ? ksys_write+0x12d/0x260 [ 1827.838191] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1827.838758] __do_sys_fork+0x8a/0xc0 [ 1827.839194] ? kernel_thread+0xf0/0xf0 [ 1827.839662] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1827.840286] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.840849] ? trace_hardirqs_on+0x5b/0x180 [ 1827.841362] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1827.841965] do_syscall_64+0x33/0x40 [ 1827.842405] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1827.843002] RIP: 0033:0x7fa6a3da0b19 [ 1827.843449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1827.845601] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1827.846506] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1827.847337] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1827.848191] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1827.849020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1827.849841] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1827.883982] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:41:25 executing program 1: syz_mount_image$vfat(&(0x7f00000013c0), &(0x7f00000000c0)='./file0\x00', 0x41, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mount$cgroup(0x0, 0x0, &(0x7f0000000100), 0x180010, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) fallocate(r0, 0x10, 0x101, 0x8000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000300)=0x101) chroot(&(0x7f0000000280)='./file1\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write(r1, &(0x7f0000000380)="0249e99a7f0211ef77a2e6ddf80889819eecd945439d8a17fd966a028b5a0d7d6da10a8b16bf2bf2b67ed8b591", 0x2d) openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x202700, 0x0) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f00000003c0)={0x0, "a91f51fa5d7fcca1d4fb574218c55843"}) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0xfffffffffffffffc) socket$nl_audit(0x10, 0x3, 0x9) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000002e00)={r3, "d7885b01064cde863ef84a335a261f1b"}) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) sendfile(r1, r2, 0x0, 0x100000001) 04:41:25 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 75) 04:41:25 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0xf, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:41:25 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00'}) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r6}) 04:41:25 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x20000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:41:25 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x10) 04:41:25 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x200000000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:41:25 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 78) [ 1840.681799] FAULT_INJECTION: forcing a failure. [ 1840.681799] name failslab, interval 1, probability 0, space 0, times 0 [ 1840.684018] CPU: 1 PID: 22905 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1840.684793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1840.685741] Call Trace: [ 1840.686037] dump_stack+0x107/0x167 [ 1840.686445] should_fail.cold+0x5/0xa [ 1840.686872] ? anon_vma_fork+0x1ff/0x640 [ 1840.687330] should_failslab+0x5/0x20 [ 1840.687751] kmem_cache_alloc+0x5b/0x310 [ 1840.688212] anon_vma_fork+0x1ff/0x640 [ 1840.688651] copy_process+0x7218/0x7800 [ 1840.689113] ? __cleanup_sighand+0xb0/0xb0 [ 1840.689586] ? lock_acquire+0x197/0x470 [ 1840.690035] ? find_held_lock+0x2c/0x110 [ 1840.690488] kernel_clone+0xe7/0x980 [ 1840.690922] ? lock_downgrade+0x6d0/0x6d0 [ 1840.691385] ? find_held_lock+0x2c/0x110 [ 1840.691834] ? create_io_thread+0xf0/0xf0 [ 1840.692320] ? ksys_write+0x12d/0x260 [ 1840.692752] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1840.693291] __do_sys_fork+0x8a/0xc0 [ 1840.693705] ? kernel_thread+0xf0/0xf0 [ 1840.694169] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1840.694753] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1840.695320] ? trace_hardirqs_on+0x5b/0x180 [ 1840.695806] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1840.696383] do_syscall_64+0x33/0x40 [ 1840.696798] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1840.697367] RIP: 0033:0x7fa6a3da0b19 [ 1840.697788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1840.699811] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1840.700665] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1840.701446] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1840.702231] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1840.703011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1840.703801] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1840.708711] 9pnet: Insufficient options for proto=fd [ 1840.717426] FAULT_INJECTION: forcing a failure. [ 1840.717426] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1840.719903] CPU: 0 PID: 22919 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1840.721371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1840.723096] Call Trace: [ 1840.723656] dump_stack+0x107/0x167 [ 1840.724453] should_fail.cold+0x5/0xa [ 1840.725285] __alloc_pages_nodemask+0x182/0x600 [ 1840.726257] ? lock_acquire+0x197/0x470 [ 1840.727083] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1840.728363] ? lock_downgrade+0x6d0/0x6d0 [ 1840.729232] ? do_raw_spin_lock+0x121/0x260 [ 