l+0xb6/0x270 [ 1428.067856] ? mon_bin_get_event+0x440/0x440 [ 1428.067871] __x64_sys_ioctl+0x19a/0x210 [ 1428.067884] do_syscall_64+0x33/0x40 [ 1428.067895] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1428.067904] RIP: 0033:0x7f3f3b722b19 [ 1428.067915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1428.067922] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1428.067935] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1428.067942] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1428.067949] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1428.067956] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1428.067963] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1428.067990] CPU: 0 PID: 9087 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1428.067998] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1428.068003] Call Trace: [ 1428.068016] dump_stack+0x107/0x167 [ 1428.068033] should_fail.cold+0x5/0xa [ 1428.068053] __alloc_pages_nodemask+0x182/0x600 [ 1428.068067] ? lock_release+0x680/0x680 [ 1428.068082] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1428.068106] ? lock_downgrade+0x6d0/0x6d0 [ 1428.068139] alloc_pages_current+0x187/0x280 [ 1428.068161] get_zeroed_page+0x14/0xb0 [ 1428.068173] ? kasan_unpoison_shadow+0x33/0x50 [ 1428.068183] mon_alloc_buff+0xed/0x250 [ 1428.068207] mon_bin_ioctl+0x493/0xcc0 [ 1428.068224] ? wait_for_completion_io+0x270/0x270 [ 1428.068239] ? mon_bin_get_event+0x440/0x440 [ 1428.068262] ? selinux_file_ioctl+0xb6/0x270 [ 1428.068282] ? mon_bin_get_event+0x440/0x440 [ 1428.068299] __x64_sys_ioctl+0x19a/0x210 [ 1428.068317] do_syscall_64+0x33/0x40 [ 1428.068329] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1428.068338] RIP: 0033:0x7fceda384b19 [ 1428.068350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1428.068357] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:41:38 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 28) [ 1428.068371] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 21:41:38 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 31) [ 1428.068379] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1428.068387] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1428.068394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1428.068402] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1428.097310] FAULT_INJECTION: forcing a failure. [ 1428.097310] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1428.097325] CPU: 0 PID: 9090 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1428.097332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1428.097338] Call Trace: [ 1428.097354] dump_stack+0x107/0x167 [ 1428.097372] should_fail.cold+0x5/0xa [ 1428.097394] __alloc_pages_nodemask+0x182/0x600 [ 1428.097410] ? lock_release+0x680/0x680 [ 1428.097426] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1428.097450] ? lock_downgrade+0x6d0/0x6d0 [ 1428.097479] alloc_pages_current+0x187/0x280 [ 1428.097501] get_zeroed_page+0x14/0xb0 [ 1428.097514] ? kasan_unpoison_shadow+0x33/0x50 [ 1428.097526] mon_alloc_buff+0xed/0x250 [ 1428.097550] mon_bin_ioctl+0x493/0xcc0 [ 1428.097568] ? wait_for_completion_io+0x270/0x270 [ 1428.097584] ? mon_bin_get_event+0x440/0x440 [ 1428.097609] ? selinux_file_ioctl+0xb6/0x270 [ 1428.097634] ? mon_bin_get_event+0x440/0x440 [ 1428.097653] __x64_sys_ioctl+0x19a/0x210 [ 1428.097671] do_syscall_64+0x33/0x40 [ 1428.097684] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1428.097693] RIP: 0033:0x7f2c25c06b19 [ 1428.097706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:41:38 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 32) [ 1428.097713] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1428.097729] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1428.097737] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1428.097745] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1428.097753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1428.097761] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1428.188517] FAULT_INJECTION: forcing a failure. [ 1428.188517] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1428.188534] CPU: 0 PID: 9098 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1428.188542] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1428.188547] Call Trace: [ 1428.188567] dump_stack+0x107/0x167 [ 1428.188586] should_fail.cold+0x5/0xa [ 1428.188610] __alloc_pages_nodemask+0x182/0x600 [ 1428.188632] ? lock_release+0x680/0x680 [ 1428.188648] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1428.188672] ? lock_downgrade+0x6d0/0x6d0 [ 1428.188702] alloc_pages_current+0x187/0x280 [ 1428.188724] get_zeroed_page+0x14/0xb0 [ 1428.188738] ? kasan_unpoison_shadow+0x33/0x50 [ 1428.188751] mon_alloc_buff+0xed/0x250 [ 1428.188775] mon_bin_ioctl+0x493/0xcc0 [ 1428.188794] ? wait_for_completion_io+0x270/0x270 [ 1428.188810] ? mon_bin_get_event+0x440/0x440 [ 1428.188835] ? selinux_file_ioctl+0xb6/0x270 [ 1428.188856] ? mon_bin_get_event+0x440/0x440 [ 1428.188875] __x64_sys_ioctl+0x19a/0x210 [ 1428.188894] do_syscall_64+0x33/0x40 [ 1428.188908] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1428.188917] RIP: 0033:0x7f2c25c06b19 [ 1428.188930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1428.188938] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1428.188954] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1428.188962] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1428.188970] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1428.188977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1428.188986] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1428.212233] FAULT_INJECTION: forcing a failure. [ 1428.212233] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1428.212247] CPU: 1 PID: 9100 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1428.212253] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1428.212257] Call Trace: [ 1428.212273] dump_stack+0x107/0x167 [ 1428.212287] should_fail.cold+0x5/0xa [ 1428.212304] __alloc_pages_nodemask+0x182/0x600 [ 1428.212318] ? lock_release+0x680/0x680 [ 1428.212332] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1428.212350] ? lock_downgrade+0x6d0/0x6d0 [ 1428.212371] alloc_pages_current+0x187/0x280 [ 1428.212388] get_zeroed_page+0x14/0xb0 [ 1428.212401] ? kasan_unpoison_shadow+0x33/0x50 [ 1428.212411] mon_alloc_buff+0xed/0x250 [ 1428.212428] mon_bin_ioctl+0x493/0xcc0 [ 1428.212444] ? wait_for_completion_io+0x270/0x270 [ 1428.212457] ? mon_bin_get_event+0x440/0x440 [ 1428.212475] ? selinux_file_ioctl+0xb6/0x270 [ 1428.212491] ? mon_bin_get_event+0x440/0x440 [ 1428.212506] __x64_sys_ioctl+0x19a/0x210 [ 1428.212520] do_syscall_64+0x33/0x40 [ 1428.212532] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1428.212541] RIP: 0033:0x7fceda384b19 [ 1428.212553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1428.212560] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1428.212574] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1428.212581] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1428.212589] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1428.212596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1428.212604] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1428.304670] FAULT_INJECTION: forcing a failure. [ 1428.304670] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1428.304685] CPU: 1 PID: 9102 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1428.304693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1428.304697] Call Trace: [ 1428.304715] dump_stack+0x107/0x167 [ 1428.304729] should_fail.cold+0x5/0xa [ 1428.304747] __alloc_pages_nodemask+0x182/0x600 [ 1428.304764] ? lock_release+0x680/0x680 [ 1428.304777] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1428.304795] ? lock_downgrade+0x6d0/0x6d0 [ 1428.304815] alloc_pages_current+0x187/0x280 [ 1428.304831] get_zeroed_page+0x14/0xb0 [ 1428.304844] ? kasan_unpoison_shadow+0x33/0x50 [ 1428.304856] mon_alloc_buff+0xed/0x250 [ 1428.304872] mon_bin_ioctl+0x493/0xcc0 [ 1428.304888] ? wait_for_completion_io+0x270/0x270 [ 1428.304901] ? mon_bin_get_event+0x440/0x440 [ 1428.304920] ? selinux_file_ioctl+0xb6/0x270 [ 1428.304934] ? mon_bin_get_event+0x440/0x440 [ 1428.304953] __x64_sys_ioctl+0x19a/0x210 [ 1428.304966] do_syscall_64+0x33/0x40 [ 1428.304978] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1428.304987] RIP: 0033:0x7fceda384b19 [ 1428.304999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1428.305005] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1428.305019] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1428.305027] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1428.305034] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1428.305041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1428.305048] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:41:39 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000140), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000080)={0x0, 0x1, 0x4}) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002700)='/proc/stat\x00', 0x0, 0x0) r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) sendfile(r2, r1, &(0x7f0000000040)=0xb, 0x80000001) fchown(r2, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x9, 0x81, 0x9, 0x6, 0x0, 0x0, 0x1000, 0x9, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_config_ext={0x1, 0x9}, 0x80, 0x7, 0x2, 0x0, 0x374ec00000000, 0x8001, 0x0, 0x0, 0x3f}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) copy_file_range(r0, 0x0, r0, &(0x7f0000000200)=0x80000000000, 0x7, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r5, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2}) copy_file_range(r3, &(0x7f00000001c0)=0xac33, r4, &(0x7f0000000240)=0xffffffff, 0x20, 0x0) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e0, 0x0) close(0xffffffffffffffff) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x201, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r6, 0xc0189379, &(0x7f0000000700)=ANY=[@ANYBLOB="0000001800000062c2627593b971c426d3b4861077bf3ce6c5def5fdd299cc5c9df71095e61c0000b57ae5cc453b71662dbe2922b41edfb209abdcf12bc72880d7928b50dd2ddd560f3281c3a57fe8ba0b4890353bb88abd58df2914cf4d4cc4c2a5b0f582116dc2ae940b88f935e6ff138a32dcb5b537d514918bc8d3b60373ed7a92b622c637bb9abbfa88913b0454482f16d0e8ac5bcf8ef35e447c5ff908a0ae39257cf7f1bca7b3b2c3c7f60717c838e205f704cecf5fee27f46d1b42b99253cc96562abea2ed332f5376ad96eff22ad0cdc58fc284f5ba0f4689755a1780002cae112c2e477a55bf0f40862bc2fce6fc98bfb4", @ANYRES32, @ANYBLOB="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"]) [ 1443.514201] FAULT_INJECTION: forcing a failure. [ 1443.514201] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1443.515386] CPU: 0 PID: 9118 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1443.515965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1443.516662] Call Trace: [ 1443.516899] dump_stack+0x107/0x167 [ 1443.517218] should_fail.cold+0x5/0xa [ 1443.517559] __alloc_pages_nodemask+0x182/0x600 [ 1443.517961] ? lock_release+0x680/0x680 [ 1443.518307] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1443.518854] ? lock_downgrade+0x6d0/0x6d0 [ 1443.519232] alloc_pages_current+0x187/0x280 [ 1443.519619] get_zeroed_page+0x14/0xb0 [ 1443.519958] ? kasan_unpoison_shadow+0x33/0x50 [ 1443.520355] mon_alloc_buff+0xed/0x250 [ 1443.520707] mon_bin_ioctl+0x493/0xcc0 [ 1443.521054] ? wait_for_completion_io+0x270/0x270 [ 1443.521472] ? mon_bin_get_event+0x440/0x440 [ 1443.521869] ? selinux_file_ioctl+0xb6/0x270 [ 1443.522259] ? mon_bin_get_event+0x440/0x440 [ 1443.522666] __x64_sys_ioctl+0x19a/0x210 [ 1443.523022] do_syscall_64+0x33/0x40 [ 1443.523348] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1443.523784] RIP: 0033:0x7fceda384b19 [ 1443.524106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1443.525654] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1443.526301] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1443.526922] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1443.527527] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1443.528133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1443.528763] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1443.533632] FAULT_INJECTION: forcing a failure. [ 1443.533632] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1443.534778] CPU: 0 PID: 9127 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1443.535352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1443.536047] Call Trace: [ 1443.536281] dump_stack+0x107/0x167 [ 1443.536605] should_fail.cold+0x5/0xa [ 1443.536941] __alloc_pages_nodemask+0x182/0x600 21:41:54 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:41:54 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b4a, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:41:54 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541b, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:41:54 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 29) 21:41:54 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 27) 21:41:54 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 33) 21:41:54 executing program 0: ftruncate(0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f0000000180)={0x0, 0x200, 0xce1}) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0xfdef) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/4\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) socket$netlink(0x10, 0x3, 0x0) r2 = syz_io_uring_setup(0x25, &(0x7f0000000080)={0x0, 0x7f52}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000300), &(0x7f0000002a40)) r3 = eventfd(0x0) io_uring_register$IORING_REGISTER_EVENTFD(r2, 0x4, &(0x7f0000000140)=r3, 0x1) io_uring_enter(r2, 0x0, 0x0, 0x0, 0x0, 0x59) r4 = mq_open(&(0x7f0000005c00)='-@\x00', 0x42, 0x0, 0x0) r5 = creat(&(0x7f0000000040)='./file1\x00', 0x0) perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x8f, 0x3f, 0x1, 0x3, 0x0, 0x7f, 0x40880, 0xc, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_config_ext={0xfff, 0x1}, 0x40800, 0xe53, 0x3e6, 0x5, 0x4, 0x1, 0x8c, 0x0, 0x8, 0x0, 0x9}, 0xffffffffffffffff, 0xa, r5, 0x2) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r4, @out_args}, './file1\x00'}) fcntl$setstatus(r1, 0x4, 0x6400) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r2, 0x4018f50b, &(0x7f0000000100)={0x1, 0x0, 0x3}) write(r1, &(0x7f0000001200), 0xffffff45) 21:41:54 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b4b, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1443.537348] ? lock_release+0x680/0x680 [ 1443.537365] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1443.537390] ? lock_downgrade+0x6d0/0x6d0 [ 1443.537419] alloc_pages_current+0x187/0x280 [ 1443.537439] get_zeroed_page+0x14/0xb0 [ 1443.537452] ? kasan_unpoison_shadow+0x33/0x50 [ 1443.537463] mon_alloc_buff+0xed/0x250 [ 1443.537487] mon_bin_ioctl+0x493/0xcc0 [ 1443.537508] ? wait_for_completion_io+0x270/0x270 [ 1443.537523] ? mon_bin_get_event+0x440/0x440 [ 1443.537547] ? selinux_file_ioctl+0xb6/0x270 [ 1443.537568] ? mon_bin_get_event+0x440/0x440 [ 1443.537586] __x64_sys_ioctl+0x19a/0x210 [ 1443.537605] do_syscall_64+0x33/0x40 [ 1443.537618] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1443.537627] RIP: 0033:0x7f2c25c06b19 [ 1443.537640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1443.537648] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1443.537672] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1443.537685] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1443.537698] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 21:41:54 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 30) [ 1443.537710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1443.537723] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1443.544075] FAULT_INJECTION: forcing a failure. [ 1443.544075] name fail_page_alloc, interval 1, probability 0, space 0, times 0 21:41:54 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 28) [ 1443.544090] CPU: 1 PID: 9125 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1443.544097] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1443.544102] Call Trace: [ 1443.544120] dump_stack+0x107/0x167 [ 1443.544134] should_fail.cold+0x5/0xa [ 1443.544153] __alloc_pages_nodemask+0x182/0x600 [ 1443.544172] ? lock_release+0x680/0x680 [ 1443.544185] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1443.544203] ? lock_downgrade+0x6d0/0x6d0 [ 1443.544223] alloc_pages_current+0x187/0x280 [ 1443.544241] get_zeroed_page+0x14/0xb0 [ 1443.544254] ? kasan_unpoison_shadow+0x33/0x50 [ 1443.544266] mon_alloc_buff+0xed/0x250 [ 1443.544283] mon_bin_ioctl+0x493/0xcc0 [ 1443.544297] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 21:41:54 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 34) [ 1443.544310] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1443.544321] ? trace_hardirqs_on+0x5b/0x180 [ 1443.544333] ? mon_bin_get_event+0x440/0x440 [ 1443.544344] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1443.544358] ? mon_bin_get_event+0x440/0x440 [ 1443.544376] ? mon_bin_get_event+0x440/0x440 [ 1443.544392] __x64_sys_ioctl+0x19a/0x210 [ 1443.544406] do_syscall_64+0x33/0x40 [ 1443.544418] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1443.544427] RIP: 0033:0x7f3f3b722b19 [ 1443.544439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1443.544446] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1443.544460] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1443.544467] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1443.544474] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1443.544482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1443.544489] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1443.625235] FAULT_INJECTION: forcing a failure. [ 1443.625235] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1443.625250] CPU: 1 PID: 9134 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1443.625257] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1443.625261] Call Trace: [ 1443.625276] dump_stack+0x107/0x167 [ 1443.625290] should_fail.cold+0x5/0xa [ 1443.625307] __alloc_pages_nodemask+0x182/0x600 [ 1443.625321] ? lock_release+0x680/0x680 [ 1443.625334] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1443.625351] ? lock_downgrade+0x6d0/0x6d0 [ 1443.625371] alloc_pages_current+0x187/0x280 [ 1443.625388] get_zeroed_page+0x14/0xb0 [ 1443.625400] ? kasan_unpoison_shadow+0x33/0x50 [ 1443.625411] mon_alloc_buff+0xed/0x250 [ 1443.625429] mon_bin_ioctl+0x493/0xcc0 [ 1443.625445] ? wait_for_completion_io+0x270/0x270 [ 1443.625457] ? mon_bin_get_event+0x440/0x440 [ 1443.625476] ? selinux_file_ioctl+0xb6/0x270 [ 1443.625491] ? mon_bin_get_event+0x440/0x440 [ 1443.625506] __x64_sys_ioctl+0x19a/0x210 [ 1443.625519] do_syscall_64+0x33/0x40 [ 1443.625531] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1443.625539] RIP: 0033:0x7f3f3b722b19 [ 1443.625551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1443.625561] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1443.625575] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1443.625582] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1443.625589] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1443.625596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1443.625603] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1443.636491] FAULT_INJECTION: forcing a failure. [ 1443.636491] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1443.641808] FAULT_INJECTION: forcing a failure. [ 1443.641808] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1443.642232] CPU: 0 PID: 9139 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1443.668182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1443.668882] Call Trace: [ 1443.669118] dump_stack+0x107/0x167 [ 1443.669441] should_fail.cold+0x5/0xa [ 1443.669781] __alloc_pages_nodemask+0x182/0x600 [ 1443.670185] ? lock_release+0x680/0x680 [ 1443.670561] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1443.671084] ? lock_downgrade+0x6d0/0x6d0 [ 1443.671456] alloc_pages_current+0x187/0x280 [ 1443.671840] get_zeroed_page+0x14/0xb0 [ 1443.672174] ? kasan_unpoison_shadow+0x33/0x50 [ 1443.672569] mon_alloc_buff+0xed/0x250 [ 1443.672915] mon_bin_ioctl+0x493/0xcc0 [ 1443.673256] ? wait_for_completion_io+0x270/0x270 [ 1443.673670] ? mon_bin_get_event+0x440/0x440 [ 1443.674059] ? selinux_file_ioctl+0xb6/0x270 [ 1443.674455] ? mon_bin_get_event+0x440/0x440 [ 1443.674840] __x64_sys_ioctl+0x19a/0x210 [ 1443.675194] do_syscall_64+0x33/0x40 [ 1443.675515] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1443.675957] RIP: 0033:0x7fceda384b19 [ 1443.676279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1443.677821] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1443.678485] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1443.679096] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1443.679699] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1443.680301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1443.680905] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1443.681545] CPU: 1 PID: 9138 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1443.682136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1443.682846] Call Trace: [ 1443.683071] dump_stack+0x107/0x167 [ 1443.683380] should_fail.cold+0x5/0xa [ 1443.683705] __alloc_pages_nodemask+0x182/0x600 [ 1443.684096] ? lock_release+0x680/0x680 [ 1443.684432] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1443.684939] ? lock_downgrade+0x6d0/0x6d0 [ 1443.685296] alloc_pages_current+0x187/0x280 [ 1443.685670] get_zeroed_page+0x14/0xb0 [ 1443.685999] ? kasan_unpoison_shadow+0x33/0x50 [ 1443.686388] mon_alloc_buff+0xed/0x250 [ 1443.686743] mon_bin_ioctl+0x493/0xcc0 [ 1443.687072] ? wait_for_completion_io+0x270/0x270 [ 1443.687475] ? mon_bin_get_event+0x440/0x440 [ 1443.687847] ? selinux_file_ioctl+0xb6/0x270 [ 1443.688217] ? mon_bin_get_event+0x440/0x440 [ 1443.688588] __x64_sys_ioctl+0x19a/0x210 [ 1443.688929] do_syscall_64+0x33/0x40 [ 1443.689241] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1443.689666] RIP: 0033:0x7f2c25c06b19 [ 1443.689978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1443.691517] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1443.692151] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1443.692744] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1443.693337] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1443.693933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1443.694545] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 21:41:54 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 29) [ 1443.745275] FAULT_INJECTION: forcing a failure. [ 1443.745275] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1443.746362] CPU: 1 PID: 9142 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1443.746957] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1443.747655] Call Trace: [ 1443.747884] dump_stack+0x107/0x167 [ 1443.748199] should_fail.cold+0x5/0xa [ 1443.748533] __alloc_pages_nodemask+0x182/0x600 [ 1443.748934] ? lock_release+0x680/0x680 [ 1443.749282] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1443.749827] ? lock_downgrade+0x6d0/0x6d0 [ 1443.750200] alloc_pages_current+0x187/0x280 [ 1443.750606] get_zeroed_page+0x14/0xb0 [ 1443.750936] ? kasan_unpoison_shadow+0x33/0x50 [ 1443.751319] mon_alloc_buff+0xed/0x250 [ 1443.751652] mon_bin_ioctl+0x493/0xcc0 [ 1443.751988] ? wait_for_completion_io+0x270/0x270 [ 1443.752393] ? mon_bin_get_event+0x440/0x440 [ 1443.752769] ? selinux_file_ioctl+0xb6/0x270 [ 1443.753144] ? mon_bin_get_event+0x440/0x440 [ 1443.753518] __x64_sys_ioctl+0x19a/0x210 [ 1443.753862] do_syscall_64+0x33/0x40 [ 1443.754176] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1443.759151] RIP: 0033:0x7f3f3b722b19 [ 1443.759470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1443.761010] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1443.761653] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1443.762256] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1443.762883] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1443.763487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1443.764089] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:41:54 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b4c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:09 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:09 executing program 0: r0 = dup(0xffffffffffffffff) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000040), &(0x7f0000000080)={'L-', 0x3}, 0x16, 0x2) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)={0x0, 0x0}) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x460000) fallocate(r2, 0x2, 0xffffffffffffff26, 0x8) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa27, 0x0, @perf_bp={&(0x7f0000000140), 0xf}}, r1, 0x0, r3, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) preadv(r4, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x0, 0x0) 21:42:09 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b4d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:09 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 35) 21:42:09 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1458.543413] FAULT_INJECTION: forcing a failure. 21:42:09 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b4a, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 30) [ 1458.543413] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1458.551310] CPU: 0 PID: 9160 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1458.551935] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1458.552687] Call Trace: [ 1458.552946] dump_stack+0x107/0x167 [ 1458.553296] should_fail.cold+0x5/0xa [ 1458.558920] __alloc_pages_nodemask+0x182/0x600 [ 1458.559360] ? lock_release+0x680/0x680 [ 1458.559740] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1458.560279] ? lock_downgrade+0x6d0/0x6d0 [ 1458.560662] alloc_pages_current+0x187/0x280 [ 1458.561088] get_zeroed_page+0x14/0xb0 [ 1458.561457] ? kasan_unpoison_shadow+0x33/0x50 [ 1458.561886] mon_alloc_buff+0xed/0x250 21:42:09 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 31) [ 1458.562268] mon_bin_ioctl+0x493/0xcc0 [ 1458.562654] ? wait_for_completion_io+0x270/0x270 [ 1458.563107] ? mon_bin_get_event+0x440/0x440 [ 1458.563494] ? selinux_file_ioctl+0xb6/0x270 [ 1458.563884] ? mon_bin_get_event+0x440/0x440 [ 1458.564290] __x64_sys_ioctl+0x19a/0x210 [ 1458.564682] do_syscall_64+0x33/0x40 [ 1458.565046] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1458.565059] RIP: 0033:0x7fceda384b19 [ 1458.565074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1458.565084] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1458.565102] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1458.565111] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1458.565119] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1458.565127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1458.565135] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1458.576339] FAULT_INJECTION: forcing a failure. [ 1458.576339] name fail_page_alloc, interval 1, probability 0, space 0, times 0 21:42:09 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 31) [ 1458.576353] CPU: 1 PID: 9169 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1458.576361] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1458.576365] Call Trace: [ 1458.576379] dump_stack+0x107/0x167 [ 1458.576394] should_fail.cold+0x5/0xa [ 1458.576411] __alloc_pages_nodemask+0x182/0x600 [ 1458.576424] ? lock_release+0x680/0x680 [ 1458.576439] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1458.576458] ? lock_downgrade+0x6d0/0x6d0 [ 1458.576479] alloc_pages_current+0x187/0x280 [ 1458.576497] get_zeroed_page+0x14/0xb0 [ 1458.576509] ? kasan_unpoison_shadow+0x33/0x50 [ 1458.576521] mon_alloc_buff+0xed/0x250 [ 1458.576539] mon_bin_ioctl+0x493/0xcc0 [ 1458.576556] ? wait_for_completion_io+0x270/0x270 [ 1458.576569] ? mon_bin_get_event+0x440/0x440 [ 1458.576589] ? selinux_file_ioctl+0xb6/0x270 [ 1458.576605] ? mon_bin_get_event+0x440/0x440 [ 1458.576627] __x64_sys_ioctl+0x19a/0x210 [ 1458.576644] do_syscall_64+0x33/0x40 [ 1458.576659] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1458.576669] RIP: 0033:0x7f2c25c06b19 [ 1458.576683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1458.576691] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1458.576705] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1458.576713] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1458.576721] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1458.576730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1458.576738] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1458.578256] FAULT_INJECTION: forcing a failure. [ 1458.578256] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1458.578272] CPU: 0 PID: 9166 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1458.578283] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1458.578289] Call Trace: [ 1458.578306] dump_stack+0x107/0x167 [ 1458.578329] should_fail.cold+0x5/0xa [ 1458.578356] __alloc_pages_nodemask+0x182/0x600 [ 1458.578374] ? lock_release+0x680/0x680 [ 1458.578395] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1458.578428] ? lock_downgrade+0x6d0/0x6d0 [ 1458.578467] alloc_pages_current+0x187/0x280 [ 1458.578494] get_zeroed_page+0x14/0xb0 [ 1458.578510] ? kasan_unpoison_shadow+0x33/0x50 [ 1458.578522] mon_alloc_buff+0xed/0x250 [ 1458.578564] mon_bin_ioctl+0x493/0xcc0 [ 1458.578588] ? wait_for_completion_io+0x270/0x270 [ 1458.578608] ? mon_bin_get_event+0x440/0x440 [ 1458.578641] ? selinux_file_ioctl+0xb6/0x270 [ 1458.578672] ? mon_bin_get_event+0x440/0x440 [ 1458.578698] __x64_sys_ioctl+0x19a/0x210 [ 1458.578723] do_syscall_64+0x33/0x40 [ 1458.578740] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1458.578751] RIP: 0033:0x7f3f3b722b19 [ 1458.578767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1458.578778] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1458.578798] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1458.578809] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1458.578820] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1458.578831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1458.578843] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1458.658842] FAULT_INJECTION: forcing a failure. [ 1458.658842] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1458.658861] CPU: 0 PID: 9175 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1458.658872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1458.658879] Call Trace: [ 1458.658902] dump_stack+0x107/0x167 [ 1458.658928] should_fail.cold+0x5/0xa [ 1458.688811] __alloc_pages_nodemask+0x182/0x600 [ 1458.689259] ? lock_release+0x680/0x680 [ 1458.689641] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1458.690219] ? lock_downgrade+0x6d0/0x6d0 [ 1458.690640] alloc_pages_current+0x187/0x280 [ 1458.691025] get_zeroed_page+0x14/0xb0 [ 1458.691391] ? kasan_unpoison_shadow+0x33/0x50 [ 1458.691821] mon_alloc_buff+0xed/0x250 [ 1458.692176] mon_bin_ioctl+0x493/0xcc0 [ 1458.692560] ? wait_for_completion_io+0x270/0x270 [ 1458.692990] ? mon_bin_get_event+0x440/0x440 [ 1458.693386] ? selinux_file_ioctl+0xb6/0x270 [ 1458.693796] ? mon_bin_get_event+0x440/0x440 [ 1458.694217] __x64_sys_ioctl+0x19a/0x210 [ 1458.694610] do_syscall_64+0x33/0x40 [ 1458.694943] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1458.695376] RIP: 0033:0x7f3f3b722b19 [ 1458.695704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1458.697295] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1458.697946] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1458.698608] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1458.699232] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1458.699835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1458.700440] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:42:25 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 36) 21:42:25 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 32) 21:42:25 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:25 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 32) 21:42:25 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x40000, 0x0) quotactl(0x5, &(0x7f0000000300)='./file0\x00', 0xee00, &(0x7f0000000340)="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") r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40005, 0x5}, 0xa30, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open(&(0x7f00000002c0)='./file0\x00', 0x2800, 0x80) syz_io_uring_submit(0x0, 0x0, 0x0, 0x3) write(r3, &(0x7f0000000240)="01", 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10000, 0x0, {0x1}}, 0x5) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000001, 0x10, r1, 0x0) r5 = syz_io_uring_complete(r4) write$P9_RREADLINK(r0, &(0x7f0000000140)=ANY=[], 0x10) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000001340)) r6 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fstatfs(r6, &(0x7f00000000c0)=""/65) sendfile(r0, r2, 0x0, 0x20d315) 21:42:25 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:25 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b4a, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:25 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b4e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1475.343511] FAULT_INJECTION: forcing a failure. [ 1475.343511] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1475.344958] CPU: 0 PID: 9186 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1475.345605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.346389] Call Trace: [ 1475.346627] dump_stack+0x107/0x167 [ 1475.346974] should_fail.cold+0x5/0xa [ 1475.347317] __alloc_pages_nodemask+0x182/0x600 [ 1475.347537] FAULT_INJECTION: forcing a failure. [ 1475.347537] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1475.347720] ? lock_release+0x680/0x680 [ 1475.347738] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1475.347764] ? lock_downgrade+0x6d0/0x6d0 [ 1475.349972] alloc_pages_current+0x187/0x280 [ 1475.350365] get_zeroed_page+0x14/0xb0 [ 1475.350707] ? kasan_unpoison_shadow+0x33/0x50 [ 1475.355117] mon_alloc_buff+0xed/0x250 [ 1475.355464] mon_bin_ioctl+0x493/0xcc0 [ 1475.355810] ? wait_for_completion_io+0x270/0x270 [ 1475.356225] ? mon_bin_get_event+0x440/0x440 [ 1475.356613] ? selinux_file_ioctl+0xb6/0x270 [ 1475.356997] ? mon_bin_get_event+0x440/0x440 [ 1475.357381] __x64_sys_ioctl+0x19a/0x210 [ 1475.357736] do_syscall_64+0x33/0x40 [ 1475.358057] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1475.358493] RIP: 0033:0x7f2c25c06b19 [ 1475.358830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1475.360383] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1475.361037] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1475.361649] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1475.362253] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1475.362876] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1475.363481] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1475.364127] CPU: 1 PID: 9195 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1475.364716] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.365414] Call Trace: [ 1475.365648] dump_stack+0x107/0x167 [ 1475.365958] should_fail.cold+0x5/0xa [ 1475.366302] __alloc_pages_nodemask+0x182/0x600 [ 1475.366705] ? lock_release+0x680/0x680 [ 1475.367071] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1475.367598] ? lock_downgrade+0x6d0/0x6d0 [ 1475.367957] alloc_pages_current+0x187/0x280 [ 1475.374992] get_zeroed_page+0x14/0xb0 [ 1475.375005] ? kasan_unpoison_shadow+0x33/0x50 [ 1475.375019] mon_alloc_buff+0xed/0x250 [ 1475.375036] mon_bin_ioctl+0x493/0xcc0 21:42:26 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 37) [ 1475.375053] ? wait_for_completion_io+0x270/0x270 [ 1475.375065] ? mon_bin_get_event+0x440/0x440 [ 1475.375084] ? selinux_file_ioctl+0xb6/0x270 [ 1475.375098] ? mon_bin_get_event+0x440/0x440 [ 1475.375114] __x64_sys_ioctl+0x19a/0x210 [ 1475.375127] do_syscall_64+0x33/0x40 [ 1475.375139] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1475.375147] RIP: 0033:0x7f3f3b722b19 21:42:26 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1475.375160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1475.375166] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1475.375180] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1475.375188] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1475.375195] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1475.375202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1475.375210] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1475.378245] FAULT_INJECTION: forcing a failure. [ 1475.378245] name fail_page_alloc, interval 1, probability 0, space 0, times 0 21:42:26 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 33) [ 1475.378277] CPU: 1 PID: 9192 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1475.378284] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.378288] Call Trace: [ 1475.378300] dump_stack+0x107/0x167 [ 1475.378314] should_fail.cold+0x5/0xa [ 1475.378329] __alloc_pages_nodemask+0x182/0x600 [ 1475.378342] ? lock_release+0x680/0x680 [ 1475.378356] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 21:42:26 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 33) [ 1475.378373] ? lock_downgrade+0x6d0/0x6d0 [ 1475.378393] alloc_pages_current+0x187/0x280 [ 1475.378409] get_zeroed_page+0x14/0xb0 [ 1475.378421] ? kasan_unpoison_shadow+0x33/0x50 [ 1475.378431] mon_alloc_buff+0xed/0x250 [ 1475.378448] mon_bin_ioctl+0x493/0xcc0 [ 1475.378463] ? wait_for_completion_io+0x270/0x270 [ 1475.378476] ? mon_bin_get_event+0x440/0x440 [ 1475.378492] ? selinux_file_ioctl+0xb6/0x270 [ 1475.378508] ? mon_bin_get_event+0x440/0x440 [ 1475.378523] __x64_sys_ioctl+0x19a/0x210 [ 1475.378536] do_syscall_64+0x33/0x40 [ 1475.378548] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1475.378556] RIP: 0033:0x7fceda384b19 [ 1475.378568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1475.378575] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:42:26 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 38) [ 1475.378588] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1475.378599] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1475.378606] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1475.378614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1475.378621] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1475.464220] FAULT_INJECTION: forcing a failure. [ 1475.464220] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1475.464235] CPU: 1 PID: 9201 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1475.464242] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.464246] Call Trace: [ 1475.464260] dump_stack+0x107/0x167 [ 1475.464274] should_fail.cold+0x5/0xa [ 1475.464291] __alloc_pages_nodemask+0x182/0x600 [ 1475.464305] ? lock_release+0x680/0x680 [ 1475.464318] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1475.464336] ? lock_downgrade+0x6d0/0x6d0 [ 1475.464356] alloc_pages_current+0x187/0x280 [ 1475.464373] get_zeroed_page+0x14/0xb0 [ 1475.464385] ? kasan_unpoison_shadow+0x33/0x50 [ 1475.464396] mon_alloc_buff+0xed/0x250 [ 1475.464414] mon_bin_ioctl+0x493/0xcc0 [ 1475.464433] ? wait_for_completion_io+0x270/0x270 [ 1475.464446] ? mon_bin_get_event+0x440/0x440 [ 1475.464464] ? selinux_file_ioctl+0xb6/0x270 [ 1475.464480] ? mon_bin_get_event+0x440/0x440 [ 1475.464494] __x64_sys_ioctl+0x19a/0x210 [ 1475.464508] do_syscall_64+0x33/0x40 [ 1475.464519] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1475.464527] RIP: 0033:0x7fceda384b19 [ 1475.464539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1475.464546] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1475.464559] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1475.464567] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1475.464574] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1475.464582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1475.464589] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1475.478923] FAULT_INJECTION: forcing a failure. [ 1475.478923] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1475.478936] CPU: 1 PID: 9206 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1475.478943] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.478947] Call Trace: [ 1475.478958] dump_stack+0x107/0x167 [ 1475.478972] should_fail.cold+0x5/0xa [ 1475.478987] __alloc_pages_nodemask+0x182/0x600 [ 1475.478999] ? lock_release+0x680/0x680 [ 1475.479013] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1475.479030] ? lock_downgrade+0x6d0/0x6d0 [ 1475.479051] alloc_pages_current+0x187/0x280 [ 1475.479066] get_zeroed_page+0x14/0xb0 [ 1475.479078] ? kasan_unpoison_shadow+0x33/0x50 [ 1475.479088] mon_alloc_buff+0xed/0x250 [ 1475.479105] mon_bin_ioctl+0x493/0xcc0 [ 1475.479120] ? wait_for_completion_io+0x270/0x270 [ 1475.479133] ? mon_bin_get_event+0x440/0x440 [ 1475.479150] ? selinux_file_ioctl+0xb6/0x270 [ 1475.479165] ? mon_bin_get_event+0x440/0x440 [ 1475.479179] __x64_sys_ioctl+0x19a/0x210 [ 1475.479193] do_syscall_64+0x33/0x40 [ 1475.479205] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1475.479213] RIP: 0033:0x7f3f3b722b19 [ 1475.479224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1475.479231] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1475.479244] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1475.479252] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1475.479266] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1475.479273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1475.479280] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1475.536427] FAULT_INJECTION: forcing a failure. [ 1475.536427] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1475.536445] CPU: 0 PID: 9211 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1475.536453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.536459] Call Trace: [ 1475.536481] dump_stack+0x107/0x167 [ 1475.536501] should_fail.cold+0x5/0xa [ 1475.536526] __alloc_pages_nodemask+0x182/0x600 [ 1475.536546] ? lock_release+0x680/0x680 [ 1475.536562] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1475.536587] ? lock_downgrade+0x6d0/0x6d0 [ 1475.536623] alloc_pages_current+0x187/0x280 [ 1475.536645] get_zeroed_page+0x14/0xb0 [ 1475.536660] ? kasan_unpoison_shadow+0x33/0x50 [ 1475.536674] mon_alloc_buff+0xed/0x250 [ 1475.536699] mon_bin_ioctl+0x493/0xcc0 [ 1475.536720] ? wait_for_completion_io+0x270/0x270 [ 1475.536736] ? mon_bin_get_event+0x440/0x440 [ 1475.536768] ? selinux_file_ioctl+0xb6/0x270 [ 1475.536797] ? mon_bin_get_event+0x440/0x440 [ 1475.536832] __x64_sys_ioctl+0x19a/0x210 [ 1475.536868] do_syscall_64+0x33/0x40 [ 1475.536889] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1475.536902] RIP: 0033:0x7f2c25c06b19 [ 1475.536930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1475.536939] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1475.536960] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1475.536970] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1475.536984] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1475.536996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1475.537015] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1475.546552] FAULT_INJECTION: forcing a failure. [ 1475.546552] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1475.546569] CPU: 1 PID: 9214 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1475.546577] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1475.546581] Call Trace: [ 1475.546595] dump_stack+0x107/0x167 [ 1475.546614] should_fail.cold+0x5/0xa [ 1475.546631] __alloc_pages_nodemask+0x182/0x600 [ 1475.546647] ? lock_release+0x680/0x680 [ 1475.546660] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1475.546677] ? lock_downgrade+0x6d0/0x6d0 [ 1475.546697] alloc_pages_current+0x187/0x280 [ 1475.546713] get_zeroed_page+0x14/0xb0 [ 1475.546733] ? kasan_unpoison_shadow+0x33/0x50 [ 1475.546744] mon_alloc_buff+0xed/0x250 [ 1475.546761] mon_bin_ioctl+0x493/0xcc0 [ 1475.546775] ? wait_for_completion_io+0x270/0x270 [ 1475.546788] ? mon_bin_get_event+0x440/0x440 [ 1475.546806] ? selinux_file_ioctl+0xb6/0x270 [ 1475.546821] ? mon_bin_get_event+0x440/0x440 [ 1475.546835] __x64_sys_ioctl+0x19a/0x210 [ 1475.546848] do_syscall_64+0x33/0x40 [ 1475.546860] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1475.546868] RIP: 0033:0x7fceda384b19 [ 1475.546879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1475.546886] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1475.546899] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1475.546906] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1475.546913] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1475.546920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1475.546927] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:42:41 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 34) 21:42:41 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c5881873c009f210c000000000000000a000000040000001400010000000000000006000000fff100000000c402001a00"], 0x2c}}, 0x0) 21:42:41 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5421, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:41 executing program 0: io_setup(0x7, &(0x7f0000000040)=0x0) io_setup(0x1535, &(0x7f0000000200)=0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SNDRV_TIMER_IOCTL_INFO(r2, 0x80e85411, &(0x7f0000000080)=""/43) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r4, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2}) recvmmsg$unix(0xffffffffffffffff, &(0x7f00000007c0)=[{{&(0x7f0000000380)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000400)=""/147, 0x93}, {&(0x7f00000004c0)=""/118, 0x76}, {&(0x7f0000000540)=""/63, 0x3f}, {&(0x7f0000000580)=""/21, 0x15}], 0x4, &(0x7f0000000600)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000000640)=@abs, 0x6e, &(0x7f0000000740)=[{&(0x7f00000006c0)=""/104, 0x68}], 0x1, &(0x7f0000000780)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}], 0x2, 0x60000001, &(0x7f0000000840)) io_submit(r1, 0x2, &(0x7f0000000900)=[&(0x7f0000000340)={0x0, 0x0, 0x0, 0x13, 0x5, r2, &(0x7f0000000240)="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", 0xff, 0x0, 0x0, 0x1, r3}, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x7, 0x7, r5, &(0x7f0000000880)="e4248cb6afd5090d71eff9c823668af1c7478c0db0d1705c317fcd8df82cbf886f98d0c57e9ae296e3100b8dcc35be55af8644", 0x33, 0x20, 0x0, 0x2}]) r6 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r6, 0x400, 0x1) io_submit(r0, 0x1, &(0x7f00000001c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x8, 0x4, r6, &(0x7f0000000080)="3784be39cac24986eb339678cc35f6789edcfe8a833c70b75a2fbe0864bd591b2bad5df08e30b6217615be59208fde01764b4ea7f45c552295ae71ef6b3a79d7a3ae79eb87c29068d2285de1bc1c653b2dd21db6c7a2bfa75ca9238021e5daa8ebf87b2236f006c28f07aedad027b3144e515030ef6ef91e555752a2dbf9d300bd93225a4f111158db1fa6077f3ed949f3127054ce85f1f24f62c8a1d3a64fff92d9ff157a9ca805e60144186fec0d9864a7040f709dc17254ee5ba1cb02916af50c0d584a", 0xc5, 0x8, 0x0, 0x3}]) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010102, @local}, @echo_reply={0x3}}}}}, 0x0) 21:42:41 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 39) 21:42:41 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 34) 21:42:41 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b52, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:41 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1490.764013] FAULT_INJECTION: forcing a failure. [ 1490.764013] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1490.765054] CPU: 0 PID: 9228 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1490.765637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1490.766333] Call Trace: [ 1490.766568] dump_stack+0x107/0x167 [ 1490.774454] FAULT_INJECTION: forcing a failure. [ 1490.774454] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1490.782407] should_fail.cold+0x5/0xa [ 1490.782758] __alloc_pages_nodemask+0x182/0x600 [ 1490.783182] ? lock_release+0x680/0x680 [ 1490.783525] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1490.784039] ? lock_downgrade+0x6d0/0x6d0 [ 1490.784409] alloc_pages_current+0x187/0x280 [ 1490.784793] get_zeroed_page+0x14/0xb0 [ 1490.785127] ? kasan_unpoison_shadow+0x33/0x50 [ 1490.785517] mon_alloc_buff+0xed/0x250 [ 1490.785862] mon_bin_ioctl+0x493/0xcc0 [ 1490.786202] ? wait_for_completion_io+0x270/0x270 [ 1490.786613] ? mon_bin_get_event+0x440/0x440 [ 1490.787058] ? selinux_file_ioctl+0xb6/0x270 [ 1490.787444] ? mon_bin_get_event+0x440/0x440 [ 1490.787831] __x64_sys_ioctl+0x19a/0x210 [ 1490.788186] do_syscall_64+0x33/0x40 [ 1490.788513] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1490.788950] RIP: 0033:0x7fceda384b19 [ 1490.789272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1490.790797] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1490.795467] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1490.796066] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1490.796665] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1490.797259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1490.797855] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1490.798488] CPU: 1 PID: 9233 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1490.799131] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1490.799863] Call Trace: [ 1490.800109] dump_stack+0x107/0x167 [ 1490.800449] should_fail.cold+0x5/0xa [ 1490.800805] __alloc_pages_nodemask+0x182/0x600 [ 1490.801231] ? lock_release+0x680/0x680 [ 1490.801605] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1490.802171] ? lock_downgrade+0x6d0/0x6d0 [ 1490.802565] alloc_pages_current+0x187/0x280 [ 1490.802998] get_zeroed_page+0x14/0xb0 [ 1490.803367] ? kasan_unpoison_shadow+0x33/0x50 [ 1490.803788] mon_alloc_buff+0xed/0x250 [ 1490.804167] mon_bin_ioctl+0x493/0xcc0 [ 1490.804530] ? wait_for_completion_io+0x270/0x270 [ 1490.804978] ? mon_bin_get_event+0x440/0x440 [ 1490.805395] ? selinux_file_ioctl+0xb6/0x270 [ 1490.805804] ? mon_bin_get_event+0x440/0x440 [ 1490.806218] __x64_sys_ioctl+0x19a/0x210 [ 1490.806595] do_syscall_64+0x33/0x40 [ 1490.806952] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1490.807420] RIP: 0033:0x7f2c25c06b19 [ 1490.807765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1490.809375] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1490.810067] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1490.810700] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1490.811345] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1490.811991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1490.812630] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1490.814458] FAULT_INJECTION: forcing a failure. [ 1490.814458] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1490.815687] CPU: 0 PID: 9218 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1490.816305] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1490.817061] Call Trace: [ 1490.817317] dump_stack+0x107/0x167 [ 1490.817670] should_fail.cold+0x5/0xa [ 1490.818042] __alloc_pages_nodemask+0x182/0x600 [ 1490.818477] ? lock_release+0x680/0x680 [ 1490.818859] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1490.823451] ? lock_downgrade+0x6d0/0x6d0 [ 1490.823861] alloc_pages_current+0x187/0x280 [ 1490.824283] get_zeroed_page+0x14/0xb0 [ 1490.824648] ? kasan_unpoison_shadow+0x33/0x50 [ 1490.825073] mon_alloc_buff+0xed/0x250 [ 1490.825457] mon_bin_ioctl+0x493/0xcc0 [ 1490.825834] ? wait_for_completion_io+0x270/0x270 [ 1490.826294] ? mon_bin_get_event+0x440/0x440 [ 1490.826722] ? selinux_file_ioctl+0xb6/0x270 [ 1490.827163] ? mon_bin_get_event+0x440/0x440 [ 1490.827584] __x64_sys_ioctl+0x19a/0x210 [ 1490.827987] do_syscall_64+0x33/0x40 [ 1490.828341] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1490.828822] RIP: 0033:0x7f3f3b722b19 [ 1490.829175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1490.830779] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1490.831491] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1490.832148] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1490.832796] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1490.833452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1490.834103] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:42:41 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, 0x0) 21:42:41 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5422, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:41 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 40) 21:42:41 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b62, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:41 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 35) [ 1490.977912] FAULT_INJECTION: forcing a failure. [ 1490.977912] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1490.979078] CPU: 0 PID: 9247 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1490.979509] FAULT_INJECTION: forcing a failure. [ 1490.979509] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1490.979689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1490.979696] Call Trace: [ 1490.979721] dump_stack+0x107/0x167 [ 1490.981898] should_fail.cold+0x5/0xa [ 1490.982242] __alloc_pages_nodemask+0x182/0x600 [ 1490.982650] ? lock_release+0x680/0x680 [ 1490.983014] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1490.983542] ? lock_downgrade+0x6d0/0x6d0 [ 1490.983925] alloc_pages_current+0x187/0x280 [ 1490.984316] get_zeroed_page+0x14/0xb0 [ 1490.984659] ? kasan_unpoison_shadow+0x33/0x50 [ 1490.985053] mon_alloc_buff+0xed/0x250 [ 1490.985405] mon_bin_ioctl+0x493/0xcc0 [ 1490.985754] ? wait_for_completion_io+0x270/0x270 [ 1490.986173] ? mon_bin_get_event+0x440/0x440 [ 1490.986569] ? selinux_file_ioctl+0xb6/0x270 [ 1490.986972] ? mon_bin_get_event+0x440/0x440 [ 1490.987366] __x64_sys_ioctl+0x19a/0x210 [ 1490.987730] do_syscall_64+0x33/0x40 [ 1490.988057] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1490.988498] RIP: 0033:0x7fceda384b19 [ 1490.988827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1490.990373] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1490.991040] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1490.991649] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1490.992254] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1490.992860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1490.993467] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1490.994115] CPU: 1 PID: 9246 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1490.994742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1490.995502] Call Trace: [ 1490.995755] dump_stack+0x107/0x167 [ 1490.996101] should_fail.cold+0x5/0xa [ 1490.996463] __alloc_pages_nodemask+0x182/0x600 [ 1490.996899] ? lock_release+0x680/0x680 [ 1490.997276] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1490.997839] ? lock_downgrade+0x6d0/0x6d0 [ 1490.998239] alloc_pages_current+0x187/0x280 [ 1490.998653] get_zeroed_page+0x14/0xb0 [ 1490.999035] ? kasan_unpoison_shadow+0x33/0x50 [ 1490.999458] mon_alloc_buff+0xed/0x250 [ 1490.999829] mon_bin_ioctl+0x493/0xcc0 [ 1491.000199] ? wait_for_completion_io+0x270/0x270 [ 1491.000649] ? mon_bin_get_event+0x440/0x440 [ 1491.001067] ? selinux_file_ioctl+0xb6/0x270 [ 1491.001485] ? mon_bin_get_event+0x440/0x440 [ 1491.001901] __x64_sys_ioctl+0x19a/0x210 21:42:41 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, &(0x7f00000001c0)='>') ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0) mount$cgroup(0x0, &(0x7f0000000180)='./file1\x00', 0x0, 0x60092, &(0x7f0000000440)=ANY=[@ANYRESDEC=0x0, @ANYBLOB="ea8d6d61636b66732061743d282c00"]) mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x1820, &(0x7f0000000240)={[{@subsystem='cpuacct'}, {@xattr}, {@xattr}, {@cpuset_v2_mode}], [{@seclabel}, {@uid_eq}, {@subj_user={'subj_user', 0x3d, 'smackfshat'}}, {@context={'context', 0x3d, 'sysadm_u'}}]}) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000500), 0x509082, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000080)='cpuacct') r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r2, 0x40605346, &(0x7f0000000240)={0x0, 0x0, {0x1, 0x0, 0x0, 0x0, 0xffffffff}}) r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='ns\x00') ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0x0) ioctl$PERF_EVENT_IOC_RESET(r2, 0x2403, 0x8) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_IO(r4, 0x127f, &(0x7f00000003c0)={0xe00, 0x0, 0x0, 0x0, @buffer={0x300, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/asound/seq/clients\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_STATX={0x15, 0x4, 0x0, r6, &(0x7f00000002c0), &(0x7f0000000480)='./file0\x00', 0x4, 0x6000, 0x1}, 0x7fff) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x101) fcntl$dupfd(r5, 0x0, r5) 21:42:41 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 35) [ 1491.001920] do_syscall_64+0x33/0x40 [ 1491.001935] entry_SYSCALL_64_after_hwframe+0x67/0xd1 21:42:41 executing program 6: r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x7) perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x1, 0xf7, 0x40, 0x3, 0x0, 0x0, 0x1031, 0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x9, 0x9}, 0xa000, 0x400, 0x1, 0x9, 0x8, 0x80000000, 0x6, 0x0, 0x3, 0x0, 0x198}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0x0) ioctl$KDGKBLED(r1, 0x4b64, &(0x7f0000000440)) r3 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, r2) r4 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x1}]}) dup(r0) keyctl$KEYCTL_MOVE(0x1e, r4, 0xfffffffffffffffc, r3, 0x0) r5 = add_key$fscrypt_v1(0x0, 0x0, &(0x7f0000000440)={0x0, "9b55f610ffe7b9856842eb69443042b20caac33d7dda6ec6986b177fa13c2bd2c68577ea852c8bb47f31ee549b6a921e231ef07ee0f7fca620564faeeeafa440"}, 0x48, 0x0) r6 = add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r5) r7 = add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, r6) keyctl$revoke(0x3, r7) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') r8 = request_key(&(0x7f0000000180)='trusted\x00', &(0x7f0000000340)={'syz', 0x0}, &(0x7f0000000380)='net/snmp6\x00', r4) keyctl$KEYCTL_MOVE(0x1e, 0x0, 0x0, r8, 0x1) unshare(0x48020200) [ 1491.001945] RIP: 0033:0x7f2c25c06b19 [ 1491.001960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:42:41 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5423, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1491.001969] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1491.001985] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1491.001994] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1491.002004] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 21:42:41 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 36) [ 1491.002013] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1491.002022] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1491.025066] FAULT_INJECTION: forcing a failure. [ 1491.025066] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1491.025081] CPU: 1 PID: 9252 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1491.025090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1491.025095] Call Trace: [ 1491.025111] dump_stack+0x107/0x167 [ 1491.025128] should_fail.cold+0x5/0xa [ 1491.025149] __alloc_pages_nodemask+0x182/0x600 [ 1491.025165] ? lock_release+0x680/0x680 [ 1491.025181] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1491.025197] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1491.025218] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1491.025245] alloc_pages_current+0x187/0x280 [ 1491.025266] get_zeroed_page+0x14/0xb0 [ 1491.025281] ? kasan_unpoison_shadow+0x33/0x50 [ 1491.025294] mon_alloc_buff+0xed/0x250 [ 1491.025315] mon_bin_ioctl+0x493/0xcc0 [ 1491.025332] ? wait_for_completion_io+0x270/0x270 [ 1491.025353] ? mon_bin_get_event+0x440/0x440 [ 1491.025373] ? selinux_file_ioctl+0xb6/0x270 [ 1491.025391] ? mon_bin_get_event+0x440/0x440 [ 1491.025408] __x64_sys_ioctl+0x19a/0x210 [ 1491.025425] do_syscall_64+0x33/0x40 [ 1491.025438] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1491.025448] RIP: 0033:0x7f3f3b722b19 [ 1491.025462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1491.025471] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1491.025487] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1491.025496] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1491.025505] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1491.025514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1491.025523] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1491.086465] FAULT_INJECTION: forcing a failure. [ 1491.086465] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1491.086482] CPU: 1 PID: 9260 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1491.086491] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1491.086497] Call Trace: [ 1491.086517] dump_stack+0x107/0x167 [ 1491.086537] should_fail.cold+0x5/0xa [ 1491.101969] __alloc_pages_nodemask+0x182/0x600 [ 1491.101988] ? lock_release+0x680/0x680 [ 1491.102005] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1491.102028] ? lock_downgrade+0x6d0/0x6d0 [ 1491.102054] alloc_pages_current+0x187/0x280 [ 1491.102075] get_zeroed_page+0x14/0xb0 [ 1491.102090] ? kasan_unpoison_shadow+0x33/0x50 [ 1491.102104] mon_alloc_buff+0xed/0x250 [ 1491.102125] mon_bin_ioctl+0x493/0xcc0 [ 1491.105603] ? wait_for_completion_io+0x270/0x270 [ 1491.106051] ? mon_bin_get_event+0x440/0x440 [ 1491.106466] ? selinux_file_ioctl+0xb6/0x270 21:42:41 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 41) [ 1491.106870] ? mon_bin_get_event+0x440/0x440 [ 1491.107293] __x64_sys_ioctl+0x19a/0x210 [ 1491.107671] do_syscall_64+0x33/0x40 [ 1491.108017] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1491.108485] RIP: 0033:0x7f3f3b722b19 [ 1491.108833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1491.115520] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1491.116212] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1491.116854] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1491.117499] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1491.118145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1491.118794] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1491.157858] FAULT_INJECTION: forcing a failure. [ 1491.157858] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1491.159004] CPU: 0 PID: 9264 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1491.159632] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1491.160373] Call Trace: [ 1491.160618] dump_stack+0x107/0x167 [ 1491.160965] should_fail.cold+0x5/0xa [ 1491.161342] __alloc_pages_nodemask+0x182/0x600 [ 1491.161777] ? lock_release+0x680/0x680 [ 1491.162155] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1491.162716] ? lock_downgrade+0x6d0/0x6d0 [ 1491.163146] alloc_pages_current+0x187/0x280 [ 1491.163569] get_zeroed_page+0x14/0xb0 [ 1491.163939] ? kasan_unpoison_shadow+0x33/0x50 [ 1491.164366] mon_alloc_buff+0xed/0x250 [ 1491.164749] mon_bin_ioctl+0x493/0xcc0 [ 1491.165125] ? wait_for_completion_io+0x270/0x270 [ 1491.165576] ? mon_bin_get_event+0x440/0x440 [ 1491.166004] ? selinux_file_ioctl+0xb6/0x270 [ 1491.166427] ? mon_bin_get_event+0x440/0x440 [ 1491.166854] __x64_sys_ioctl+0x19a/0x210 [ 1491.167261] do_syscall_64+0x33/0x40 [ 1491.167621] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1491.168109] RIP: 0033:0x7fceda384b19 [ 1491.168461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1491.170111] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1491.170807] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1491.171475] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1491.172129] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1491.172786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1491.173434] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:42:58 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, 0x0) 21:42:58 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x1, 0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) r1 = accept$unix(r0, &(0x7f0000000000)=@abs, &(0x7f0000000080)=0x6e) writev(r1, &(0x7f00000000c0), 0x0) fcntl$getownex(r0, 0x10, &(0x7f00000009c0)={0x0, 0x0}) process_vm_readv(r2, &(0x7f0000000540)=[{&(0x7f00000018c0)=""/31, 0x1f}], 0x1, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/94, 0x5e}], 0x1, 0x0) 21:42:58 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 42) 21:42:58 executing program 6: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000000140)="20000000000100000c0200000000000000000000010000ebe158b150f5be83000000000000000000002000000020000020000000d1f4655fd1f4655f0100ffff53ef010001000000d1f4655f0000000000000100010000000f0000000b0000000001", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010e00)="ed41000000040000d1f4655fd1f4655fd1f4655f00000000000004000200000000000000050000000d", 0x29, 0x14fe}, {0x0, 0x0, 0x80000000}], 0x10, &(0x7f0000000040)={[{@barrier_val={'barrier', 0x3d, 0x7}}]}) openat(r0, &(0x7f0000000080)='./file1\x00', 0x800, 0x0) 21:42:58 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b63, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:58 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5424, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:42:58 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 37) 21:42:58 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 36) [ 1507.402755] FAULT_INJECTION: forcing a failure. [ 1507.402755] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1507.404030] CPU: 1 PID: 9281 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1507.404651] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.405322] FAULT_INJECTION: forcing a failure. [ 1507.405322] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1507.405336] Call Trace: [ 1507.405361] dump_stack+0x107/0x167 [ 1507.406923] should_fail.cold+0x5/0xa [ 1507.407476] __alloc_pages_nodemask+0x182/0x600 [ 1507.407887] ? lock_release+0x680/0x680 [ 1507.408225] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1507.408804] ? lock_downgrade+0x6d0/0x6d0 [ 1507.409169] alloc_pages_current+0x187/0x280 [ 1507.409597] get_zeroed_page+0x14/0xb0 [ 1507.409929] ? kasan_unpoison_shadow+0x33/0x50 [ 1507.410316] mon_alloc_buff+0xed/0x250 [ 1507.410701] mon_bin_ioctl+0x493/0xcc0 [ 1507.411039] ? wait_for_completion_io+0x270/0x270 [ 1507.411621] ? mon_bin_get_event+0x440/0x440 [ 1507.412001] ? selinux_file_ioctl+0xb6/0x270 [ 1507.412375] ? mon_bin_get_event+0x440/0x440 [ 1507.412799] __x64_sys_ioctl+0x19a/0x210 [ 1507.413147] do_syscall_64+0x33/0x40 [ 1507.413513] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.413948] RIP: 0033:0x7fceda384b19 [ 1507.414263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.416004] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1507.416692] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1507.417291] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1507.417933] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1507.418576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1507.419185] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1507.419965] CPU: 0 PID: 9283 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1507.420560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.421280] Call Trace: [ 1507.421521] dump_stack+0x107/0x167 [ 1507.421846] should_fail.cold+0x5/0xa [ 1507.422200] __alloc_pages_nodemask+0x182/0x600 [ 1507.422614] ? lock_release+0x680/0x680 [ 1507.422632] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1507.422657] ? lock_downgrade+0x6d0/0x6d0 [ 1507.422687] alloc_pages_current+0x187/0x280 [ 1507.422710] get_zeroed_page+0x14/0xb0 [ 1507.422724] ? kasan_unpoison_shadow+0x33/0x50 [ 1507.422739] mon_alloc_buff+0xed/0x250 [ 1507.422767] mon_bin_ioctl+0x493/0xcc0 [ 1507.422787] ? wait_for_completion_io+0x270/0x270 [ 1507.422803] ? mon_bin_get_event+0x440/0x440 [ 1507.422830] ? selinux_file_ioctl+0xb6/0x270 [ 1507.422852] ? mon_bin_get_event+0x440/0x440 [ 1507.422873] __x64_sys_ioctl+0x19a/0x210 [ 1507.422893] do_syscall_64+0x33/0x40 [ 1507.422907] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.422917] RIP: 0033:0x7f3f3b722b19 [ 1507.422932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.422940] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1507.422957] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1507.422966] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1507.422975] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1507.422983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1507.422993] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1507.427467] FAULT_INJECTION: forcing a failure. [ 1507.427467] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1507.427498] CPU: 1 PID: 9285 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1507.427517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.427525] Call Trace: [ 1507.427550] dump_stack+0x107/0x167 [ 1507.427563] should_fail.cold+0x5/0xa [ 1507.427579] __alloc_pages_nodemask+0x182/0x600 [ 1507.427593] ? lock_release+0x680/0x680 [ 1507.427611] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1507.427628] ? lock_downgrade+0x6d0/0x6d0 [ 1507.427648] alloc_pages_current+0x187/0x280 [ 1507.427664] get_zeroed_page+0x14/0xb0 [ 1507.427676] ? kasan_unpoison_shadow+0x33/0x50 [ 1507.427686] mon_alloc_buff+0xed/0x250 [ 1507.427703] mon_bin_ioctl+0x493/0xcc0 [ 1507.427718] ? wait_for_completion_io+0x270/0x270 [ 1507.427730] ? mon_bin_get_event+0x440/0x440 [ 1507.427748] ? selinux_file_ioctl+0xb6/0x270 [ 1507.427764] ? mon_bin_get_event+0x440/0x440 [ 1507.427778] __x64_sys_ioctl+0x19a/0x210 [ 1507.427791] do_syscall_64+0x33/0x40 [ 1507.427802] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.427810] RIP: 0033:0x7f2c25c06b19 [ 1507.427822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.427829] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1507.427842] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1507.427849] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1507.427857] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1507.427864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1507.427871] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1507.432852] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1507.447561] EXT4-fs (loop6): VFS: Can't find ext4 filesystem 21:42:58 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 37) [ 1507.517463] FAULT_INJECTION: forcing a failure. [ 1507.517463] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1507.518676] CPU: 0 PID: 9294 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1507.519262] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.519999] Call Trace: [ 1507.520235] dump_stack+0x107/0x167 [ 1507.520599] should_fail.cold+0x5/0xa [ 1507.520937] __alloc_pages_nodemask+0x182/0x600 [ 1507.521336] ? lock_release+0x680/0x680 [ 1507.521751] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1507.522265] ? lock_downgrade+0x6d0/0x6d0 [ 1507.522686] alloc_pages_current+0x187/0x280 21:42:58 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5425, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1507.523080] get_zeroed_page+0x14/0xb0 [ 1507.523471] ? kasan_unpoison_shadow+0x33/0x50 [ 1507.523864] mon_alloc_buff+0xed/0x250 [ 1507.524208] mon_bin_ioctl+0x493/0xcc0 [ 1507.524596] ? wait_for_completion_io+0x270/0x270 [ 1507.525010] ? mon_bin_get_event+0x440/0x440 [ 1507.525462] ? selinux_file_ioctl+0xb6/0x270 [ 1507.525857] ? mon_bin_get_event+0x440/0x440 [ 1507.528443] __x64_sys_ioctl+0x19a/0x210 [ 1507.528809] do_syscall_64+0x33/0x40 [ 1507.529129] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.529637] RIP: 0033:0x7f2c25c06b19 [ 1507.529964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.531598] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1507.532243] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1507.532900] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1507.532909] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1507.532918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1507.532926] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 21:42:58 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 38) 21:42:58 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, 0x0) [ 1507.570588] FAULT_INJECTION: forcing a failure. 21:42:58 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b64, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1507.570588] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1507.571754] CPU: 1 PID: 9296 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1507.572382] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.573113] Call Trace: [ 1507.573346] dump_stack+0x107/0x167 [ 1507.573660] should_fail.cold+0x5/0xa [ 1507.574036] __alloc_pages_nodemask+0x182/0x600 [ 1507.574433] ? lock_release+0x680/0x680 [ 1507.574773] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1507.575356] ? lock_downgrade+0x6d0/0x6d0 [ 1507.575721] alloc_pages_current+0x187/0x280 [ 1507.576169] get_zeroed_page+0x14/0xb0 [ 1507.576501] ? kasan_unpoison_shadow+0x33/0x50 [ 1507.576935] mon_alloc_buff+0xed/0x250 [ 1507.577273] mon_bin_ioctl+0x493/0xcc0 [ 1507.577608] ? wait_for_completion_io+0x270/0x270 [ 1507.578060] ? mon_bin_get_event+0x440/0x440 [ 1507.578442] ? selinux_file_ioctl+0xb6/0x270 [ 1507.578866] ? mon_bin_get_event+0x440/0x440 [ 1507.579276] __x64_sys_ioctl+0x19a/0x210 [ 1507.579624] do_syscall_64+0x33/0x40 [ 1507.580009] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.580442] RIP: 0033:0x7f3f3b722b19 [ 1507.580759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.582373] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1507.583068] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1507.583671] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1507.584318] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1507.584982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1507.585583] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:42:58 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x9910c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffff, 0x4}, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='mountstats\x00') pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r2 = perf_event_open(&(0x7f0000000740)={0x2, 0x80, 0x3, 0x8, 0xa2, 0x0, 0x0, 0x5, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000700), 0x6}, 0x40000, 0x80, 0x10001, 0x6, 0x1, 0x5, 0x9, 0x0, 0x1, 0x0, 0x1f}, 0xffffffffffffffff, 0xe, r0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r4 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x40010, r3, 0x10000000) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r5, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']}) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) ioctl$SNDRV_TIMER_IOCTL_INFO(0xffffffffffffffff, 0x80e85411, &(0x7f0000000080)=""/43) fallocate(0xffffffffffffffff, 0x0, 0x3f, 0x7) syz_io_uring_submit(0x0, r4, &(0x7f0000000480)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r5, &(0x7f0000000440)=0x80, &(0x7f0000000840)=@qipcrtr, 0x0, 0x0, 0x0, {0x0, r6}}, 0x81) write$binfmt_elf32(r3, &(0x7f0000000200)=ANY=[], 0x31b) signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x8001]}, 0x8, 0x100000) clone3(&(0x7f00000008c0)={0x3040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) msgrcv(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x26, 0x0, 0x1000) sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="3314c7e159f443f90b1aff04f119f95d3028d94a2fc37de8b95aa96d0c7aadc8095936db1b57694aa29e3ddd20c31f5539a8d7ce6bfdb32c22707cd13a6489c417", @ANYRESHEX=r0, @ANYBLOB="0b0b000000000000000001000000"], 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x500000001) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) renameat2(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', r3, &(0x7f0000000140)='./file1\x00', 0x2) 21:42:58 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 43) [ 1507.629341] FAULT_INJECTION: forcing a failure. [ 1507.629341] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1507.630494] CPU: 1 PID: 9307 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1507.631120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.631850] Call Trace: [ 1507.632083] dump_stack+0x107/0x167 [ 1507.632395] should_fail.cold+0x5/0xa [ 1507.632728] __alloc_pages_nodemask+0x182/0x600 [ 1507.633177] ? lock_release+0x680/0x680 [ 1507.633517] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1507.634075] ? lock_downgrade+0x6d0/0x6d0 [ 1507.634443] alloc_pages_current+0x187/0x280 21:42:58 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5427, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1507.634890] get_zeroed_page+0x14/0xb0 [ 1507.635260] ? kasan_unpoison_shadow+0x33/0x50 [ 1507.635655] mon_alloc_buff+0xed/0x250 [ 1507.635673] mon_bin_ioctl+0x493/0xcc0 [ 1507.635689] ? wait_for_completion_io+0x270/0x270 [ 1507.635701] ? mon_bin_get_event+0x440/0x440 [ 1507.635720] ? selinux_file_ioctl+0xb6/0x270 [ 1507.635735] ? mon_bin_get_event+0x440/0x440 [ 1507.635750] __x64_sys_ioctl+0x19a/0x210 [ 1507.635764] do_syscall_64+0x33/0x40 [ 1507.635775] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.635784] RIP: 0033:0x7fceda384b19 [ 1507.635833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:42:58 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b65, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1507.635841] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:42:58 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 38) [ 1507.635855] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1507.635863] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1507.635870] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1507.635877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1507.635884] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1507.730859] FAULT_INJECTION: forcing a failure. [ 1507.730859] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1507.733753] CPU: 0 PID: 9318 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1507.734326] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1507.735095] Call Trace: [ 1507.735336] dump_stack+0x107/0x167 [ 1507.735702] should_fail.cold+0x5/0xa [ 1507.736038] __alloc_pages_nodemask+0x182/0x600 [ 1507.736487] ? lock_release+0x680/0x680 [ 1507.736835] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1507.737362] ? lock_downgrade+0x6d0/0x6d0 [ 1507.737787] alloc_pages_current+0x187/0x280 [ 1507.738173] get_zeroed_page+0x14/0xb0 [ 1507.738580] ? kasan_unpoison_shadow+0x33/0x50 [ 1507.738973] mon_alloc_buff+0xed/0x250 [ 1507.739333] mon_bin_ioctl+0x493/0xcc0 [ 1507.739722] ? wait_for_completion_io+0x270/0x270 [ 1507.740137] ? mon_bin_get_event+0x440/0x440 [ 1507.740578] ? selinux_file_ioctl+0xb6/0x270 [ 1507.740968] ? mon_bin_get_event+0x440/0x440 [ 1507.741354] __x64_sys_ioctl+0x19a/0x210 [ 1507.741764] do_syscall_64+0x33/0x40 [ 1507.742089] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1507.742601] RIP: 0033:0x7f2c25c06b19 [ 1507.742922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1507.744551] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1507.745198] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1507.745848] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1507.746519] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1507.747137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1507.747786] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 21:43:13 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 39) 21:43:13 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b66, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:43:13 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) io_uring_enter(r0, 0x1302, 0x2774, 0x1, &(0x7f00000000c0), 0x8) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x7}, 0x0, 0xf, 0xffffffffffffffff, 0x0) sendfile(r0, r2, 0x0, 0x80000001) [ 1522.473996] FAULT_INJECTION: forcing a failure. [ 1522.473996] name fail_page_alloc, interval 1, probability 0, space 0, times 0 21:43:13 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 39) 21:43:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 44) 21:43:13 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5428, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:43:13 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9}}) 21:43:13 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001700), 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffa, 0x20}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x18, r1, 0xb0b, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x18}}, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0) write$P9_RREADLINK(r2, &(0x7f0000000080)={0x10, 0x17, 0x0, {0x7, './file1'}}, 0x3ffffe00) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$SEG6(&(0x7f0000002dc0), 0xffffffffffffffff) sendmsg$SEG6_CMD_SET_TUNSRC(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)={0x1c, r4, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x8}]}, 0x1c}}, 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wpan1\x00', 0x0}) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r6) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000140)={'wpan3\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)={0x1c, r7, 0x609, 0x0, 0x0, {0x23}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r9}]}, 0x1c}}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_DEV(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x94, 0x0, 0x100, 0x7, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SEC_DEVICE={0x28, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_PAN_ID={0x6, 0x2, 0x1}, @NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0xaaa3}, @NL802154_DEV_ATTR_EXTENDED_ADDR={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0xaaa1}]}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SEC_DEVICE={0x1c, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0xffff}, @NL802154_DEV_ATTR_PAN_ID={0x6}, @NL802154_DEV_ATTR_KEY_MODE={0x8, 0x6, 0x1}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x94}, 0x1, 0x0, 0x0, 0x20008091}, 0x40) [ 1522.475033] CPU: 0 PID: 9331 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1522.475637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.476337] Call Trace: [ 1522.476576] dump_stack+0x107/0x167 [ 1522.476897] should_fail.cold+0x5/0xa [ 1522.477239] __alloc_pages_nodemask+0x182/0x600 [ 1522.477644] ? lock_release+0x680/0x680 [ 1522.477992] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.478516] ? lock_downgrade+0x6d0/0x6d0 [ 1522.478894] alloc_pages_current+0x187/0x280 [ 1522.479312] get_zeroed_page+0x14/0xb0 [ 1522.479651] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.480043] mon_alloc_buff+0xed/0x250 [ 1522.480388] mon_bin_ioctl+0x493/0xcc0 [ 1522.480731] ? wait_for_completion_io+0x270/0x270 [ 1522.481146] ? mon_bin_get_event+0x440/0x440 [ 1522.481538] ? selinux_file_ioctl+0xb6/0x270 [ 1522.481923] ? mon_bin_get_event+0x440/0x440 [ 1522.482307] __x64_sys_ioctl+0x19a/0x210 [ 1522.482663] do_syscall_64+0x33/0x40 [ 1522.482985] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.483441] RIP: 0033:0x7fceda384b19 [ 1522.483761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.485305] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.485956] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1522.486566] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.487174] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.488482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.489717] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:43:13 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5429, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1522.507556] FAULT_INJECTION: forcing a failure. [ 1522.507556] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.509939] CPU: 0 PID: 9339 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1522.511123] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.512950] Call Trace: [ 1522.513400] dump_stack+0x107/0x167 [ 1522.514029] should_fail.cold+0x5/0xa [ 1522.514051] __alloc_pages_nodemask+0x182/0x600 [ 1522.514066] ? lock_release+0x680/0x680 [ 1522.514082] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.514106] ? lock_downgrade+0x6d0/0x6d0 [ 1522.514134] alloc_pages_current+0x187/0x280 [ 1522.514155] get_zeroed_page+0x14/0xb0 [ 1522.514168] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.514179] mon_alloc_buff+0xed/0x250 [ 1522.514202] mon_bin_ioctl+0x493/0xcc0 [ 1522.514221] ? wait_for_completion_io+0x270/0x270 [ 1522.514236] ? mon_bin_get_event+0x440/0x440 [ 1522.514261] ? selinux_file_ioctl+0xb6/0x270 [ 1522.514282] ? mon_bin_get_event+0x440/0x440 [ 1522.514300] __x64_sys_ioctl+0x19a/0x210 [ 1522.514318] do_syscall_64+0x33/0x40 [ 1522.514332] entry_SYSCALL_64_after_hwframe+0x67/0xd1 21:43:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 45) 21:43:13 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 40) 21:43:13 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 40) [ 1522.514341] RIP: 0033:0x7f3f3b722b19 [ 1522.514354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.514361] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.514377] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1522.514385] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.514393] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.514401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.514409] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1522.518057] FAULT_INJECTION: forcing a failure. [ 1522.518057] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.518070] CPU: 0 PID: 9341 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1522.518077] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.518083] Call Trace: [ 1522.518096] dump_stack+0x107/0x167 [ 1522.518114] should_fail.cold+0x5/0xa [ 1522.518134] __alloc_pages_nodemask+0x182/0x600 [ 1522.518149] ? lock_release+0x680/0x680 [ 1522.518166] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.518190] ? lock_downgrade+0x6d0/0x6d0 [ 1522.518219] alloc_pages_current+0x187/0x280 [ 1522.518240] get_zeroed_page+0x14/0xb0 [ 1522.518253] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.518264] mon_alloc_buff+0xed/0x250 [ 1522.518288] mon_bin_ioctl+0x493/0xcc0 [ 1522.518306] ? wait_for_completion_io+0x270/0x270 [ 1522.518322] ? mon_bin_get_event+0x440/0x440 [ 1522.518346] ? selinux_file_ioctl+0xb6/0x270 [ 1522.518367] ? mon_bin_get_event+0x440/0x440 [ 1522.518385] __x64_sys_ioctl+0x19a/0x210 [ 1522.518404] do_syscall_64+0x33/0x40 [ 1522.518417] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.518426] RIP: 0033:0x7f2c25c06b19 [ 1522.518439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.518447] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.518462] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1522.518470] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.518479] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.518487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.518496] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1522.595370] FAULT_INJECTION: forcing a failure. [ 1522.595370] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.621077] FAULT_INJECTION: forcing a failure. [ 1522.621077] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.621239] CPU: 0 PID: 9348 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1522.623698] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.623704] Call Trace: [ 1522.623724] dump_stack+0x107/0x167 [ 1522.623742] should_fail.cold+0x5/0xa [ 1522.623766] __alloc_pages_nodemask+0x182/0x600 [ 1522.623782] ? lock_release+0x680/0x680 [ 1522.623798] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.623822] ? lock_downgrade+0x6d0/0x6d0 [ 1522.623851] alloc_pages_current+0x187/0x280 [ 1522.623873] get_zeroed_page+0x14/0xb0 [ 1522.623885] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.623898] mon_alloc_buff+0xed/0x250 [ 1522.623921] mon_bin_ioctl+0x493/0xcc0 [ 1522.623941] ? wait_for_completion_io+0x270/0x270 [ 1522.623956] ? mon_bin_get_event+0x440/0x440 [ 1522.623981] ? selinux_file_ioctl+0xb6/0x270 [ 1522.624001] ? mon_bin_get_event+0x440/0x440 [ 1522.624020] __x64_sys_ioctl+0x19a/0x210 [ 1522.624039] do_syscall_64+0x33/0x40 [ 1522.624052] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.624062] RIP: 0033:0x7f2c25c06b19 [ 1522.624075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.624083] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:43:13 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, 0x0) [ 1522.624099] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 21:43:13 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 41) [ 1522.624107] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.624116] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.624125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.624133] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1522.624176] CPU: 1 PID: 9354 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1522.624183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.624187] Call Trace: [ 1522.624199] dump_stack+0x107/0x167 [ 1522.624213] should_fail.cold+0x5/0xa [ 1522.624228] __alloc_pages_nodemask+0x182/0x600 [ 1522.624240] ? lock_release+0x680/0x680 [ 1522.624254] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.624271] ? lock_downgrade+0x6d0/0x6d0 [ 1522.624294] alloc_pages_current+0x187/0x280 [ 1522.624309] get_zeroed_page+0x14/0xb0 [ 1522.624322] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.624331] mon_alloc_buff+0xed/0x250 [ 1522.624348] mon_bin_ioctl+0x493/0xcc0 [ 1522.624363] ? wait_for_completion_io+0x270/0x270 [ 1522.624376] ? mon_bin_get_event+0x440/0x440 [ 1522.624393] ? selinux_file_ioctl+0xb6/0x270 [ 1522.624411] ? mon_bin_get_event+0x440/0x440 [ 1522.624427] __x64_sys_ioctl+0x19a/0x210 [ 1522.624441] do_syscall_64+0x33/0x40 [ 1522.624452] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.624461] RIP: 0033:0x7f3f3b722b19 [ 1522.624472] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.624479] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.624492] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1522.624500] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 21:43:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 46) [ 1522.624507] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.624514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 21:43:13 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, 0x0) [ 1522.624521] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1522.648491] FAULT_INJECTION: forcing a failure. 