1840.730138] alloc_pages_current+0x187/0x280 [ 1840.731085] __pmd_alloc+0x37/0x5e0 [ 1840.731833] copy_page_range+0x2bd8/0x3810 [ 1840.732724] ? SOFTIRQ_verbose+0x10/0x10 04:41:25 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 76) [ 1840.733582] ? lock_chain_count+0x20/0x20 [ 1840.734540] ? up_write+0x191/0x550 [ 1840.735289] ? vm_iomap_memory+0x190/0x190 [ 1840.736171] ? downgrade_write+0x3a0/0x3a0 [ 1840.737083] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1840.738227] ? __vma_link_rb+0x540/0x700 [ 1840.739078] copy_process+0x759b/0x7800 [ 1840.739929] ? __cleanup_sighand+0xb0/0xb0 [ 1840.740819] ? lock_acquire+0x197/0x470 [ 1840.741624] ? find_held_lock+0x2c/0x110 [ 1840.742471] kernel_clone+0xe7/0x980 04:41:25 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x300000000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1840.743221] ? lock_downgrade+0x6d0/0x6d0 [ 1840.744107] ? find_held_lock+0x2c/0x110 [ 1840.744943] ? create_io_thread+0xf0/0xf0 [ 1840.745792] ? ksys_write+0x12d/0x260 [ 1840.746579] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1840.747575] __do_sys_fork+0x8a/0xc0 [ 1840.748341] ? kernel_thread+0xf0/0xf0 [ 1840.749148] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1840.750202] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1840.751086] FAULT_INJECTION: forcing a failure. [ 1840.751086] name failslab, interval 1, probability 0, space 0, times 0 [ 1840.751242] ? trace_hardirqs_on+0x5b/0x180 [ 1840.753304] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1840.754351] do_syscall_64+0x33/0x40 [ 1840.755110] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1840.756141] RIP: 0033:0x7fc140e06b19 [ 1840.756912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1840.760630] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1840.762168] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1840.763618] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1840.765072] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1840.766538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1840.767995] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1840.769473] CPU: 1 PID: 23022 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1840.770276] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1840.771176] Call Trace: [ 1840.771464] dump_stack+0x107/0x167 [ 1840.771857] should_fail.cold+0x5/0xa [ 1840.772273] ? create_object.isra.0+0x3a/0xa20 [ 1840.772765] should_failslab+0x5/0x20 [ 1840.773173] kmem_cache_alloc+0x5b/0x310 [ 1840.773610] create_object.isra.0+0x3a/0xa20 [ 1840.774082] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1840.774624] kmem_cache_alloc+0x159/0x310 [ 1840.775072] anon_vma_fork+0x1ff/0x640 [ 1840.775462] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1840.775509] copy_process+0x7218/0x7800 [ 1840.777540] ? __cleanup_sighand+0xb0/0xb0 [ 1840.778000] ? lock_acquire+0x197/0x470 [ 1840.778430] ? find_held_lock+0x2c/0x110 [ 1840.778867] kernel_clone+0xe7/0x980 [ 1840.779266] ? lock_downgrade+0x6d0/0x6d0 [ 1840.779707] ? find_held_lock+0x2c/0x110 [ 1840.780146] ? create_io_thread+0xf0/0xf0 [ 1840.780603] ? ksys_write+0x12d/0x260 [ 1840.781016] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1840.781534] __do_sys_fork+0x8a/0xc0 [ 1840.781931] ? kernel_thread+0xf0/0xf0 [ 1840.782361] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1840.782921] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1840.783470] ? trace_hardirqs_on+0x5b/0x180 [ 1840.783930] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1840.784490] do_syscall_64+0x33/0x40 [ 1840.784892] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1840.785437] RIP: 0033:0x7fa6a3da0b19 [ 1840.785837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1840.787783] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1840.788634] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1840.789409] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1840.790185] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1840.790964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1840.791758] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:41:25 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={r0, 0x200, 0x43, 0x7}) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1840.859853] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities 04:41:25 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r5}) 04:41:40 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 79) 04:41:40 executing program 1: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r5 = socket$packet(0x11, 0x3, 0x300) ppoll(&(0x7f0000000040)=[{r3, 0x8021}, {r0, 0x1000}, {r0, 0x8}, {r4, 0x2300}, {r5, 0x50}, {r0, 0x20}], 0x6, &(0x7f0000000140)={0x0, 0x3938700}, &(0x7f0000000180)={[0x6]}, 0x8) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1855.287349] FAULT_INJECTION: forcing a failure. [ 1855.287349] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1855.288889] CPU: 1 PID: 23248 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1855.289744] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1855.290780] Call Trace: [ 1855.291112] dump_stack+0x107/0x167 [ 1855.291560] should_fail.cold+0x5/0xa [ 1855.292024] __alloc_pages_nodemask+0x182/0x600 [ 1855.292593] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1855.293328] ? copy_page_range+0x28e1/0x3810 [ 1855.293855] alloc_pages_current+0x187/0x280 