21:43:13 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 41) [ 1522.648491] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.648503] CPU: 1 PID: 9355 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1522.648510] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.648514] Call Trace: [ 1522.648527] dump_stack+0x107/0x167 [ 1522.648540] should_fail.cold+0x5/0xa [ 1522.648556] __alloc_pages_nodemask+0x182/0x600 [ 1522.648569] ? lock_release+0x680/0x680 [ 1522.648582] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.648604] ? lock_downgrade+0x6d0/0x6d0 21:43:13 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 42) [ 1522.648626] alloc_pages_current+0x187/0x280 [ 1522.648642] get_zeroed_page+0x14/0xb0 [ 1522.648655] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.648665] mon_alloc_buff+0xed/0x250 [ 1522.648682] mon_bin_ioctl+0x493/0xcc0 [ 1522.648697] ? wait_for_completion_io+0x270/0x270 [ 1522.648709] ? mon_bin_get_event+0x440/0x440 [ 1522.648727] ? selinux_file_ioctl+0xb6/0x270 [ 1522.648743] ? mon_bin_get_event+0x440/0x440 [ 1522.648757] __x64_sys_ioctl+0x19a/0x210 [ 1522.648770] do_syscall_64+0x33/0x40 [ 1522.648782] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.648790] RIP: 0033:0x7fceda384b19 [ 1522.648802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.648808] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.648822] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1522.648829] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.648836] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.648844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.648851] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1522.711206] FAULT_INJECTION: forcing a failure. [ 1522.711206] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.711230] CPU: 0 PID: 9359 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1522.711239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.711244] Call Trace: [ 1522.711263] dump_stack+0x107/0x167 [ 1522.711281] should_fail.cold+0x5/0xa [ 1522.711304] __alloc_pages_nodemask+0x182/0x600 [ 1522.711321] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1522.711333] ? trace_hardirqs_on+0x5b/0x180 [ 1522.711348] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.711360] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1522.711403] alloc_pages_current+0x187/0x280 [ 1522.711424] get_zeroed_page+0x14/0xb0 [ 1522.711442] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.711454] mon_alloc_buff+0xed/0x250 [ 1522.711478] mon_bin_ioctl+0x493/0xcc0 [ 1522.711497] ? wait_for_completion_io+0x270/0x270 [ 1522.711513] ? mon_bin_get_event+0x440/0x440 [ 1522.711538] ? selinux_file_ioctl+0xb6/0x270 [ 1522.711561] ? mon_bin_get_event+0x440/0x440 [ 1522.711584] __x64_sys_ioctl+0x19a/0x210 [ 1522.711607] do_syscall_64+0x33/0x40 [ 1522.711621] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.711631] RIP: 0033:0x7f2c25c06b19 [ 1522.711645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.711653] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.711674] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1522.711683] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.711691] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.711700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.711708] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1522.763983] FAULT_INJECTION: forcing a failure. [ 1522.763983] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.763999] CPU: 1 PID: 9362 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1522.764006] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.764010] Call Trace: [ 1522.764027] dump_stack+0x107/0x167 [ 1522.764041] should_fail.cold+0x5/0xa [ 1522.764059] __alloc_pages_nodemask+0x182/0x600 [ 1522.764073] ? lock_release+0x680/0x680 [ 1522.764086] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.764104] ? lock_downgrade+0x6d0/0x6d0 [ 1522.764125] alloc_pages_current+0x187/0x280 [ 1522.764141] get_zeroed_page+0x14/0xb0 [ 1522.764154] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.764166] mon_alloc_buff+0xed/0x250 [ 1522.764183] mon_bin_ioctl+0x493/0xcc0 [ 1522.764199] ? wait_for_completion_io+0x270/0x270 [ 1522.764212] ? mon_bin_get_event+0x440/0x440 [ 1522.764230] ? selinux_file_ioctl+0xb6/0x270 [ 1522.764246] ? mon_bin_get_event+0x440/0x440 [ 1522.764261] __x64_sys_ioctl+0x19a/0x210 [ 1522.764275] do_syscall_64+0x33/0x40 [ 1522.764286] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.764295] RIP: 0033:0x7fceda384b19 [ 1522.764312] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.764319] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.764333] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1522.764341] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.764348] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.764356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.764363] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1522.766976] FAULT_INJECTION: forcing a failure. [ 1522.766976] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.766989] CPU: 0 PID: 9365 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1522.766997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.767002] Call Trace: [ 1522.767016] dump_stack+0x107/0x167 [ 1522.767034] should_fail.cold+0x5/0xa [ 1522.767055] __alloc_pages_nodemask+0x182/0x600 [ 1522.767070] ? lock_release+0x680/0x680 [ 1522.767086] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.767111] ? lock_downgrade+0x6d0/0x6d0 [ 1522.767144] alloc_pages_current+0x187/0x280 [ 1522.767164] get_zeroed_page+0x14/0xb0 [ 1522.767178] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.767189] mon_alloc_buff+0xed/0x250 [ 1522.767221] mon_bin_ioctl+0x493/0xcc0 [ 1522.767240] ? wait_for_completion_io+0x270/0x270 [ 1522.767258] ? mon_bin_get_event+0x440/0x440 [ 1522.767282] ? selinux_file_ioctl+0xb6/0x270 [ 1522.767303] ? mon_bin_get_event+0x440/0x440 [ 1522.767321] __x64_sys_ioctl+0x19a/0x210 [ 1522.767340] do_syscall_64+0x33/0x40 [ 1522.767353] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.767362] RIP: 0033:0x7f3f3b722b19 [ 1522.767375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.767383] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.767398] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1522.767407] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.767415] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.767423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.767432] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1522.801272] FAULT_INJECTION: forcing a failure. [ 1522.801272] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.801286] CPU: 1 PID: 9367 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1522.801293] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.801297] Call Trace: [ 1522.801312] dump_stack+0x107/0x167 [ 1522.801325] should_fail.cold+0x5/0xa [ 1522.801342] __alloc_pages_nodemask+0x182/0x600 [ 1522.801355] ? lock_release+0x680/0x680 [ 1522.801369] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.801387] ? lock_downgrade+0x6d0/0x6d0 [ 1522.801407] alloc_pages_current+0x187/0x280 [ 1522.801423] get_zeroed_page+0x14/0xb0 [ 1522.801435] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.801446] mon_alloc_buff+0xed/0x250 [ 1522.801463] mon_bin_ioctl+0x493/0xcc0 [ 1522.801479] ? wait_for_completion_io+0x270/0x270 [ 1522.801492] ? mon_bin_get_event+0x440/0x440 [ 1522.801510] ? selinux_file_ioctl+0xb6/0x270 [ 1522.801525] ? mon_bin_get_event+0x440/0x440 [ 1522.801540] __x64_sys_ioctl+0x19a/0x210 [ 1522.801554] do_syscall_64+0x33/0x40 [ 1522.801566] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.801574] RIP: 0033:0x7f2c25c06b19 [ 1522.801586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.801598] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.801611] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1522.801618] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.801626] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.801633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.801640] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 21:43:13 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b67, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:43:13 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 42) 21:43:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 47) 21:43:13 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, 0x0) [ 1522.957876] FAULT_INJECTION: forcing a failure. [ 1522.957876] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.958843] CPU: 1 PID: 9370 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1522.959389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.960042] Call Trace: [ 1522.960264] dump_stack+0x107/0x167 [ 1522.960562] should_fail.cold+0x5/0xa [ 1522.960879] __alloc_pages_nodemask+0x182/0x600 [ 1522.961259] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.961749] ? lock_downgrade+0x6d0/0x6d0 [ 1522.962094] alloc_pages_current+0x187/0x280 [ 1522.962454] get_zeroed_page+0x14/0xb0 [ 1522.962771] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.963140] mon_alloc_buff+0xed/0x250 [ 1522.963475] mon_bin_ioctl+0x493/0xcc0 [ 1522.963795] ? wait_for_completion_io+0x270/0x270 [ 1522.964183] ? mon_bin_get_event+0x440/0x440 [ 1522.964546] ? selinux_file_ioctl+0xb6/0x270 [ 1522.964905] ? mon_bin_get_event+0x440/0x440 [ 1522.965264] __x64_sys_ioctl+0x19a/0x210 [ 1522.965595] do_syscall_64+0x33/0x40 [ 1522.965899] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.966313] RIP: 0033:0x7f3f3b722b19 [ 1522.966614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1522.968075] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.968679] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1522.969244] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.969811] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.970375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.970941] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1522.979866] FAULT_INJECTION: forcing a failure. [ 1522.979866] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1522.980910] CPU: 0 PID: 9374 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1522.981485] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1522.982192] Call Trace: [ 1522.982207] dump_stack+0x107/0x167 [ 1522.982225] should_fail.cold+0x5/0xa [ 1522.982246] __alloc_pages_nodemask+0x182/0x600 [ 1522.982261] ? lock_release+0x680/0x680 [ 1522.982278] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1522.982302] ? lock_downgrade+0x6d0/0x6d0 [ 1522.982332] alloc_pages_current+0x187/0x280 [ 1522.982353] get_zeroed_page+0x14/0xb0 [ 1522.982366] ? kasan_unpoison_shadow+0x33/0x50 [ 1522.982377] mon_alloc_buff+0xed/0x250 [ 1522.982402] mon_bin_ioctl+0x493/0xcc0 [ 1522.982421] ? wait_for_completion_io+0x270/0x270 [ 1522.982437] ? mon_bin_get_event+0x440/0x440 [ 1522.982461] ? selinux_file_ioctl+0xb6/0x270 [ 1522.982483] ? mon_bin_get_event+0x440/0x440 [ 1522.982502] __x64_sys_ioctl+0x19a/0x210 [ 1522.982521] do_syscall_64+0x33/0x40 [ 1522.982534] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1522.982543] RIP: 0033:0x7fceda384b19 [ 1522.982556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:43:13 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9}}) 21:43:13 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 43) [ 1522.982564] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1522.982580] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1522.982588] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1522.982597] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1522.982605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1522.982614] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1523.015288] FAULT_INJECTION: forcing a failure. [ 1523.015288] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1523.015304] CPU: 0 PID: 9378 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1523.015312] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1523.015318] Call Trace: [ 1523.015336] dump_stack+0x107/0x167 [ 1523.015354] should_fail.cold+0x5/0xa [ 1523.015377] __alloc_pages_nodemask+0x182/0x600 [ 1523.015394] ? lock_release+0x680/0x680 [ 1523.015410] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1523.015435] ? lock_downgrade+0x6d0/0x6d0 [ 1523.015465] alloc_pages_current+0x187/0x280 [ 1523.015489] get_zeroed_page+0x14/0xb0 [ 1523.015502] ? kasan_unpoison_shadow+0x33/0x50 [ 1523.015515] mon_alloc_buff+0xed/0x250 [ 1523.015539] mon_bin_ioctl+0x493/0xcc0 [ 1523.015558] ? wait_for_completion_io+0x270/0x270 [ 1523.015574] ? mon_bin_get_event+0x440/0x440 [ 1523.015602] ? selinux_file_ioctl+0xb6/0x270 [ 1523.015623] ? mon_bin_get_event+0x440/0x440 [ 1523.015643] __x64_sys_ioctl+0x19a/0x210 [ 1523.015661] do_syscall_64+0x33/0x40 [ 1523.015675] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1523.015684] RIP: 0033:0x7f2c25c06b19 [ 1523.015698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1523.015706] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1523.015722] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1523.015730] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1523.015738] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1523.015746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1523.015755] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1538.194222] FAULT_INJECTION: forcing a failure. [ 1538.194222] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1538.195791] CPU: 1 PID: 9399 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1538.196465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1538.197193] Call Trace: [ 1538.197557] dump_stack+0x107/0x167 [ 1538.197889] should_fail.cold+0x5/0xa [ 1538.198246] __alloc_pages_nodemask+0x182/0x600 [ 1538.198741] ? lock_release+0x680/0x680 [ 1538.199106] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1538.199768] ? lock_downgrade+0x6d0/0x6d0 [ 1538.200200] alloc_pages_current+0x187/0x280 [ 1538.200653] get_zeroed_page+0x14/0xb0 [ 1538.201052] ? kasan_unpoison_shadow+0x33/0x50 [ 1538.201550] mon_alloc_buff+0xed/0x250 [ 1538.201908] mon_bin_ioctl+0x493/0xcc0 [ 1538.202312] ? wait_for_completion_io+0x270/0x270 [ 1538.202793] ? mon_bin_get_event+0x440/0x440 [ 1538.203251] ? selinux_file_ioctl+0xb6/0x270 [ 1538.203717] ? mon_bin_get_event+0x440/0x440 [ 1538.204186] __x64_sys_ioctl+0x19a/0x210 [ 1538.204664] do_syscall_64+0x33/0x40 [ 1538.205050] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1538.205586] RIP: 0033:0x7fceda384b19 [ 1538.205960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1538.207706] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1538.208438] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1538.209140] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1538.209780] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1538.210467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1538.211139] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1538.216045] FAULT_INJECTION: forcing a failure. [ 1538.216045] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1538.217284] CPU: 0 PID: 9390 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1538.217980] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1538.218768] Call Trace: [ 1538.219039] dump_stack+0x107/0x167 [ 1538.219395] should_fail.cold+0x5/0xa [ 1538.219781] __alloc_pages_nodemask+0x182/0x600 [ 1538.220220] ? lock_release+0x680/0x680 [ 1538.220595] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1538.221155] ? lock_downgrade+0x6d0/0x6d0 [ 1538.221568] alloc_pages_current+0x187/0x280 [ 1538.222006] get_zeroed_page+0x14/0xb0 [ 1538.222391] ? kasan_unpoison_shadow+0x33/0x50 [ 1538.222409] mon_alloc_buff+0xed/0x250 [ 1538.222441] mon_bin_ioctl+0x493/0xcc0 [ 1538.222467] ? wait_for_completion_io+0x270/0x270 [ 1538.222487] ? mon_bin_get_event+0x440/0x440 [ 1538.222521] ? selinux_file_ioctl+0xb6/0x270 21:43:28 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x1ed982, 0x0) ioctl$DVD_AUTH(r0, 0x5390, &(0x7f00000002c0)=@lrpcs={0x3, 0x1, 0x3, 0x81, 0x1d}) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000300)) dup(r2) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) socket$nl_generic(0x10, 0x3, 0x10) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x4, 0x0, &(0x7f00000001c0)) ioctl$CDROM_LAST_WRITTEN(0xffffffffffffffff, 0x5395, &(0x7f00000000c0)) kcmp(0x0, 0x0, 0x1, r0, 0xffffffffffffffff) clone3(&(0x7f0000000140)={0x1060d00, 0x0, 0x0, 0x0, {0x36}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$CDROM_LAST_WRITTEN(r0, 0x5395, &(0x7f0000000240)) 21:43:28 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5437, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:43:28 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='romfs\x00', 0x40000, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x82040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x8000, 0x0, 0x8, 0x0, 0x3, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/class/rtc', 0x4800, 0x40) ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f0000000080)) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r5}) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r6, 0x4040534e, &(0x7f0000000040)={0x2, @tick=0x6, 0x80, {0x1, 0x3}, 0x2, 0x1}) open(&(0x7f0000000000)='./file0\x00', 0x444441, 0x121) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x45, 0xfc, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_bp={0x0}, 0x0, 0x3, 0x1004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8914, &(0x7f0000000140)={'lo\x00'}) 21:43:28 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 43) 21:43:28 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 44) 21:43:28 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b68, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:43:28 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9}}) 21:43:28 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 48) [ 1538.222549] ? mon_bin_get_event+0x440/0x440 [ 1538.222575] __x64_sys_ioctl+0x19a/0x210 [ 1538.222600] do_syscall_64+0x33/0x40 [ 1538.222618] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1538.222631] RIP: 0033:0x7f2c25c06b19 [ 1538.222648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1538.222659] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1538.222679] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1538.222690] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1538.222701] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1538.222712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1538.222724] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1538.225181] FAULT_INJECTION: forcing a failure. [ 1538.225181] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1538.225214] CPU: 1 PID: 9401 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1538.225233] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1538.225241] Call Trace: [ 1538.225265] dump_stack+0x107/0x167 [ 1538.225282] should_fail.cold+0x5/0xa [ 1538.225303] __alloc_pages_nodemask+0x182/0x600 [ 1538.225320] ? lock_release+0x680/0x680 [ 1538.225336] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1538.225359] ? lock_downgrade+0x6d0/0x6d0 [ 1538.225387] alloc_pages_current+0x187/0x280 21:43:28 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 44) 21:43:28 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 45) [ 1538.225409] get_zeroed_page+0x14/0xb0 [ 1538.225423] ? kasan_unpoison_shadow+0x33/0x50 [ 1538.225435] mon_alloc_buff+0xed/0x250 [ 1538.225453] mon_bin_ioctl+0x493/0xcc0 [ 1538.225472] ? wait_for_completion_io+0x270/0x270 [ 1538.225489] ? mon_bin_get_event+0x440/0x440 [ 1538.225520] ? selinux_file_ioctl+0xb6/0x270 [ 1538.225541] ? mon_bin_get_event+0x440/0x440 [ 1538.225560] __x64_sys_ioctl+0x19a/0x210 21:43:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 49) [ 1538.225577] do_syscall_64+0x33/0x40 [ 1538.225592] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1538.225602] RIP: 0033:0x7f3f3b722b19 [ 1538.225617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1538.225625] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1538.225642] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1538.225651] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1538.225660] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1538.225669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1538.225679] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1538.347073] FAULT_INJECTION: forcing a failure. [ 1538.347073] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1538.347117] CPU: 0 PID: 9409 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1538.347146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1538.351567] FAULT_INJECTION: forcing a failure. [ 1538.351567] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1538.352170] Call Trace: [ 1538.352197] dump_stack+0x107/0x167 [ 1538.352223] should_fail.cold+0x5/0xa [ 1538.357317] __alloc_pages_nodemask+0x182/0x600 [ 1538.357775] ? lock_release+0x680/0x680 [ 1538.358170] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1538.358769] ? lock_downgrade+0x6d0/0x6d0 [ 1538.359198] alloc_pages_current+0x187/0x280 [ 1538.359658] get_zeroed_page+0x14/0xb0 [ 1538.360042] ? kasan_unpoison_shadow+0x33/0x50 [ 1538.360489] mon_alloc_buff+0xed/0x250 [ 1538.360880] mon_bin_ioctl+0x493/0xcc0 [ 1538.361266] ? wait_for_completion_io+0x270/0x270 [ 1538.361739] ? mon_bin_get_event+0x440/0x440 [ 1538.362182] ? selinux_file_ioctl+0xb6/0x270 [ 1538.362625] ? mon_bin_get_event+0x440/0x440 [ 1538.363053] __x64_sys_ioctl+0x19a/0x210 [ 1538.363470] do_syscall_64+0x33/0x40 [ 1538.363838] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1538.364337] RIP: 0033:0x7f2c25c06b19 [ 1538.364706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1538.366385] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1538.367115] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1538.367790] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1538.368435] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1538.369077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1538.369722] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1538.370418] CPU: 1 PID: 9410 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1538.371045] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1538.371800] Call Trace: [ 1538.372057] dump_stack+0x107/0x167 [ 1538.372394] should_fail.cold+0x5/0xa [ 1538.372745] __alloc_pages_nodemask+0x182/0x600 [ 1538.373165] ? lock_release+0x680/0x680 [ 1538.373523] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1538.374062] ? lock_downgrade+0x6d0/0x6d0 [ 1538.374461] alloc_pages_current+0x187/0x280 [ 1538.374870] get_zeroed_page+0x14/0xb0 [ 1538.375241] ? kasan_unpoison_shadow+0x33/0x50 [ 1538.375679] mon_alloc_buff+0xed/0x250 [ 1538.376048] mon_bin_ioctl+0x493/0xcc0 [ 1538.376404] ? wait_for_completion_io+0x270/0x270 [ 1538.376846] ? mon_bin_get_event+0x440/0x440 [ 1538.377255] ? selinux_file_ioctl+0xb6/0x270 [ 1538.377654] ? mon_bin_get_event+0x440/0x440 [ 1538.378053] __x64_sys_ioctl+0x19a/0x210 [ 1538.378419] do_syscall_64+0x33/0x40 [ 1538.378767] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1538.379227] RIP: 0033:0x7f3f3b722b19 [ 1538.379580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1538.381202] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1538.381897] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1538.382522] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1538.383147] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1538.383782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1538.384418] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1538.417600] FAULT_INJECTION: forcing a failure. [ 1538.417600] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1538.418816] CPU: 1 PID: 9413 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1538.419455] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1538.420210] Call Trace: [ 1538.420460] dump_stack+0x107/0x167 [ 1538.420799] should_fail.cold+0x5/0xa [ 1538.421158] __alloc_pages_nodemask+0x182/0x600 [ 1538.421583] ? lock_release+0x680/0x680 [ 1538.421948] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1538.422498] ? lock_downgrade+0x6d0/0x6d0 [ 1538.422888] alloc_pages_current+0x187/0x280 21:43:29 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5441, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1538.423296] get_zeroed_page+0x14/0xb0 [ 1538.423667] ? kasan_unpoison_shadow+0x33/0x50 [ 1538.424087] mon_alloc_buff+0xed/0x250 [ 1538.424668] mon_bin_ioctl+0x493/0xcc0 [ 1538.425036] ? wait_for_completion_io+0x270/0x270 [ 1538.425477] ? mon_bin_get_event+0x440/0x440 [ 1538.425886] ? selinux_file_ioctl+0xb6/0x270 [ 1538.426294] ? mon_bin_get_event+0x440/0x440 [ 1538.426699] __x64_sys_ioctl+0x19a/0x210 [ 1538.427073] do_syscall_64+0x33/0x40 [ 1538.427453] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1538.427921] RIP: 0033:0x7fceda384b19 [ 1538.428266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1538.429913] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1538.430596] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1538.431233] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1538.431883] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1538.432545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1538.433213] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:43:29 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b69, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:43:44 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 46) [ 1554.157433] FAULT_INJECTION: forcing a failure. [ 1554.157433] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1554.158483] CPU: 1 PID: 9428 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1554.159061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1554.159772] Call Trace: [ 1554.160006] dump_stack+0x107/0x167 [ 1554.160321] should_fail.cold+0x5/0xa [ 1554.160656] __alloc_pages_nodemask+0x182/0x600 [ 1554.161058] ? lock_release+0x680/0x680 [ 1554.161401] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1554.161917] ? lock_downgrade+0x6d0/0x6d0 [ 1554.162283] alloc_pages_current+0x187/0x280 [ 1554.162667] get_zeroed_page+0x14/0xb0 [ 1554.163002] ? kasan_unpoison_shadow+0x33/0x50 [ 1554.163393] mon_alloc_buff+0xed/0x250 [ 1554.163751] mon_bin_ioctl+0x493/0xcc0 [ 1554.164091] ? wait_for_completion_io+0x270/0x270 [ 1554.164505] ? mon_bin_get_event+0x440/0x440 [ 1554.164889] ? selinux_file_ioctl+0xb6/0x270 [ 1554.165271] ? mon_bin_get_event+0x440/0x440 [ 1554.165653] __x64_sys_ioctl+0x19a/0x210 [ 1554.166005] do_syscall_64+0x33/0x40 [ 1554.166324] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1554.166762] RIP: 0033:0x7f3f3b722b19 [ 1554.167083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.168654] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1554.169310] FAULT_INJECTION: forcing a failure. [ 1554.169310] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1554.169321] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1554.169336] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1554.171636] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1554.172241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1554.172847] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1554.173475] CPU: 0 PID: 9425 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1554.174071] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1554.174776] Call Trace: [ 1554.175019] dump_stack+0x107/0x167 21:43:44 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b6a, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:43:44 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 50) 21:43:44 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5450, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:43:44 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r2, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) r3 = socket$nl_generic(0x10, 0x3, 0x10) socket$packet(0x11, 0x2, 0x300) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(r3, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01000000000000000000020000000c00018008000100", @ANYRES32=r6, @ANYBLOB="f5b7f37555bf4988ba4cf8478a5b7eda2e4edbc1f694184af786ee987ff169d46ec1ee282696cf65cfa68b219ebf3ee344f5cf100243b3620200000014f7eff16ea52a6f84cd7ecf28c92dfc6e89198ddd160bd3d29ffe5e58618794c9eecabe956dd5905f098bf32424a1f884495462138427679cbeacb00daaf1c10d332b8d7f37c392d766631554bbfa3bca60fa6a2360c3"], 0x20}}, 0x0) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r7, 0x0, 0x0) setsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000040)={{{@in6=@private0, @in=@remote, 0x4e21, 0x15, 0x4e21, 0x18, 0xa, 0x80, 0x80, 0x0, r6, r7}, {0x2, 0x7ff, 0x7, 0x7, 0x9, 0x0, 0x16a80000000, 0x6}, {0x0, 0x4, 0xffffffff80000001, 0x6}, 0x1, 0x6e6bbf, 0x1, 0x1, 0x0, 0x1}, {{@in=@multicast2, 0x4d2, 0x2b}, 0xa, @in=@multicast2, 0x3502, 0x0, 0x2, 0x4, 0x8b0, 0x20, 0xb37}}, 0xe8) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000200)={{{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x120, 0x0, 0x0, 0xee00}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, 0x0, 0x0, 0x1}, {{@in6=@private0, 0x0, 0x6c}, 0x0, @in6=@private1}}, 0xe8) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) 21:43:44 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 45) [ 1554.175346] should_fail.cold+0x5/0xa [ 1554.175945] __alloc_pages_nodemask+0x182/0x600 [ 1554.176355] ? lock_release+0x680/0x680 [ 1554.176703] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1554.177236] ? lock_downgrade+0x6d0/0x6d0 [ 1554.177614] alloc_pages_current+0x187/0x280 [ 1554.178005] get_zeroed_page+0x14/0xb0 [ 1554.178347] ? kasan_unpoison_shadow+0x33/0x50 [ 1554.178746] mon_alloc_buff+0xed/0x250 [ 1554.179100] mon_bin_ioctl+0x493/0xcc0 [ 1554.179450] ? wait_for_completion_io+0x270/0x270 [ 1554.181422] ? mon_bin_get_event+0x440/0x440 [ 1554.181812] ? selinux_file_ioctl+0xb6/0x270 [ 1554.182353] ? mon_bin_get_event+0x440/0x440 [ 1554.182736] __x64_sys_ioctl+0x19a/0x210 [ 1554.183090] do_syscall_64+0x33/0x40 [ 1554.183409] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1554.183865] RIP: 0033:0x7f2c25c06b19 [ 1554.184188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.185742] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1554.186505] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1554.187115] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1554.187747] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1554.188359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1554.188965] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 21:43:44 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) (fail_nth: 1) 21:43:44 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f0000000080)=""/43) readv(r0, &(0x7f0000000440)=[{&(0x7f0000000000)=""/168, 0xa8}, {&(0x7f00000000c0)=""/175, 0xaf}, {&(0x7f0000000180)=""/204, 0xcc}, {&(0x7f0000000280)=""/79, 0x4f}, {&(0x7f0000000300)=""/130, 0x82}, {&(0x7f00000003c0)=""/77, 0x4d}], 0x6) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r1, 0x400, 0x1) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x54a2) connect$inet6(0xffffffffffffffff, 0x0, 0x0) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000000900)={{}, 0x0, 0x4, @inherit={0x60, 0x0}, @devid}) sync() [ 1554.202095] FAULT_INJECTION: forcing a failure. [ 1554.202095] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1554.203229] CPU: 1 PID: 9430 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1554.203818] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1554.204559] Call Trace: [ 1554.204792] dump_stack+0x107/0x167 [ 1554.205179] should_fail.cold+0x5/0xa [ 1554.205199] __alloc_pages_nodemask+0x182/0x600 [ 1554.205215] ? lock_release+0x680/0x680 [ 1554.205228] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1554.205245] ? lock_downgrade+0x6d0/0x6d0 [ 1554.205265] alloc_pages_current+0x187/0x280 [ 1554.205282] get_zeroed_page+0x14/0xb0 [ 1554.205294] ? kasan_unpoison_shadow+0x33/0x50 [ 1554.205306] mon_alloc_buff+0xed/0x250 [ 1554.205323] mon_bin_ioctl+0x493/0xcc0 [ 1554.205338] ? wait_for_completion_io+0x270/0x270 [ 1554.205350] ? mon_bin_get_event+0x440/0x440 [ 1554.205369] ? selinux_file_ioctl+0xb6/0x270 [ 1554.205384] ? mon_bin_get_event+0x440/0x440 [ 1554.205399] __x64_sys_ioctl+0x19a/0x210 [ 1554.205412] do_syscall_64+0x33/0x40 [ 1554.205424] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1554.205433] RIP: 0033:0x7fceda384b19 [ 1554.205445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.205452] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1554.205466] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1554.205473] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1554.205480] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1554.205487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1554.205495] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:43:44 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 46) [ 1554.271413] FAULT_INJECTION: forcing a failure. [ 1554.271413] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1554.272618] CPU: 1 PID: 9439 Comm: syz-executor.5 Not tainted 5.10.223 #1 [ 1554.273194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1554.273889] Call Trace: [ 1554.274126] dump_stack+0x107/0x167 [ 1554.274438] should_fail.cold+0x5/0xa [ 1554.274772] _copy_from_user+0x2e/0x1b0 [ 1554.275115] set_selection_user+0x73/0x190 [ 1554.275474] ? sel_loadlut+0xf0/0xf0 [ 1554.275822] tioclinux+0x35b/0x5b0 [ 1554.276129] vt_ioctl+0x1ee5/0x2c90 [ 1554.276445] ? vt_waitactive+0x3a0/0x3a0 [ 1554.276799] ? __lock_acquire+0xbb1/0x5b00 [ 1554.277170] ? perf_trace_lock+0xac/0x490 [ 1554.277522] ? SOFTIRQ_verbose+0x10/0x10 [ 1554.277869] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1554.278307] ? vt_waitactive+0x3a0/0x3a0 [ 1554.278657] tty_ioctl+0x862/0x18b0 [ 1554.278972] ? tty_fasync+0x390/0x390 [ 1554.279299] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1554.279803] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1554.280247] ? do_vfs_ioctl+0x283/0x10d0 [ 1554.280590] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1554.281032] ? generic_block_fiemap+0x60/0x60 [ 1554.281411] ? lock_downgrade+0x6d0/0x6d0 [ 1554.281766] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1554.282177] ? wait_for_completion_io+0x270/0x270 [ 1554.282592] ? selinux_file_ioctl+0xb6/0x270 [ 1554.282970] ? tty_fasync+0x390/0x390 [ 1554.283305] __x64_sys_ioctl+0x19a/0x210 [ 1554.283671] do_syscall_64+0x33/0x40 [ 1554.283989] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1554.284421] RIP: 0033:0x7fec4bbe2b19 [ 1554.284739] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.286271] RSP: 002b:00007fec49158188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1554.286915] RAX: ffffffffffffffda RBX: 00007fec4bcf5f60 RCX: 00007fec4bbe2b19 [ 1554.287517] RDX: 0000000020000040 RSI: 000000000000541c RDI: 0000000000000009 [ 1554.288149] RBP: 00007fec491581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1554.288746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1554.289343] R13: 00007fffe564f3ff R14: 00007fec49158300 R15: 0000000000022000 [ 1554.302537] FAULT_INJECTION: forcing a failure. [ 1554.302537] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1554.303691] CPU: 1 PID: 9443 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1554.304272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1554.304971] Call Trace: [ 1554.305199] dump_stack+0x107/0x167 [ 1554.305514] should_fail.cold+0x5/0xa [ 1554.305848] __alloc_pages_nodemask+0x182/0x600 [ 1554.306247] ? lock_release+0x680/0x680 [ 1554.306591] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1554.307108] ? lock_downgrade+0x6d0/0x6d0 [ 1554.307473] alloc_pages_current+0x187/0x280 [ 1554.307891] get_zeroed_page+0x14/0xb0 [ 1554.308226] ? kasan_unpoison_shadow+0x33/0x50 [ 1554.308616] mon_alloc_buff+0xed/0x250 [ 1554.308954] mon_bin_ioctl+0x493/0xcc0 [ 1554.309292] ? wait_for_completion_io+0x270/0x270 [ 1554.309705] ? mon_bin_get_event+0x440/0x440 [ 1554.310086] ? selinux_file_ioctl+0xb6/0x270 [ 1554.310466] ? mon_bin_get_event+0x440/0x440 [ 1554.310842] __x64_sys_ioctl+0x19a/0x210 [ 1554.311192] do_syscall_64+0x33/0x40 [ 1554.311511] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1554.311988] RIP: 0033:0x7f3f3b722b19 [ 1554.312306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.313855] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1554.314499] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 21:43:44 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b70, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:43:44 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 51) 21:43:44 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 47) [ 1554.315105] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1554.315732] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1554.316340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1554.316950] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1554.356858] FAULT_INJECTION: forcing a failure. [ 1554.356858] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1554.358209] CPU: 0 PID: 9450 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1554.358931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1554.359784] Call Trace: [ 1554.360074] dump_stack+0x107/0x167 [ 1554.360463] should_fail.cold+0x5/0xa [ 1554.360882] __alloc_pages_nodemask+0x182/0x600 [ 1554.361380] ? lock_release+0x680/0x680 [ 1554.361806] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1554.362451] ? lock_downgrade+0x6d0/0x6d0 [ 1554.362911] alloc_pages_current+0x187/0x280 [ 1554.363391] get_zeroed_page+0x14/0xb0 [ 1554.363817] ? kasan_unpoison_shadow+0x33/0x50 [ 1554.364304] mon_alloc_buff+0xed/0x250 [ 1554.364730] mon_bin_ioctl+0x493/0xcc0 [ 1554.365157] ? wait_for_completion_io+0x270/0x270 [ 1554.365676] ? mon_bin_get_event+0x440/0x440 [ 1554.366159] ? selinux_file_ioctl+0xb6/0x270 [ 1554.366641] ? mon_bin_get_event+0x440/0x440 [ 1554.367117] __x64_sys_ioctl+0x19a/0x210 [ 1554.367571] do_syscall_64+0x33/0x40 [ 1554.367946] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1554.368475] RIP: 0033:0x7fceda384b19 [ 1554.368875] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.370806] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1554.371619] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1554.372228] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1554.372835] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1554.373443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1554.374051] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1554.377805] FAULT_INJECTION: forcing a failure. [ 1554.377805] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1554.379009] CPU: 1 PID: 9452 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1554.379752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1554.380547] Call Trace: [ 1554.380832] dump_stack+0x107/0x167 [ 1554.381208] should_fail.cold+0x5/0xa [ 1554.381608] __alloc_pages_nodemask+0x182/0x600 [ 1554.382062] ? lock_release+0x680/0x680 [ 1554.382457] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1554.383100] ? lock_downgrade+0x6d0/0x6d0 [ 1554.383507] alloc_pages_current+0x187/0x280 [ 1554.383949] get_zeroed_page+0x14/0xb0 [ 1554.384326] ? kasan_unpoison_shadow+0x33/0x50 [ 1554.384789] mon_alloc_buff+0xed/0x250 [ 1554.385211] mon_bin_ioctl+0x493/0xcc0 [ 1554.385610] ? wait_for_completion_io+0x270/0x270 [ 1554.386118] ? mon_bin_get_event+0x440/0x440 [ 1554.386550] ? selinux_file_ioctl+0xb6/0x270 [ 1554.386996] ? mon_bin_get_event+0x440/0x440 [ 1554.387422] __x64_sys_ioctl+0x19a/0x210 [ 1554.387836] do_syscall_64+0x33/0x40 [ 1554.388194] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1554.388686] RIP: 0033:0x7f2c25c06b19 [ 1554.389049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1554.390809] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1554.391549] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1554.392241] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1554.392935] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1554.393620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1554.394307] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 21:44:00 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5451, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:00 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 47) 21:44:00 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b70, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:00 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 48) 21:44:00 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) (fail_nth: 2) 21:44:00 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b71, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:00 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 52) [ 1569.587124] FAULT_INJECTION: forcing a failure. [ 1569.587124] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1569.588267] CPU: 1 PID: 9463 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1569.588885] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1569.589631] Call Trace: [ 1569.589889] dump_stack+0x107/0x167 [ 1569.590234] should_fail.cold+0x5/0xa [ 1569.590596] __alloc_pages_nodemask+0x182/0x600 [ 1569.591028] ? lock_release+0x680/0x680 21:44:00 executing program 0: openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSW2(0xffffffffffffffff, 0x402c542c, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "e35e91852b1941028300000000000000002000"}) ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f0000000080)={0x1, 0x8, 0x9}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = dup(r3) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8936, &(0x7f0000000080)={@local, 0x78, r6}) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r6}) ioctl$TCSETSW2(r2, 0x402c542c, &(0x7f0000000100)={0x4, 0x0, 0x0, 0x7, 0x7, "3b6589ea086f7dd493ad034825fe29c3b869ba", 0x8, 0xc0}) ioctl$TCSETSW2(r4, 0x402c542c, &(0x7f0000000040)={0x8000, 0x8, 0x1f, 0xa6, 0x89, "fd0ac8760c2123c0200feeb5463a043c13b934", 0xc823}) sendfile(r1, r0, 0x0, 0x4000007ffffffc) [ 1569.591396] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1569.591970] ? lock_downgrade+0x6d0/0x6d0 [ 1569.592373] alloc_pages_current+0x187/0x280 [ 1569.592795] get_zeroed_page+0x14/0xb0 [ 1569.593159] ? kasan_unpoison_shadow+0x33/0x50 [ 1569.593587] mon_alloc_buff+0xed/0x250 [ 1569.596028] FAULT_INJECTION: forcing a failure. [ 1569.596028] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1569.599772] mon_bin_ioctl+0x493/0xcc0 [ 1569.599793] ? wait_for_completion_io+0x270/0x270 [ 1569.599808] ? mon_bin_get_event+0x440/0x440 [ 1569.599830] ? selinux_file_ioctl+0xb6/0x270 [ 1569.602219] ? mon_bin_get_event+0x440/0x440 [ 1569.602598] __x64_sys_ioctl+0x19a/0x210 [ 1569.602951] do_syscall_64+0x33/0x40 [ 1569.603269] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1569.603712] RIP: 0033:0x7f2c25c06b19 [ 1569.604069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1569.605811] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1569.606543] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1569.607224] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1569.607913] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1569.608597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1569.609282] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1569.609991] CPU: 0 PID: 9465 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1569.610712] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1569.611569] Call Trace: [ 1569.611866] dump_stack+0x107/0x167 [ 1569.612269] should_fail.cold+0x5/0xa [ 1569.612691] __alloc_pages_nodemask+0x182/0x600 [ 1569.612708] ? lock_release+0x680/0x680 [ 1569.612727] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1569.612754] ? lock_downgrade+0x6d0/0x6d0 [ 1569.612791] alloc_pages_current+0x187/0x280 [ 1569.612815] get_zeroed_page+0x14/0xb0 [ 1569.612830] ? kasan_unpoison_shadow+0x33/0x50 [ 1569.612843] mon_alloc_buff+0xed/0x250 [ 1569.612872] mon_bin_ioctl+0x493/0xcc0 [ 1569.612896] ? wait_for_completion_io+0x270/0x270 [ 1569.612914] ? mon_bin_get_event+0x440/0x440 [ 1569.612944] ? selinux_file_ioctl+0xb6/0x270 [ 1569.612971] ? mon_bin_get_event+0x440/0x440 [ 1569.612995] __x64_sys_ioctl+0x19a/0x210 [ 1569.613019] do_syscall_64+0x33/0x40 [ 1569.613035] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1569.613046] RIP: 0033:0x7f3f3b722b19 [ 1569.613061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1569.613071] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1569.613091] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1569.613100] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1569.613114] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1569.625373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1569.625384] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1569.632845] FAULT_INJECTION: forcing a failure. [ 1569.632845] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1569.633932] CPU: 1 PID: 9471 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1569.634534] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1569.635280] Call Trace: [ 1569.635531] dump_stack+0x107/0x167 [ 1569.639927] should_fail.cold+0x5/0xa [ 1569.640284] __alloc_pages_nodemask+0x182/0x600 [ 1569.640713] ? lock_release+0x680/0x680 [ 1569.641088] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1569.641651] ? lock_downgrade+0x6d0/0x6d0 [ 1569.642049] alloc_pages_current+0x187/0x280 [ 1569.642465] get_zeroed_page+0x14/0xb0 [ 1569.642831] ? kasan_unpoison_shadow+0x33/0x50 [ 1569.643257] mon_alloc_buff+0xed/0x250 [ 1569.643627] mon_bin_ioctl+0x493/0xcc0 [ 1569.644003] ? wait_for_completion_io+0x270/0x270 [ 1569.644450] ? mon_bin_get_event+0x440/0x440 [ 1569.644867] ? selinux_file_ioctl+0xb6/0x270 [ 1569.645291] ? mon_bin_get_event+0x440/0x440 [ 1569.645706] __x64_sys_ioctl+0x19a/0x210 [ 1569.646092] do_syscall_64+0x33/0x40 [ 1569.646446] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1569.646920] RIP: 0033:0x7fceda384b19 [ 1569.647272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1569.648940] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1569.649644] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1569.650290] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1569.650948] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1569.651627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1569.652249] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1569.672330] FAULT_INJECTION: forcing a failure. [ 1569.672330] name failslab, interval 1, probability 0, space 0, times 0 [ 1569.672381] CPU: 0 PID: 9466 Comm: syz-executor.5 Not tainted 5.10.223 #1 21:44:00 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5452, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1569.672390] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 21:44:00 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 49) [ 1569.672396] Call Trace: [ 1569.672412] dump_stack+0x107/0x167 [ 1569.672430] should_fail.cold+0x5/0xa [ 1569.672444] ? vc_selection+0x85b/0x13a0 [ 1569.672459] ? vc_selection+0x85b/0x13a0 [ 1569.672479] should_failslab+0x5/0x20 [ 1569.672493] __kmalloc+0x72/0x390 [ 1569.672508] ? inverse_translate+0x20e/0x280 [ 1569.672529] vc_selection+0x85b/0x13a0 [ 1569.672559] set_selection_user+0x115/0x190 [ 1569.672577] ? sel_loadlut+0xf0/0xf0 [ 1569.672608] tioclinux+0x35b/0x5b0 [ 1569.672630] vt_ioctl+0x1ee5/0x2c90 [ 1569.672654] ? vt_waitactive+0x3a0/0x3a0 [ 1569.672679] ? __lock_acquire+0xbb1/0x5b00 [ 1569.672716] ? perf_trace_lock+0xac/0x490 [ 1569.672731] ? SOFTIRQ_verbose+0x10/0x10 [ 1569.672747] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1569.672766] ? vt_waitactive+0x3a0/0x3a0 [ 1569.672787] tty_ioctl+0x862/0x18b0 [ 1569.672809] ? tty_fasync+0x390/0x390 [ 1569.672824] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1569.672840] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1569.672857] ? do_vfs_ioctl+0x283/0x10d0 [ 1569.672873] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1569.672889] ? generic_block_fiemap+0x60/0x60 [ 1569.672905] ? lock_downgrade+0x6d0/0x6d0 [ 1569.672923] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1569.672946] ? wait_for_completion_io+0x270/0x270 [ 1569.672975] ? selinux_file_ioctl+0xb6/0x270 [ 1569.672998] ? tty_fasync+0x390/0x390 [ 1569.673018] __x64_sys_ioctl+0x19a/0x210 [ 1569.673038] do_syscall_64+0x33/0x40 [ 1569.673053] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1569.673064] RIP: 0033:0x7fec4bbe2b19 [ 1569.673080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1569.673089] RSP: 002b:00007fec49158188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1569.673107] RAX: ffffffffffffffda RBX: 00007fec4bcf5f60 RCX: 00007fec4bbe2b19 [ 1569.673116] RDX: 0000000020000040 RSI: 000000000000541c RDI: 0000000000000009 [ 1569.673126] RBP: 00007fec491581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1569.673136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1569.673147] R13: 00007fffe564f3ff R14: 00007fec49158300 R15: 0000000000022000 [ 1569.673486] selection: kmalloc() failed [ 1569.736935] FAULT_INJECTION: forcing a failure. [ 1569.736935] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1569.736953] CPU: 1 PID: 9478 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1569.736961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1569.736966] Call Trace: [ 1569.736986] dump_stack+0x107/0x167 [ 1569.737002] should_fail.cold+0x5/0xa [ 1569.737024] __alloc_pages_nodemask+0x182/0x600 [ 1569.737042] ? lock_release+0x680/0x680 [ 1569.737059] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1569.737083] ? lock_downgrade+0x6d0/0x6d0 [ 1569.737111] alloc_pages_current+0x187/0x280 [ 1569.737133] get_zeroed_page+0x14/0xb0 [ 1569.737151] ? kasan_unpoison_shadow+0x33/0x50 [ 1569.737166] mon_alloc_buff+0xed/0x250 [ 1569.737190] mon_bin_ioctl+0x493/0xcc0 [ 1569.737211] ? wait_for_completion_io+0x270/0x270 [ 1569.737227] ? mon_bin_get_event+0x440/0x440 [ 1569.737251] ? selinux_file_ioctl+0xb6/0x270 [ 1569.737271] ? mon_bin_get_event+0x440/0x440 [ 1569.737291] __x64_sys_ioctl+0x19a/0x210 [ 1569.737310] do_syscall_64+0x33/0x40 [ 1569.737325] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1569.737336] RIP: 0033:0x7f2c25c06b19 [ 1569.737352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1569.737362] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1569.737379] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1569.737389] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1569.737398] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1569.737408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1569.737418] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 21:44:15 executing program 0: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0) perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0x5, 0x3, 0x3, 0x4, 0x0, 0x6, 0x400, 0x9, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1ff, 0x4, @perf_config_ext={0xa8, 0x3}, 0xf034b8e634417dfb, 0x4, 0x4, 0x0, 0x4ff, 0x1, 0xff, 0x0, 0x7, 0x0, 0x7ff}, 0xffffffffffffffff, 0x9, r0, 0x1) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_delete(0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(r2, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) timer_gettime(0x0, &(0x7f00000002c0)) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x2, 0x3, 0x301, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}]}, 0x1c}}, 0x4000004) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL802154_CMD_GET_WPAN_PHY(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x14, r4, 0xd8499488957a772f}, 0x14}}, 0x0) timer_create(0x3, 0x0, &(0x7f0000000040)=0x0) timer_settime(r5, 0x0, &(0x7f0000000400)={{}, {0x77359400}}, 0x0) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) timer_settime(r5, 0x1, &(0x7f0000000300)={{r6, r7+10000000}, {0x77359400}}, &(0x7f0000000380)) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYRES32, @ANYBLOB="7e693c51c335507601addc9b7b35a0bf4ee47091d93b4d0b884139f55865d386df51ff"]) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 21:44:15 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) (fail_nth: 3) 21:44:15 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 48) 21:44:15 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x545d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:15 executing program 6: syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff) sendmsg$IEEE802154_START_REQ(0xffffffffffffffff, 0x0, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff) pread64(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x3}, 0x1c) setsockopt$inet6_opts(r0, 0x29, 0x3b, &(0x7f0000000640)=ANY=[], 0x30) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x400000000000070, 0x0) 21:44:15 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4b72, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:15 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 53) 21:44:15 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 50) [ 1585.182845] FAULT_INJECTION: forcing a failure. [ 1585.182845] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.184107] CPU: 0 PID: 9493 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1585.184733] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.185503] Call Trace: [ 1585.185767] dump_stack+0x107/0x167 [ 1585.186124] should_fail.cold+0x5/0xa [ 1585.186518] __alloc_pages_nodemask+0x182/0x600 [ 1585.186956] ? lock_release+0x680/0x680 [ 1585.186976] FAULT_INJECTION: forcing a failure. [ 1585.186976] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.187319] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.187350] ? lock_downgrade+0x6d0/0x6d0 [ 1585.189203] alloc_pages_current+0x187/0x280 [ 1585.189610] get_zeroed_page+0x14/0xb0 [ 1585.189951] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.190343] mon_alloc_buff+0xed/0x250 [ 1585.190707] mon_bin_ioctl+0x493/0xcc0 [ 1585.191053] ? wait_for_completion_io+0x270/0x270 [ 1585.191469] ? mon_bin_get_event+0x440/0x440 [ 1585.191888] ? selinux_file_ioctl+0xb6/0x270 [ 1585.192278] ? mon_bin_get_event+0x440/0x440 [ 1585.192680] __x64_sys_ioctl+0x19a/0x210 [ 1585.193036] do_syscall_64+0x33/0x40 [ 1585.193357] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.193809] RIP: 0033:0x7f2c25c06b19 [ 1585.194132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.195678] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.196352] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1585.196973] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.197572] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.198187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.198790] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1585.199448] CPU: 1 PID: 9497 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1585.200096] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.200827] Call Trace: [ 1585.201083] dump_stack+0x107/0x167 [ 1585.201423] should_fail.cold+0x5/0xa [ 1585.201789] __alloc_pages_nodemask+0x182/0x600 [ 1585.202218] ? lock_release+0x680/0x680 [ 1585.202598] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.203160] ? lock_downgrade+0x6d0/0x6d0 [ 1585.203562] alloc_pages_current+0x187/0x280 [ 1585.203848] FAULT_INJECTION: forcing a failure. [ 1585.203848] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.203979] get_zeroed_page+0x14/0xb0 [ 1585.205262] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.205653] mon_alloc_buff+0xed/0x250 [ 1585.205992] mon_bin_ioctl+0x493/0xcc0 [ 1585.206328] ? wait_for_completion_io+0x270/0x270 [ 1585.206741] ? mon_bin_get_event+0x440/0x440 [ 1585.207121] ? selinux_file_ioctl+0xb6/0x270 [ 1585.207502] ? mon_bin_get_event+0x440/0x440 [ 1585.207891] __x64_sys_ioctl+0x19a/0x210 [ 1585.208249] do_syscall_64+0x33/0x40 [ 1585.208569] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.209006] RIP: 0033:0x7fceda384b19 [ 1585.209326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.210873] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.211516] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1585.212134] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.212741] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.213336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.213935] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1585.214557] CPU: 0 PID: 9498 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1585.215195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.215973] Call Trace: [ 1585.216232] dump_stack+0x107/0x167 [ 1585.216582] should_fail.cold+0x5/0xa [ 1585.216972] __alloc_pages_nodemask+0x182/0x600 [ 1585.217419] ? lock_release+0x680/0x680 [ 1585.217802] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.218392] ? lock_downgrade+0x6d0/0x6d0 [ 1585.218437] alloc_pages_current+0x187/0x280 [ 1585.218464] get_zeroed_page+0x14/0xb0 [ 1585.218480] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.218494] mon_alloc_buff+0xed/0x250 [ 1585.218524] mon_bin_ioctl+0x493/0xcc0 [ 1585.218548] ? wait_for_completion_io+0x270/0x270 [ 1585.218568] ? mon_bin_get_event+0x440/0x440 [ 1585.218599] ? selinux_file_ioctl+0xb6/0x270 [ 1585.218626] ? mon_bin_get_event+0x440/0x440 [ 1585.218650] __x64_sys_ioctl+0x19a/0x210 [ 1585.218674] do_syscall_64+0x33/0x40 [ 1585.218691] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.218703] RIP: 0033:0x7f3f3b722b19 [ 1585.218718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.218728] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.218747] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1585.218757] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.218768] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.218778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.218789] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1585.245501] FAULT_INJECTION: forcing a failure. [ 1585.245501] name failslab, interval 1, probability 0, space 0, times 0 [ 1585.245519] CPU: 0 PID: 9489 Comm: syz-executor.5 Not tainted 5.10.223 #1 [ 1585.245528] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.245533] Call Trace: [ 1585.245553] dump_stack+0x107/0x167 [ 1585.245575] should_fail.cold+0x5/0xa [ 1585.245594] ? create_object.isra.0+0x3a/0xa20 [ 1585.245613] should_failslab+0x5/0x20 [ 1585.245628] kmem_cache_alloc+0x5b/0x310 [ 1585.245662] ? atomic_notifier_call_chain+0x16f/0x2b0 [ 1585.245683] create_object.isra.0+0x3a/0xa20 [ 1585.245699] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1585.245721] __kmalloc+0x16e/0x390 [ 1585.245736] ? inverse_translate+0x20e/0x280 [ 1585.245757] vc_selection+0x85b/0x13a0 [ 1585.245786] set_selection_user+0x115/0x190 [ 1585.245800] ? sel_loadlut+0xf0/0xf0 [ 1585.245829] tioclinux+0x35b/0x5b0 [ 1585.245848] vt_ioctl+0x1ee5/0x2c90 [ 1585.245871] ? vt_waitactive+0x3a0/0x3a0 [ 1585.245898] ? __lock_acquire+0xbb1/0x5b00 [ 1585.245935] ? perf_trace_lock+0xac/0x490 [ 1585.245950] ? SOFTIRQ_verbose+0x10/0x10 [ 1585.245967] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1585.245986] ? vt_waitactive+0x3a0/0x3a0 [ 1585.246008] tty_ioctl+0x862/0x18b0 [ 1585.246029] ? tty_fasync+0x390/0x390 [ 1585.246046] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 1585.246060] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 1585.246076] ? do_vfs_ioctl+0x283/0x10d0 [ 1585.246090] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 1585.246104] ? generic_block_fiemap+0x60/0x60 [ 1585.246116] ? lock_downgrade+0x6d0/0x6d0 [ 1585.246130] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1585.246146] ? wait_for_completion_io+0x270/0x270 21:44:15 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 54) [ 1585.246166] ? selinux_file_ioctl+0xb6/0x270 [ 1585.246186] ? tty_fasync+0x390/0x390 [ 1585.246206] __x64_sys_ioctl+0x19a/0x210 [ 1585.246225] do_syscall_64+0x33/0x40 [ 1585.246239] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.246249] RIP: 0033:0x7fec4bbe2b19 21:44:16 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 51) [ 1585.246264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:44:16 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 49) [ 1585.246274] RSP: 002b:00007fec49158188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.246291] RAX: ffffffffffffffda RBX: 00007fec4bcf5f60 RCX: 00007fec4bbe2b19 [ 1585.246300] RDX: 0000000020000040 RSI: 000000000000541c RDI: 0000000000000009 [ 1585.246309] RBP: 00007fec491581d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.246319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1585.246330] R13: 00007fffe564f3ff R14: 00007fec49158300 R15: 0000000000022000 [ 1585.403274] FAULT_INJECTION: forcing a failure. [ 1585.403274] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.404478] CPU: 0 PID: 9507 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1585.405093] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.405849] Call Trace: [ 1585.406108] dump_stack+0x107/0x167 [ 1585.406460] should_fail.cold+0x5/0xa [ 1585.406848] __alloc_pages_nodemask+0x182/0x600 [ 1585.407290] ? lock_release+0x680/0x680 [ 1585.407311] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.407341] ? lock_downgrade+0x6d0/0x6d0 [ 1585.407379] alloc_pages_current+0x187/0x280 [ 1585.407406] get_zeroed_page+0x14/0xb0 21:44:16 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5460, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1585.407422] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.407438] mon_alloc_buff+0xed/0x250 [ 1585.407469] mon_bin_ioctl+0x493/0xcc0 [ 1585.407494] ? wait_for_completion_io+0x270/0x270 [ 1585.407514] ? mon_bin_get_event+0x440/0x440 [ 1585.407546] ? selinux_file_ioctl+0xb6/0x270 21:44:16 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) (fail_nth: 4) [ 1585.407571] ? mon_bin_get_event+0x440/0x440 [ 1585.407594] __x64_sys_ioctl+0x19a/0x210 [ 1585.407637] do_syscall_64+0x33/0x40 [ 1585.407654] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.407666] RIP: 0033:0x7f2c25c06b19 [ 1585.407682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.407692] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.407712] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1585.407723] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.407733] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.407744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 21:44:16 executing program 0: ftruncate(0xffffffffffffffff, 0x8) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001700), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)=ANY=[@ANYBLOB="98365e4c248c262d8462086b2691f990f9fe691e6be94228040040", @ANYRES16=r1, @ANYBLOB="0b0b00000000000000000100000004000180100002800c000180080001002321332a"], 0x28}}, 0x0) r2 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) r3 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$chown(0x4, r3, 0x0, 0xee00) getsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000004c0)={@multicast1, @broadcast}, &(0x7f0000000500)=0x8) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', 0x0, 0xa}) r4 = add_key$keyring(0x0, &(0x7f0000000440)={'syz', 0x3}, 0x0, 0x0, 0x0) r5 = socket$inet6_udp(0xa, 0x2, 0x0) r6 = add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000580)=ANY=[@ANYRESDEC=r5], 0x48, 0x0) getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000000400)={'HL\x00'}, &(0x7f0000000600)=0x1e) syz_genetlink_get_family_id$ethtool(&(0x7f0000000540), r2) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x10, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x0, 0x1}, 0x0, 0x9, 0xffffffffffffffff, 0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000480)='ceph\x00', &(0x7f00000005c0)=@chain={'key_or_keyring:', r4}) socket$nl_generic(0x10, 0x3, 0x10) r7 = add_key$fscrypt_v1(&(0x7f0000000300), &(0x7f0000000340)={'fscrypt:', @desc2}, &(0x7f0000000380)={0x0, "e1f2266e683ec46968a8347e438c219267b8dc8a1e216f2b794e16fb2bbf46a1b009a0f256d4bb2adc18d92cd1204a69ab318f1f2ea8f9f829960a62b30b4208", 0x27}, 0x48, 0xfffffffffffffffa) request_key(&(0x7f0000000040)='.dead\x00', &(0x7f0000000080)={'syz', 0x1}, &(0x7f00000000c0)='^(\x00', r7) clone3(&(0x7f0000000ac0)={0x17432c500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58) [ 1585.407755] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1585.422337] FAULT_INJECTION: forcing a failure. [ 1585.422337] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.422353] CPU: 0 PID: 9509 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1585.422361] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.422366] Call Trace: [ 1585.422383] dump_stack+0x107/0x167 [ 1585.422400] should_fail.cold+0x5/0xa [ 1585.422423] __alloc_pages_nodemask+0x182/0x600 [ 1585.422440] ? lock_release+0x680/0x680 [ 1585.422476] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.422507] ? lock_downgrade+0x6d0/0x6d0 [ 1585.422542] alloc_pages_current+0x187/0x280 [ 1585.422573] get_zeroed_page+0x14/0xb0 [ 1585.422589] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.422604] mon_alloc_buff+0xed/0x250 [ 1585.422634] mon_bin_ioctl+0x493/0xcc0 [ 1585.422658] ? wait_for_completion_io+0x270/0x270 [ 1585.422677] ? mon_bin_get_event+0x440/0x440 [ 1585.422710] ? selinux_file_ioctl+0xb6/0x270 [ 1585.422738] ? mon_bin_get_event+0x440/0x440 [ 1585.422762] __x64_sys_ioctl+0x19a/0x210 [ 1585.422786] do_syscall_64+0x33/0x40 21:44:16 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 52) 21:44:16 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 55) [ 1585.422804] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.422815] RIP: 0033:0x7fceda384b19 [ 1585.422832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.422843] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.422862] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1585.422873] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 21:44:16 executing program 6: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000040)) pidfd_getfd(r0, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x8010, 0xffffffffffffffff, 0x8000000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TCGETS(r1, 0x541a, &(0x7f0000000240)) [ 1585.422884] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.422895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 21:44:16 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 50) [ 1585.422906] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1585.453434] FAULT_INJECTION: forcing a failure. [ 1585.453434] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.453451] CPU: 0 PID: 9511 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1585.453459] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.453464] Call Trace: [ 1585.453482] dump_stack+0x107/0x167 [ 1585.453500] should_fail.cold+0x5/0xa [ 1585.453528] __alloc_pages_nodemask+0x182/0x600 [ 1585.453544] ? lock_release+0x680/0x680 [ 1585.453559] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.453586] ? lock_downgrade+0x6d0/0x6d0 [ 1585.453615] alloc_pages_current+0x187/0x280 [ 1585.453637] get_zeroed_page+0x14/0xb0 [ 1585.453650] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.453663] mon_alloc_buff+0xed/0x250 [ 1585.453685] mon_bin_ioctl+0x493/0xcc0 [ 1585.453705] ? wait_for_completion_io+0x270/0x270 [ 1585.453720] ? mon_bin_get_event+0x440/0x440 [ 1585.453745] ? selinux_file_ioctl+0xb6/0x270 [ 1585.453767] ? mon_bin_get_event+0x440/0x440 [ 1585.453787] __x64_sys_ioctl+0x19a/0x210 [ 1585.453806] do_syscall_64+0x33/0x40 [ 1585.453819] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.453829] RIP: 0033:0x7f3f3b722b19 [ 1585.453844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.453852] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.453869] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1585.453877] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.453886] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.453895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.453904] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1585.574655] FAULT_INJECTION: forcing a failure. [ 1585.574655] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.574674] CPU: 1 PID: 9522 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1585.574683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.574688] Call Trace: [ 1585.574708] dump_stack+0x107/0x167 [ 1585.574725] should_fail.cold+0x5/0xa [ 1585.574748] __alloc_pages_nodemask+0x182/0x600 [ 1585.574765] ? lock_release+0x680/0x680 [ 1585.574782] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.574804] ? lock_downgrade+0x6d0/0x6d0 [ 1585.574831] alloc_pages_current+0x187/0x280 21:44:16 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 56) [ 1585.574852] get_zeroed_page+0x14/0xb0 [ 1585.574867] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.574881] mon_alloc_buff+0xed/0x250 [ 1585.574903] mon_bin_ioctl+0x493/0xcc0 [ 1585.574924] ? wait_for_completion_io+0x270/0x270 [ 1585.574940] ? mon_bin_get_event+0x440/0x440 [ 1585.574964] ? selinux_file_ioctl+0xb6/0x270 [ 1585.574984] ? mon_bin_get_event+0x440/0x440 [ 1585.575009] __x64_sys_ioctl+0x19a/0x210 [ 1585.575028] do_syscall_64+0x33/0x40 21:44:16 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 53) [ 1585.575042] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.575053] RIP: 0033:0x7fceda384b19 [ 1585.575069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.575078] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.575096] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1585.575106] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.575115] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.575125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 21:44:16 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 51) [ 1585.575135] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1585.586318] FAULT_INJECTION: forcing a failure. [ 1585.586318] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.586337] CPU: 0 PID: 9523 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1585.586347] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.586353] Call Trace: [ 1585.586373] dump_stack+0x107/0x167 [ 1585.586396] should_fail.cold+0x5/0xa [ 1585.586424] __alloc_pages_nodemask+0x182/0x600 [ 1585.586444] ? lock_release+0x680/0x680 [ 1585.586465] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.586498] ? lock_downgrade+0x6d0/0x6d0 [ 1585.586539] alloc_pages_current+0x187/0x280 [ 1585.586570] get_zeroed_page+0x14/0xb0 [ 1585.586586] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.586600] mon_alloc_buff+0xed/0x250 [ 1585.586632] mon_bin_ioctl+0x493/0xcc0 [ 1585.586658] ? wait_for_completion_io+0x270/0x270 [ 1585.586677] ? mon_bin_get_event+0x440/0x440 [ 1585.586709] ? selinux_file_ioctl+0xb6/0x270 [ 1585.586736] ? mon_bin_get_event+0x440/0x440 [ 1585.586762] __x64_sys_ioctl+0x19a/0x210 [ 1585.586787] do_syscall_64+0x33/0x40 [ 1585.586804] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.586816] RIP: 0033:0x7f2c25c06b19 [ 1585.586851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.586862] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.586882] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1585.586893] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.586904] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.586915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.586926] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1585.604790] FAULT_INJECTION: forcing a failure. [ 1585.604790] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.604807] CPU: 1 PID: 9526 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1585.604816] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.604822] Call Trace: [ 1585.604839] dump_stack+0x107/0x167 [ 1585.604857] should_fail.cold+0x5/0xa [ 1585.604877] __alloc_pages_nodemask+0x182/0x600 [ 1585.604894] ? lock_release+0x680/0x680 [ 1585.604910] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.604933] ? lock_downgrade+0x6d0/0x6d0 [ 1585.604958] alloc_pages_current+0x187/0x280 [ 1585.604979] get_zeroed_page+0x14/0xb0 [ 1585.604994] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.605007] mon_alloc_buff+0xed/0x250 [ 1585.605028] mon_bin_ioctl+0x493/0xcc0 [ 1585.605050] ? wait_for_completion_io+0x270/0x270 [ 1585.605065] ? mon_bin_get_event+0x440/0x440 [ 1585.605088] ? selinux_file_ioctl+0xb6/0x270 [ 1585.605107] ? mon_bin_get_event+0x440/0x440 [ 1585.605125] __x64_sys_ioctl+0x19a/0x210 [ 1585.605142] do_syscall_64+0x33/0x40 [ 1585.605157] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.605168] RIP: 0033:0x7f3f3b722b19 [ 1585.605183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.605192] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.605208] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1585.605217] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.605227] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.605236] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.605245] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1585.670268] FAULT_INJECTION: forcing a failure. [ 1585.670268] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.670287] CPU: 1 PID: 9532 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1585.670296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.670302] Call Trace: [ 1585.670321] dump_stack+0x107/0x167 [ 1585.670339] should_fail.cold+0x5/0xa [ 1585.670363] __alloc_pages_nodemask+0x182/0x600 [ 1585.670384] ? lock_release+0x680/0x680 [ 1585.670401] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.670423] ? lock_downgrade+0x6d0/0x6d0 [ 1585.670448] alloc_pages_current+0x187/0x280 [ 1585.670470] get_zeroed_page+0x14/0xb0 [ 1585.670485] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.670499] mon_alloc_buff+0xed/0x250 [ 1585.670521] mon_bin_ioctl+0x493/0xcc0 [ 1585.670539] ? wait_for_completion_io+0x270/0x270 [ 1585.670555] ? mon_bin_get_event+0x440/0x440 [ 1585.670583] ? selinux_file_ioctl+0xb6/0x270 [ 1585.670601] ? mon_bin_get_event+0x440/0x440 [ 1585.670620] __x64_sys_ioctl+0x19a/0x210 [ 1585.670638] do_syscall_64+0x33/0x40 [ 1585.670652] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.670663] RIP: 0033:0x7fceda384b19 [ 1585.670679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.670688] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.670706] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1585.670715] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.670725] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.670734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.670742] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1585.718896] FAULT_INJECTION: forcing a failure. [ 1585.718896] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.718917] CPU: 0 PID: 9537 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1585.718928] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.718934] Call Trace: [ 1585.718958] dump_stack+0x107/0x167 [ 1585.718983] should_fail.cold+0x5/0xa [ 1585.719013] __alloc_pages_nodemask+0x182/0x600 [ 1585.719034] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1585.719048] ? trace_hardirqs_on+0x5b/0x180 [ 1585.719067] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.719081] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1585.719116] ? alloc_pages_current+0x18f/0x280 [ 1585.719143] alloc_pages_current+0x187/0x280 [ 1585.719170] get_zeroed_page+0x14/0xb0 [ 1585.719187] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.719203] mon_alloc_buff+0xed/0x250 [ 1585.719234] mon_bin_ioctl+0x493/0xcc0 [ 1585.719259] ? wait_for_completion_io+0x270/0x270 [ 1585.719280] ? mon_bin_get_event+0x440/0x440 [ 1585.719313] ? selinux_file_ioctl+0xb6/0x270 [ 1585.719339] ? mon_bin_get_event+0x440/0x440 [ 1585.719364] __x64_sys_ioctl+0x19a/0x210 [ 1585.719389] do_syscall_64+0x33/0x40 [ 1585.719425] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.719437] RIP: 0033:0x7f2c25c06b19 [ 1585.719454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.719464] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.719484] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1585.719495] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.719506] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.719517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.719528] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1585.731119] FAULT_INJECTION: forcing a failure. [ 1585.731119] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1585.731134] CPU: 1 PID: 9539 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1585.731142] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1585.731147] Call Trace: [ 1585.731165] dump_stack+0x107/0x167 [ 1585.731183] should_fail.cold+0x5/0xa [ 1585.731202] __alloc_pages_nodemask+0x182/0x600 [ 1585.731219] ? lock_release+0x680/0x680 [ 1585.731234] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1585.731256] ? lock_downgrade+0x6d0/0x6d0 [ 1585.731282] alloc_pages_current+0x187/0x280 [ 1585.731301] get_zeroed_page+0x14/0xb0 [ 1585.731316] ? kasan_unpoison_shadow+0x33/0x50 [ 1585.731328] mon_alloc_buff+0xed/0x250 [ 1585.731348] mon_bin_ioctl+0x493/0xcc0 [ 1585.731365] ? wait_for_completion_io+0x270/0x270 [ 1585.731380] ? mon_bin_get_event+0x440/0x440 [ 1585.731404] ? selinux_file_ioctl+0xb6/0x270 [ 1585.731422] ? mon_bin_get_event+0x440/0x440 [ 1585.731439] __x64_sys_ioctl+0x19a/0x210 [ 1585.731456] do_syscall_64+0x33/0x40 [ 1585.731470] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1585.731480] RIP: 0033:0x7f3f3b722b19 [ 1585.731495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1585.731503] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1585.731520] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1585.731529] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1585.731538] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1585.731547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1585.731556] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:44:33 executing program 0: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x1ed982, 0x0) ioctl$DVD_AUTH(r0, 0x5390, &(0x7f00000002c0)=@lrpcs={0x3, 0x1, 0x3, 0x81, 0x1d}) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = dup(r2) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) socket$nl_generic(0x10, 0x3, 0x10) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x4, 0x0, &(0x7f00000001c0)) ioctl$TUNSETVNETHDRSZ(r3, 0x400454d8, &(0x7f0000000100)=0x5) ioctl$CDROM_LAST_WRITTEN(0xffffffffffffffff, 0x5395, &(0x7f00000000c0)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000540), &(0x7f0000000580)=0xc) fsetxattr$security_capability(r1, &(0x7f0000000200), &(0x7f0000000280)=@v1={0x1000000, [{0x5, 0x6f7}]}, 0xc, 0x0) kcmp(0x0, 0x0, 0x1, r0, 0xffffffffffffffff) syz_open_dev$loop(&(0x7f0000000080), 0x8, 0x100) io_uring_enter(r4, 0x199b, 0x9b6c, 0x398789547d7a993c, &(0x7f0000000000)={[0xff]}, 0x8) clone3(&(0x7f0000000140)={0x1060d00, 0x0, 0x0, 0x0, {0x36}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$CDROM_LAST_WRITTEN(r0, 0x5395, &(0x7f0000000240)) 21:44:33 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 52) 21:44:33 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 57) 21:44:33 executing program 6: mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip6_tables_matches\x00') pread64(r0, &(0x7f0000000240)=""/83, 0x53, 0x200000048) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) clone3(&(0x7f00000008c0)={0x103140100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r2, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080), 0x400000, 0x0) dup2(r1, r3) r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r4, 0x400, 0x1) renameat2(r4, &(0x7f0000000140)='./file0\x00', r3, &(0x7f0000000180)='./file1\x00', 0x3) 21:44:33 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5600, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:33 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 54) 21:44:33 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4bfa, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:33 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1603.097314] FAULT_INJECTION: forcing a failure. [ 1603.097314] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1603.098373] CPU: 1 PID: 9550 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1603.098962] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1603.099686] Call Trace: [ 1603.099918] dump_stack+0x107/0x167 [ 1603.100255] should_fail.cold+0x5/0xa [ 1603.100591] __alloc_pages_nodemask+0x182/0x600 [ 1603.100993] ? lock_release+0x680/0x680 [ 1603.101234] FAULT_INJECTION: forcing a failure. [ 1603.101234] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1603.101342] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1603.102844] ? lock_downgrade+0x6d0/0x6d0 [ 1603.103208] alloc_pages_current+0x187/0x280 [ 1603.103590] get_zeroed_page+0x14/0xb0 [ 1603.103925] ? kasan_unpoison_shadow+0x33/0x50 [ 1603.104335] mon_alloc_buff+0xed/0x250 [ 1603.104677] mon_bin_ioctl+0x493/0xcc0 [ 1603.105014] ? wait_for_completion_io+0x270/0x270 [ 1603.105427] ? mon_bin_get_event+0x440/0x440 [ 1603.105811] ? selinux_file_ioctl+0xb6/0x270 [ 1603.106195] ? mon_bin_get_event+0x440/0x440 [ 1603.106575] __x64_sys_ioctl+0x19a/0x210 [ 1603.106927] do_syscall_64+0x33/0x40 [ 1603.107249] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1603.107686] RIP: 0033:0x7f2c25c06b19 [ 1603.108008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1603.109581] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1603.110231] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1603.110834] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1603.111438] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1603.112041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1603.112662] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1603.113296] CPU: 0 PID: 9549 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1603.113892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1603.114600] Call Trace: [ 1603.114840] dump_stack+0x107/0x167 [ 1603.115171] should_fail.cold+0x5/0xa [ 1603.115516] __alloc_pages_nodemask+0x182/0x600 [ 1603.120392] ? lock_release+0x680/0x680 [ 1603.120409] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1603.120433] ? lock_downgrade+0x6d0/0x6d0 [ 1603.120462] alloc_pages_current+0x187/0x280 [ 1603.120484] get_zeroed_page+0x14/0xb0 [ 1603.120497] ? kasan_unpoison_shadow+0x33/0x50 [ 1603.120511] mon_alloc_buff+0xed/0x250 [ 1603.120535] mon_bin_ioctl+0x493/0xcc0 [ 1603.120555] ? wait_for_completion_io+0x270/0x270 21:44:33 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 53) [ 1603.120570] ? mon_bin_get_event+0x440/0x440 [ 1603.120595] ? selinux_file_ioctl+0xb6/0x270 [ 1603.120616] ? mon_bin_get_event+0x440/0x440 [ 1603.120636] __x64_sys_ioctl+0x19a/0x210 [ 1603.120655] do_syscall_64+0x33/0x40 [ 1603.120668] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1603.120678] RIP: 0033:0x7f3f3b722b19 [ 1603.120692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:44:33 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 58) [ 1603.120700] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1603.120716] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1603.120725] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1603.120734] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1603.120742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1603.120751] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1603.120874] FAULT_INJECTION: forcing a failure. [ 1603.120874] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1603.120887] CPU: 1 PID: 9557 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1603.120894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1603.120898] Call Trace: [ 1603.120909] dump_stack+0x107/0x167 [ 1603.120923] should_fail.cold+0x5/0xa [ 1603.120938] __alloc_pages_nodemask+0x182/0x600 [ 1603.120951] ? lock_release+0x680/0x680 [ 1603.120964] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1603.120982] ? lock_downgrade+0x6d0/0x6d0 [ 1603.121002] alloc_pages_current+0x187/0x280 [ 1603.121017] get_zeroed_page+0x14/0xb0 [ 1603.121029] ? kasan_unpoison_shadow+0x33/0x50 [ 1603.121039] mon_alloc_buff+0xed/0x250 [ 1603.121060] mon_bin_ioctl+0x493/0xcc0 [ 1603.121075] ? wait_for_completion_io+0x270/0x270 [ 1603.121087] ? mon_bin_get_event+0x440/0x440 [ 1603.121104] ? selinux_file_ioctl+0xb6/0x270 [ 1603.121120] ? mon_bin_get_event+0x440/0x440 [ 1603.121135] __x64_sys_ioctl+0x19a/0x210 [ 1603.121148] do_syscall_64+0x33/0x40 [ 1603.121160] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1603.121168] RIP: 0033:0x7fceda384b19 [ 1603.121180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1603.121187] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1603.121200] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1603.121208] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1603.121215] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1603.121222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1603.121229] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1603.170963] FAULT_INJECTION: forcing a failure. [ 1603.170963] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1603.170979] CPU: 0 PID: 9564 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1603.170988] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1603.170993] Call Trace: [ 1603.171011] dump_stack+0x107/0x167 [ 1603.171029] should_fail.cold+0x5/0xa [ 1603.171051] __alloc_pages_nodemask+0x182/0x600 [ 1603.171067] ? lock_release+0x680/0x680 [ 1603.171083] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1603.171108] ? lock_downgrade+0x6d0/0x6d0 [ 1603.171138] alloc_pages_current+0x187/0x280 [ 1603.171160] get_zeroed_page+0x14/0xb0 [ 1603.171173] ? kasan_unpoison_shadow+0x33/0x50 [ 1603.171186] mon_alloc_buff+0xed/0x250 [ 1603.171210] mon_bin_ioctl+0x493/0xcc0 [ 1603.171230] ? wait_for_completion_io+0x270/0x270 [ 1603.171246] ? mon_bin_get_event+0x440/0x440 [ 1603.171271] ? selinux_file_ioctl+0xb6/0x270 [ 1603.171293] ? mon_bin_get_event+0x440/0x440 [ 1603.171312] __x64_sys_ioctl+0x19a/0x210 [ 1603.171332] do_syscall_64+0x33/0x40 [ 1603.171346] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1603.171355] RIP: 0033:0x7f3f3b722b19 [ 1603.171369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1603.171377] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1603.171393] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1603.171401] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1603.171409] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1603.171417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1603.171426] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1603.233397] FAULT_INJECTION: forcing a failure. [ 1603.233397] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1603.233413] CPU: 1 PID: 9567 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1603.233421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1603.233425] Call Trace: [ 1603.233441] dump_stack+0x107/0x167 [ 1603.233455] should_fail.cold+0x5/0xa [ 1603.233473] __alloc_pages_nodemask+0x182/0x600 [ 1603.233493] ? lock_release+0x680/0x680 [ 1603.233506] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1603.233524] ? lock_downgrade+0x6d0/0x6d0 [ 1603.233544] alloc_pages_current+0x187/0x280 [ 1603.233561] get_zeroed_page+0x14/0xb0 [ 1603.233573] ? kasan_unpoison_shadow+0x33/0x50 [ 1603.233587] mon_alloc_buff+0xed/0x250 [ 1603.233605] mon_bin_ioctl+0x493/0xcc0 [ 1603.233620] ? wait_for_completion_io+0x270/0x270 [ 1603.233633] ? mon_bin_get_event+0x440/0x440 [ 1603.233652] ? selinux_file_ioctl+0xb6/0x270 [ 1603.233667] ? mon_bin_get_event+0x440/0x440 [ 1603.233682] __x64_sys_ioctl+0x19a/0x210 [ 1603.233696] do_syscall_64+0x33/0x40 [ 1603.233708] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1603.233717] RIP: 0033:0x7fceda384b19 [ 1603.233730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1603.233737] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1603.233751] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1603.233758] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1603.233766] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1603.233773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1603.233780] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1618.142521] FAULT_INJECTION: forcing a failure. [ 1618.142521] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1618.143749] CPU: 0 PID: 9577 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1618.143773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1618.143787] Call Trace: [ 1618.143829] dump_stack+0x107/0x167 [ 1618.143854] should_fail.cold+0x5/0xa [ 1618.143885] __alloc_pages_nodemask+0x182/0x600 [ 1618.143906] ? lock_release+0x680/0x680 [ 1618.143928] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1618.147574] ? lock_downgrade+0x6d0/0x6d0 [ 1618.147982] alloc_pages_current+0x187/0x280 [ 1618.148668] get_zeroed_page+0x14/0xb0 [ 1618.149586] ? kasan_unpoison_shadow+0x33/0x50 [ 1618.150661] mon_alloc_buff+0xed/0x250 [ 1618.151608] mon_bin_ioctl+0x493/0xcc0 [ 1618.152560] ? wait_for_completion_io+0x270/0x270 [ 1618.153713] ? mon_bin_get_event+0x440/0x440 [ 1618.154767] ? selinux_file_ioctl+0xb6/0x270 [ 1618.155805] ? mon_bin_get_event+0x440/0x440 [ 1618.156857] __x64_sys_ioctl+0x19a/0x210 [ 1618.157844] do_syscall_64+0x33/0x40 [ 1618.158739] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1618.158751] RIP: 0033:0x7fceda384b19 [ 1618.158765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:44:48 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 54) 21:44:48 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4bfb, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:48 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cgroup.events\x00', 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000000c0)=0x1, 0x4) syz_open_procfs(0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000380)) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040), 0xc, 0x0}, 0x40000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1880, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r1, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r2, 0x800, 0x0) openat$cgroup_ro(r2, &(0x7f0000000180)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) stat(0x0, &(0x7f00000002c0)) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r4, 0x0, 0x0, 0x8000) openat(r4, &(0x7f0000000140)='./file1\x00', 0x22080, 0xa) fstat(r2, &(0x7f0000000600)) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) 21:44:48 executing program 6: syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="0180c2000000aaaac2aaaaaa0800450000300000000000019078ac1e0001ac1414aa030090780000000045000000000000000000000000000000e0000002"], 0x0) syz_emit_ethernet(0x36, &(0x7f0000000240)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @empty, @void, {@generic={0x18, "2dd7d2c8247854ecc88c9f02ffe71018e0706de66b7122b59d06be51df7993236db8ad0215a6218e"}}}, &(0x7f0000000040)={0x2, 0x3, [0xed8, 0x1000a2b, 0x5a4, 0xde7]}) syz_emit_ethernet(0xba, &(0x7f00000000c0)={@remote, @random="144d1e19ecdc", @void, {@ipv4={0x800, @dccp={{0x17, 0x4, 0x0, 0x5, 0xac, 0x64, 0x0, 0x8, 0x21, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x19}, {[@ra={0x94, 0x4}, @cipso={0x86, 0x15, 0x3, [{0x7, 0xa, "8a97041feb558f31"}, {0x0, 0x5, "128c68"}]}, @timestamp_addr={0x44, 0x1c, 0xe8, 0x1, 0x3, [{@empty, 0x3}, {@rand_addr=0x64010101, 0x5}, {@broadcast}]}, @ra={0x94, 0x4}, @timestamp={0x44, 0xc, 0xb6, 0x0, 0x4, [0x5, 0x7]}]}}, {{0x4e21, 0x4e20, 0x4, 0x1, 0x5, 0x0, 0x0, 0x4, 0x0, "058ca1", 0x8, "5dfcde"}, "1a871463a9e2ca390e572c6c7c7293ee4b8eeec3b9425ec80dada482890ae168fefd226045bfc737516e90fb6ae46360c800b6f34a3eda173b7d6a9f2d563397"}}}}}, &(0x7f0000000200)={0x0, 0x3, [0x96c, 0x94d, 0x8af, 0xe41]}) syz_emit_ethernet(0x9e, &(0x7f0000000440)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @void, {@llc_tr={0x11, {@llc={0xab, 0x17e, "ef74", "f521f845253430472ff0eb22e06c51813ee1d501c554dd4019316931df1a50c74ae13950ef77d6378618084dcd5df2f6d43184e5ed9e9407d05f133d779097e4e2c74178113a29c24d056b29773169b490d236f17dd23475fad4150458934c18f30f9d50bdc12b6e00c6077cb8434a9ea825073419ebde236241b74e1f7d193b99e06eef7cc7315e33a4ee9a"}}}}}, &(0x7f0000000180)={0x0, 0x1, [0xaea, 0x2b, 0xf7, 0x92a]}) syz_emit_ethernet(0x7d, &(0x7f0000000380)={@empty, @broadcast, @void, {@x25={0x805, {0x3, 0x0, 0xff, "14522f1be784c5a74ee55d3313676e369076fc7cfb1a680b9d4203301694c25d524fb1d0cc36d43adb8c8ecdacab1db4ad1dfe24b18f2265904b845e0e16588bb84e71f85911f8a662f86a70b80e8a796bb0f16e4158e477231331dc42606b84b76e319e0f9da6754e507f4c"}}}}, &(0x7f0000000400)={0x1, 0x4, [0x72b, 0x43b, 0xf8a, 0xd20]}) syz_emit_ethernet(0xd6, &(0x7f0000000280)={@broadcast, @random="98154d40beb6", @val={@val={0x9100, 0x1, 0x0, 0x2}, {0x8100, 0x6, 0x0, 0x4}}, {@ipv6={0x86dd, @generic={0x2, 0x6, "35bf3f", 0x98, 0x6, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}, @private2={0xfc, 0x2, '\x00', 0x1}, {[@hopopts], "c8f674e28766815eb456e8face6dd5ed79fd3d6e76a3d0b412f4e823a260f40b7d3ebc7a2be3185ba7cb99f1729b8f3cad76caca6db2f607c15462ef662310293660d60b221e7f9f24ac0d3139f7142d74317eb4e7cd0b1139abd5325c6b93b404d3f04a3aca3ed0525a4c9ea80df61bb124f4fa363a1e298dd1bd4876008dfcbbb37706934920d59b10608c1f1d4aa7"}}}}}, &(0x7f0000000000)={0x1, 0x1, [0x443, 0x94d, 0xe0c, 0x55e]}) 21:44:48 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 55) 21:44:48 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 59) 21:44:48 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x3, 0x3, 0x80, 0x40, 0x0, 0x2, 0x100, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x5f6, 0x0, @perf_config_ext={0x64e9, 0x6}, 0x4008, 0x6, 0x1, 0x9, 0xc6, 0x7, 0x7, 0x0, 0x7, 0x0, 0x5}, 0xffffffffffffffff, 0xa, r0, 0x4) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:48 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5601, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1618.158774] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1618.158790] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1618.158798] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1618.158808] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1618.158819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1618.158830] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1618.166851] FAULT_INJECTION: forcing a failure. [ 1618.166851] name fail_page_alloc, interval 1, probability 0, space 0, times 0 21:44:48 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, 0x0, 0x0) r1 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x7) ioctl$sock_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, @tipc=@nameseq={0x1e, 0x1, 0x3, {0x40, 0x4, 0x4}}, @ethernet={0x1, @link_local}, @tipc=@id={0x1e, 0x3, 0x3, {0x4e21, 0x4}}, 0x800, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000040)='syzkaller1\x00', 0x0, 0x0, 0xf801}) [ 1618.166886] CPU: 0 PID: 9574 Comm: syz-executor.4 Not tainted 5.10.223 #1 21:44:48 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 56) 21:44:48 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 55) [ 1618.166908] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1618.166921] Call Trace: [ 1618.166957] dump_stack+0x107/0x167 [ 1618.167008] should_fail.cold+0x5/0xa [ 1618.167057] __alloc_pages_nodemask+0x182/0x600 [ 1618.167081] ? lock_release+0x680/0x680 [ 1618.167102] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1618.167135] ? lock_downgrade+0x6d0/0x6d0 [ 1618.167174] alloc_pages_current+0x187/0x280 [ 1618.167201] get_zeroed_page+0x14/0xb0 [ 1618.167218] ? kasan_unpoison_shadow+0x33/0x50 [ 1618.167232] mon_alloc_buff+0xed/0x250 [ 1618.167263] mon_bin_ioctl+0x493/0xcc0 [ 1618.167287] ? wait_for_completion_io+0x270/0x270 [ 1618.167308] ? mon_bin_get_event+0x440/0x440 [ 1618.167339] ? selinux_file_ioctl+0xb6/0x270 [ 1618.167367] ? mon_bin_get_event+0x440/0x440 [ 1618.167391] __x64_sys_ioctl+0x19a/0x210 [ 1618.167416] do_syscall_64+0x33/0x40 [ 1618.167434] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1618.167445] RIP: 0033:0x7f2c25c06b19 [ 1618.167462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1618.167473] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1618.167493] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1618.167504] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1618.167515] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1618.167525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1618.167536] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1618.172440] FAULT_INJECTION: forcing a failure. [ 1618.172440] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1618.172457] CPU: 0 PID: 9588 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1618.172467] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1618.172473] Call Trace: [ 1618.172490] dump_stack+0x107/0x167 [ 1618.172513] should_fail.cold+0x5/0xa [ 1618.172545] __alloc_pages_nodemask+0x182/0x600 [ 1618.172567] ? lock_release+0x680/0x680 [ 1618.172589] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1618.172622] ? lock_downgrade+0x6d0/0x6d0 [ 1618.172661] alloc_pages_current+0x187/0x280 [ 1618.172688] get_zeroed_page+0x14/0xb0 [ 1618.172705] ? kasan_unpoison_shadow+0x33/0x50 [ 1618.172719] mon_alloc_buff+0xed/0x250 [ 1618.172750] mon_bin_ioctl+0x493/0xcc0 [ 1618.172786] ? mon_bin_get_event+0x440/0x440 [ 1618.172821] ? selinux_file_ioctl+0xb6/0x270 [ 1618.172851] ? mon_bin_get_event+0x440/0x440 [ 1618.172875] __x64_sys_ioctl+0x19a/0x210 [ 1618.172902] do_syscall_64+0x33/0x40 [ 1618.172921] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1618.172935] RIP: 0033:0x7f3f3b722b19 [ 1618.172954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1618.172969] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1618.172995] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1618.173010] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1618.173024] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1618.173039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1618.173054] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1618.242885] FAULT_INJECTION: forcing a failure. [ 1618.242885] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1618.242901] CPU: 1 PID: 9594 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1618.242909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1618.242914] Call Trace: [ 1618.242932] dump_stack+0x107/0x167 [ 1618.242946] should_fail.cold+0x5/0xa [ 1618.242964] __alloc_pages_nodemask+0x182/0x600 [ 1618.242980] ? lock_release+0x680/0x680 [ 1618.242994] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1618.243012] ? lock_downgrade+0x6d0/0x6d0 [ 1618.243033] alloc_pages_current+0x187/0x280 [ 1618.243051] get_zeroed_page+0x14/0xb0 [ 1618.243064] ? kasan_unpoison_shadow+0x33/0x50 [ 1618.243076] mon_alloc_buff+0xed/0x250 [ 1618.243094] mon_bin_ioctl+0x493/0xcc0 [ 1618.243112] ? wait_for_completion_io+0x270/0x270 [ 1618.243124] ? mon_bin_get_event+0x440/0x440 [ 1618.243143] ? selinux_file_ioctl+0xb6/0x270 [ 1618.243159] ? mon_bin_get_event+0x440/0x440 [ 1618.243175] __x64_sys_ioctl+0x19a/0x210 [ 1618.243189] do_syscall_64+0x33/0x40 [ 1618.243202] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1618.243211] RIP: 0033:0x7f2c25c06b19 [ 1618.243227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1618.243235] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1618.243249] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1618.243257] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1618.243265] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1618.243272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1618.243280] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1618.282393] FAULT_INJECTION: forcing a failure. [ 1618.282393] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1618.282415] CPU: 0 PID: 9598 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1618.282426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1618.282433] Call Trace: [ 1618.282458] dump_stack+0x107/0x167 [ 1618.282483] should_fail.cold+0x5/0xa [ 1618.282515] __alloc_pages_nodemask+0x182/0x600 [ 1618.282538] ? lock_release+0x680/0x680 [ 1618.282565] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1618.282600] ? lock_downgrade+0x6d0/0x6d0 [ 1618.282641] alloc_pages_current+0x187/0x280 [ 1618.282670] get_zeroed_page+0x14/0xb0 [ 1618.282688] ? kasan_unpoison_shadow+0x33/0x50 [ 1618.282704] mon_alloc_buff+0xed/0x250 [ 1618.282736] mon_bin_ioctl+0x493/0xcc0 [ 1618.282761] ? wait_for_completion_io+0x270/0x270 [ 1618.282781] ? mon_bin_get_event+0x440/0x440 [ 1618.282815] ? selinux_file_ioctl+0xb6/0x270 [ 1618.376627] ? mon_bin_get_event+0x440/0x440 [ 1618.376656] __x64_sys_ioctl+0x19a/0x210 [ 1618.376686] do_syscall_64+0x33/0x40 [ 1618.378913] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1618.380095] RIP: 0033:0x7f3f3b722b19 [ 1618.380967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1618.385113] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1618.386831] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1618.388433] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1618.390049] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1618.391642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1618.393259] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:44:49 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5409, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:49 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 60) 21:44:49 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5602, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:49 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 57) 21:44:49 executing program 6: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x3, r0, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_IO(r2, 0x127f, &(0x7f00000003c0)={0xe00, 0x0, 0x0, 0x0, @buffer={0x300, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fcntl$setown(r1, 0x8, 0x0) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r3, 0x400, 0x1) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x1221480, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_loose}, {@access_user}, {@mmap}, {@version_9p2000}], [{@dont_measure}, {@smackfsdef={'smackfsdef', 0x3d, '/dev/sr0\x00'}}, {@uid_gt}]}}) [ 1618.472256] FAULT_INJECTION: forcing a failure. [ 1618.472256] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1618.475023] CPU: 0 PID: 9603 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1618.476551] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1618.478396] Call Trace: [ 1618.478995] dump_stack+0x107/0x167 [ 1618.479815] should_fail.cold+0x5/0xa [ 1618.480702] __alloc_pages_nodemask+0x182/0x600 [ 1618.481745] ? lock_release+0x680/0x680 [ 1618.482639] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1618.483992] ? lock_downgrade+0x6d0/0x6d0 [ 1618.484977] alloc_pages_current+0x187/0x280 [ 1618.485969] get_zeroed_page+0x14/0xb0 [ 1618.486837] ? kasan_unpoison_shadow+0x33/0x50 [ 1618.487853] mon_alloc_buff+0xed/0x250 [ 1618.488749] mon_bin_ioctl+0x493/0xcc0 [ 1618.489626] ? wait_for_completion_io+0x270/0x270 [ 1618.490705] ? mon_bin_get_event+0x440/0x440 [ 1618.491702] ? selinux_file_ioctl+0xb6/0x270 [ 1618.492756] ? mon_bin_get_event+0x440/0x440 [ 1618.493750] __x64_sys_ioctl+0x19a/0x210 [ 1618.494663] do_syscall_64+0x33/0x40 [ 1618.495496] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1618.496649] RIP: 0033:0x7f2c25c06b19 [ 1618.497482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1618.501569] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1618.503263] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1618.504857] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1618.506444] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1618.508024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1618.509616] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 21:44:49 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) pipe(&(0x7f0000000080)) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:44:49 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 56) [ 1618.540796] FAULT_INJECTION: forcing a failure. [ 1618.540796] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1618.543489] CPU: 0 PID: 9608 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1618.545024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1618.546879] Call Trace: [ 1618.547480] dump_stack+0x107/0x167 [ 1618.548317] should_fail.cold+0x5/0xa [ 1618.549184] __alloc_pages_nodemask+0x182/0x600 [ 1618.550247] ? lock_release+0x680/0x680 [ 1618.551191] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1618.552605] ? lock_downgrade+0x6d0/0x6d0 [ 1618.553563] alloc_pages_current+0x187/0x280 [ 1618.554587] get_zeroed_page+0x14/0xb0 [ 1618.555470] ? kasan_unpoison_shadow+0x33/0x50 [ 1618.556512] mon_alloc_buff+0xed/0x250 [ 1618.557401] mon_bin_ioctl+0x493/0xcc0 [ 1618.558283] ? wait_for_completion_io+0x270/0x270 [ 1618.559369] ? mon_bin_get_event+0x440/0x440 [ 1618.560385] ? selinux_file_ioctl+0xb6/0x270 [ 1618.561390] ? mon_bin_get_event+0x440/0x440 [ 1618.562387] __x64_sys_ioctl+0x19a/0x210 [ 1618.563306] do_syscall_64+0x33/0x40 [ 1618.564142] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1618.565303] RIP: 0033:0x7fceda384b19 [ 1618.566140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1618.570239] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1618.571938] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1618.573538] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1618.575125] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1618.576715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1618.578313] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:44:49 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5603, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1618.710499] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.711678] print_req_error: 1728 callbacks suppressed [ 1618.711692] blk_update_request: I/O error, dev sr0, sector 7 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1618.716613] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.717989] blk_update_request: I/O error, dev sr0, sector 263 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1618.739535] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.740969] blk_update_request: I/O error, dev sr0, sector 519 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1618.752260] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.753812] blk_update_request: I/O error, dev sr0, sector 775 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1618.755079] FAULT_INJECTION: forcing a failure. [ 1618.755079] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1618.758292] CPU: 0 PID: 9624 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1618.759040] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1618.759922] Call Trace: [ 1618.760249] dump_stack+0x107/0x167 [ 1618.760671] should_fail.cold+0x5/0xa [ 1618.761120] __alloc_pages_nodemask+0x182/0x600 [ 1618.761651] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1618.762267] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1618.762937] ? policy_node+0xab/0x140 [ 1618.763379] ? __sanitizer_cov_trace_pc+0x52/0x60 [ 1618.763936] alloc_pages_current+0x187/0x280 [ 1618.764442] get_zeroed_page+0x14/0xb0 [ 1618.764887] ? kasan_unpoison_shadow+0x33/0x50 [ 1618.765390] mon_alloc_buff+0xed/0x250 [ 1618.765847] mon_bin_ioctl+0x493/0xcc0 [ 1618.766303] ? wait_for_completion_io+0x270/0x270 [ 1618.766848] ? mon_bin_get_event+0x440/0x440 [ 1618.766858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.767876] blk_update_request: I/O error, dev sr0, sector 1031 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1618.769010] ? selinux_file_ioctl+0xb6/0x270 [ 1618.769041] ? mon_bin_get_event+0x440/0x440 [ 1618.770475] __x64_sys_ioctl+0x19a/0x210 [ 1618.770937] do_syscall_64+0x33/0x40 [ 1618.771356] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1618.771906] RIP: 0033:0x7f3f3b722b19 [ 1618.772336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1618.774012] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1618.774703] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1618.775341] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1618.775981] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1618.776357] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.776624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1618.776636] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1618.778455] blk_update_request: I/O error, dev sr0, sector 1287 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1618.779452] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.779958] blk_update_request: I/O error, dev sr0, sector 1543 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1618.781554] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.782089] blk_update_request: I/O error, dev sr0, sector 1799 op 0x1:(WRITE) flags 0x0 phys_seg 32 prio class 0 [ 1618.783979] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.784663] blk_update_request: I/O error, dev sr0, sector 2055 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1618.787482] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.788739] blk_update_request: I/O error, dev sr0, sector 2311 op 0x1:(WRITE) flags 0x4000 phys_seg 32 prio class 0 [ 1618.791538] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.793238] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.795102] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.796595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.797899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.799671] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.801374] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.806860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.809396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.811860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.813236] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.815852] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.817233] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.820851] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.822393] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.824942] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.827407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.829873] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.831233] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.833774] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.835166] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.840000] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.840885] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.841659] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.842396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.844296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.846485] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.847273] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.848058] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.850815] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.851626] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.852377] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.854745] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.855493] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.856380] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.857172] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.857924] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.862786] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.863755] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.864932] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.866864] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.867777] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.869777] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.870525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.871382] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.874788] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.875564] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.876481] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.877972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.880759] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.881510] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.882697] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.883406] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.886786] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.887651] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.888459] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.889484] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.890248] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.893742] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.894486] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.895404] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.896534] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.897862] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.898630] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.900745] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.901480] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.903734] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.904482] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.905278] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.906200] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.907361] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.908192] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.909105] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.910043] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.910849] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.911631] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.912384] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.913313] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.914131] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.914939] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.915812] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.916676] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.917413] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.918220] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.919004] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.919914] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.920775] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.921506] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.922330] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.923173] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.923986] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.924908] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.925713] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.926563] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.927406] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.928209] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.929031] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.929956] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.930822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.931554] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.932362] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.933286] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.934093] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.934902] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.935750] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.936541] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.937390] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.938205] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.939017] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.939944] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.940818] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.941564] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.942389] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.943209] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.944022] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.944946] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.945734] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.946625] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.948286] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.949109] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.949934] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.950946] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.951728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.952518] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.953306] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.954214] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.955049] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.955874] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.956729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.957518] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.958356] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.959172] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.959980] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.960925] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.961777] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.962552] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.963434] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.964342] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.965142] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.965933] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.966668] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.967522] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.968352] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.969118] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.969863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.970624] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.971399] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.972205] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.972987] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.973894] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.974942] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.975762] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.976523] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.977392] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.978213] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.979119] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.980006] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.980931] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.981747] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.982475] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.983296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.984142] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.984945] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.985820] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.986541] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.987438] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.988247] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.988953] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.989619] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.990305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.991069] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.991777] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.992397] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.993301] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.994101] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.994869] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.995508] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.996230] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.997744] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.998486] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1618.999296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.000236] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.001160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.002074] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.002872] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.003680] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.004455] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.005307] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.006164] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.007054] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.007859] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.008642] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.009427] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.010276] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.011101] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.011957] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.012732] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.013694] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.014492] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.015419] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.016232] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.017078] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.017875] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.018669] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.019400] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.020310] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.021159] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.021987] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.022872] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.023642] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.024444] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.025340] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.026191] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.027084] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.027896] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.028736] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.029467] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.030310] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.031175] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.032069] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.032932] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.033835] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.034674] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.035412] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.036178] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.036934] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.037739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.038478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.039241] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.040149] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.041013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.041822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.042559] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.043546] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.044325] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.045128] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.045939] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.046838] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.047729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.048567] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.049387] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.051398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.052182] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.053021] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.053960] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.054863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.055724] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.056511] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.057365] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.058179] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.059070] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.059963] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.060755] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.061635] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.062449] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.063276] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.064092] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.065021] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.065891] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.066701] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.067409] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.068315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.069146] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.069953] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.070854] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.071701] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.072498] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.073271] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.074036] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.074947] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.075794] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.076548] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.077359] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.078264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.079174] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.079971] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.080750] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.081691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.082450] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.083285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.084181] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.085090] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.085906] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.086653] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.087283] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.088087] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.088815] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.089445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.090160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.091023] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.091714] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.092398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.093099] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.093924] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.094667] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.095349] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.096127] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.097531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.098762] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.099939] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.101266] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.102664] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.103888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.105303] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.106515] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.107786] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.109183] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.110426] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.111633] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.113016] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.114239] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.115456] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.116815] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.118097] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.119294] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.120527] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.121915] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.123210] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.124482] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.125897] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.127118] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.128363] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.129865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.131134] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.132353] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.133890] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.135092] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.136326] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.137806] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.139079] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.140365] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.141827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.143004] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.144341] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.145808] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.147069] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.148302] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.149731] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.150911] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.153167] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.154535] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.155871] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.156862] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.157496] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.158378] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.159096] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.159859] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.160546] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.161236] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.162060] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.162774] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.163404] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.164121] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.164980] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.165761] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.166435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.167116] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.167931] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.168969] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.170183] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.171402] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.172755] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.173951] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.175216] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.176428] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.177907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.179167] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.180729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.182132] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.183328] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.184567] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.185822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.187036] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1619.188317] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 21:45:04 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5605, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:04 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') truncate(&(0x7f00000000c0)='./file1\x00', 0x1) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ftruncate(r2, 0x1000003) write$binfmt_elf64(r2, &(0x7f00000001c0)=ANY=[], 0xfdef) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) copy_file_range(r3, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) [ 1634.145815] FAULT_INJECTION: forcing a failure. [ 1634.145815] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1634.146862] CPU: 0 PID: 9634 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1634.147438] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1634.148139] Call Trace: [ 1634.148385] dump_stack+0x107/0x167 [ 1634.148713] should_fail.cold+0x5/0xa [ 1634.149053] __alloc_pages_nodemask+0x182/0x600 [ 1634.149455] ? lock_release+0x680/0x680 [ 1634.149801] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1634.150322] ? lock_downgrade+0x6d0/0x6d0 [ 1634.150698] alloc_pages_current+0x187/0x280 [ 1634.151086] get_zeroed_page+0x14/0xb0 [ 1634.151425] ? kasan_unpoison_shadow+0x33/0x50 [ 1634.151818] mon_alloc_buff+0xed/0x250 [ 1634.152168] mon_bin_ioctl+0x493/0xcc0 [ 1634.152530] ? wait_for_completion_io+0x270/0x270 [ 1634.152948] ? mon_bin_get_event+0x440/0x440 [ 1634.153341] ? selinux_file_ioctl+0xb6/0x270 [ 1634.153730] ? mon_bin_get_event+0x440/0x440 [ 1634.154117] __x64_sys_ioctl+0x19a/0x210 [ 1634.154474] do_syscall_64+0x33/0x40 [ 1634.154800] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1634.155240] RIP: 0033:0x7f2c25c06b19 [ 1634.155566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1634.157130] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1634.157785] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1634.158392] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1634.159001] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.159612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1634.160218] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 21:45:04 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 58) 21:45:04 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 57) 21:45:04 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x540b, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:04 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 61) 21:45:04 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x90102, 0x0) ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0x7) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) pread64(0xffffffffffffffff, &(0x7f0000000100)=""/160, 0xa0, 0x7) sendfile(r0, r2, 0x0, 0x5) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:04 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7ff}, 0x4}, 0x0, 0xffffffffffffffff, r0, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0xc, {{0x2, 0x0, @local}}, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108) io_submit(0x0, 0x1, &(0x7f00000006c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, 0xffffffffffffffff, 