04:41:40 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 77) 04:41:40 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x20100000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:41:40 executing program 0: ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000240)=ANY=[@ANYBLOB="010a087b8fea10942f818400e12706409b6b8abb10a4d4aa90d78dd28f1e889be5b24ba7313445e57837c94a43643c90b19255fd55857cef134b8affe18adb74624dd57549fb9bd4d2c898862ed5d826f609954270f94e84e6ff6481dd326195df86c729e6d05fb8f178a3b5aab35b6bf1dd566280", @ANYRES32=0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_setup(0x5f68, &(0x7f0000000140)={0x0, 0xbd3a, 0x10, 0x2, 0x1f1, 0x0, r0}) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 04:41:40 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x11, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) [ 1855.294396] get_zeroed_page+0x14/0xb0 [ 1855.294408] __pud_alloc+0x33/0x270 [ 1855.294424] copy_page_range+0x2ca1/0x3810 04:41:40 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x400000000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:41:40 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r5}) [ 1855.294437] ? SOFTIRQ_verbose+0x10/0x10 [ 1855.294449] ? lock_chain_count+0x20/0x20 [ 1855.294475] ? lock_downgrade+0x6d0/0x6d0 [ 1855.294499] ? up_write+0x191/0x550 [ 1855.294512] ? vm_iomap_memory+0x190/0x190 [ 1855.294524] ? downgrade_write+0x3a0/0x3a0 [ 1855.294539] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1855.294557] ? __vma_link_rb+0x540/0x700 [ 1855.294576] copy_process+0x759b/0x7800 04:41:40 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r3, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r5}) 04:41:40 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 78) [ 1855.294613] ? __cleanup_sighand+0xb0/0xb0 [ 1855.294630] ? lock_acquire+0x197/0x470 04:41:40 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x500000000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1855.294648] ? find_held_lock+0x2c/0x110 [ 1855.294664] kernel_clone+0xe7/0x980 [ 1855.294677] ? lock_downgrade+0x6d0/0x6d0 [ 1855.294688] ? find_held_lock+0x2c/0x110 [ 1855.294701] ? create_io_thread+0xf0/0xf0 [ 1855.294717] ? ksys_write+0x12d/0x260 04:41:40 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 80) [ 1855.294737] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1855.294756] __do_sys_fork+0x8a/0xc0 [ 1855.294768] ? kernel_thread+0xf0/0xf0 [ 1855.294793] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1855.294805] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.294817] ? trace_hardirqs_on+0x5b/0x180 [ 1855.294830] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.294846] do_syscall_64+0x33/0x40 [ 1855.294861] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1855.294870] RIP: 0033:0x7fa6a3da0b19 [ 1855.294883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1855.294890] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1855.294905] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1855.294912] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1855.294920] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1855.294928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1855.294935] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1855.299733] FAULT_INJECTION: forcing a failure. [ 1855.299733] name failslab, interval 1, probability 0, space 0, times 0 04:41:40 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4) setsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000280)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) r1 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_mreqsrc(r1, 0x0, 0x26, &(0x7f0000000100)={@multicast1, @local, @multicast1}, 0xc) openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40, 0x133) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(0xffffffffffffffff, &(0x7f00000017c0)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$inet6(r0, &(0x7f0000000300)={&(0x7f0000000200)={0xa, 0x4e22, 0x9, @mcast2, 0x2}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000240)="607ba2c8ab5a678af60659580553d315b74978a2bbd7d24b9776a097cebe6d3397369ccb4c27c4c7dc11818d9792152aac", 0x31}], 0x1}, 0x4) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) signalfd(r4, &(0x7f00000001c0)={[0x100]}, 0x8) socket$nl_audit(0x10, 0x3, 0x9) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x5e, 0x41911, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x800000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r6 = dup3(r0, r5, 0x0) sendmsg$DEVLINK_CMD_TRAP_GET(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000011c0)=ANY=[], 0x14}}, 0x20000844) 04:41:40 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x14, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) [ 1855.299765] CPU: 0 PID: 23244 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1855.299777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 04:41:40 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}, {0x0}], 0x2}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r7, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r7, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) write$binfmt_misc(r7, &(0x7f0000000400)={'syz1', "dc8b801a257405be874183add0eb868631e67a1170872fc3b856702c1f362df9d52a204e6a1310c3e4c803f48d3ab83a9859e113b1c695ed6be46b441bb20ec78cb81ef324d1c463d7a73ca2900e193a20cfb215cac6ccd721074b42a96dd1cfab578ee1710b09d15a62062b2f0e4cede889969d600a917a37f04f1dcc48e81bf8d26ac8f0698b735b"}, 