0x0}]) setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000300)=ANY=[@ANYBLOB="fba792c2716b7f905f28790ff3378addbd0ac9baffffffb01414aa0000000002000000c3a243"], 0x18) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e00000027f00000100de000002000000ac1414aa0065ad16"], 0x18) r2 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0) io_submit(0x0, 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000000c0)={0x0, 0x0}) r4 = syz_open_procfs(r3, &(0x7f00000005c0)='fdinfo/3\x00') pread64(r4, &(0x7f0000000040)=""/55, 0x37, 0x0) openat(r0, &(0x7f00000002c0)='./file1\x00', 0x410802, 0x0) setgroups(0x4000000000000356, &(0x7f0000000380)) ioctl$F2FS_IOC_GET_PIN_FILE(r2, 0x8004f50e, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r5, &(0x7f0000001140)=[{&(0x7f0000000080)="f2", 0x1}], 0x1, 0x0, 0x0) [ 1634.175920] FAULT_INJECTION: forcing a failure. [ 1634.175920] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1634.177067] CPU: 1 PID: 9641 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1634.177706] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1634.178466] Call Trace: [ 1634.178725] dump_stack+0x107/0x167 [ 1634.179069] should_fail.cold+0x5/0xa [ 1634.179448] __alloc_pages_nodemask+0x182/0x600 [ 1634.179885] ? lock_release+0x680/0x680 [ 1634.180258] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1634.180845] ? lock_downgrade+0x6d0/0x6d0 [ 1634.181245] alloc_pages_current+0x187/0x280 [ 1634.181667] get_zeroed_page+0x14/0xb0 [ 1634.182036] ? kasan_unpoison_shadow+0x33/0x50 [ 1634.182458] mon_alloc_buff+0xed/0x250 [ 1634.182832] mon_bin_ioctl+0x493/0xcc0 [ 1634.183204] ? wait_for_completion_io+0x270/0x270 [ 1634.183659] ? mon_bin_get_event+0x440/0x440 [ 1634.184082] ? selinux_file_ioctl+0xb6/0x270 [ 1634.184520] ? mon_bin_get_event+0x440/0x440 [ 1634.184938] __x64_sys_ioctl+0x19a/0x210 [ 1634.185323] do_syscall_64+0x33/0x40 [ 1634.185678] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1634.186153] RIP: 0033:0x7fceda384b19 [ 1634.186505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1634.188179] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1634.188894] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1634.189547] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1634.190198] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.190850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1634.191504] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1634.200289] FAULT_INJECTION: forcing a failure. [ 1634.200289] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1634.201430] CPU: 1 PID: 9642 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1634.202047] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1634.202793] Call Trace: [ 1634.203041] dump_stack+0x107/0x167 [ 1634.203385] should_fail.cold+0x5/0xa [ 1634.203748] __alloc_pages_nodemask+0x182/0x600 [ 1634.204183] ? lock_release+0x680/0x680 [ 1634.204566] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1634.205126] ? lock_downgrade+0x6d0/0x6d0 [ 1634.205525] alloc_pages_current+0x187/0x280 [ 1634.205943] get_zeroed_page+0x14/0xb0 [ 1634.206304] ? kasan_unpoison_shadow+0x33/0x50 [ 1634.206727] mon_alloc_buff+0xed/0x250 [ 1634.207096] mon_bin_ioctl+0x493/0xcc0 [ 1634.207462] ? wait_for_completion_io+0x270/0x270 [ 1634.207908] ? mon_bin_get_event+0x440/0x440 21:45:04 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 59) [ 1634.208324] ? selinux_file_ioctl+0xb6/0x270 [ 1634.208748] ? mon_bin_get_event+0x440/0x440 [ 1634.209160] __x64_sys_ioctl+0x19a/0x210 [ 1634.209543] do_syscall_64+0x33/0x40 [ 1634.209890] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1634.210356] RIP: 0033:0x7f3f3b722b19 [ 1634.210705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1634.212484] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1634.213191] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1634.213842] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1634.214492] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.215143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1634.215791] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1634.244526] FAULT_INJECTION: forcing a failure. [ 1634.244526] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1634.245615] CPU: 1 PID: 9647 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1634.246233] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1634.246981] Call Trace: [ 1634.247245] dump_stack+0x107/0x167 [ 1634.247618] should_fail.cold+0x5/0xa [ 1634.248009] __alloc_pages_nodemask+0x182/0x600 [ 1634.248483] ? lock_release+0x680/0x680 [ 1634.248889] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1634.249482] ? lock_downgrade+0x6d0/0x6d0 [ 1634.249913] alloc_pages_current+0x187/0x280 [ 1634.250358] get_zeroed_page+0x14/0xb0 [ 1634.250752] ? kasan_unpoison_shadow+0x33/0x50 [ 1634.251198] mon_alloc_buff+0xed/0x250 [ 1634.251594] mon_bin_ioctl+0x493/0xcc0 [ 1634.251992] ? wait_for_completion_io+0x270/0x270 [ 1634.252481] ? mon_bin_get_event+0x440/0x440 [ 1634.252927] ? selinux_file_ioctl+0xb6/0x270 [ 1634.253368] ? mon_bin_get_event+0x440/0x440 [ 1634.253802] __x64_sys_ioctl+0x19a/0x210 [ 1634.254209] do_syscall_64+0x33/0x40 [ 1634.254586] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1634.255070] RIP: 0033:0x7f2c25c06b19 [ 1634.255445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1634.257148] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1634.257872] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1634.258547] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1634.259214] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.259887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1634.260728] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1634.288256] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 21:45:04 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5606, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:05 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x540c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:05 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 62) 21:45:05 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 58) 21:45:05 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0xe6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x203, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r5, 0x0, 0x0}, 0x0) r6 = dup2(r0, r5) r7 = dup3(r5, r4, 0x0) r8 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r11}}, 0x10000) r12 = syz_io_uring_setup(0x6d57, &(0x7f0000000180)={0x0, 0xe7ef, 0x4, 0x1, 0x2c1}, &(0x7f0000ff3000/0xd000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000000240), &(0x7f0000000280)=0x0) syz_io_uring_submit(r9, r13, &(0x7f00000002c0)=@IORING_OP_MADVISE={0x19, 0x1, 0x0, 0x0, 0x0, &(0x7f0000ff8000/0x3000)=nil, 0x3000, 0xe}, 0x7) r14 = add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000280)="0b199c1237a875ce03b255ec78bdbc4be27baca3f0d9734c8335041d161eaa95104e45e40dffd0647b900efe54dd9618a77a0e5cf285f41a3b4e2d8911aee08500301419", 0x44, 0xfffffffffffffffc) lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) keyctl$revoke(0x3, r14) keyctl$chown(0x4, r14, 0xee01, r15) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r16, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000300)="f700081f78693f27bd83f516b132f46b628899014d5ef00bcb9d20f1badbc9cbbf532f49a7716d3d2fd6b9e8cad4de4f6779f8b3cf03a389f149b989e0050f90002736f4583c2beb34add482fbc007188f8ba15128f04774479e2b215b533c29b5c0ee90eedaee86cf8f7a60a6409d45bf71b7bc33fd5d958a5b8508df26bfb23c3268dfb7cbaf65d4b0b5b7821c47997392e7856bdfe0fbf39aeb0f8e034930c13fd2670847e42531bc0405368248bfeed44ad305609e9cb17b9e2eea11f769e8aff102d3faec6e371fe19afc5d953c44c239c0cae29c6239f2176ae2cc03fd5cb062ecc79dc6e86188", 0xea}], 0x1, &(0x7f00000006c0)=ANY=[@ANYBLOB="20000000000000000100000001000000", @ANYRES32=r1, @ANYRES32=r8, @ANYRES32=r6, @ANYRES32=r0, @ANYBLOB="18000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r1, @ANYBLOB="24000000000000000100000001000000", @ANYRES32=r6, @ANYRES32, @ANYRES32=r7, @ANYRES32, @ANYBLOB="24000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=r8, @ANYRES32, @ANYRES32=r12, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32, @ANYRES32=r15, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=r16, @ANYRES32=0xee01, @ANYBLOB='\x00\x00\x00\x00'], 0x100, 0x55}, 0x10) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_RECV=@use_registered_buffer, 0x7ff) io_uring_enter(r1, 0x2271, 0x0, 0x0, 0x0, 0x0) 21:45:05 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5607, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1634.459085] FAULT_INJECTION: forcing a failure. [ 1634.459085] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1634.460213] CPU: 1 PID: 9665 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1634.460855] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1634.461599] Call Trace: [ 1634.461855] dump_stack+0x107/0x167 [ 1634.462200] should_fail.cold+0x5/0xa [ 1634.462576] __alloc_pages_nodemask+0x182/0x600 [ 1634.463014] ? lock_release+0x680/0x680 [ 1634.463395] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1634.463958] ? lock_downgrade+0x6d0/0x6d0 [ 1634.464355] alloc_pages_current+0x187/0x280 [ 1634.464917] get_zeroed_page+0x14/0xb0 [ 1634.465278] ? kasan_unpoison_shadow+0x33/0x50 [ 1634.465702] mon_alloc_buff+0xed/0x250 [ 1634.466073] mon_bin_ioctl+0x493/0xcc0 [ 1634.466443] ? wait_for_completion_io+0x270/0x270 [ 1634.466888] ? mon_bin_get_event+0x440/0x440 [ 1634.467309] ? selinux_file_ioctl+0xb6/0x270 [ 1634.467724] ? mon_bin_get_event+0x440/0x440 [ 1634.468138] __x64_sys_ioctl+0x19a/0x210 [ 1634.468542] do_syscall_64+0x33/0x40 [ 1634.468893] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1634.469361] RIP: 0033:0x7f3f3b722b19 [ 1634.469712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1634.471397] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1634.472112] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1634.472900] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1634.473549] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.474201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1634.474851] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:45:05 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5608, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:05 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 60) [ 1634.508830] FAULT_INJECTION: forcing a failure. [ 1634.508830] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1634.510054] CPU: 0 PID: 9674 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1634.510669] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1634.511364] Call Trace: [ 1634.511605] dump_stack+0x107/0x167 21:45:05 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x5609, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:05 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) connect$unix(r0, &(0x7f0000000040)=@file={0x0, './file0\x00'}, 0x6e) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x420040, 0x180) syz_emit_ethernet(0x46, &(0x7f00000000c0)=ANY=[], 0x0) [ 1634.511934] should_fail.cold+0x5/0xa [ 1634.511961] __alloc_pages_nodemask+0x182/0x600 [ 1634.511978] ? lock_release+0x680/0x680 [ 1634.511995] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 21:45:05 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x540d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1634.512020] ? lock_downgrade+0x6d0/0x6d0 [ 1634.512050] alloc_pages_current+0x187/0x280 [ 1634.512072] get_zeroed_page+0x14/0xb0 [ 1634.512085] ? kasan_unpoison_shadow+0x33/0x50 [ 1634.512100] mon_alloc_buff+0xed/0x250 21:45:05 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 63) [ 1634.512124] mon_bin_ioctl+0x493/0xcc0 [ 1634.512145] ? wait_for_completion_io+0x270/0x270 [ 1634.512160] ? mon_bin_get_event+0x440/0x440 [ 1634.512187] ? selinux_file_ioctl+0xb6/0x270 [ 1634.512209] ? mon_bin_get_event+0x440/0x440 [ 1634.512229] __x64_sys_ioctl+0x19a/0x210 [ 1634.512248] do_syscall_64+0x33/0x40 21:45:05 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 64) [ 1634.512262] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1634.512272] RIP: 0033:0x7fceda384b19 [ 1634.512285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1634.512294] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1634.512310] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1634.512319] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1634.512329] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.512337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1634.512347] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1634.563279] FAULT_INJECTION: forcing a failure. [ 1634.563279] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1634.563296] CPU: 0 PID: 9680 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1634.563304] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1634.563309] Call Trace: [ 1634.563327] dump_stack+0x107/0x167 [ 1634.563346] should_fail.cold+0x5/0xa [ 1634.563369] __alloc_pages_nodemask+0x182/0x600 [ 1634.563385] ? lock_release+0x680/0x680 [ 1634.563402] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1634.563426] ? lock_downgrade+0x6d0/0x6d0 [ 1634.563457] alloc_pages_current+0x187/0x280 [ 1634.563479] get_zeroed_page+0x14/0xb0 [ 1634.563492] ? kasan_unpoison_shadow+0x33/0x50 [ 1634.563504] mon_alloc_buff+0xed/0x250 [ 1634.563529] mon_bin_ioctl+0x493/0xcc0 [ 1634.563548] ? wait_for_completion_io+0x270/0x270 [ 1634.563569] ? mon_bin_get_event+0x440/0x440 [ 1634.563594] ? selinux_file_ioctl+0xb6/0x270 [ 1634.563616] ? mon_bin_get_event+0x440/0x440 [ 1634.563636] __x64_sys_ioctl+0x19a/0x210 [ 1634.563655] do_syscall_64+0x33/0x40 [ 1634.563671] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1634.563681] RIP: 0033:0x7fceda384b19 [ 1634.563695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1634.563703] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1634.563719] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1634.563729] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1634.563738] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.563748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1634.563757] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1634.581241] FAULT_INJECTION: forcing a failure. [ 1634.581241] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1634.581273] CPU: 0 PID: 9678 Comm: syz-executor.4 Not tainted 5.10.223 #1 [ 1634.581295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1634.581307] Call Trace: [ 1634.581341] dump_stack+0x107/0x167 [ 1634.581387] should_fail.cold+0x5/0xa [ 1634.581427] __alloc_pages_nodemask+0x182/0x600 [ 1634.581442] ? lock_release+0x680/0x680 [ 1634.581459] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1634.581483] ? lock_downgrade+0x6d0/0x6d0 [ 1634.581513] alloc_pages_current+0x187/0x280 [ 1634.581534] get_zeroed_page+0x14/0xb0 [ 1634.581547] ? kasan_unpoison_shadow+0x33/0x50 [ 1634.581558] mon_alloc_buff+0xed/0x250 [ 1634.581585] mon_bin_ioctl+0x493/0xcc0 [ 1634.581604] ? wait_for_completion_io+0x270/0x270 [ 1634.581620] ? mon_bin_get_event+0x440/0x440 [ 1634.581643] ? selinux_file_ioctl+0xb6/0x270 [ 1634.581664] ? mon_bin_get_event+0x440/0x440 [ 1634.581683] __x64_sys_ioctl+0x19a/0x210 [ 1634.581702] do_syscall_64+0x33/0x40 [ 1634.581715] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1634.581724] RIP: 0033:0x7f2c25c06b19 [ 1634.581737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1634.581745] RSP: 002b:00007f2c2317c188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1634.581760] RAX: ffffffffffffffda RBX: 00007f2c25d19f60 RCX: 00007f2c25c06b19 [ 1634.581768] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1634.581777] RBP: 00007f2c2317c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.581785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1634.581794] R13: 00007fffb31a357f R14: 00007f2c2317c300 R15: 0000000000022000 [ 1634.605166] FAULT_INJECTION: forcing a failure. [ 1634.605166] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1634.605199] CPU: 0 PID: 9685 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1634.605220] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1634.605231] Call Trace: [ 1634.605265] dump_stack+0x107/0x167 [ 1634.605310] should_fail.cold+0x5/0xa [ 1634.605341] __alloc_pages_nodemask+0x182/0x600 [ 1634.605356] ? lock_release+0x680/0x680 [ 1634.605372] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1634.605397] ? lock_downgrade+0x6d0/0x6d0 [ 1634.605426] alloc_pages_current+0x187/0x280 [ 1634.605446] get_zeroed_page+0x14/0xb0 [ 1634.605459] ? kasan_unpoison_shadow+0x33/0x50 [ 1634.605470] mon_alloc_buff+0xed/0x250 [ 1634.605494] mon_bin_ioctl+0x493/0xcc0 [ 1634.605513] ? wait_for_completion_io+0x270/0x270 [ 1634.605528] ? mon_bin_get_event+0x440/0x440 [ 1634.605557] ? selinux_file_ioctl+0xb6/0x270 [ 1634.605578] ? mon_bin_get_event+0x440/0x440 [ 1634.605597] __x64_sys_ioctl+0x19a/0x210 [ 1634.605615] do_syscall_64+0x33/0x40 [ 1634.605629] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1634.605638] RIP: 0033:0x7fceda384b19 [ 1634.605650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1634.605658] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1634.605673] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1634.605681] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1634.605689] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1634.605698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1634.605707] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:45:20 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = creat(&(0x7f0000000280)='./file0\x00', 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x101000, 0xd) socket$nl_generic(0x10, 0x3, 0x10) dup2(r4, r3) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x107142, 0x0) sendfile(r5, r3, 0x0, 0x7ffffff9) fallocate(r2, 0x0, 0x0, 0x8004) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1}) 21:45:20 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 59) 21:45:20 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 61) 21:45:20 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000140), 0x1}, 0x202, 0x0, 0x0, 0x0, 0x2, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000080)={0x0, 0x2}) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002700)='/proc/stat\x00', 0x0, 0x0) r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) sendfile(r1, r0, &(0x7f0000000040)=0xb, 0x80000001) fchown(r1, 0xffffffffffffffff, 0x0) write$P9_RLOPEN(r0, &(0x7f0000000040)={0x18, 0xd, 0x2, {{0x8, 0x4, 0x8}, 0x1f}}, 0x18) r2 = perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x9, 0x81, 0x9, 0x6, 0x0, 0x0, 0x1000, 0x9, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_config_ext={0x1, 0x9}, 0x80, 0x7, 0x2, 0x0, 0x374ec00000000, 0x8001, 0xa38b, 0x0, 0x3f}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) fallocate(r2, 0x61, 0x9, 0x7ff) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e0, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0x81) r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) mknodat$loop(r3, &(0x7f0000000300)='./file0\x00', 0x1000, 0x0) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x80, &(0x7f0000000680)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',nodevmap,fowner=', @ANYRESDEC, @ANYBLOB="2c646f6e745f61707072616973652c6d6561737572652c736d61636b5bd7658c143810662000000000000000746500285e2c7569643d3b91bd70bef3d0f7c9057da99acb6a9e7dc82f3ef390d4e0", @ANYRESDEC, @ANYBLOB=',\x00']) 21:45:20 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 65) 21:45:20 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000080), 0x2, 0x341282) ioctl$PERF_EVENT_IOC_ID(r3, 0x80082407, &(0x7f0000000100)) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:20 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x560a, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:20 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x540e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1649.971717] FAULT_INJECTION: forcing a failure. [ 1649.971717] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1649.972808] CPU: 1 PID: 9698 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1649.974064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1649.975512] Call Trace: [ 1649.975981] dump_stack+0x107/0x167 [ 1649.976654] should_fail.cold+0x5/0xa [ 1649.977303] __alloc_pages_nodemask+0x182/0x600 [ 1649.978095] ? lock_release+0x680/0x680 [ 1649.978772] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1649.979788] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1649.980727] ? asm_sysvec_reschedule_ipi+0x12/0x20 [ 1649.981582] alloc_pages_current+0x187/0x280 [ 1649.982358] get_zeroed_page+0x14/0xb0 [ 1649.983031] ? kasan_unpoison_shadow+0x33/0x50 [ 1649.983819] mon_alloc_buff+0xed/0x250 [ 1649.984506] mon_bin_ioctl+0x493/0xcc0 [ 1649.984965] FAULT_INJECTION: forcing a failure. [ 1649.984965] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1649.985375] ? wait_for_completion_io+0x270/0x270 [ 1649.987395] ? mon_bin_get_event+0x440/0x440 [ 1649.988138] ? selinux_file_ioctl+0xb6/0x270 [ 1649.988996] ? mon_bin_get_event+0x440/0x440 [ 1649.989758] __x64_sys_ioctl+0x19a/0x210 [ 1649.990645] do_syscall_64+0x33/0x40 [ 1649.991463] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1649.992604] RIP: 0033:0x7f3f3b722b19 [ 1649.993417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1649.997452] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1649.999058] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1650.000605] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1650.002138] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1650.003686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1650.005254] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1650.006838] CPU: 0 PID: 9708 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1650.007550] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1650.008385] Call Trace: [ 1650.008680] dump_stack+0x107/0x167 [ 1650.009063] should_fail.cold+0x5/0xa [ 1650.009474] __alloc_pages_nodemask+0x182/0x600 [ 1650.009956] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1650.010523] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1650.011125] ? policy_node+0xef/0x140 [ 1650.011521] ? policy_node+0xef/0x140 [ 1650.011906] alloc_pages_current+0x187/0x280 [ 1650.011930] get_zeroed_page+0x14/0xb0 [ 1650.011944] ? kasan_unpoison_shadow+0x33/0x50 [ 1650.011958] mon_alloc_buff+0xed/0x250 [ 1650.011983] mon_bin_ioctl+0x493/0xcc0 [ 1650.012003] ? wait_for_completion_io+0x270/0x270 [ 1650.012020] ? mon_bin_get_event+0x440/0x440 [ 1650.012047] ? selinux_file_ioctl+0xb6/0x270 [ 1650.012068] ? mon_bin_get_event+0x440/0x440 [ 1650.012089] __x64_sys_ioctl+0x19a/0x210 [ 1650.012109] do_syscall_64+0x33/0x40 [ 1650.012123] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1650.012134] RIP: 0033:0x7fceda384b19 [ 1650.012149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1650.012163] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1650.019010] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1650.019612] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1650.020233] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1650.020856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1650.021468] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1650.055463] 9pnet: Insufficient options for proto=fd 21:45:20 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:45:20 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x540f, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:20 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x560b, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:35 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 60) 21:45:35 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x560c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1665.285130] FAULT_INJECTION: forcing a failure. [ 1665.285130] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1665.293551] CPU: 0 PID: 9736 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1665.293563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1665.293570] Call Trace: [ 1665.293598] dump_stack+0x107/0x167 21:45:35 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 66) 21:45:35 executing program 6: io_setup(0xfff, &(0x7f0000000040)=0x0) io_cancel(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x7, 0x101, 0xffffffffffffffff, &(0x7f0000000100)="1a2077a7da14ca797324a4fdec1a018eeba8a15c036ce6f8128023ec7b1a5e18342de23ec5f64128de9b3f6f063ef5aa36005ed73fd88b8a8e7421c1b2c188b35578c5492d4e42dcf60f24a4f756a46f64b36c3fd1fef7a173aee2c26f4f0067c9fcb17cdcf7e8fffd47417ec8ba9d64575e9a6d813421e0af063c97a3964f45e3d47d74df6c1fdc17e3cece94684d6685a9469fa4c93237ebc25a", 0x9b, 0x4, 0x0, 0x2}, &(0x7f0000000200)) r1 = syz_io_uring_setup(0x7180, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000001180), &(0x7f0000000240)) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x13, &(0x7f0000000000)=[{0x0}, {0x0}], 0x2) 21:45:35 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x10000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000980)=ANY=[@ANYBLOB="f1ffffffffffffff0000000000000000a8f4740309d1fa58e3183beb4e7b51e16c51a004acaf3697040f4104abe4853a823717c1ec5d24ac3e2830db1802109aa6285bc0a5de4633f16a328d12882a5b674bc876ddef404fea30f5ddec1fca13608c2b4a849dc940e1f36f98b9182b364bc180387b47076b98c20cb30e912b7f66237e4c3186bc4ae1281a8ff6b1a327826ce75f5381dc391a3cbfe7f6ef0809cd81cbcc986a1cbc58a94aa6f07e79e21011517d75a56ba5dd727c15149050997497a0536cb65dea7c3a7919262aa045a3eb8c553e1e7832d2", @ANYRES32=0x0, @ANYBLOB="a5c3b80ac2d559a1698cf253c40eef1b04b1e072fbbae857a7e37dbbae0c19d424d61d2d6aaa25e7e20639e0d4db96d3dabe72b2bfdff7d5dfdfd85dfe93301abf85c3792329110ca41347b4aa898c50fee6abca1e6b5e13a6ef9917cb928b8ca8fe7ae60d678f6fb2dd3520fb542e0224f9c87590b1f0d5844760b11d01838560c9b1e706a723c55096511547d2e9b312c8417c41137df97083f7a380a233a5ee00dd7b40d7ddfff961feb0594d51483a9cf8ee7caa98d6a93391a655c819f317c12653ab0defb8d6baac791e399d9e"], 0x28}}, 0x0) close_range(r1, r0, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r0, 0x0) r2 = add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0) r3 = add_key$keyring(0x0, &(0x7f0000000480)={'syz', 0x0}, 0x0, 0x0, r2) add_key(0x0, &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000140), &(0x7f00000001c0)={'syz', 0x0}, 0x0, 0x0, r3) pwrite64(0xffffffffffffffff, &(0x7f0000000100)='n', 0x1, 0x7fffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000240)={'wlan1\x00'}) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYBLOB="f1da6d3b806d92f66731aca8a30437cd089aadcb453207c331df632c3504c5ef84e463119b5f58f979bdfa68f8a8381ad127ac2c9bab63b6e4f0b82dcba5bd66f24e7cd4c35d0994991174ebe701c3d4f852f9dc947afc4a8e2af2da9dcd26ef168ba0ce4d000000000000004d2937061591d22cbfb2484bb3b8a2c71c91a12bb2e49e666e8ea8ade1c5e5a3adc201e911aeba848073ae"], 0x1c}, 0x1, 0x0, 0x0, 0x20004050}, 0x0) add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$revoke(0x3, 0x0) syz_open_procfs(0x0, &(0x7f0000000040)='net\x00') perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0xf7, &(0x7f0000000000)) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x1c7a02, 0x0) unshare(0x48020200) 21:45:35 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x2, 0x119b28) 21:45:35 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5410, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:35 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x1) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1665.296408] should_fail.cold+0x5/0xa [ 1665.296438] __alloc_pages_nodemask+0x182/0x600 [ 1665.296458] ? lock_release+0x680/0x680 [ 1665.296478] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1665.296508] ? lock_downgrade+0x6d0/0x6d0 [ 1665.296545] alloc_pages_current+0x187/0x280 21:45:36 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x560d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1665.296573] get_zeroed_page+0x14/0xb0 [ 1665.296589] ? kasan_unpoison_shadow+0x33/0x50 21:45:36 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 67) [ 1665.296605] mon_alloc_buff+0xed/0x250 21:45:36 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x4b47, 0x119b28) [ 1665.296635] mon_bin_ioctl+0x493/0xcc0 [ 1665.296660] ? wait_for_completion_io+0x270/0x270 [ 1665.296679] ? mon_bin_get_event+0x440/0x440 [ 1665.296718] ? selinux_file_ioctl+0xb6/0x270 [ 1665.296745] ? mon_bin_get_event+0x440/0x440 [ 1665.296767] __x64_sys_ioctl+0x19a/0x210 21:45:36 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 61) [ 1665.296790] do_syscall_64+0x33/0x40 [ 1665.296806] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1665.296818] RIP: 0033:0x7f3f3b722b19 [ 1665.296835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:45:36 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x9}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0xff, 0xaf, 0x1f, 0x6, 0x0, 0x561, 0x100a0, 0xe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203ffd, 0x2, @perf_bp={&(0x7f0000000200), 0x19}, 0x1561, 0x3, 0xfffffff8, 0x3, 0xd64, 0xff8, 0x3, 0x0, 0x20, 0x0, 0xfffffffffffffffa}, 0xffffffffffffffff, 0x4, r0, 0x8) openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x20000, 0x0) perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x81, 0x2, 0x80, 0x3, 0x0, 0x8, 0xc0802, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x5, 0x40}, 0x1a000, 0x3, 0x7, 0x2, 0xffffffff, 0x5, 0x3, 0x0, 0x9, 0x0, 0xd68}, 0xffffffffffffffff, 0xf, r0, 0x2) listxattr(&(0x7f0000000040)='./cgroup.net/cgroup.procs/../file0\x00', 0x0, 0x0) [ 1665.296845] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1665.296865] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1665.296875] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1665.296885] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1665.296895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1665.296906] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:45:36 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 68) 21:45:36 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 62) [ 1665.302312] FAULT_INJECTION: forcing a failure. [ 1665.302312] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1665.302329] CPU: 0 PID: 9738 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1665.302339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1665.302346] Call Trace: [ 1665.302363] dump_stack+0x107/0x167 [ 1665.302387] should_fail.cold+0x5/0xa [ 1665.302414] __alloc_pages_nodemask+0x182/0x600 [ 1665.302434] ? lock_release+0x680/0x680 [ 1665.302455] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1665.302489] ? lock_downgrade+0x6d0/0x6d0 [ 1665.302527] alloc_pages_current+0x187/0x280 [ 1665.302559] get_zeroed_page+0x14/0xb0 [ 1665.302575] ? kasan_unpoison_shadow+0x33/0x50 [ 1665.302589] mon_alloc_buff+0xed/0x250 [ 1665.302620] mon_bin_ioctl+0x493/0xcc0 [ 1665.302644] ? wait_for_completion_io+0x270/0x270 [ 1665.302664] ? mon_bin_get_event+0x440/0x440 [ 1665.302694] ? selinux_file_ioctl+0xb6/0x270 [ 1665.302721] ? mon_bin_get_event+0x440/0x440 [ 1665.302745] __x64_sys_ioctl+0x19a/0x210 [ 1665.302769] do_syscall_64+0x33/0x40 [ 1665.302785] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1665.302796] RIP: 0033:0x7fceda384b19 [ 1665.302812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1665.302822] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1665.302841] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1665.302852] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1665.302863] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1665.302873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1665.302885] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1665.420331] FAULT_INJECTION: forcing a failure. [ 1665.420331] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1665.420352] CPU: 0 PID: 9752 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1665.420362] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1665.420368] Call Trace: [ 1665.420391] dump_stack+0x107/0x167 [ 1665.420415] should_fail.cold+0x5/0xa [ 1665.420444] __alloc_pages_nodemask+0x182/0x600 [ 1665.420465] ? lock_release+0x680/0x680 [ 1665.420485] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1665.420517] ? lock_downgrade+0x6d0/0x6d0 [ 1665.420561] alloc_pages_current+0x187/0x280 [ 1665.420590] get_zeroed_page+0x14/0xb0 [ 1665.420608] ? kasan_unpoison_shadow+0x33/0x50 [ 1665.420624] mon_alloc_buff+0xed/0x250 [ 1665.420654] mon_bin_ioctl+0x493/0xcc0 [ 1665.420679] ? wait_for_completion_io+0x270/0x270 [ 1665.420699] ? mon_bin_get_event+0x440/0x440 [ 1665.420739] ? selinux_file_ioctl+0xb6/0x270 [ 1665.420765] ? mon_bin_get_event+0x440/0x440 [ 1665.420790] __x64_sys_ioctl+0x19a/0x210 [ 1665.420812] do_syscall_64+0x33/0x40 [ 1665.420829] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1665.420840] RIP: 0033:0x7f3f3b722b19 [ 1665.420855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1665.420864] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1665.420884] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1665.420895] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1665.420904] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1665.420912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1665.420921] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1665.424907] FAULT_INJECTION: forcing a failure. [ 1665.424907] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1665.424922] CPU: 1 PID: 9755 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1665.424931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1665.424936] Call Trace: [ 1665.424951] dump_stack+0x107/0x167 [ 1665.424968] should_fail.cold+0x5/0xa [ 1665.424987] __alloc_pages_nodemask+0x182/0x600 [ 1665.425003] ? lock_release+0x680/0x680 [ 1665.425020] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1665.425043] ? lock_downgrade+0x6d0/0x6d0 [ 1665.425069] alloc_pages_current+0x187/0x280 [ 1665.425089] get_zeroed_page+0x14/0xb0 [ 1665.425105] ? kasan_unpoison_shadow+0x33/0x50 [ 1665.425117] mon_alloc_buff+0xed/0x250 [ 1665.425139] mon_bin_ioctl+0x493/0xcc0 [ 1665.425158] ? wait_for_completion_io+0x270/0x270 [ 1665.425174] ? mon_bin_get_event+0x440/0x440 [ 1665.425200] ? selinux_file_ioctl+0xb6/0x270 [ 1665.425221] ? mon_bin_get_event+0x440/0x440 [ 1665.425239] __x64_sys_ioctl+0x19a/0x210 [ 1665.425257] do_syscall_64+0x33/0x40 [ 1665.425271] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1665.425281] RIP: 0033:0x7fceda384b19 [ 1665.425295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1665.425304] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1665.425320] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1665.425329] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1665.425339] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1665.425348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1665.425358] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1665.509636] FAULT_INJECTION: forcing a failure. [ 1665.509636] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1665.509659] CPU: 1 PID: 9767 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1665.509668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1665.509673] Call Trace: [ 1665.509695] dump_stack+0x107/0x167 [ 1665.509714] should_fail.cold+0x5/0xa [ 1665.509736] __alloc_pages_nodemask+0x182/0x600 [ 1665.509755] ? lock_release+0x680/0x680 [ 1665.509773] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1665.509796] ? lock_downgrade+0x6d0/0x6d0 [ 1665.509823] alloc_pages_current+0x187/0x280 [ 1665.509845] get_zeroed_page+0x14/0xb0 [ 1665.509862] ? kasan_unpoison_shadow+0x33/0x50 [ 1665.509876] mon_alloc_buff+0xed/0x250 [ 1665.509899] mon_bin_ioctl+0x493/0xcc0 [ 1665.509920] ? wait_for_completion_io+0x270/0x270 [ 1665.509936] ? mon_bin_get_event+0x440/0x440 [ 1665.509961] ? selinux_file_ioctl+0xb6/0x270 [ 1665.509980] ? mon_bin_get_event+0x440/0x440 [ 1665.509999] __x64_sys_ioctl+0x19a/0x210 [ 1665.510017] do_syscall_64+0x33/0x40 [ 1665.510032] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1665.510043] RIP: 0033:0x7fceda384b19 [ 1665.510058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1665.510067] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1665.510083] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1665.510092] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1665.510101] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1665.510111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1665.510121] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1665.532838] FAULT_INJECTION: forcing a failure. [ 1665.532838] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1665.610652] CPU: 1 PID: 9769 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1665.610660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1665.610665] Call Trace: [ 1665.610690] dump_stack+0x107/0x167 [ 1665.610707] should_fail.cold+0x5/0xa [ 1665.613794] __alloc_pages_nodemask+0x182/0x600 [ 1665.614286] ? lock_release+0x680/0x680 [ 1665.614708] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1665.615351] ? lock_downgrade+0x6d0/0x6d0 [ 1665.615372] alloc_pages_current+0x187/0x280 [ 1665.615389] get_zeroed_page+0x14/0xb0 [ 1665.615402] ? kasan_unpoison_shadow+0x33/0x50 [ 1665.615413] mon_alloc_buff+0xed/0x250 [ 1665.615430] mon_bin_ioctl+0x493/0xcc0 [ 1665.615447] ? wait_for_completion_io+0x270/0x270 [ 1665.615459] ? mon_bin_get_event+0x440/0x440 [ 1665.615477] ? selinux_file_ioctl+0xb6/0x270 [ 1665.615492] ? mon_bin_get_event+0x440/0x440 [ 1665.615507] __x64_sys_ioctl+0x19a/0x210 [ 1665.615522] do_syscall_64+0x33/0x40 [ 1665.615534] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1665.615544] RIP: 0033:0x7f3f3b722b19 [ 1665.615559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1665.615566] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1665.615580] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1665.615587] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1665.615595] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1665.615601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1665.615609] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:45:51 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x560e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:51 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x4b49, 0x119b28) 21:45:51 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5412, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1680.633775] FAULT_INJECTION: forcing a failure. [ 1680.633775] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1680.634875] CPU: 0 PID: 9785 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1680.635465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1680.636165] Call Trace: [ 1680.636416] dump_stack+0x107/0x167 [ 1680.636739] should_fail.cold+0x5/0xa [ 1680.637108] __alloc_pages_nodemask+0x182/0x600 [ 1680.637551] ? lock_release+0x680/0x680 [ 1680.637901] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1680.638463] ? lock_downgrade+0x6d0/0x6d0 [ 1680.638495] alloc_pages_current+0x187/0x280 [ 1680.638517] get_zeroed_page+0x14/0xb0 [ 1680.638531] ? kasan_unpoison_shadow+0x33/0x50 [ 1680.638543] mon_alloc_buff+0xed/0x250 [ 1680.638568] mon_bin_ioctl+0x493/0xcc0 [ 1680.638589] ? wait_for_completion_io+0x270/0x270 [ 1680.638605] ? mon_bin_get_event+0x440/0x440 [ 1680.638631] ? selinux_file_ioctl+0xb6/0x270 [ 1680.638652] ? mon_bin_get_event+0x440/0x440 [ 1680.638672] __x64_sys_ioctl+0x19a/0x210 [ 1680.638691] do_syscall_64+0x33/0x40 [ 1680.638705] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1680.638715] RIP: 0033:0x7fceda384b19 [ 1680.638729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1680.638737] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1680.638754] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1680.638762] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1680.638772] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1680.638780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1680.638789] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1680.651328] FAULT_INJECTION: forcing a failure. [ 1680.651328] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1680.651341] CPU: 0 PID: 9791 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1680.651349] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1680.651355] Call Trace: [ 1680.651368] dump_stack+0x107/0x167 [ 1680.651386] should_fail.cold+0x5/0xa [ 1680.651407] __alloc_pages_nodemask+0x182/0x600 [ 1680.651422] ? lock_release+0x680/0x680 [ 1680.651439] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1680.651463] ? lock_downgrade+0x6d0/0x6d0 [ 1680.651493] alloc_pages_current+0x187/0x280 [ 1680.651514] get_zeroed_page+0x14/0xb0 [ 1680.651527] ? kasan_unpoison_shadow+0x33/0x50 [ 1680.651542] mon_alloc_buff+0xed/0x250 [ 1680.651566] mon_bin_ioctl+0x493/0xcc0 [ 1680.651585] ? wait_for_completion_io+0x270/0x270 [ 1680.651600] ? mon_bin_get_event+0x440/0x440 [ 1680.651625] ? selinux_file_ioctl+0xb6/0x270 [ 1680.651646] ? mon_bin_get_event+0x440/0x440 [ 1680.651664] __x64_sys_ioctl+0x19a/0x210 [ 1680.651683] do_syscall_64+0x33/0x40 [ 1680.651696] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1680.651705] RIP: 0033:0x7f3f3b722b19 [ 1680.651717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:45:51 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x240000, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000100)='\x00') socket$unix(0x1, 0x2, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:51 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 69) 21:45:51 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0xffff) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000040)=@abs={0x1, 0x0, 0x4e24}, 0x6e) setsockopt$sock_int(r2, 0x1, 0x10, &(0x7f0000000000)=0x1, 0x4) sendmsg$unix(r2, &(0x7f0000001280)={&(0x7f00000001c0)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x14}, 0x0) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x511102, 0x0) dup2(0xffffffffffffffff, r3) fallocate(r2, 0x2c, 0xffff, 0x0) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) dup2(r6, r5) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x2007, @fd_index, 0x1, 0x0, 0x0, 0x16, 0x1, {0x2}}, 0x2) pipe(&(0x7f0000000100)={0xffffffffffffffff}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x0, {0x3294}}, 0x100) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4) syz_open_dev$ttys(0xc, 0x2, 0x1) 21:45:51 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000003) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0xfffffffffffffff7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = socket$inet6_udp(0xa, 0x2, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x100000e, 0x4000010, r0, 0x10000000) syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_SEND={0x1a, 0x3, 0x0, r1, 0x0, &(0x7f00000001c0)="852756288128ec515433344cff2a5ca769c13c6037f9b2bee23eff14ca3a49002afa615d81a21aa290480307713b298c75c68325efabb78305495c39864eba50464df8adc4ed5f29ade2334f699d9658d58a27cf4759", 0x56, 0x40040, 0x1}, 0xffffff5b) getsockopt$inet6_buf(r2, 0x29, 0x45, &(0x7f0000000000)=""/30, &(0x7f0000000040)=0x1e) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000004, 0x13, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(r1, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000000)=@updsa={0x158, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in6=@private2, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}}}, @replay_esn_val={0x1c}]}, 0x158}}, 0x0) pipe(&(0x7f0000000180)) 21:45:51 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 63) 21:45:51 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x560f, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:45:51 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x541b, 0x119b28) 21:45:51 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 64) 21:45:51 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 70) 21:45:51 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x26000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000003) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0xfffffffffffffff7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = socket$inet6_udp(0xa, 0x2, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x100000e, 0x4000010, r0, 0x10000000) syz_io_uring_submit(0x0, r3, &(0x7f0000000240)=@IORING_OP_SEND={0x1a, 0x3, 0x0, r1, 0x0, &(0x7f00000001c0)="852756288128ec515433344cff2a5ca769c13c6037f9b2bee23eff14ca3a49002afa615d81a21aa290480307713b298c75c68325efabb78305495c39864eba50464df8adc4ed5f29ade2334f699d9658d58a27cf4759", 0x56, 0x40040, 0x1}, 0xffffff5b) getsockopt$inet6_buf(r2, 0x29, 0x45, &(0x7f0000000000)=""/30, &(0x7f0000000040)=0x1e) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000004, 0x13, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(r1, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000000)=@updsa={0x158, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in6=@private2, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'sha256\x00'}}}, @replay_esn_val={0x1c}]}, 0x158}}, 0x0) pipe(&(0x7f0000000180)) [ 