0x8d) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r1, r5, &(0x7f00000001c0)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2}, 0x6) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x8}], 0x1, &(0x7f0000000140), &(0x7f0000000180)={[0x6]}, 0x8) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) [ 1855.299783] Call Trace: [ 1855.299808] dump_stack+0x107/0x167 [ 1855.299835] should_fail.cold+0x5/0xa 04:41:40 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r5}) 04:41:40 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 79) 04:41:40 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x600000000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) [ 1855.299859] ? __pmd_alloc+0x94/0x5e0 [ 1855.299882] should_failslab+0x5/0x20 [ 1855.299903] kmem_cache_alloc+0x5b/0x310 [ 1855.299930] __pmd_alloc+0x94/0x5e0 [ 1855.299956] copy_page_range+0x2bd8/0x3810 [ 1855.299976] ? SOFTIRQ_verbose+0x10/0x10 [ 1855.299994] ? lock_chain_count+0x20/0x20 [ 1855.300058] ? up_write+0x191/0x550 [ 1855.300078] ? vm_iomap_memory+0x190/0x190 [ 1855.300096] ? downgrade_write+0x3a0/0x3a0 [ 1855.300120] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1855.300148] ? __vma_link_rb+0x540/0x700 [ 1855.300178] copy_process+0x759b/0x7800 [ 1855.300238] ? __cleanup_sighand+0xb0/0xb0 [ 1855.300265] ? lock_acquire+0x197/0x470 [ 1855.300294] ? find_held_lock+0x2c/0x110 [ 1855.300320] kernel_clone+0xe7/0x980 [ 1855.300340] ? lock_downgrade+0x6d0/0x6d0 [ 1855.300357] ? find_held_lock+0x2c/0x110 [ 1855.300376] ? create_io_thread+0xf0/0xf0 [ 1855.300411] ? ksys_write+0x12d/0x260 [ 1855.300441] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1855.300471] __do_sys_fork+0x8a/0xc0 [ 1855.300491] ? kernel_thread+0xf0/0xf0 [ 1855.300529] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1855.300549] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.300565] ? trace_hardirqs_on+0x5b/0x180 [ 1855.300586] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.300607] do_syscall_64+0x33/0x40 [ 1855.300630] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1855.300643] RIP: 0033:0x7fc140e06b19 [ 1855.300664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1855.300676] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1855.300697] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1855.300709] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1855.300721] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1855.300732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1855.300744] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1855.340990] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1855.407967] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1855.482535] FAULT_INJECTION: forcing a failure. [ 1855.482535] name failslab, interval 1, probability 0, space 0, times 0 [ 1855.482558] CPU: 0 PID: 23401 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1855.482570] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1855.482577] Call Trace: [ 1855.482600] dump_stack+0x107/0x167 [ 1855.482627] should_fail.cold+0x5/0xa [ 1855.482650] ? anon_vma_fork+0x1ff/0x640 [ 1855.482673] should_failslab+0x5/0x20 [ 1855.482693] kmem_cache_alloc+0x5b/0x310 [ 1855.482720] anon_vma_fork+0x1ff/0x640 [ 1855.482753] copy_process+0x7218/0x7800 [ 1855.482813] ? __cleanup_sighand+0xb0/0xb0 [ 1855.482841] ? lock_acquire+0x197/0x470 [ 1855.482870] ? find_held_lock+0x2c/0x110 [ 1855.482896] kernel_clone+0xe7/0x980 [ 1855.482916] ? lock_downgrade+0x6d0/0x6d0 [ 1855.482932] ? find_held_lock+0x2c/0x110 [ 1855.482951] ? create_io_thread+0xf0/0xf0 [ 1855.482977] ? ksys_write+0x12d/0x260 [ 1855.483007] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1855.483037] __do_sys_fork+0x8a/0xc0 [ 1855.483056] ? kernel_thread+0xf0/0xf0 [ 1855.483096] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1855.483115] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.483132] ? trace_hardirqs_on+0x5b/0x180 [ 1855.483153] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.483174] do_syscall_64+0x33/0x40 [ 1855.483197] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1855.483211] RIP: 0033:0x7fa6a3da0b19 [ 1855.483232] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1855.483243] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1855.483266] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1855.483278] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1855.483290] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1855.483301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1855.483313] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 [ 1855.492584] FAULT_INJECTION: forcing a failure. [ 1855.492584] name failslab, interval 1, probability 0, space 0, times 0 [ 1855.492598] CPU: 1 PID: 23429 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1855.492605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1855.492609] Call Trace: [ 1855.492626] dump_stack+0x107/0x167 [ 1855.492642] should_fail.cold+0x5/0xa [ 1855.492657] ? create_object.isra.0+0x3a/0xa20 [ 1855.492672] should_failslab+0x5/0x20 [ 1855.492684] kmem_cache_alloc+0x5b/0x310 [ 1855.492699] create_object.isra.0+0x3a/0xa20 [ 1855.492710] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1855.492725] kmem_cache_alloc+0x159/0x310 [ 1855.492741] __pmd_alloc+0x94/0x5e0 [ 