1680.651725] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1680.651740] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1680.651749] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1680.651757] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1680.651765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1680.651774] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1680.760317] FAULT_INJECTION: forcing a failure. [ 1680.760317] name fail_page_alloc, interval 1, probability 0, space 0, times 0 21:45:51 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 65) [ 1680.760360] CPU: 0 PID: 9806 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1680.760369] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 21:45:51 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5421, 0x119b28) [ 1680.760375] Call Trace: [ 1680.760396] dump_stack+0x107/0x167 [ 1680.760418] should_fail.cold+0x5/0xa [ 1680.760442] __alloc_pages_nodemask+0x182/0x600 [ 1680.760460] ? lock_release+0x680/0x680 [ 1680.760477] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1680.760501] ? lock_downgrade+0x6d0/0x6d0 [ 1680.760532] alloc_pages_current+0x187/0x280 [ 1680.760557] get_zeroed_page+0x14/0xb0 [ 1680.760571] ? kasan_unpoison_shadow+0x33/0x50 [ 1680.760584] mon_alloc_buff+0xed/0x250 [ 1680.760608] mon_bin_ioctl+0x493/0xcc0 [ 1680.760631] ? mon_bin_get_event+0x440/0x440 [ 1680.760656] ? selinux_file_ioctl+0xb6/0x270 [ 1680.760678] ? mon_bin_get_event+0x440/0x440 [ 1680.760698] __x64_sys_ioctl+0x19a/0x210 [ 1680.760719] do_syscall_64+0x33/0x40 [ 1680.760733] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1680.760743] RIP: 0033:0x7f3f3b722b19 [ 1680.760757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1680.760765] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1680.760803] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1680.760812] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1680.760820] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1680.760828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1680.760837] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1680.761413] FAULT_INJECTION: forcing a failure. [ 1680.761413] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1680.761426] CPU: 0 PID: 9804 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1680.761434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1680.761439] Call Trace: [ 1680.761453] dump_stack+0x107/0x167 [ 1680.761476] should_fail.cold+0x5/0xa [ 1680.761498] __alloc_pages_nodemask+0x182/0x600 [ 1680.761514] ? lock_release+0x680/0x680 [ 1680.761536] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1680.761562] ? lock_downgrade+0x6d0/0x6d0 [ 1680.761593] alloc_pages_current+0x187/0x280 [ 1680.761615] get_zeroed_page+0x14/0xb0 [ 1680.761633] ? kasan_unpoison_shadow+0x33/0x50 [ 1680.761648] mon_alloc_buff+0xed/0x250 [ 1680.761675] mon_bin_ioctl+0x493/0xcc0 [ 1680.761698] ? wait_for_completion_io+0x270/0x270 [ 1680.761714] ? mon_bin_get_event+0x440/0x440 [ 1680.761742] ? selinux_file_ioctl+0xb6/0x270 [ 1680.761765] ? mon_bin_get_event+0x440/0x440 [ 1680.761786] __x64_sys_ioctl+0x19a/0x210 [ 1680.761806] do_syscall_64+0x33/0x40 [ 1680.761822] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1680.761835] RIP: 0033:0x7fceda384b19 [ 1680.761872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1680.761885] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1680.761907] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1680.761919] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1680.761931] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1680.761943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1680.761956] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1680.848081] FAULT_INJECTION: forcing a failure. [ 1680.848081] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1680.867642] CPU: 0 PID: 9816 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1680.867652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1680.867658] Call Trace: [ 1680.867679] dump_stack+0x107/0x167 [ 1680.867697] should_fail.cold+0x5/0xa [ 1680.867722] __alloc_pages_nodemask+0x182/0x600 [ 1680.867750] ? lock_release+0x680/0x680 [ 1680.870661] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1680.870686] ? lock_downgrade+0x6d0/0x6d0 [ 1680.870716] alloc_pages_current+0x187/0x280 [ 1680.870739] get_zeroed_page+0x14/0xb0 [ 1680.870753] ? kasan_unpoison_shadow+0x33/0x50 [ 1680.870772] mon_alloc_buff+0xed/0x250 [ 1680.873106] mon_bin_ioctl+0x493/0xcc0 [ 1680.873451] ? wait_for_completion_io+0x270/0x270 [ 1680.873867] ? mon_bin_get_event+0x440/0x440 [ 1680.874278] ? selinux_file_ioctl+0xb6/0x270 [ 1680.874668] ? mon_bin_get_event+0x440/0x440 [ 1680.875057] __x64_sys_ioctl+0x19a/0x210 [ 1680.875432] do_syscall_64+0x33/0x40 [ 1680.875760] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1680.876206] RIP: 0033:0x7f3f3b722b19 [ 1680.876544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1680.878131] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1680.878801] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1680.879424] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1680.880037] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1680.880661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1680.881289] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:46:06 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 71) [ 1695.903687] FAULT_INJECTION: forcing a failure. [ 1695.903687] name fail_page_alloc, interval 1, probability 0, space 0, times 0 21:46:06 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 66) [ 1695.904722] CPU: 0 PID: 9826 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1695.905336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1695.906029] Call Trace: [ 1695.906265] dump_stack+0x107/0x167 [ 1695.906582] should_fail.cold+0x5/0xa [ 1695.906919] __alloc_pages_nodemask+0x182/0x600 [ 1695.907319] ? lock_release+0x680/0x680 [ 1695.907661] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1695.908184] ? lock_downgrade+0x6d0/0x6d0 [ 1695.908557] alloc_pages_current+0x187/0x280 [ 1695.908945] get_zeroed_page+0x14/0xb0 [ 1695.909300] ? kasan_unpoison_shadow+0x33/0x50 [ 1695.909692] mon_alloc_buff+0xed/0x250 [ 1695.910039] mon_bin_ioctl+0x493/0xcc0 [ 1695.910388] ? wait_for_completion_io+0x270/0x270 [ 1695.910803] ? mon_bin_get_event+0x440/0x440 [ 1695.911193] ? selinux_file_ioctl+0xb6/0x270 [ 1695.911579] ? mon_bin_get_event+0x440/0x440 [ 1695.911965] __x64_sys_ioctl+0x19a/0x210 [ 1695.912322] do_syscall_64+0x33/0x40 [ 1695.912644] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1695.913095] RIP: 0033:0x7f3f3b722b19 [ 1695.913422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1695.914969] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1695.915622] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1695.916235] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1695.916842] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1695.917477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1695.918084] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1695.920296] FAULT_INJECTION: forcing a failure. 21:46:06 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) r4 = epoll_create(0x1) kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r4, &(0x7f0000000040)={r4}) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x6, 0x7f, 0xe7, 0x7, 0x0, 0x401, 0x48000, 0x11, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x7, @perf_bp, 0x2040, 0x5, 0x3ff, 0x2, 0x0, 0x8, 0x1, 0x0, 0xfff, 0x0, 0x4e77}, 0x0, 0x2, 0xffffffffffffffff, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2000) r6 = socket$inet_udp(0x2, 0x2, 0x0) r7 = getpid() r8 = getpgid(0x0) r9 = epoll_create(0x1) kcmp$KCMP_EPOLL_TFD(r7, r8, 0x7, r9, &(0x7f0000000040)={r9}) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000080)=[{&(0x7f0000000180)="65b4a4a63b61d383564170091af32ff0a23a5569a60a18a6b54425e877dfde311de73963885cd7b1c36cfbbeca4fa000b428ae76fa89f3f1b9390111277a3bec72727f6f779a95f091372ee9cd9b73723b2b710f12c3d83fa9fd80a520e26b640005b5f9674ccac8a1f98aaf3a793872fda7675c912603c7635b5e282436ed0b4abf4e1007d32e41e5eef8080160", 0x8e}, {&(0x7f0000000240)="aa156019103d2d71b760b8c896b446e4f162b750d0b58bb228d1f07182e5a1906dac5db3d246c29ca24e06b813ff12be953fc14d9e3f8134fcd3c1c40665cf4b4abc0b97d447c86a2c138fa20e30cd435194df3b189ab54ea76a0c30246c87aa1841766c45db9df007454c11c9570603f14477cdcf53bdec31c67b23225d801e750e00c4a4", 0x85}], 0x2, &(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0xee01, @ANYRES32=r5, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32=r0, @ANYRES32, @ANYRES32=r6, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r8, @ANYRES32=0xee00, @ANYRES32=0xee01, @ANYBLOB="000000001c0000000000000001e7d900000002050000ec21ce376aecef9d847091e88475e7553d95074e6ff8ad33056e4c0e0e36bbee6b6f03ef2ea201882830a56b75c18969d1a0bdc9ece3bb75c77d3885ecca3bdaf508", @ANYRES32, @ANYRES32, @ANYRES32=0xee01, @ANYBLOB='\x00\x00\x00\x00'], 0x80, 0x4800}, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1695.920296] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1695.921352] CPU: 0 PID: 9825 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1695.921960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1695.922693] Call Trace: [ 1695.922945] dump_stack+0x107/0x167 [ 1695.923293] should_fail.cold+0x5/0xa [ 1695.923658] __alloc_pages_nodemask+0x182/0x600 [ 1695.924082] ? lock_release+0x680/0x680 [ 1695.929129] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1695.929699] ? lock_downgrade+0x6d0/0x6d0 [ 1695.930113] alloc_pages_current+0x187/0x280 [ 1695.930543] get_zeroed_page+0x14/0xb0 [ 1695.930914] ? kasan_unpoison_shadow+0x33/0x50 [ 1695.931338] mon_alloc_buff+0xed/0x250 [ 1695.931719] mon_bin_ioctl+0x493/0xcc0 [ 1695.932091] ? wait_for_completion_io+0x270/0x270 [ 1695.932544] ? mon_bin_get_event+0x440/0x440 [ 1695.932970] ? selinux_file_ioctl+0xb6/0x270 [ 1695.933397] ? mon_bin_get_event+0x440/0x440 [ 1695.933815] __x64_sys_ioctl+0x19a/0x210 [ 1695.934201] do_syscall_64+0x33/0x40 [ 1695.934549] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1695.935019] RIP: 0033:0x7fceda384b19 [ 1695.935366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1695.937030] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1695.937744] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1695.938400] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1695.939051] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1695.939698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1695.940342] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:46:06 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x40049409, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:06 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), r0) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000500)={0x4c, 0x12, 0x501, 0x0, 0x0, {0x7, 0x0, 0x0, 0x0, {0x0, 0x0, [0x0, 0x4]}}}, 0x4c}}, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) ioctl$sock_SIOCBRDELBR(r1, 0x89a1, &(0x7f00000000c0)='batadv0\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r3, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = dup2(r6, r5) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r4, @ANYBLOB="017d3fd0f34d2a171ffeb74ec1650072"]) r9 = syz_genetlink_get_family_id$batadv(0x0, r7) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r8, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)=ANY=[@ANYRES64, @ANYRES16=r9, @ANYRESOCT], 0x24}, 0x1, 0x0, 0x0, 0x200040c0}, 0x14050884) sendmsg$BATADV_CMD_GET_VLAN(r3, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, r9, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0xcb}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x456f}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8000}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xee5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0xfe}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x1041}, 0x400c4) 21:46:06 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5413, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:06 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5450, 0x119b28) [ 1695.967374] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.6'. 21:46:06 executing program 0: ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000000)) [ 1695.996203] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.6'. 21:46:06 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x40086602, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:06 executing program 0: close(0xffffffffffffffff) perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240)="01", 0x1) close(r0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r2, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) dup2(r0, r2) execveat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x0, 0x0, 0x0) 21:46:06 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5451, 0x119b28) 21:46:06 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5414, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:06 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 72) 21:46:06 executing program 6: r0 = syz_io_uring_setup(0x52dc, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x10000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) syz_io_uring_submit(r7, r5, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5}, 0x80000001) syz_io_uring_setup(0x2e17, &(0x7f0000000040)={0x0, 0xce2f, 0x8, 0x3, 0xcd}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000001c0)=0x0) r9 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000486000/0x1000)=nil, &(0x7f0000000380)=0x0, &(0x7f0000000280)=0x0) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0) syz_io_uring_submit(r10, r11, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x10000) syz_io_uring_submit(r7, r8, &(0x7f0000000340)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index, 0x101, &(0x7f0000000200)=""/162, 0xa2, 0xf1b77c8807727170, 0x1, {0x0, r12}}, 0xab0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000740), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$cdrom(0xffffffffffffff9c, &(0x7f0000002480), 0x800, 0x0) stat(&(0x7f0000000900)='.\x00', &(0x7f0000000880)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 21:46:06 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 67) 21:46:06 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x40087602, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1696.158791] FAULT_INJECTION: forcing a failure. [ 1696.158791] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1696.159856] CPU: 0 PID: 9857 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1696.160431] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1696.161159] Call Trace: [ 1696.161236] FAULT_INJECTION: forcing a failure. [ 1696.161236] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1696.161398] dump_stack+0x107/0x167 [ 1696.161417] should_fail.cold+0x5/0xa [ 1696.163002] __alloc_pages_nodemask+0x182/0x600 [ 1696.163404] ? lock_release+0x680/0x680 [ 1696.163755] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1696.164272] ? lock_downgrade+0x6d0/0x6d0 [ 1696.164644] alloc_pages_current+0x187/0x280 [ 1696.165040] get_zeroed_page+0x14/0xb0 [ 1696.165377] ? kasan_unpoison_shadow+0x33/0x50 [ 1696.165769] mon_alloc_buff+0xed/0x250 [ 1696.166113] mon_bin_ioctl+0x493/0xcc0 [ 1696.166458] ? mon_bin_get_event+0x440/0x440 [ 1696.166848] ? selinux_file_ioctl+0xb6/0x270 [ 1696.167233] ? mon_bin_get_event+0x440/0x440 [ 1696.167617] __x64_sys_ioctl+0x19a/0x210 [ 1696.167973] do_syscall_64+0x33/0x40 [ 1696.168294] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1696.168731] RIP: 0033:0x7fceda384b19 [ 1696.169062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1696.170610] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1696.171261] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1696.171867] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1696.172471] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1696.173088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1696.173696] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1696.174334] CPU: 1 PID: 9859 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1696.174916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1696.175617] Call Trace: [ 1696.175845] dump_stack+0x107/0x167 [ 1696.176160] should_fail.cold+0x5/0xa [ 1696.176491] __alloc_pages_nodemask+0x182/0x600 [ 1696.176891] ? lock_release+0x680/0x680 [ 1696.177252] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1696.177771] ? lock_downgrade+0x6d0/0x6d0 [ 1696.178135] alloc_pages_current+0x187/0x280 [ 1696.178517] get_zeroed_page+0x14/0xb0 [ 1696.178851] ? kasan_unpoison_shadow+0x33/0x50 [ 1696.179240] mon_alloc_buff+0xed/0x250 [ 1696.179580] mon_bin_ioctl+0x493/0xcc0 [ 1696.179924] ? wait_for_completion_io+0x270/0x270 [ 1696.180338] ? mon_bin_get_event+0x440/0x440 [ 1696.180720] ? selinux_file_ioctl+0xb6/0x270 [ 1696.181122] ? mon_bin_get_event+0x440/0x440 [ 1696.181137] __x64_sys_ioctl+0x19a/0x210 [ 1696.181151] do_syscall_64+0x33/0x40 [ 1696.181162] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1696.181170] RIP: 0033:0x7f3f3b722b19 [ 1696.181183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1696.181194] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1696.184495] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1696.184503] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1696.184511] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1696.184519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1696.184527] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:46:06 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5415, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:06 executing program 0: write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r2, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000000)) accept4$packet(r1, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000001940)=0x14, 0x80800) sendmmsg(0xffffffffffffffff, &(0x7f0000005dc0)=[{{&(0x7f0000000040)=@l2tp={0x2, 0x0, @rand_addr=0x64010102}, 0x80, &(0x7f0000001700)=[{&(0x7f0000000100)="208c1dda925fd475652a02df1b5d573bd205743492b173a5ff18ae", 0x1b}, {&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000000200)="238006c89ee7084cdd4db0bd1dc60fbc2ea6646db8d790423f628efed1d84b005cf24bf15759e6c2290d8584430519e3644b92230157b0b3587a517829836b07ad1b228e9107157c81949681bc1e9fdea78fb04aa511f2b5fa731b", 0x5b}, {&(0x7f0000000280)="6dc32cc346f0bbc42db481b565e15f30c7dad6a890e03c1dea27d45e1e3cdf723bf38076cf42ee7e6b4d100bfdef913152c4b643413084670c22eae7909aeb4271789d7015b9343b1a1360d584b6718c313692be1f7e09f82f269291eb195e2ca10ddf902c9753643cf5b1b3e81679e5f419058753d81201730b76676e89f516", 0x80}, {&(0x7f0000000140)="c1d7f05e882251865c36245f97f06ec59d8c76f3da64ec897e1301e7c4ee70c6522ebe6e11a0f2c6e546e1a4b3", 0x2d}, {&(0x7f0000000300)="0c1568d38c815f283b7046dc14ec57d9cba54c8b07493c769c3dd0ee6f9f80d67fe44f4149918f51adfdbd6ab277", 0x2e}, {&(0x7f0000001500)="71413bbd2cfb2403c0ce3f6ba884deee0e4addccaa5a0b0bc99aa906b945a1227e1585cb8f9ee940b09024872d307b883fb116548ed424cce24037980a230301cc19d1340bba6825cd5ec6f37e4a451b19876b2b049ac6021ab5692f8f8973815bdceab4f4efd52a7cc96cf1dae11c081f9c13e1b5ad304b93c6b6c7b24dce1ffed204eeeb4a154543b4b4c1c91a6ea7a89c10f7f6caa0473ba230c3a6be3afe7ec0a3d4eb0a940cb1fd215c414d5f18b0f1f33736cd9f848510f66bfe388e8454824c1ce90cfbc62781fa8f", 0xcc}, {&(0x7f0000001600)="31083fb6a4c0768258b4977f61ef35f4ee0674d3d5fa72fb2139a1c2cbf5631df4d68e9508568df7f117273eb0901151dc392b43692064376afff9ad5ec82116a1b9c8609b2fbc49cf67f19b82c6cc04e5b7ac31e61888a7bbc8e761b8c2e7eb069037ec150ecf01773e826870888923c67a960bfc16b7e1a9502546507c6e6e9625cd7082e76335ba9ef7e232fb2b6568aaaa8f81a8852e5c83d7d3080e371824cb00eddc6aef63f06ca64adab506a462f8da6141953763952df3f67da189f65e003bf0ee15bfa8", 0xc8}], 0x8, &(0x7f0000001780)=[{0x18, 0x102, 0x40, "d59e37cdd48388"}, {0xb8, 0xff, 0x1, "9d3f93d5debd74d1e52d0e4a96a2243af69d28a291f6ae035e7b7b437b9de7e085ae9c9d4489f4c95ca4f39a71296b6e2e7d747af5bc48c7187647e070d969ab2eb714ad2325f4e53416b759ddea2e1676bf2f1f55aedd532d06a855a9e24a6ce7bd9cce8e73445f27da018ef6a290b00ca59962f4d81a4e8a39b24541c31702a4fc4d0f9cb390531c3e3551846b3e482df107f05f080816bcdf9c8c6864df67bbd7be959a3be0"}, {0xf0, 0x1, 0x8, "638ab6d91a74b2887639dbb390f8f62dde8d4daf5a973951cb7d7b532f1380902d770b308fe3140e2fef15ba0345d6658b01a0a58bc277d16ffba97ee576924916a53afb64a9c554c11f160b09f054a0fd630cfcde5d5719b71c9fcb006eef148e1a74f1e6dd11e5c6e3bb7ae235eaf0be507570b1f581074c66c559c1e19b944777b60beb3191d9539bbd3ab9650e9ff22332b4f33a086aec6152757d8b67cd8af9620d3bd6e6d96b4c85f8626f3e0ce2bd67adda02609f4af0b451700acc6677219597bf7c8316cc9b77114e5727306d94ce56e3de8f226033254062"}], 0x1c0}}, {{&(0x7f0000001980)=@can={0x1d, r3}, 0x80, &(0x7f0000001bc0)=[{&(0x7f0000001a00)="ab3bf4a938fcba59c7dccee724602956bbbfd221e36e8fc1826f59df57e6a17539b5eace2566d94c7cca6e96e900b6012ff70a7a200b46a7f763546b1cb5086f0f3cb08fe754575fde38836e747b11d1a0630f5454d569a545688dc828a90b9b2520a95d44f6210b03bc6d1539ee44211954dfb873265c1a1f0f1029e16e60d96bceb13071f562266e8d4404c385fdc14749d4c7ad5598a293d9f132e2237a803430223e301ae337459a2428a6605fd81f810dbb14e7b5e3281c9c66dc34854f5e5cdd61db1b8d6b5138508f7a0214651f8c89d82809660da17cbd85a4a5e8", 0xdf}, {&(0x7f0000001b00)="aaf7056a41a4ffaa0e2a70d91d14d62176bd369f7d73ad778cfa24b6fdd7c61f8e6f3a017ba9e20e3f4c95b1e82e52f09a1c83398ab1fb578cdb8cbdc21e2fd60e5c5a96b4d0859971fedca5f63d29ca08070c5bb75eb8bb139b88f1f1150a370dc659bc98ae0bd7cb0f43da4ba2abef14111a84d264c6d3c161d1ff31ebeb141597cb8eb11d363d5ebaa6b5f6baf5bc59fb29c271743b173dfd43b0fa75", 0x9e}], 0x2, &(0x7f0000001c00)=[{0x18, 0x112, 0xfd4, "642d4683a0"}, {0xd0, 0x115, 0x2, "f826f10f2989cd6ca3ac842d912f462f765e92873cf54db9ae37b48938b7c1d551befd93f382f7a32fc65e078d252caaf50053dde5ad41e0e72d33d4e5d7f1b91f50501d622cc3c6a1c7078a5d78c8d89d7dc5a715e467bdb6218b11dbb5693b2b50ad084f29832476d51db698dce21dabb2c97f2eb92ab6cc19ecdaa5c3b7477fedcf74b0e81eb19b00537ebd49218c18010e6530bc8dbbf5338252366ecd5623ceb2e9f12ca21f00d43b219a7a0a0a32514c6b67ec59bc5c8170afe029e2"}], 0xe8}}, {{&(0x7f0000001d00)=@ll={0x11, 0x7, 0x0, 0x1, 0x6, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x16}}, 0x80, &(0x7f0000003240)=[{&(0x7f0000001e00)="b6a0472b3070e08a7f61030eee3faaad27fef9b2296cbc7789f92d0a33", 0x1d}, {&(0x7f0000001e40)="022bbd521d4215bd2dd7f7cd7d198f5495082b3a605c354563fff372b10b394c553a3ae1559708f0cc321759bd6ba4c9c327fbe3eea69eb6061adf12c23fd787e8fb850615c4b1844edb10684f747137976ad5b201692518cbb8c4655a7ab83a6d80f2490dcda004d82fc79e025146b3b83c15415bad5e681c36de674d92728492cd61327c07902a5a49479608046a7c54a8d71c670b76a79cb94f2c5318bdd8236232ab17b7ac066a9bfd32ba9f41adc20f8ce22d4545702090a915cd786035465077e2d051e0bba56967039f6ac0bc", 0xd0}, {&(0x7f0000001f40)="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", 0x1000}, {&(0x7f0000002f40)="2d997fbac459339f5cf96d42974824fec3a9034ce8515c82161eae2c71a8b609dfb69341e49222de96f3cb6cc82673d136350073ad1d11d3155168648f6990fb810a2f38876ad45ef5aa0cf2833cf7f21e72b0d7ffbc4bd093e349dbb58a9543491d2f04cf0b25de42f44e9fd6490d989d1edecafb26c876626f0c0b30f16decad3d2aafc1ec1dc3da855d7caa4e3fae312074645bf85177a841267522b6813467ba7e212418cb5858663e9c20c41d1c2139695e4d3b6410df54d5720d6ff3a2e05c7ee4e152b3c4b5849a548f7930d5c7e1a8143289239e29a83d6af86a1aee84f5de0e5fabc023", 0xe8}, {&(0x7f0000003040)="f665a57c7f8fd50511234f6a13905175c0da0481214ceeb506fd9934ba5c1e464aa59060c18078c1298e2821ea8963cf37412c17760e4ee5ca4dc9a257ff30d5f55e249b119263272c5315e8e4dff207f3af89261e80c97ca52272db0da524d3fdcf5c954ffdd8c14510c13a39bcb92f89c8785a70d03289bfd8b0a9213e9d9b56c45fa40a2616b27f77e79134cb95c03b522d1d81577d7f2650131e609b2c02cddf5042eee7909e0933440276", 0xad}, {&(0x7f0000003100)="9fadea3098c698bad123372682a30d5424f9927f599fcba04afa297fdf1b1f56df0667d346b1c50cc9cfd79e6f61ee2850d4172c06d02f3f1d2048688801c42b379e77b53fa2f039ce9ae509ccfc144710cc26e66a8d290d1c8abb1fd9b0631259ac72f8af8fce08f8e3109c9743b394db2bbd2905ccff4c62f6d7d90d41bdddb8aaf6b2a2a160f3c32057899c709a0377f36386363b9f8a531fe87c80f2147b44a1c77d314d4d2b55e7994679105b2a80a1db090291acacd73ca62fbbdb31dc26480545c3e97d93859f4360973329fbc6d1ec771d19d37e71103532bf3f", 0xde}, {&(0x7f0000003200)="fe7b6884c0ba58971199c627", 0xc}], 0x7, &(0x7f00000032c0)=[{0xf8, 0x115, 0x800, "33b103919237704cc4f816c9257307a2f720529662dba4dd4f0b776fb98d6f07b965ede809ae8ed6c877cecf6f551f08c1d369be2c2814007165908f07f0974e01df6df959414103d944fbde010a3e0c430d5e40d585de25e760165594c7ec5cb20e238a6ac64e5b4e250c4b32355613783fef00321eca8e19e9f92d553347207beb1926a24b1e6009624be42db4a99c8e91dc126d32dacb79834974254c44f5b345ad04fbe10e520a2c19aeeafee00b9f069f0be1e91d470d07525e4ea452acd6cb861c058423fd55f146b2aa7071608bd9217c81b7a8c7c53caba621aec02ee9fa03613cf2e8"}, {0x28, 0x10d, 0xffff, "e328309a8dfae7e8e6abacfa7da61a2f8bb11288"}, {0x98, 0x88, 0x401, "0060eecdc0499db95bd9e6ae415fb04fdb5edb3614ad8194364869379046570144ad685299fcdf294e4657e754d45794a4115a469557eee5b6e01a0ef7e92ee13bd9aa842feb6ae20411450cb552e7ecfeeec0b676ec7f1ae779cced6e00c0624784fc45a8fb19c556455cb4352f9796ce069af11040def5c2fc2dd2b7816a1469fbba7725"}, {0x68, 0x11, 0x0, "bd13b1e4e71a6e6abd180f0a5610f2c78dbed122c779e034393638a51eb9bc0318f8b853e1cdd6dc0f4a425e41e9f08a5f6248c2ae28ca553da8a9824a7ea149b7da2678694b68262f6ec679385d9e84fd7a"}, {0x48, 0x113, 0x7fffffff, "80466c5884f0aecbda48133dce44f2738e0144af2c8d1c8b762cca0939b9cfda4bbe34ab48663390a9c6303ffb1c47457489ac"}, {0x58, 0x1, 0x9, "7e9bf7cf34200e4329d1d759b738c05fe01d0e7c6b591d06d7599a4baedf12fa420142a9ecbf73734af649280133087719e804d5a47d4eda929d058263efd475e8d3a7d4eda9"}, {0xc0, 0x6, 0x7, "656476099856c2f71a9a6276d06efcb2947bd396ee646dab3cbd51692b17a3734382603ffc9393988f0acf7a84bf51dffc67091e1552f7841f7e159eec7f6c6b8fb997f9ab034b1782e2fab6d009657e8a7ebcd509b102ad6723b88a15396b5c521ed8107d5c250c0144e3ceb29b54ba0a6eeba24c89f95b63f3834bb9d3e1519fc0573a1f514d41a237bbd32da761e220f0c93e151e4934508a727cbcdf757aaa1a5bb46d3bb662f12df9cc"}, {0x110, 0x113, 0x54, "0bcde8e417493eddb6cbbf429ee36d595dc328acf70b308fbcd9b87dabf3b219b28e9a2eed2062400a40e6e25d0def255a48b52580db2911a74b86169a383dad781afed53156d448accfee49182f8c93ba38ce9e3d671c3db0f2505b874f17c18c6502772a3d18306ca9bc4c2f29e87ff8d5482cfa81534f06f64f956c391ecc6b68c9815cd6f4cac7792e6342c5c820c5e82e8f7a0ae6089322d9ab9205935141ff27e973acbc258c53f12c7e3ee17a85bc2bce900d09f41bb24d8bcaaa5f101b61b32f0a5a1c22dcd3b885ef0c8770587c5a53180aa1236f0e98e277e9c0230ae0549e77660ce27955c8ba6588f7c429bba46c48612fcc3c"}], 0x490}}, {{&(0x7f0000003780)=@pppol2tpv3={0x18, 0x1, {0x0, r2, {0x2, 0x4e23, @multicast1}, 0x1, 0x3, 0x0, 0x4}}, 0x80, &(0x7f00000048c0)=[{&(0x7f0000003800)="32058387e5ac82f3fe4dcfd9368695d0b4061722582a366bced161", 0x1b}, {&(0x7f0000003840)="7c66d5cc861ce0b6d9a4484e1fe37580a51f05872609770faaa136a427bc433e76d8fba0306d82", 0x27}, {&(0x7f0000003880)="3551c1", 0x3}, {&(0x7f00000038c0)="0e7a94aaef54a743d184ce79c57ad513f154885a3f69e121f1733f5672ed51e9c7d8e7431799ee2b2d97cf8185527124806a09f348a845990e24d7ee8b571ee87a77f57f08cff18164dac4b9be62299d14c496360ddda9a7c7193a7605278f7a9a377bbf38f15b9b410752275d9f2f8c831e25dea148f6733fe0dfe905a125cd309b036a0125c2da169d3a390191556373af0b48ba507d3f3a11bc363e374ca37c050007d09bd17d3f5067ab66a27f3e71a97cbebb33628d182a0c01e3b7907423bf98eee4f9028fc7dda86b88863c27b38e9c09746910147567ab46bc4a44c2d6542702ed525ddac1a78d2d666822523671de48250977d16d6dcae29b33edd3fb4f90794c23209b44a79d633ee14ddd934e607707fd44cc9d1939f3f9a1a4e6bb3cdb9ef477a68f9a0c721588c9c19a9597c7305b462581e566656ebeec6fafd573bb647b97bf062573274f19c96f4f55233342ae32b8717a3923f1b440b578a30b132ba246fb76122fe3bcd3db1b59421366de02fdba7c612a36e2a26785371fa6f7d171a6db47b53f07c85db15d4b59848c30e840073c60d3c908ca0f9b497e26fd961365af8e5a9bc4ec4199536e8050be85f7dc2341d6bcabbac37043a2ad80415f36a4f48597f97eaa7849c473ed798752546df1c6b9838214b4e9b508634aae97cca834372e5f1de937fcd4c6772451e082cbd157084dbbe16b02a210fcc885b1c89131d79f5932383ebfcc3aee2d55140031d0a28e42f46d3d7468e3ad4755789960277a386cea9a2e26c8214d900962bbd52d8033e35a92f9fd4967ba9b1eed3ad356cf231b0a8d2a022be587d014ecd2fd28d80a5bc5e83ab6517dc9eacd239656758af548b3e86c8954a6cd2b6652948468edea518555a925c5e33129567d78f029e71330abbb34138c06a2289a3f7ab740ea6c8d2d92207b9ad8c24f039400dac26c16258c886bf3acaf0e145d0a74bd0c76a89512ca13d013eda6fb10f6775278644929e30959f3fcc7c0d35fe2a72c18336677e3834c9d17f40ef1e3897816480764f3bc83a5094d29b86e9368e84ae76f49ea955b21839f51cc772c217c534911a76ff92184ea4113b9788641e52a1f4a01ab5a16efcf33f0f9861c3a0d03c1977f37ae7cf3799c1c724a51cae1aa759ce2e3b2a7e572e89f757493f6b419b0ef27c110c0fb1c4f80d998e343f7b1a5c33deefea6c117d526341849600ff2986d7fa7be04ca8894e4cc2a61d520db2213a32e3bad8a10700fe3a9ca5aca3b1303f95c670d1e6bbf5a7af85ab2c49e720e4d799e6aa8a3c361795e8d15d739be665e93dc475b8fcbeffbf691b2c7b94b3ca6391640c8206c50bb2140005070331fa68b51e5a52f2956010cda12f431cfd98f7f0b8671de2b1c6db8a5d0898373ce726d404035a9e971789a22ccc98052a8db2dfc86924153cb50b505a6cd97d9420a0dd6d6f575f21fa18afc24fe9f9420cd5329bc92c78def93fad7bde5d9b0b7447f56d260b342216981d970a7fec97b1a024b6266a982006620e21e7216e2a3fb00cdeaa3ba3960c4c75515c28670b83de3a27cc39d2c4b485f4aabd52988441c70263d658d51c4548a2d4a92e09427af7314fb79326b422c22a2fb3648565b7f8ec96ad35331bda0ec0b8530f7bb47e654ef600b67d379f598e694861b6e962a5806c96cd3894b328d4a5f130012c8c1247b17fead0d95d9c91a28083c434084592282ca1cc73a7b2174d484b95e1e702ce0fa0b6a125b80588a52021d19e20a3b3b409afde5cd4508f81f88ca6ddf5ba00060bccf81acc07b2f22a68ced69cd68b5677a3ff161e0adbf7a63da0e81d71dd8e9a70863991bb18074777604de49b15c83b08f8e4ec2f3dd7fe9fe0c162e2703a27077a851124d0a5186ef062d6fd785f16cb3d23a6ef989ca685a852b8d915cef6d420b05d7f0e8d2690c9818283604266604b1e5c4cfa02fd5f4738af07786160c997d4b4b70c43a4d5377145e5df00875154fde8c7eec84a6abe4383e3235afddbcf2a73233e2bf9fe0e7e308f715ea7c5ae8ac12d8dbdd462cdeab8429fec7e142fabe637cee5951ac6d9170802846a09292d9c03b9f3b032b4fe76ec007ac923a2caae3467c3f1098bc587bd83aff66cbc58c54da0a4ff0752c665ba9a5e3e35d5f5e2bd31ecf584630cc7238e75cef88bf7da2522ef6dcf1c893a3e3a87d88e78fac8320ad10eb97f9b50d29037d18d05f64a6f5c375a6464f935d5537cd62dbabfc0767c367025dcc7e846e68394c5ae820ec341ad4d2d897e25a6c5e1832bf7e22f074a05761419d9039636751646062ad8fd414e671fe2c656b52f397eef4f345e09b8c860885abb80a474ae7ca4fbae7cc24e06b3917cf9216aac056b1f715b5fe6f9c5e9b884ee0390c1cd869161cb66e8849a4460f9924c6ab73d887a8a6300c5c83b107cf71fb1baa66645533064e4890c7803ae6d31c05847ca1780cd4bffc6237d5835986cf76382adbffc4f8cc96eeccac36cce0a2ac6a3845673944ba243a6f916a5e0b56be627212b76da891ec753231d06b0ff2f0ee50e509fd1d9946bd7a36331f324dedc565739a50210bcef8f532c949b56ae1ed230ee82a2cdfbc3048c693bf285ace9995d1cb47a8f10400864c31703c281e84cf2409ce06a99c1c57c060bf41644a10d3d85723215fcfafef043170c375ad114d0f5ac8fa7d5f10488c5c75dc7617c8d5a3267d43b638be1b7685149cdadf0de9bb5e72a0cd34d776675b3f453e699c9b2c0a843284ae873904b920b4db7195fb8a1b751bf4a7575ab2b0de28c15acbd2dadd398e6a00ad8c59a57b596173a2c072fdd37e52be0ccb15d4b1fb327af58df1b7c7ea613de8e7dd806792c401ace70798f26c2bff79ae6b8d1dafe99ac154b5a04fe657930018b6bd490a8f7fbd295454b12b0c0edacf84dd3dfc7f721934f0779cd7ddd5e6f87e618207a10df472f8aec6fb04524a3705cb85a131421bed89d9adb780bac780393cbf268403747c792f2aa6d4c422d0df92623daf6005e1bfacc84ba9fbca1333b22952e448f38d5cc0e7d0a47f7dc0da9b2b25d09eb08f65e0b92ca0732385eed2ac0839cc4e96377ed1794a1efc251dd3519320494747351547938d024eac483ff222a0aac7b4ceeb89a622f94fdf9b4656b1ee3fd9e65feb7d22abc8bc3ecbb0dd4394134d62c1cfd07e6f068d3394df513363a8bd898ac1b8ba4b779f78042ca34412dc3a4c3ee9cc7de9d0d9478266ce48cbd11e85511eb5a8dbb3491df47b274275950e99dc5e4680f2b417b120852e45253ae6217e875bff749cd55a096bb05a0204efbbadfd4c5bd3400cbb7cd8e7517ed937d072bda69292f31ef76ed1ab284e9b7b6154c31e68dcbb2958eb974716e4e6768633e6d7bc9249f654a04aa1542d9db1ebebbcca62926676004653e47640aaad6627ade2f39e9d74af8923519607bec2be78900c98e9d1bbe918aefa06d7d26120617f27c37e4aa548568e107ab1a5186c50031bf030a9590f0d0881576cb07ea00cf10de876d2e853110b09cb5eff8ce84127e5fb81bb11489b418c535b5ce9f1883e1287b62d2204b9a97b2b13719278e8fd6185ef23ed06d34471e1aeae786756c21b512c710ade00a31aaab961cca8a0c639a950320efbced2a3e89d4168e87615edb1819f4070579bdf8fb8c8fb581f5106adbe8167ea2ebb66e3d4f891e07275e7ae98bb27ea3be46aac532ac13f68642ad2920ba18a848c8095c20fef3101a4a976fbddd4df1534a2d796a20fcadae512e3cb6c197b31dd4721c747d1a2638794a737785ff462c95a8684351da615eea8e645e8d4797a0fc582d823ab4b9825478d52b051f426d8d47f0a4b4fda4f8c25fb87a11a85dbb8cbbfdbb786d818184fc4ebfabc8cc2365b669f603dda61f4c1b167f492c2ee3c31d96a0f8ff2c8fa54866ea441ff1a4749c61fa9f2206f5ab85ca6b3523fd70a3c9c755ab8c88d2f90ef883ecf3646c666118b75634653df693e4a7b50a524575409ea92472c941ee8e5710c70daabab1637fceaa329b747935cb80ed3d450a8ce423876518619d70c52245ef96c17d20079bf0f44d0ca3ff2d07f7102aa500a2c367d71b0125d1d0d0585db299605abcef62bd0a9cc9048249b2a128ef465437ac7127cc38e5136e58680a0c623e6e2374a25b6027e9fafe267e74433dccc491bd85fbb058f63bb813ada63e0424b2637131e5484000fb78d24487c093c8c6deeb96581d183c12749b7447ef5bad07d0df95c8ca27195e27be12b62fb03e0a7ad9b114dc6658843e75f4edba31be640d238972cce0783d5933d572a8e5aae154e219981ca549f961d37a74bfba8cee785ee418dc608cca91fc098e14edc3fc81dd3c10916703760c7e01032ce61b12d23b309767a8953791a6aa083540b1b37ff7194e5dc2c67c9cf4a89da128c7dcbd4e1b4caee39837b5dfb751265cdb088b3ae2738769b92e5901f418950034d6bb5e597491a51d997c65d3894d7f769a9946b3793b920e17dfaa53b6a82e68f44d332900dd4e2e058e4a307e88af5de4dc50c42b69775f4875e7b230f2e6fc037f66e0321fb6df48e8e13457ced64cecbbcfa230e8685a4b82d89011d5c1e712e45855b754bac68d30a14235efa2798189ed5402e2e05f9298ab35a8b565ecd3a2d31d12ef3db53302a2c4823551e2babc3ab5b4378662dca62e6eea91fb5328294596de85c19e0c492a5d8c1d0d76199a660a5c866df211b6d0bbb556e10139a2fbd33ffe47764f9122fd4a2f5bd9de3078dc298684383a800890fe2836e5364fe1f1b87064c861f2675fddb1aea97ba68493c6c937b68146ae5394549ac93179a3e248b7ec97afc23db9a922f745ba1749f78df75ae6fc17c3869a86e82a380e19156dbbc716874dab2b40f3fd28f5e870ba8e194eebaecaa09020154a1c7dec6851b878661b4e657dded26b97e7aed6e73e0b333598a019313ef6f12f3109dc2e7cbccda16cec954579b9011c161ebf658011f039de34d5a8bb5e981e00ad062c38b43adceb5db9072f78d6723a8e8138dedd6bd5797d46b04902866a04563bfe100e043871dbbeeab62f7e6ac23213bf9da3f6c1d402a7cd723ce7ca0546f9203ec4839fbc29dfd996db7594eb8c036400afa646cba4c59610b78bedbfe701c9eba90a0eb1817e657b39e3c3184a28697a0e5dba6e3a457cdc0f984e8d21ca8a9d703755f2588d503c787228874b1ea5c483afbb62a42dc330d69f3e1a27f557d15f368c9288a2c1dbbbeb489baa2f275773207233b38bf638dc79cbd9e63403bd6971b186a18e81f1b67ce052a7a8deebe92221947450599673d2907ea2fd306bdfb040cf0515fcba8c6667c9ca509fa7b85edbb94c86e90c21e76a006341e8665d602e4f5c7f161733fdf602ed0dda57923b8a1551457b48125fd285b9e5717aee844b2e525e8b1807e8d356c025ee2ef8666e73f4b44efc8bf1557db68a6966e26ebd4f14b3e9f351df615b8f244d3311b4e32244c505724c4152689e5f1076efed6b89de478a2846196e987c11b78e232f6cdb67bfdd401d3536fb318fbf380fcffbc6b75492f8f91d0e682787d4e713de3977b9294905935983522a36f1e5c2db260b03c71b0d6022691c5a90c17167e36ec7228133bff3e2d08eeb8c10dfc7d7e8d4361adbd3fa7b1337706ad7ca86913842cd5fd22646513621cc5b9b1793c5c9d156b20a02c97b185a95fce4be533aa74ce6d8ac974164909fc7d365fd537f655306e7b239f", 0x1000}], 0x4, &(0x7f0000004900)=[{0xb0, 0x84, 0x7, "d0f362c7e1a63ef556f92c00856c87adf244da3ba47715c91238cbe241ceb37939d82093719ed22fea2aafca9c34b193a2e080d9817743d1c0a8b672c3ce214bd6f389b6fe00e51bb6d016dee9040eb5be47e58be8bd0e9c73dedd2c556e8d09e908cbea01dc4d46a31b5825b91488a52760cce77f7691ee11d532ec1a3fe6e74c6dfe0b312555147c6996ab38a534782b0248b28451f559e47918c1996dac"}, {0x58, 0x116, 0x1, "c7a7b66a4f045880c7d93c6fb1aa745062f3d82362329a2f6eb6c49083501fb084801dc9380d01d8c4aa86ed8713072202ec75f386dff19e2d091f795304fedde43e4efdd3fffa8a"}], 0x108}}, {{&(0x7f0000004a40)=@rxrpc=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e21, 0x1, @local, 0x2}}, 0x80, &(0x7f0000005d40)=[{&(0x7f0000004ac0)="cc0c21cce3148b4e19ccb28d47598204428fa7e8d0cf33d0ee32201344e19f870f0e44db2965af9c8530fd1f2465fef67a", 0x31}, {&(0x7f0000004b00)="58267eb857b99613ad493368162dd0c2c030f3cf7f3f186569406de2b3435c65b421c722de3b9375bb698659206edfab2893a2bf0df95fcd95ef1fe23f5ade388580fc1ec10b8b2586818bf521ea1799e8ad85e5de5cf284d050c75ed80d37e76052", 0x62}, {&(0x7f0000004b80)="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", 0x1000}, {&(0x7f0000005b80)="5b1cd2e955026e0ff107c1e1463497e5da4b21b5cb6a0697bd4aadc59432ebcd01078538345e7b3465a4f80337f4b7f75900b65767b4b51995c88879c886d6b5c1a7df718d01a367f1129bd6788dd14d1112", 0x52}, {&(0x7f0000005c00)="847a60cd6b92f4af5faea34e634e559245d7ec6bfb41670450fdd650a62e8ba133beca76a30bbb630f0e8073215c4690e2d0b7d7aeac662072a708fd5fe8fea75fd46677c33128f2b3f6f98363060e364a69adf9c0d475407d7013f98e030f123dcb73cfa00a759b11e1b3a8b4417f19175b75a91e2354269fd47a081b396f72a7ba6c2607b445594b8945e7b9d8eab83138312d123b6a21b33caa5832695b3dfbab0c40529d6ffd3ff8e446df35b48b42e58ff55dded7882ca2d14e17a1e8f31e971fa1a181f7399d9a77606789af77c1e63dae9894385a88c1d82edf5c233ec10c0a489137fcb6", 0xe8}, {&(0x7f0000005d00)="63f929d7fc826e12b08d7ecc3e5e34318c7cc6a9dc5205ae53eb21ac32ad79198520", 0x22}], 0x6}}], 0x5, 0x18840) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="2c7766646e6f3d8a6ca0599e30e065362e64c3f60fd79848a22930e373163d321a80d2c28d2e981508526ad313e4dac36fca4da509b00227f926dfd86f0faa107e926e1ede7168c98b278f1b1163b1b4f1edb39c904add4ecc820ea425ab956c9c02cd033481f9691684c52d6b3cd18f0061ae6cb7bbc6314e26bccc167c5055be92389e9ffc1e24302cc1ad805e767be3babd82997598406c6976fe595e828876eb0861129c9b15bb5ea22018687ecbee196984f45fe6c9af58174b51b138e32e1aee87ae0b24b427660ffc", @ANYRESHEX=r1, @ANYBLOB=',\x00']) 21:46:06 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5452, 0x119b28) 21:46:06 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x4, 0x7f, 0x40, 0x9, 0x0, 0x0, 0xa0818, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x10000, 0x1ff}, 0xc000, 0x8, 0x7, 0x1, 0x9, 0x80000000, 0x2, 0x0, 0x74, 0x0, 0xffff}, 0x0, 0xa, 0xffffffffffffffff, 0x2) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:06 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x4020940d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1696.269890] 9pnet: Insufficient options for proto=fd 21:46:06 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xca0cc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup2(r0, 0xffffffffffffffff) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r1, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x14}}, 0x0) connect$inet6(r3, &(0x7f0000000100)={0xa, 0x4e23, 0x5, @remote, 0x40008001}, 0x1c) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0x8000, 0x0) copy_file_range(0xffffffffffffffff, &(0x7f00000002c0), r4, 0x0, 0x80000000, 0x0) 21:46:06 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5416, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:06 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5460, 0x119b28) 21:46:06 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 68) 21:46:07 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x80045432, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:07 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x201000c, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) r3 = dup3(r2, r0, 0x0) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x1010, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="00030000e60000", @ANYRESHEX=r1, @ANYBLOB=',\x00']) r4 = accept4(r3, 0x0, &(0x7f0000000000), 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000100)={{0x1, 0x1, 0x18}, './file0/../file0\x00'}) flock(r4, 0x4) r5 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x8300) pidfd_getfd(r5, r1, 0x0) 21:46:07 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r3, 0x400, 0x1) pread64(r3, &(0x7f0000000100)=""/201, 0xc9, 0x3) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1696.374032] FAULT_INJECTION: forcing a failure. [ 1696.374032] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1696.375088] CPU: 0 PID: 9889 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1696.375664] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1696.376357] Call Trace: [ 1696.376595] dump_stack+0x107/0x167 [ 1696.376914] should_fail.cold+0x5/0xa [ 1696.377276] __alloc_pages_nodemask+0x182/0x600 [ 1696.377679] ? lock_release+0x680/0x680 [ 1696.378024] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1696.378550] ? lock_downgrade+0x6d0/0x6d0 [ 1696.378928] alloc_pages_current+0x187/0x280 [ 1696.379319] get_zeroed_page+0x14/0xb0 [ 1696.379659] ? kasan_unpoison_shadow+0x33/0x50 [ 1696.380054] mon_alloc_buff+0xed/0x250 [ 1696.380404] mon_bin_ioctl+0x493/0xcc0 [ 1696.380750] ? wait_for_completion_io+0x270/0x270 [ 1696.381184] ? mon_bin_get_event+0x440/0x440 [ 1696.381578] ? selinux_file_ioctl+0xb6/0x270 [ 1696.381967] ? mon_bin_get_event+0x440/0x440 [ 1696.382361] __x64_sys_ioctl+0x19a/0x210 [ 1696.382721] do_syscall_64+0x33/0x40 [ 1696.383044] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1696.383487] RIP: 0033:0x7f3f3b722b19 [ 1696.383812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1696.385377] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1696.386032] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1696.386649] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1696.387257] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1696.387865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1696.388473] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:46:22 executing program 6: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000000c0)='\\\xe7,\x00') r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfdef) r2 = fork() ptrace$cont(0x9, r2, 0x68c, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) 21:46:22 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 69) 21:46:22 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) dup2(r1, r2) fsetxattr(r0, &(0x7f0000000080)=@random={'system.', '[--\x00'}, &(0x7f0000000100)='/proc/timer_list\x00', 0x11, 0x3) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SNDRV_TIMER_IOCTL_INFO(r4, 0x80e85411, &(0x7f0000000080)=""/43) bind$unix(r4, &(0x7f0000000140)=@abs={0x0, 0x0, 0x4e22}, 0x6e) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:22 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5418, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:22 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x80045440, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:22 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9201, 0x119b28) 21:46:22 executing program 0: r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x7, 0x6, &(0x7f0000000900)=[{&(0x7f0000000180)="0150e264916fbddf531e124bc72ced9e424258b18f4d5e651cac4b61f7b515cc67e1ca925465a7d6155bc08f2e92c1fc1544d0b8185eb583e6f40fe634c6aba02ee21344c8bf74bdb0483814db02b4874f86e5dd66aef52f4ae7019a3ec0ff9f10e3d6a3c4a6598f2c64014532def7ff19c079b39b29324d03740ee0e9d14d650cd9eb31f47165053e2f63fa7cbd23600c9e71114bdcb967edc5ba79522a37f7530ed3455654493fbaa17702f29a02c6", 0xb0, 0x9}, {&(0x7f0000000480)="f262f0650fbba2bf403d24fba626c9222e399450354927025c4d880d49a6147702565c07151f710756f6df5861cb64df5d3998a1261aedf6a51a2f6a5171c0bac453ecd20b2880d2d50fb3d1ea689f2ff7eedf57d16beb3b12ae4148c6ab71a5726b9503a140240ac5266ee42a00a6ee46593a446b0398370d05057b42f3bcee564dd641fe3ec626f9569e05a8e6f7bad8c1a7001a2fc5fea757e18a36a8c2e94bba33b74bc4688081c5aeba1669e2749f0b9decb0ed29e2acd1be5df0", 0xbd, 0x6}, {&(0x7f0000000540)="495a685f08e404d7d0e2e6dbc8e2b5432f9486c83cc15948abef5bbaf98839759d278a44226f34437827089a9fc51f1268dd1bc28dfca8c266787e9828c6a006ea66fc0362913a42f645edacec28576e3b1bb9a9482e98c7c7dda0671fd3699a6b4deed190bfdf60c8a7c7715aec18d683a1b0a4a38233384ec20c772200d51277f7b72539e082a1420854ec60c0b6aeb4f6f27d785fa2df0c0a87c6867db058dec8529db33e443ea9fc2eaeea1e0b0b578542f44a490d312dd1ed6edf2c132d2aad63591aee118f8324cd57aaf027d2af94a8b5", 0xd4, 0x3ff}, {&(0x7f0000000640)="8486d299b7d276fff739451ba666a13c6acc7e7e77b207c3c31e5f4964c848914c57fee46503f5498d9c50b256cfbb05a50ab203db1b64744cb5bcef2f9769c1bcf29c77f63f27f61ed59d106b64186a42c04e509fdc1193a85512a9261d37e586c7b95029ddbad371d34b860cd10ec48dc8e638c95efb1d230aeddd20783baf603637580d681eb6211acabc3842a6a54f36641729704fde2e31f0aba560", 0x9e, 0x6}, {&(0x7f00000007c0)="d8a8f7b256798fa20c4c32c378d70511fa7e503011e4987dc6464f5125c56957b532bb9c5a4806d52db5ff1bcde6a206caafeb3b4b8de5be7430054625212bc88d99ea29a16ffd91b14ba877ce394817a309734a59630044de92ab97c333fa30667dc4d9608215129f7a967ddb573d85f3e4244140fff18d4bd80cd16e6dbea382782e31a8495ff0530ea2cb90c2027c9c10fb4f09de446e452608dce709f0ca0214bb13515ea3e6e9702b68bd", 0xad, 0x1}, {&(0x7f0000000a00)="a90c45d254afd29dfa0b13b9205dd742626c7c8b9bbc43827377a77a0b898c91cfc4746cfd1b58e7611140a02866df21fadad0c4fb401d65a366ccdfd5a4e00f6ac5b917f33c2edfc4d38ba16d93be1371a918b43f00f47e320f6f447066a49f74bcf20e3b3513d2c9623e01155c0f8a72072a8629b26fa6bf60e12300fe6154642125a63c4d8968b5393391d75b6eca9c1435ac30ce1d1d1da8c3db6d311c1e62ef320a08d34b7d8a4531ff3dddeaf6ec9b6b55303f5261457729edaddfdc67b96c8c9cd826f746d5ba208f23a6226880e9fc1f3c35f718", 0xd8, 0x7}], 0x8000, &(0x7f0000000240)={[{@nomblk_io_submit}, {@quota}], [{@obj_role={'obj_role', 0x3d, '\x00'}}]}) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000280)={[0x5]}, 0x8, 0x80800) sendfile(r0, r1, &(0x7f0000000400)=0xfffffffffffffff7, 0xfb08) r2 = syz_io_uring_setup(0x52dc, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000740), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f00000009c0)='/proc/mdstat\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000001400)) 