1855.492757] copy_page_range+0x2bd8/0x3810 [ 1855.492770] ? SOFTIRQ_verbose+0x10/0x10 [ 1855.492780] ? lock_chain_count+0x20/0x20 [ 1855.492814] ? up_write+0x191/0x550 [ 1855.492826] ? vm_iomap_memory+0x190/0x190 [ 1855.492836] ? downgrade_write+0x3a0/0x3a0 [ 1855.492850] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1855.492865] ? __vma_link_rb+0x540/0x700 [ 1855.492883] copy_process+0x759b/0x7800 [ 1855.492917] ? __cleanup_sighand+0xb0/0xb0 [ 1855.492932] ? lock_acquire+0x197/0x470 [ 1855.492948] ? find_held_lock+0x2c/0x110 [ 1855.492962] kernel_clone+0xe7/0x980 [ 1855.492973] ? lock_downgrade+0x6d0/0x6d0 [ 1855.492982] ? find_held_lock+0x2c/0x110 [ 1855.492993] ? create_io_thread+0xf0/0xf0 [ 1855.493006] ? ksys_write+0x12d/0x260 [ 1855.493025] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1855.493041] __do_sys_fork+0x8a/0xc0 [ 1855.493052] ? kernel_thread+0xf0/0xf0 [ 1855.493074] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1855.493084] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.493094] ? trace_hardirqs_on+0x5b/0x180 [ 1855.493106] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.493118] do_syscall_64+0x33/0x40 [ 1855.493131] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1855.493139] RIP: 0033:0x7fc140e06b19 [ 1855.493150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1855.493157] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1855.493170] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1855.493177] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1855.493183] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1855.493190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1855.493197] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1855.556297] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1855.631425] FAULT_INJECTION: forcing a failure. [ 1855.631425] name failslab, interval 1, probability 0, space 0, times 0 [ 1855.631439] CPU: 1 PID: 23590 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1855.631446] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1855.631449] Call Trace: [ 1855.631465] dump_stack+0x107/0x167 [ 1855.631479] should_fail.cold+0x5/0xa [ 1855.631493] ? __pmd_alloc+0x94/0x5e0 [ 1855.631506] should_failslab+0x5/0x20 [ 1855.631517] kmem_cache_alloc+0x5b/0x310 [ 1855.631532] __pmd_alloc+0x94/0x5e0 [ 1855.631545] copy_page_range+0x2bd8/0x3810 [ 1855.631556] ? SOFTIRQ_verbose+0x10/0x10 [ 1855.631566] ? lock_chain_count+0x20/0x20 [ 1855.631599] ? up_write+0x191/0x550 [ 1855.631610] ? vm_iomap_memory+0x190/0x190 [ 1855.631623] ? downgrade_write+0x3a0/0x3a0 [ 1855.631636] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1855.631651] ? __vma_link_rb+0x540/0x700 [ 1855.631667] copy_process+0x759b/0x7800 [ 1855.631701] ? __cleanup_sighand+0xb0/0xb0 [ 1855.631715] ? lock_acquire+0x197/0x470 [ 1855.631730] ? find_held_lock+0x2c/0x110 [ 1855.631744] kernel_clone+0xe7/0x980 [ 1855.631755] ? lock_downgrade+0x6d0/0x6d0 [ 1855.631764] ? find_held_lock+0x2c/0x110 [ 1855.631774] ? create_io_thread+0xf0/0xf0 [ 1855.631788] ? ksys_write+0x12d/0x260 [ 1855.631806] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1855.631822] __do_sys_fork+0x8a/0xc0 [ 1855.631832] ? kernel_thread+0xf0/0xf0 [ 1855.631852] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1855.631862] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.631871] ? trace_hardirqs_on+0x5b/0x180 [ 1855.631882] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.631894] do_syscall_64+0x33/0x40 [ 1855.631907] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1855.631915] RIP: 0033:0x7fa6a3da0b19 [ 1855.631926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1855.631932] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1855.631945] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1855.631951] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1855.631957] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1855.631963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1855.631970] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:41:54 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 81) 04:41:54 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x700000000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:41:54 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r5}) 04:41:54 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x2e, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) 04:41:54 executing program 2: modify_ldt$write(0x1, &(0x7f0000000100)={0xbc9}, 0x10) fork() (fail_nth: 80) 04:41:54 executing program 1: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$rfkill(r0, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1}, 0x8) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x5}) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x80, 0x6, 0x1, 0x1, 0x0, 0xf5, 0x40000, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x10000, 0x2, @perf_bp={&(0x7f0000000040), 0x4}, 0xe, 0x1, 0x200, 0x5, 0xffffffffffff4687, 0x1f, 0x1a, 0x0, 0x9}, 0xffffffffffffffff, 0xb, r1, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r2, &(0x7f000000b080)=[{{0x0, 0x0, &(0x7f0000009340)=[{&(0x7f0000008100)="1ca15b76", 0x4}], 0x1}}, {{&(0x7f0000003300)={0xa, 0x4e20, 0x0, @empty}, 0x1c, 0x0}}], 0x2, 0x0) ioctl$BTRFS_IOC_LOGICAL_INO(r2, 0xc0389424, &(0x7f0000000180)={0x9, 0x20, '\x00', 0x0, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0]}) [ 1869.412190] [ 1869.412443] ====================================================== [ 1869.413167] WARNING: possible circular locking dependency detected [ 1869.413860] 5.10.199 #1 Not tainted [ 1869.414254] ------------------------------------------------------ [ 1869.414936] syz-executor.1/23707 is trying to acquire lock: [ 1869.415553] ffff888017d44b78 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}, at: __flush_work+0xdd/0xa90 [ 1869.416710] [ 1869.416710] but task is already holding lock: [ 1869.417353] ffffffff85619468 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 1869.418321] [ 1869.418321] which lock already depends on the new lock. [ 1869.418321] [ 1869.419204] [ 1869.419204] the existing dependency chain (in reverse order) is: [ 1869.420018] [ 1869.420018] -> #4 (rfkill_global_mutex){+.+.}-{3:3}: [ 1869.420754] __mutex_lock+0x13d/0x10b0 [ 1869.421236] rfkill_register+0x36/0xa10 [ 1869.421721] hci_register_dev+0x42e/0xc00 [ 1869.422229] __vhci_create_device+0x2c8/0x5c0 [ 1869.422773] vhci_open_timeout+0x38/0x50 [ 1869.423301] process_one_work+0x9a9/0x14b0 [ 1869.423848] worker_thread+0x61d/0x1310 [ 1869.424372] kthread+0x38f/0x470 [ 1869.424835] ret_from_fork+0x22/0x30 [ 1869.424854] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1869.425320] [ 1869.425320] -> #3 (&data->open_mutex){+.+.}-{3:3}: [ 1869.431034] __mutex_lock+0x13d/0x10b0 [ 1869.431543] vhci_send_frame+0x63/0xa0 [ 1869.432043] hci_send_frame+0x1b9/0x320 [ 1869.432534] hci_tx_work+0x10af/0x1660 [ 1869.433032] process_one_work+0x9a9/0x14b0 [ 1869.433553] worker_thread+0x61d/0x1310 [ 1869.434037] kthread+0x38f/0x470 [ 1869.434465] ret_from_fork+0x22/0x30 [ 1869.434922] [ 1869.434922] -> #2 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}: [ 1869.435789] __flush_work+0x105/0xa90 [ 1869.436267] hci_dev_do_close+0x131/0x1240 [ 1869.436796] hci_unregister_dev+0x149/0x430 [ 1869.437317] vhci_release+0x70/0xf0 [ 1869.437804] __fput+0x285/0x980 [ 1869.438220] task_work_run+0xe2/0x1a0 [ 1869.438685] do_exit+0xb6f/0x2600 [ 1869.439123] do_group_exit+0x125/0x310 [ 1869.439599] get_signal+0x4bc/0x22f0 [ 1869.440065] arch_do_signal_or_restart+0x2b7/0x1990 [ 1869.440673] exit_to_user_mode_prepare+0x10f/0x190 [ 1869.441290] syscall_exit_to_user_mode+0x38/0x1e0 [ 1869.441903] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1869.442546] [ 1869.442546] -> #1 (&hdev->req_lock){+.+.}-{3:3}: [ 1869.443274] __mutex_lock+0x13d/0x10b0 [ 1869.443776] bg_scan_update+0x82/0x500 [ 1869.444280] process_one_work+0x9a9/0x14b0 [ 1869.444836] worker_thread+0x61d/0x1310 [ 1869.445352] kthread+0x38f/0x470 [ 1869.445786] ret_from_fork+0x22/0x30 [ 1869.446261] [ 1869.446261] -> #0 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}: [ 1869.447210] __lock_acquire+0x29e7/0x5b00 [ 1869.447741] lock_acquire+0x197/0x470 [ 1869.448230] __flush_work+0x105/0xa90 [ 1869.448737] __cancel_work_timer+0x368/0x4c0 [ 1869.449273] hci_request_cancel_all+0x73/0x230 [ 1869.449837] hci_dev_do_close+0xd9/0x1240 [ 1869.450374] hci_rfkill_set_block+0x166/0x1a0 [ 1869.450914] rfkill_set_block+0x1fd/0x540 [ 1869.451438] rfkill_fop_write+0x253/0x4b0 [ 1869.451964] vfs_write+0x29a/0xa70 [ 1869.452418] ksys_write+0x1f6/0x260 [ 1869.452910] do_syscall_64+0x33/0x40 [ 1869.453376] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1869.453999] [ 1869.453999] other info that might help us debug this: [ 1869.453999] [ 1869.454898] Chain exists of: [ 1869.454898] (work_completion)(&hdev->bg_scan_update) --> &data->open_mutex --> rfkill_global_mutex [ 1869.454898] [ 1869.456409] Possible unsafe locking scenario: [ 1869.456409] [ 1869.457060] CPU0 CPU1 [ 1869.457551] ---- ---- [ 1869.458062] lock(rfkill_global_mutex); [ 1869.458530] lock(&data->open_mutex); [ 1869.459234] lock(rfkill_global_mutex); [ 1869.459937] lock((work_completion)(&hdev->bg_scan_update)); [ 1869.460575] [ 1869.460575] *** DEADLOCK *** [ 1869.460575] [ 1869.461216] 1 lock held by syz-executor.1/23707: [ 1869.461726] #0: ffffffff85619468 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 1869.462783] [ 1869.462783] stack backtrace: [ 1869.463280] CPU: 1 PID: 23707 Comm: syz-executor.1 Not tainted 5.10.199 #1 [ 1869.464030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1869.464938] Call Trace: [ 1869.465241] dump_stack+0x107/0x167 [ 1869.465659] check_noncircular+0x263/0x2e0 [ 1869.466137] ? register_lock_class+0xbb/0x17b0 [ 1869.466657] ? print_circular_bug+0x470/0x470 [ 1869.467174] ? perf_tp_event+0x5ce/0xc00 [ 1869.467645] ? find_first_zero_bit+0x94/0xb0 [ 1869.468141] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 1869.468652] __lock_acquire+0x29e7/0x5b00 [ 1869.469146] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1869.469729] ? SOFTIRQ_verbose+0x10/0x10 [ 1869.470189] ? perf_swevent_event+0x6c/0x550 [ 1869.470686] ? tracing_generic_entry_update+0x1ed/0x270 [ 1869.471294] lock_acquire+0x197/0x470 [ 1869.471714] ? __flush_work+0xdd/0xa90 [ 1869.472155] ? lock_release+0x680/0x680 [ 1869.472597] ? __flush_work+0x78c/0xa90 [ 1869.473042] ? lock_downgrade+0x6d0/0x6d0 [ 1869.473507] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1869.474102] __flush_work+0x105/0xa90 [ 1869.474532] ? __flush_work+0xdd/0xa90 [ 1869.474966] ? lock_chain_count+0x20/0x20 [ 1869.475430] ? queue_delayed_work_on+0xe0/0xe0 [ 1869.475935] ? mark_lock+0xf5/0x2df0 [ 1869.476352] ? mark_lock+0xf5/0x2df0 [ 1869.476783] ? lock_chain_count+0x20/0x20 [ 1869.477255] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1869.477847] ? lock_chain_count+0x20/0x20 [ 1869.478317] ? mark_held_locks+0x9e/0xe0 [ 1869.478781] __cancel_work_timer+0x368/0x4c0 [ 1869.479266] ? try_to_grab_pending+0xe0/0xe0 [ 1869.479761] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1869.480341] ? cancel_delayed_work+0x24d/0x2b0 [ 1869.480871] ? trace_hardirqs_on+0x5b/0x180 [ 1869.481361] ? cancel_delayed_work+0x1b8/0x2b0 [ 1869.481877] ? cancel_delayed_work_sync+0x20/0x20 [ 1869.482433] hci_request_cancel_all+0x73/0x230 [ 1869.482953] hci_dev_do_close+0xd9/0x1240 [ 1869.483430] ? rfkill_set_block+0x18f/0x540 [ 1869.483906] ? hci_dev_open+0x350/0x350 [ 1869.484344] ? mark_held_locks+0x9e/0xe0 [ 1869.484842] hci_rfkill_set_block+0x166/0x1a0 [ 1869.485331] ? hci_power_off+0x20/0x20 [ 1869.485744] rfkill_set_block+0x1fd/0x540 [ 1869.486221] rfkill_fop_write+0x253/0x4b0 [ 1869.486682] ? rfkill_sync_work+0xa0/0xa0 [ 1869.487148] ? security_file_permission+0x24e/0x570 [ 1869.487712] ? rfkill_sync_work+0xa0/0xa0 [ 1869.488170] vfs_write+0x29a/0xa70 [ 1869.488576] ksys_write+0x1f6/0x260 [ 1869.488982] ? __ia32_sys_read+0xb0/0xb0 [ 1869.489442] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1869.490019] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1869.490604] do_syscall_64+0x33/0x40 [ 1869.491024] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1869.491594] RIP: 0033:0x7f8167596b19 [ 1869.492004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1869.494028] RSP: 002b:00007f8164b0c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1869.494879] RAX: ffffffffffffffda RBX: 00007f81676a9f60 RCX: 00007f8167596b19 [ 1869.495666] RDX: 0000000000000008 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1869.496458] RBP: 00007f81675f0f6d R08: 0000000000000000 R09: 0000000000000000 [ 1869.497256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1869.498054] R13: 00007fffb968e3ff R14: 00007f8164b0c300 R15: 0000000000022000 04:41:54 executing program 7: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x8cffffff, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9p2000.L']) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 04:41:54 executing program 0: r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) lseek(r3, 0x0, 0x2) r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) fstatfs(r0, &(0x7f0000000240)=""/144) copy_file_range(r4, 0x0, r3, 0x0, 0x200f5ef, 0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r4, 0xc0c89425, &(0x7f0000000300)={"08b026cc68de4a630a09796c3f7dd1ad", 0x0, 0x0, {0x40, 0x7}, {0x4, 0x8001}, 0x80000000, [0xffffffff, 0x7fffffff, 0x5, 0x80, 0x2, 0x200, 0xc, 0x1c4, 0x8, 0x9, 0x40, 0xe18, 0x9, 0x7b80, 0x400, 0x6]}) ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f0000000400)={{r4}, r5, 0x4, @unused=[0x65b, 0x10000, 0x20, 0x4], @devid}) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r3, 0xc080661a, &(0x7f0000000140)={@desc={0x1, 0x0, @desc3}}) [ 1869.507102] FAULT_INJECTION: forcing a failure. [ 1869.507102] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1869.508378] CPU: 1 PID: 23718 Comm: syz-executor.6 Not tainted 5.10.199 #1 [ 1869.509157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1869.510059] Call Trace: [ 1869.510349] dump_stack+0x107/0x167 [ 1869.510756] should_fail.cold+0x5/0xa [ 1869.511184] __alloc_pages_nodemask+0x182/0x600 [ 1869.511693] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1869.512355] ? lock_acquire+0x3ef/0x470 [ 1869.512788] ? __pmd_alloc+0x2db/0x5e0 [ 1869.513204] ? lock_downgrade+0x6d0/0x6d0 [ 1869.513653] ? do_raw_spin_lock+0x121/0x260 [ 1869.514116] alloc_pages_current+0x187/0x280 [ 1869.514579] pte_alloc_one+0x16/0x1a0 [ 1869.514984] __pte_alloc+0x1d/0x330 [ 1869.515404] copy_page_range+0x1b62/0x3810 [ 1869.515869] ? SOFTIRQ_verbose+0x10/0x10 [ 1869.516317] ? lock_release+0x4d1/0x680 [ 1869.516758] ? up_write+0x191/0x550 [ 1869.517142] ? vm_iomap_memory+0x190/0x190 [ 1869.517586] ? downgrade_write+0x3a0/0x3a0 [ 1869.518035] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1869.518601] ? __vma_link_rb+0x540/0x700 [ 1869.519036] copy_process+0x759b/0x7800 [ 1869.519461] ? __cleanup_sighand+0xb0/0xb0 [ 1869.519911] ? _kstrtoull+0x297/0x550 [ 1869.520333] ? lock_acquire+0x3ef/0x470 [ 1869.520775] ? lock_release+0x4d1/0x680 [ 1869.521208] ? kstrtou8_from_user+0x210/0x210 [ 1869.521699] ? get_pid_task+0xea/0x250 [ 1869.522128] kernel_clone+0xe7/0x980 [ 1869.522539] ? lock_downgrade+0x6d0/0x6d0 [ 1869.522995] ? __fsnotify_parent+0x488/0x9d0 [ 1869.523480] ? create_io_thread+0xf0/0xf0 [ 1869.523937] ? lock_release+0x4d1/0x680 [ 1869.524373] ? fsnotify+0xf50/0xf50 [ 1869.524789] ? ksys_write+0x12d/0x260 [ 1869.525196] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1869.525703] __do_sys_fork+0x8a/0xc0 [ 1869.526094] ? kernel_thread+0xf0/0xf0 [ 1869.526523] ? fpregs_assert_state_consistent+0xb9/0xe0 [ 1869.527088] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1869.527637] ? trace_hardirqs_on+0x5b/0x180 [ 1869.528110] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1869.528686] do_syscall_64+0x33/0x40 [ 1869.529090] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1869.529654] RIP: 0033:0x7fc140e06b19 [ 1869.530069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1869.532080] RSP: 002b:00007fc13e37c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1869.532899] RAX: ffffffffffffffda RBX: 00007fc140f19f60 RCX: 00007fc140e06b19 [ 1869.533685] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1869.534460] RBP: 00007fc13e37c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1869.535220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1869.535967] R13: 00007ffc9eb1e9df R14: 00007fc13e37c300 R15: 0000000000022000 [ 1869.547079] FAULT_INJECTION: forcing a failure. [ 1869.547079] name failslab, interval 1, probability 0, space 0, times 0 [ 1869.548316] CPU: 1 PID: 23713 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1869.549075] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1869.549958] Call Trace: [ 1869.550242] dump_stack+0x107/0x167 [ 1869.550636] should_fail.cold+0x5/0xa [ 1869.551039] ? create_object.isra.0+0x3a/0xa20 [ 1869.551550] should_failslab+0x5/0x20 [ 1869.551969] kmem_cache_alloc+0x5b/0x310 [ 1869.552402] create_object.isra.0+0x3a/0xa20 [ 1869.552883] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1869.553435] kmem_cache_alloc+0x159/0x310 [ 1869.553878] __pmd_alloc+0x94/0x5e0 [ 1869.554271] copy_page_range+0x2bd8/0x3810 [ 1869.554718] ? SOFTIRQ_verbose+0x10/0x10 [ 1869.555154] ? lock_release+0x4d1/0x680 [ 1869.555573] ? lock_downgrade+0x6d0/0x6d0 [ 1869.556009] ? up_write+0x191/0x550 [ 1869.556395] ? vm_iomap_memory+0x190/0x190 [ 1869.556855] ? downgrade_write+0x3a0/0x3a0 [ 1869.557319] ? anon_vma_interval_tree_insert+0x277/0x450 [ 1869.557423] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1869.557893] ? __vma_link_rb+0x540/0x700 [ 1869.557905] copy_process+0x759b/0x7800 [ 1869.557924] ? __cleanup_sighand+0xb0/0xb0 [ 1869.560886] ? lock_acquire+0x197/0x470 [ 1869.561308] ? find_held_lock+0x2c/0x110 [ 1869.561737] kernel_clone+0xe7/0x980 [ 1869.562131] ? lock_downgrade+0x6d0/0x6d0 [ 1869.562586] ? find_held_lock+0x2c/0x110 [ 1869.563025] ? create_io_thread+0xf0/0xf0 [ 1869.563467] ? ksys_write+0x12d/0x260 [ 1869.563881] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1869.564388] __do_sys_fork+0x8a/0xc0 [ 1869.564793] ? kernel_thread+0xf0/0xf0 [ 1869.565221] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1869.565795] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1869.566359] ? trace_hardirqs_on+0x5b/0x180 [ 1869.566829] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1869.567378] do_syscall_64+0x33/0x40 [ 1869.567788] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1869.568341] RIP: 0033:0x7fa6a3da0b19 [ 1869.568762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1869.570727] RSP: 002b:00007fa6a1316188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1869.571556] RAX: ffffffffffffffda RBX: 00007fa6a3eb3f60 RCX: 00007fa6a3da0b19 [ 1869.572342] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1869.573132] RBP: 00007fa6a13161d0 R08: 0000000000000000 R09: 0000000000000000 [ 1869.573908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1869.574653] R13: 00007ffe88505e4f R14: 00007fa6a1316300 R15: 0000000000022000 04:41:54 executing program 3: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x9e46, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2000000000000000, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB=',cache=mmap,version=9']) 04:41:54 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x28}}, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_mreq(r2, 0x29, 0x14, &(0x7f00000000c0)={@empty, r1}, 0x14) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000000)={@mcast2, 0x5c, r5}) 04:41:54 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x60, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}], 0x0, &(0x7f0000013800)) [ 1869.699443] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities [ 1869.711524] EXT4-fs (loop5): couldn't mount as ext2 due to feature incompatibilities VM DIAGNOSIS: 04:41:53 Registers: info registers vcpu 0 RAX=0000000000000069 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822ca1d1 RDI=ffffffff879e81e0 RBP=ffffffff879e81a0 RSP=ffff8880492ef5d8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000069 R13=0000000000000069 R14=ffffffff879e81a0 R15=dffffc0000000000 RIP=ffffffff822ca228 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fc90f615700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055c8e9326c88 CR3=0000000048b6c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffffffffffffffffffffff XMM01=44455a494c414954494e495f43455355 XMM02=ffffffffffffffff00000000000000ff XMM03=696e656420737365636341002f737973 XMM04=00000000000000000000000000000000 XMM05=000055c8e9326c80000055c8e93363a0 XMM06=000055c8e933792000000002ffffffff XMM07=00000000000000000000000000000000 XMM08=7269762f736563697665642f7379732f XMM09=00000000000000000000000000000000 XMM10=00000000000020000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=00000000000293cd RBX=0000000000000001 RCX=ffffc9000440d000 RDX=0000000000040000 RSI=ffffffff81299e01 RDI=0000000000000001 RBP=0000000000000000 RSP=ffff88804be1f448 R8 =0000000000000000 R9 =ffffffff856725cf R10=0000000000000000 R11=0000000000000001 R12=0000000000000002 R13=0000000000000002 R14=ffff88804d7dcec0 R15=0000000000000000 RIP=ffffffff81299e03 RFL=00000016 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f8164b0c700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa6a1315f78 CR3=00000000466f6000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000