21:46:22 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 73) [ 1711.496259] FAULT_INJECTION: forcing a failure. [ 1711.496259] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1711.496413] FAULT_INJECTION: forcing a failure. [ 1711.496413] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1711.499795] CPU: 0 PID: 9918 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1711.503960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1711.506114] Call Trace: [ 1711.506834] dump_stack+0x107/0x167 [ 1711.508974] should_fail.cold+0x5/0xa [ 1711.509987] __alloc_pages_nodemask+0x182/0x600 [ 1711.511169] ? lock_release+0x680/0x680 [ 1711.512191] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1711.513813] ? lock_downgrade+0x6d0/0x6d0 [ 1711.514888] alloc_pages_current+0x187/0x280 [ 1711.516009] get_zeroed_page+0x14/0xb0 [ 1711.517055] ? kasan_unpoison_shadow+0x33/0x50 [ 1711.518211] mon_alloc_buff+0xed/0x250 [ 1711.519227] mon_bin_ioctl+0x493/0xcc0 [ 1711.520218] ? wait_for_completion_io+0x270/0x270 [ 1711.521535] ? mon_bin_get_event+0x440/0x440 [ 1711.522662] ? selinux_file_ioctl+0xb6/0x270 [ 1711.523792] ? mon_bin_get_event+0x440/0x440 [ 1711.524943] __x64_sys_ioctl+0x19a/0x210 [ 1711.525994] do_syscall_64+0x33/0x40 [ 1711.526963] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1711.528264] RIP: 0033:0x7fceda384b19 [ 1711.529263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1711.533998] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1711.535941] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1711.537809] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1711.539617] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1711.541501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1711.543283] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1711.545179] CPU: 1 PID: 9919 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1711.546316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1711.548220] Call Trace: [ 1711.548826] dump_stack+0x107/0x167 [ 1711.548841] should_fail.cold+0x5/0xa [ 1711.548860] __alloc_pages_nodemask+0x182/0x600 [ 1711.548875] ? lock_release+0x680/0x680 [ 1711.548888] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1711.548906] ? lock_downgrade+0x6d0/0x6d0 [ 1711.548928] alloc_pages_current+0x187/0x280 [ 1711.548944] get_zeroed_page+0x14/0xb0 [ 1711.548957] ? kasan_unpoison_shadow+0x33/0x50 [ 1711.548969] mon_alloc_buff+0xed/0x250 [ 1711.548986] mon_bin_ioctl+0x493/0xcc0 [ 1711.549002] ? wait_for_completion_io+0x270/0x270 [ 1711.549020] ? mon_bin_get_event+0x440/0x440 [ 1711.561478] ? selinux_file_ioctl+0xb6/0x270 [ 1711.561494] ? mon_bin_get_event+0x440/0x440 [ 1711.561514] __x64_sys_ioctl+0x19a/0x210 [ 1711.563493] do_syscall_64+0x33/0x40 [ 1711.563863] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1711.564374] RIP: 0033:0x7f3f3b722b19 [ 1711.564732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1711.568069] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1711.568832] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1711.569553] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1711.570275] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1711.571000] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1711.571695] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:46:22 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x80086601, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:22 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x541b, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:22 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9205, 0x119b28) 21:46:22 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x525400, 0x4) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) r5 = syz_open_dev$vcsn(&(0x7f0000000080), 0x7ff, 0x0) ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f0000000100)) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r7 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r6, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r7, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000040)={0x0, r7, 0x2}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r7, @ANYBLOB="000000000000000000000000000000004df4f28523f147a9622590d19e5694bfaf38f3c10dd44f60e70510ff7e5d503f34d84d209292c936f1e010839caf6c0b55892928f03c23424790d5cb742cf94c6846ccf9f103f1230bbe44378a6f614b4bca0b6fe571fd76e21ca959ca71d5ef413919be928b82"]) 21:46:22 executing program 0: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x40000, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_REGISTER_BEACONS(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x71}, @val={0x8, 0x3, r2}, @void}}}, 0x24}}, 0x0) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="94080000", @ANYRES16=r4, @ANYBLOB="000125bd7000fddbdf258900000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x894}, 0x1, 0x0, 0x0, 0x4041}, 0x8800) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000ddf4655fddf4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b000000800000000800000052", 0x61, 0x400}, {&(0x7f0000010100)="0000000000000000000000003b6f4d0472b34eacba0268aaada5ab8e010000000c00000000000000dd", 0x29, 0x4df}], 0x0, &(0x7f0000013800)) r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r5, 0x400, 0x1) open_tree(r5, &(0x7f0000000040)='./file0\x00', 0x41100) 21:46:37 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 70) 21:46:37 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000700)='uid_map\x00') sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="1c000000fd5834a34da6a7f133979626f21a7481ead1bb03e767cec802f88e538c11579d9c45e888a06af98286a33362c3074a4a6e757c6de6a484812d135a98025a4e38a4f31f9e1e7e2ee9eb91b12ec079e4e8658f1bccc72c9c9724e0f1437e20b595239f1d7393e7ef02426e8e805ee2e18788ccabc0830b712547c9b138583567aaf843fb9972371f7dc51b627930be3d0891ddca2acbd0beff26cb9cadda02b997d19d", @ANYRES16=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040), 0xc, 0x0}, 0x40000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, 0x0, 0x882c2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x440, 0x0) sendfile(r0, r1, 0x0, 0x100000001) 21:46:37 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='maps\x00') sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) pread64(r0, &(0x7f00000001c0)=""/4107, 0x100b, 0x0) mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) mount(&(0x7f0000000040)=ANY=[@ANYBLOB="bed7179c5a05"], &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='vfat\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) futimesat(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000001200)={{0x77359400}, {r1, r2/1000+60000}}) r3 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x6, 0x5, &(0x7f00000016c0)=[{&(0x7f0000001240)="9af5dfe0235ea465b84f7548255c", 0xe}, {&(0x7f0000001280)="5fa3303b9a803364f7412e6b82791b5d84177b5f465b136e48dcd4d427420b8b4f4132307439babe42c9e611755a4b4af1215266f6007b93aaa439d76ad9c6e0fb66930e78979cd03953128057b9", 0x4e, 0x2}, {&(0x7f0000001500)="2b6e8eb0d902cde0633cef07ad11b6777947986100245af3b47131644ab0d65a8f821c481645a0e25f19b4cf63073f984b25c95ffe8cfa7b96b09fb770fb101f36eb5441883de9f11228e8800965eca7558d397fcba78a537838594d5804b94455ff8849f72b9907d8e26eca1910f87297d384f60f222d6ad42d0bf618df0e08877a24e680f0b310543319739e7bc292a4dbbc4ff46810c7bdb23219a8c2e0ede38d885b9d3af495b3846128e9947877e6b3184564c53bb7dcf3fcf7691ea170283cedb56702530f25", 0xc9, 0x20}, {&(0x7f0000001600)="729092ddb06293791e1e1da50e7bc78f5e58c7e7d7415b9ddd7b9d5d78641f9874026a5fee2ea5b79e245db0fd78fc46226e68e90602f69e9a191d6fa4b55c9d31ebd4a85485cdca6ee83242230ee041996e6c", 0x53, 0xfffffffffffffbff}, {&(0x7f0000001680)="4d653d37cefad854e75b737675adb15dd2151f07ea1efdc09fc0feb92e0bb71b2ae111e7d5aa35b81bac336f818d32f1", 0x30, 0x1000}], 0x208400, &(0x7f0000001300)=ANY=[@ANYBLOB="646d6f64653d3078303002003030303030303030303030352c6e6f636f6d70726573732c646f6e745f6d6561737572652c736d61636b66736465663d2f6465762f737230002c61707072616973655f747970653d696d617369672c736d61636b66736861743d2c646f6e745f686173842c635c6e746578743d73797361646d5f752c00a2c904fe98fc22c25aa015c78d2bd35621872c849d2afb58f83e98ca90d7f66039bd38310d6ac4083c5cec02662633b5e41eb6f581b77d7a54a223"]) rename(&(0x7f0000002e00)='./file0\x00', &(0x7f0000002e40)='./file0\x00') openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) readlink(&(0x7f0000000180)='./file0\x00', &(0x7f0000001400)=""/95, 0x5f) pipe(&(0x7f00000013c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) ioctl$SG_SCSI_RESET(r4, 0x2284, 0x0) [ 1726.819648] FAULT_INJECTION: forcing a failure. [ 1726.819648] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1726.820874] CPU: 0 PID: 9953 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1726.821525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 21:46:37 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x80087601, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:37 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x541d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:37 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 74) 21:46:37 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9208, 0x119b28) [ 1726.822296] Call Trace: [ 1726.822320] dump_stack+0x107/0x167 [ 1726.822343] should_fail.cold+0x5/0xa [ 1726.822372] __alloc_pages_nodemask+0x182/0x600 [ 1726.822392] ? lock_release+0x680/0x680 [ 1726.822413] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1726.822443] ? lock_downgrade+0x6d0/0x6d0 [ 1726.822482] alloc_pages_current+0x187/0x280 [ 1726.822509] get_zeroed_page+0x14/0xb0 [ 1726.822525] ? kasan_unpoison_shadow+0x33/0x50 [ 1726.822541] mon_alloc_buff+0xed/0x250 [ 1726.822571] mon_bin_ioctl+0x493/0xcc0 [ 1726.822596] ? wait_for_completion_io+0x270/0x270 [ 1726.822616] ? mon_bin_get_event+0x440/0x440 [ 1726.822647] ? selinux_file_ioctl+0xb6/0x270 [ 1726.822673] ? mon_bin_get_event+0x440/0x440 [ 1726.822697] __x64_sys_ioctl+0x19a/0x210 [ 1726.822721] do_syscall_64+0x33/0x40 [ 1726.822738] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1726.822750] RIP: 0033:0x7fceda384b19 [ 1726.822766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:46:37 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000180)='!($6$*/\xac\xca\x00') r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(0xffffffffffffffff, 0x0, 0x2, 0x8004) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000100), &(0x7f0000000140), 0x2, 0x3) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r5, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2}) write$binfmt_script(r5, &(0x7f0000000240)=ANY=[@ANYBLOB="2321202e2f66696c653020292d202f70726f632f74696d65725f4c697374010ab300cce12a27127034af31d212d4f4887eeffe8cae3ea04d0170a2d66f7c9204e4fd354da872ba0b7f24ca152f525372dd3a2d09336e1626adfdbd633aad47fd63f6b9d5855b2f9500000000000000000000020000"], 0x25) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1726.822776] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1726.822796] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1726.822806] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1726.822817] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1726.822827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1726.822839] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:46:37 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 71) [ 1726.836156] FAULT_INJECTION: forcing a failure. [ 1726.836156] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1726.836172] CPU: 1 PID: 9955 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1726.836179] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1726.836183] Call Trace: [ 1726.836201] dump_stack+0x107/0x167 [ 1726.836215] should_fail.cold+0x5/0xa [ 1726.836233] __alloc_pages_nodemask+0x182/0x600 [ 1726.836249] ? lock_release+0x680/0x680 [ 1726.836262] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1726.836280] ? lock_downgrade+0x6d0/0x6d0 [ 1726.836301] alloc_pages_current+0x187/0x280 [ 1726.836318] get_zeroed_page+0x14/0xb0 [ 1726.836332] ? kasan_unpoison_shadow+0x33/0x50 [ 1726.836344] mon_alloc_buff+0xed/0x250 [ 1726.836361] mon_bin_ioctl+0x493/0xcc0 [ 1726.836378] ? wait_for_completion_io+0x270/0x270 [ 1726.836392] ? mon_bin_get_event+0x440/0x440 [ 1726.836416] ? selinux_file_ioctl+0xb6/0x270 [ 1726.836432] ? mon_bin_get_event+0x440/0x440 [ 1726.836448] __x64_sys_ioctl+0x19a/0x210 [ 1726.836463] do_syscall_64+0x33/0x40 [ 1726.836476] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1726.836485] RIP: 0033:0x7f3f3b722b19 [ 1726.836497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1726.836505] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1726.836523] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1726.836531] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1726.836538] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1726.836545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1726.836553] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1726.908706] FAULT_INJECTION: forcing a failure. [ 1726.908706] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1726.909810] CPU: 1 PID: 9969 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1726.910391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1726.911102] Call Trace: [ 1726.911337] dump_stack+0x107/0x167 [ 1726.911665] should_fail.cold+0x5/0xa [ 1726.911999] __alloc_pages_nodemask+0x182/0x600 [ 1726.912399] ? lock_release+0x680/0x680 [ 1726.912752] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1726.913266] ? lock_downgrade+0x6d0/0x6d0 [ 1726.913662] alloc_pages_current+0x187/0x280 [ 1726.914058] get_zeroed_page+0x14/0xb0 [ 1726.914402] ? kasan_unpoison_shadow+0x33/0x50 [ 1726.914832] mon_alloc_buff+0xed/0x250 [ 1726.915173] mon_bin_ioctl+0x493/0xcc0 [ 1726.915512] ? wait_for_completion_io+0x270/0x270 [ 1726.915935] ? mon_bin_get_event+0x440/0x440 [ 1726.916318] ? selinux_file_ioctl+0xb6/0x270 [ 1726.916704] ? mon_bin_get_event+0x440/0x440 [ 1726.917105] __x64_sys_ioctl+0x19a/0x210 [ 1726.917480] do_syscall_64+0x33/0x40 [ 1726.917831] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1726.918271] RIP: 0033:0x7f3f3b722b19 [ 1726.918606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1726.920192] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1726.920848] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1726.921481] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1726.922096] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1726.922702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1726.923316] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:46:37 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x924b, 0x119b28) 21:46:37 executing program 0: getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000140)=""/175, &(0x7f0000000200)=0xaf) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) setsockopt$inet6_udp_int(r2, 0x11, 0x0, &(0x7f0000000000)=0x443d, 0x4) sendmmsg$inet6(r1, &(0x7f0000000040), 0x0, 0x8080) 21:46:37 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 72) [ 1727.027457] FAULT_INJECTION: forcing a failure. [ 1727.027457] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1727.028620] CPU: 0 PID: 9984 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1727.029256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1727.030047] Call Trace: [ 1727.030307] dump_stack+0x107/0x167 [ 1727.030660] should_fail.cold+0x5/0xa [ 1727.031032] __alloc_pages_nodemask+0x182/0x600 [ 1727.031490] ? lock_release+0x680/0x680 [ 1727.031869] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1727.032462] ? lock_downgrade+0x6d0/0x6d0 [ 1727.032878] alloc_pages_current+0x187/0x280 [ 1727.033324] get_zeroed_page+0x14/0xb0 [ 1727.033710] ? kasan_unpoison_shadow+0x33/0x50 [ 1727.034132] mon_alloc_buff+0xed/0x250 [ 1727.034527] mon_bin_ioctl+0x493/0xcc0 [ 1727.034904] ? wait_for_completion_io+0x270/0x270 [ 1727.035363] ? mon_bin_get_event+0x440/0x440 [ 1727.035793] ? selinux_file_ioctl+0xb6/0x270 [ 1727.036215] ? mon_bin_get_event+0x440/0x440 [ 1727.036657] __x64_sys_ioctl+0x19a/0x210 [ 1727.037049] do_syscall_64+0x33/0x40 [ 1727.037432] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1727.037912] RIP: 0033:0x7f3f3b722b19 [ 1727.038262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1727.042350] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1727.043818] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1727.045160] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1727.046851] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1727.048233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1727.049749] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:46:52 executing program 6: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) unlinkat(r0, &(0x7f0000000140)='./file0\x00', 0x0) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x400ac1, 0x84) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc0) write(r1, &(0x7f0000000240)="01", 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) poll(&(0x7f0000000040)=[{}], 0x1, 0x5) mq_timedsend(0xffffffffffffffff, &(0x7f0000000140), 0x0, 0x20, &(0x7f00000001c0)) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) fsetxattr$trusted_overlay_redirect(r0, &(0x7f00000002c0), 0x0, 0x0, 0x1) mq_open(0x0, 0x0, 0x0, 0x0) 21:46:52 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x80000}, 0x0, 0x7, 0xffffffffffffffff, 0x3) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r3, 0x400, 0x1) fcntl$setlease(r3, 0x400, 0x2) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:52 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 75) 21:46:52 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x541e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:52 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x40049409, 0x119b28) 21:46:52 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 73) 21:46:52 executing program 0: r0 = syz_io_uring_setup(0x336d, &(0x7f0000000700)={0x0, 0x0, 0x2, 0x0, 0x200d8}, &(0x7f0000ff8000/0x6000)=nil, &(0x7f000069c000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000140)=0x0) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) clock_gettime(0x0, &(0x7f0000000ac0)) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, &(0x7f0000000280)) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_setup(0x1, &(0x7f0000000180)=0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r6, 0x541c, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000800)=ANY=[@ANYBLOB="5683b755e8fff4feb51bbc50f150b7144b1cc63f646873ccdeb5136d50b8797676ea73e0e1752cdb25d59a8b84a2dfa6ef46f903444825d811b653627f9e78b25d4232b6aebc8290c4d937959df7e95a02c33c3a9455d775e95babea626694e593d31fc155dae243c9ec8e29a3b2469815ac3e7b83ad98f7ffbcf3b43566ac0a4f65a174174a762b1d58ebe5da711079aacbf00000000000bef8712ce5d3133733e7cd6d5b77ee01c3029189c2005e578356d3938ee61f40ec8276bb6317fd7522442120f5d7a2745ee9766a", @ANYRES32=r4, @ANYBLOB="d59a29b29ca5082693b3a1af13de93f90e0b8c5e2c6dcdaf221eaea73c"]) io_submit(r5, 0x4, &(0x7f00000006c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x6, 0x1, r6, &(0x7f00000001c0)="46bbb658957036ddd1751977", 0xc, 0x4d}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x5, 0x6, r0, &(0x7f0000000400)="c1073004782942f8ac4daba6a029dfbc8d6a827b947fac8ec49aed11d2", 0x1d, 0x4, 0x0, 0x1, r7}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x6, 0xfffd, r4, &(0x7f00000004c0)="cd91a38313d73ea1b3ee594f649b9e8819b5246cb024d5cbe70266045124149a508ded6601f8b8f40421fd098dde4b3fcbf60b2c10317ae55951d65dc328415633cd0437d6642947344164b39059452fdc728e6be8e7", 0x56}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x8, 0x3, r4, &(0x7f0000000580)="cf97da1097918e54d985627688a95a9fdc88080623fcffe014f9986f73daec1f728ce3ea4986dab17df197ffc0d676881afc3c221407b42148bfe3c8842c506ace247c3d3b65f0fd112748c11ee307d2c367b05ffa42b37a094d596bcda379161615a4eef66cffaaf85b323afe6745ae91a1b578b71b650073e711a5c5ff0192c601b95396c6b65b32d095e51666705f33b9566ecf78e95a00d108df99775e7d2515e5c7ec0cad8ea0b07487216d069bfcd5a9fd185dbc45597d0c65bc5b3a06a6b1268af0bfd41a169a10", 0xff30, 0x3, 0x0, 0x1}]) syz_io_uring_submit(r3, r1, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, r0, 0x8000000) syz_io_uring_submit(0x0, r1, &(0x7f0000000440)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x5, 0x0, 0x9, 0x1, &(0x7f0000000300)="8f7296bdea9fafa03f81a44ea6bbd44f4ae38d00c4c2f315576481b66193eb76322738080138a5a22666670770c6f1222153ce1962a4090252adb0c0623f98c898787b10fbf8cdcffe25e997fdfa949341f1cc72054e84257ac378b82fc7ad497de1a58e548b2be41af188b0bf647b304a79b641a0cbfdac4a89b17b928faf67eadb20bc765990e5b90e83e4aa966c4569bfef42fcf823403066fc2aae07f0431f88de40be289b0d6a842575ef218cde9c764f8bfc715909b3c88705bfa3fde5fdddd9", 0x7ff, 0x0, 0x1, {0x0, r2}}, 0x4) r8 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r8, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000a53000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 21:46:52 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0xc0045878, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1742.180111] FAULT_INJECTION: forcing a failure. [ 1742.180111] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1742.181121] CPU: 1 PID: 9995 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1742.181681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1742.182332] Call Trace: [ 1742.182552] dump_stack+0x107/0x167 [ 1742.182854] should_fail.cold+0x5/0xa [ 1742.183165] __alloc_pages_nodemask+0x182/0x600 [ 1742.183541] ? lock_release+0x680/0x680 [ 1742.183873] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1742.184355] ? lock_downgrade+0x6d0/0x6d0 [ 1742.184698] alloc_pages_current+0x187/0x280 [ 1742.185064] get_zeroed_page+0x14/0xb0 [ 1742.185379] ? kasan_unpoison_shadow+0x33/0x50 [ 1742.185754] mon_alloc_buff+0xed/0x250 [ 1742.186087] mon_bin_ioctl+0x493/0xcc0 [ 1742.186410] ? wait_for_completion_io+0x270/0x270 [ 1742.186798] ? mon_bin_get_event+0x440/0x440 [ 1742.187167] ? selinux_file_ioctl+0xb6/0x270 [ 1742.187523] ? mon_bin_get_event+0x440/0x440 [ 1742.187881] __x64_sys_ioctl+0x19a/0x210 [ 1742.188216] do_syscall_64+0x33/0x40 [ 1742.188525] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1742.188935] RIP: 0033:0x7fceda384b19 [ 1742.189248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1742.190785] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1742.191445] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1742.192048] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1742.192649] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1742.193260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1742.193872] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1742.201306] FAULT_INJECTION: forcing a failure. [ 1742.201306] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1742.202396] CPU: 1 PID: 10000 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1742.203001] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1742.203699] Call Trace: [ 1742.203953] dump_stack+0x107/0x167 [ 1742.204280] should_fail.cold+0x5/0xa [ 1742.204623] __alloc_pages_nodemask+0x182/0x600 [ 1742.205040] ? lock_release+0x680/0x680 [ 1742.205393] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1742.205933] ? lock_downgrade+0x6d0/0x6d0 [ 1742.206313] alloc_pages_current+0x187/0x280 [ 1742.206701] get_zeroed_page+0x14/0xb0 [ 1742.207044] ? kasan_unpoison_shadow+0x33/0x50 [ 1742.207442] mon_alloc_buff+0xed/0x250 [ 1742.207791] mon_bin_ioctl+0x493/0xcc0 [ 1742.208146] ? wait_for_completion_io+0x270/0x270 [ 1742.208565] ? mon_bin_get_event+0x440/0x440 [ 1742.208953] ? selinux_file_ioctl+0xb6/0x270 [ 1742.209350] ? mon_bin_get_event+0x440/0x440 [ 1742.209747] __x64_sys_ioctl+0x19a/0x210 [ 1742.210107] do_syscall_64+0x33/0x40 [ 1742.210447] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1742.210891] RIP: 0033:0x7f3f3b722b19 [ 1742.211223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1742.212796] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1742.213467] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1742.214136] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1742.214761] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1742.215375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1742.215999] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1742.242708] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 21:46:52 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x40086602, 0x119b28) 21:46:52 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x541e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:46:52 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 76) [ 1742.342359] FAULT_INJECTION: forcing a failure. [ 1742.342359] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1742.343468] CPU: 1 PID: 10019 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1742.343478] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1742.343483] Call Trace: [ 1742.343502] dump_stack+0x107/0x167 [ 1742.343523] should_fail.cold+0x5/0xa [ 1742.343543] __alloc_pages_nodemask+0x182/0x600 [ 1742.343559] ? lock_release+0x680/0x680 [ 1742.343575] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1742.350213] ? lock_downgrade+0x6d0/0x6d0 [ 1742.351004] alloc_pages_current+0x187/0x280 [ 1742.351981] get_zeroed_page+0x14/0xb0 [ 1742.352341] ? kasan_unpoison_shadow+0x33/0x50 [ 1742.352739] mon_alloc_buff+0xed/0x250 [ 1742.353110] mon_bin_ioctl+0x493/0xcc0 [ 1742.354056] ? wait_for_completion_io+0x270/0x270 [ 1742.355176] ? mon_bin_get_event+0x440/0x440 [ 1742.356188] ? selinux_file_ioctl+0xb6/0x270 [ 1742.356608] ? mon_bin_get_event+0x440/0x440 [ 1742.356991] __x64_sys_ioctl+0x19a/0x210 [ 1742.357405] do_syscall_64+0x33/0x40 [ 1742.358078] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1742.359199] RIP: 0033:0x7fceda384b19 [ 1742.360052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1742.364156] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1742.365826] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1742.367220] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1742.368199] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1742.368806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1742.369448] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:46:53 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 74) [ 1742.444855] FAULT_INJECTION: forcing a failure. [ 1742.444855] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1742.445960] CPU: 1 PID: 10026 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1742.446623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1742.447353] Call Trace: [ 1742.447599] dump_stack+0x107/0x167 [ 1742.447927] should_fail.cold+0x5/0xa [ 1742.448270] __alloc_pages_nodemask+0x182/0x600 [ 1742.448711] ? lock_release+0x680/0x680 [ 1742.449061] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1742.449619] ? lock_downgrade+0x6d0/0x6d0 [ 1742.449995] alloc_pages_current+0x187/0x280 [ 1742.450384] get_zeroed_page+0x14/0xb0 [ 1742.451170] ? kasan_unpoison_shadow+0x33/0x50 [ 1742.451766] mon_alloc_buff+0xed/0x250 [ 1742.452116] mon_bin_ioctl+0x493/0xcc0 [ 1742.452465] ? wait_for_completion_io+0x270/0x270 [ 1742.453380] ? mon_bin_get_event+0x440/0x440 [ 1742.453935] ? selinux_file_ioctl+0xb6/0x270 [ 1742.454313] ? mon_bin_get_event+0x440/0x440 [ 1742.454695] __x64_sys_ioctl+0x19a/0x210 [ 1742.455616] do_syscall_64+0x33/0x40 [ 1742.456036] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1742.456474] RIP: 0033:0x7f3f3b722b19 [ 1742.456797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1742.461140] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1742.461157] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1742.461166] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1742.461175] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1742.461183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1742.461191] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1757.865512] FAULT_INJECTION: forcing a failure. [ 1757.865512] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1757.866738] CPU: 0 PID: 10039 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1757.867330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1757.868035] Call Trace: [ 1757.868273] dump_stack+0x107/0x167 [ 1757.868596] should_fail.cold+0x5/0xa [ 1757.868938] __alloc_pages_nodemask+0x182/0x600 [ 1757.869345] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1757.869891] ? lock_downgrade+0x6d0/0x6d0 [ 1757.870274] alloc_pages_current+0x187/0x280 [ 1757.870667] get_zeroed_page+0x14/0xb0 [ 1757.871008] ? kasan_unpoison_shadow+0x33/0x50 [ 1757.871408] mon_alloc_buff+0xed/0x250 [ 1757.871758] mon_bin_ioctl+0x493/0xcc0 [ 1757.872107] ? wait_for_completion_io+0x270/0x270 [ 1757.872528] ? mon_bin_get_event+0x440/0x440 [ 1757.872923] ? selinux_file_ioctl+0xb6/0x270 [ 1757.873314] ? mon_bin_get_event+0x440/0x440 [ 1757.873713] __x64_sys_ioctl+0x19a/0x210 [ 1757.874076] do_syscall_64+0x33/0x40 [ 1757.874402] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1757.874845] RIP: 0033:0x7f3f3b722b19 [ 1757.875171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:47:08 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 75) 21:47:08 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0xc0045878, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:08 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5421, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:08 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x40087602, 0x119b28) 21:47:08 executing program 6: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[]) mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='./file1\x00', &(0x7f00000001c0), 0x200804, 0x0) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x14f) lsetxattr$trusted_overlay_upper(&(0x7f0000000180)='./file1\x00', &(0x7f00000002c0), &(0x7f0000000380)={0x0, 0xfb, 0x381, 0x0, 0x0, "b172b4af646738e28595d989f63d20d2", "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"}, 0x381, 0x0) 21:47:08 executing program 0: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDADDIO(r0, 0x4b34, 0x1) pipe2(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) pipe2(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) fallocate(r1, 0x40, 0xfffffffffffffffa, 0x7f) write$sndseq(r4, &(0x7f0000000080)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}], 0x1c) tee(r3, r2, 0x800, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0x4) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x608800, 0x0) ioctl$KDSKBENT(r5, 0x541b, &(0x7f0000000100)) 21:47:08 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat(r2, &(0x7f0000000080)='./file0\x00', 0x20942, 0x1b9) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) connect$unix(r2, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:08 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 77) [ 1757.876728] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1757.885778] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1757.886392] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1757.887019] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1757.887028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1757.887037] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1757.903217] FAULT_INJECTION: forcing a failure. [ 1757.903217] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1757.905025] CPU: 0 PID: 10049 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1757.905623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1757.905629] Call Trace: [ 1757.905643] dump_stack+0x107/0x167 [ 1757.905661] should_fail.cold+0x5/0xa [ 1757.905693] __alloc_pages_nodemask+0x182/0x600 [ 1757.905708] ? lock_release+0x680/0x680 [ 1757.905724] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1757.905749] ? lock_downgrade+0x6d0/0x6d0 [ 1757.905779] alloc_pages_current+0x187/0x280 [ 1757.905799] get_zeroed_page+0x14/0xb0 [ 1757.905813] ? kasan_unpoison_shadow+0x33/0x50 [ 1757.905831] mon_alloc_buff+0xed/0x250 [ 1757.910421] mon_bin_ioctl+0x493/0xcc0 [ 1757.910769] ? wait_for_completion_io+0x270/0x270 [ 1757.911188] ? mon_bin_get_event+0x440/0x440 [ 1757.911581] ? selinux_file_ioctl+0xb6/0x270 [ 1757.911970] ? mon_bin_get_event+0x440/0x440 [ 1757.912358] __x64_sys_ioctl+0x19a/0x210 [ 1757.912715] do_syscall_64+0x33/0x40 [ 1757.913041] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1757.913479] RIP: 0033:0x7fceda384b19 [ 1757.913818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1757.915373] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1757.916029] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1757.916638] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1757.917248] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1757.917869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1757.918478] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1757.941053] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue 21:47:08 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0xc0189436, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:08 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x40189206, 0x119b28) 21:47:08 executing program 0: r0 = epoll_create1(0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)={0x90000019}) r2 = epoll_create(0x3ff) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wg2\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000200)={'ip6gre0\x00', &(0x7f00000002c0)={'syztnl2\x00', r3, 0x29, 0x5, 0x7, 0x6, 0x1, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x1, 0x890e, 0xfff, 0x2}}) sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000080), 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="8c000000", @ANYRES16=0x0, @ANYBLOB="080027bd7000fbdbdf250c000000340001802200020076657468315f766cbc915c3600000000140002007767300000000000000000000000000008000300020000004400018008000300020000001400020062617461647630000000000000000000140002007665746830000000000000000000000008000100", @ANYRES32=0x0, @ANYBLOB="c6d661648a3a1d4d7228dfaaec243e0d3156a7327baed1e4e18c97efe3dfd8895734e6bda83e71c15782ebf238abadff00cf6fda37e37ec8a55391f24ce5cf676cacde07028352cd0874807aa1", @ANYBLOB], 0x8c}, 0x1, 0x0, 0x0, 0x20040881}, 0x4008804) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x591, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x4}, 0x1c) pidfd_open(0x0, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/xfrm_stat\x00') syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_OPENAT2={0x1c, 0x4, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)={0xc6000, 0x0, 0x4}, &(0x7f0000000340)='./file0\x00', 0x18, 0x0, 0x23456}, 0x0) sendto(0xffffffffffffffff, &(0x7f0000000240)="1f4c736977e3000000000000006b7d72cbd2f9fc3a32f72da6adb47bc4e545916d5a1d95b0fba9dc9019059f25c4b0bd68ca1c2d1f9f2e91b61874cd734f88a174f81d496957cece8e0783f0ced44b82dc7e2c1c0099c7294383d3397b2dbc58f307c50019bb4c", 0x67, 0x20000085, &(0x7f00000002c0)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e23, 0x4}}, 0x80) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x8}, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000200)={0x20000001}) accept4(r4, &(0x7f00000003c0)=@hci, &(0x7f0000000440)=0x80, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) ppoll(&(0x7f0000000100)=[{0xffffffffffffffff, 0x1080}], 0x1, &(0x7f0000000140)={0x0, 0x989680}, &(0x7f0000000180)={[0x401]}, 0x8) epoll_create(0x1) 21:47:08 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5422, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:08 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x45, 0x0, 0x0, 0xfffffffd}, {0x6, 0x0, 0x0, 0x40007e}]}, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_REGISTER_BEACONS(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x71}, @val={0x8, 0x3, r2}, @void}}}, 0x24}}, 0x0) sendmsg$NL80211_CMD_SET_BSS(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x54, r4, 0x100, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_BSS_CTS_PROT={0x5}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0xab}, @NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0x3}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x9}, @NL80211_ATTR_P2P_OPPPS={0x5}, @NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0x3}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x8}, @NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x8b}]}, 0x54}, 0x1, 0x0, 0x0, 0xc0}, 0x4040840) 21:47:08 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x4018920a, 0x119b28) 21:47:08 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 76) 21:47:08 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0xc020660b, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:08 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 78) [ 1758.158353] FAULT_INJECTION: forcing a failure. [ 1758.158353] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1758.159464] CPU: 0 PID: 10079 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1758.160067] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1758.160766] Call Trace: [ 1758.161004] dump_stack+0x107/0x167 [ 1758.161326] should_fail.cold+0x5/0xa [ 1758.161677] __alloc_pages_nodemask+0x182/0x600 [ 1758.162094] ? lock_release+0x680/0x680 [ 1758.162441] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1758.162975] ? lock_downgrade+0x6d0/0x6d0 [ 1758.163354] alloc_pages_current+0x187/0x280 [ 1758.163753] get_zeroed_page+0x14/0xb0 [ 1758.164092] ? kasan_unpoison_shadow+0x33/0x50 [ 1758.164490] mon_alloc_buff+0xed/0x250 [ 1758.164840] mon_bin_ioctl+0x493/0xcc0 [ 1758.165186] ? wait_for_completion_io+0x270/0x270 [ 1758.165607] ? mon_bin_get_event+0x440/0x440 [ 1758.166023] ? selinux_file_ioctl+0xb6/0x270 [ 1758.166415] ? mon_bin_get_event+0x440/0x440 [ 1758.166806] __x64_sys_ioctl+0x19a/0x210 [ 1758.167165] do_syscall_64+0x33/0x40 [ 1758.167496] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1758.167941] RIP: 0033:0x7f3f3b722b19 [ 1758.168269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1758.169138] FAULT_INJECTION: forcing a failure. [ 1758.169138] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1758.169850] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1758.169868] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1758.169884] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1758.172816] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1758.173423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1758.174046] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1758.174696] CPU: 1 PID: 10081 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1758.175339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1758.176098] Call Trace: [ 1758.176356] dump_stack+0x107/0x167 [ 1758.176707] should_fail.cold+0x5/0xa [ 1758.177073] __alloc_pages_nodemask+0x182/0x600 [ 1758.177513] ? lock_release+0x680/0x680 [ 1758.177907] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1758.178470] ? lock_downgrade+0x6d0/0x6d0 [ 1758.178872] alloc_pages_current+0x187/0x280 [ 1758.179288] get_zeroed_page+0x14/0xb0 [ 1758.179661] ? kasan_unpoison_shadow+0x33/0x50 [ 1758.180081] mon_alloc_buff+0xed/0x250 [ 1758.180452] mon_bin_ioctl+0x493/0xcc0 [ 1758.180824] ? wait_for_completion_io+0x270/0x270 [ 1758.181261] ? mon_bin_get_event+0x440/0x440 [ 1758.181689] ? selinux_file_ioctl+0xb6/0x270 [ 1758.182107] ? mon_bin_get_event+0x440/0x440 [ 1758.182520] __x64_sys_ioctl+0x19a/0x210 [ 1758.182901] do_syscall_64+0x33/0x40 [ 1758.183248] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1758.183716] RIP: 0033:0x7fceda384b19 [ 1758.184062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1758.185716] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1758.186405] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1758.187045] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1758.187692] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1758.188336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1758.188980] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:47:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffff7, 0x10}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) preadv(r0, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet(0x2, 0x0, 0x0) r3 = dup3(r2, 0xffffffffffffffff, 0x0) r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) dup2(r4, r1) creat(0x0, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SNDRV_TIMER_IOCTL_INFO(r5, 0x80e85411, &(0x7f0000000080)=""/43) dup3(r5, r3, 0x0) copy_file_range(r4, &(0x7f00000000c0)=0x7, r0, &(0x7f0000000140)=0x6, 0x1ff, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x78000, 0x0) 21:47:24 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 79) 21:47:24 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x3, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:24 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SNDRV_TIMER_IOCTL_INFO(r4, 0x80e85411, &(0x7f0000000080)=""/43) connect$unix(r4, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e22}, 0x6e) 21:47:24 executing program 0: sendmsg$IPSET_CMD_SWAP(0xffffffffffffffff, 0x0, 0x80) r0 = memfd_create(&(0x7f0000000000)='\x00', 0x0) write(0xffffffffffffffff, 0x0, 0x0) r1 = memfd_create(&(0x7f0000000000)='\x00', 0x0) connect$netlink(0xffffffffffffffff, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='ns\x00') readlinkat(r2, &(0x7f0000000000)='./mnt\x00', &(0x7f00000000c0)=""/253, 0xfd) sendmsg$NFNL_MSG_CTHELPER_DEL(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="980000000209e4040000000000000000070000040801064000000001080006400000000138000200b0f60340000300001400018008000100ac1414aa08000200ac1414bb0c00028005000100067093662e2ab31892dde1363c4ed7003d88294000000c000280050001003a0000000900010073797a300000000008000340000002090800060480080001400000000208000640000000010c000480080001400000000800000000000000"], 0x98}, 0x1, 0x0, 0x0, 0x40}, 0x4081) pwritev2(r1, &(0x7f0000000140)=[{&(0x7f0000000040)='u', 0x1}], 0x1, 0x100009, 0x0, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r3, 0x1, 0x1a, &(0x7f0000003d40), 0x4) ioctl$sock_inet6_SIOCDELRT(r3, 0x890c, &(0x7f0000000180)={@private0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3c}}, @private1, 0x61d7, 0xce2d, 0x8001, 0x0, 0x0, 0x200}) r4 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$perf(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x0, 0x10, r4, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x28, &(0x7f0000000300), &(0x7f0000000380)=0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x99}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000340)={0xa, 0x4e20, 0x1, @dev={0xfe, 0x80, '\x00', 0x35}, 0x75}, 0x1c) copy_file_range(r1, 0x0, r0, 0x0, 0x300000000, 0x0) 21:47:24 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x4020940d, 0x119b28) 21:47:24 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 77) [ 1774.018231] FAULT_INJECTION: forcing a failure. [ 1774.018231] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1774.019441] CPU: 1 PID: 10095 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1774.020069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1774.020787] Call Trace: [ 1774.021014] dump_stack+0x107/0x167 [ 1774.021346] should_fail.cold+0x5/0xa [ 1774.021704] __alloc_pages_nodemask+0x182/0x600 [ 1774.022157] ? lock_release+0x680/0x680 [ 1774.022528] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1774.023081] ? lock_downgrade+0x6d0/0x6d0 [ 1774.023478] alloc_pages_current+0x187/0x280 [ 1774.023888] get_zeroed_page+0x14/0xb0 [ 1774.024243] ? kasan_unpoison_shadow+0x33/0x50 [ 1774.024662] mon_alloc_buff+0xed/0x250 [ 1774.025028] mon_bin_ioctl+0x493/0xcc0 [ 1774.025402] ? wait_for_completion_io+0x270/0x270 [ 1774.025855] ? mon_bin_get_event+0x440/0x440 [ 1774.026249] ? selinux_file_ioctl+0xb6/0x270 [ 1774.026625] ? mon_bin_get_event+0x440/0x440 [ 1774.027001] __x64_sys_ioctl+0x19a/0x210 [ 1774.027349] do_syscall_64+0x33/0x40 [ 1774.027665] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1774.028096] RIP: 0033:0x7fceda384b19 21:47:24 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5423, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1774.028418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1774.029991] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1774.030689] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1774.030699] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1774.030709] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1774.030718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1774.030727] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1774.071167] FAULT_INJECTION: forcing a failure. [ 1774.071167] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1774.072262] CPU: 0 PID: 10103 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1774.072894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1774.073642] Call Trace: [ 1774.073924] dump_stack+0x107/0x167 [ 1774.074280] should_fail.cold+0x5/0xa [ 1774.074656] __alloc_pages_nodemask+0x182/0x600 [ 1774.075101] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1774.075658] ? lock_downgrade+0x6d0/0x6d0 [ 1774.076071] alloc_pages_current+0x187/0x280 [ 1774.076502] get_zeroed_page+0x14/0xb0 [ 1774.076876] ? kasan_unpoison_shadow+0x33/0x50 [ 1774.077301] mon_alloc_buff+0xed/0x250 [ 1774.077685] mon_bin_ioctl+0x493/0xcc0 [ 1774.082091] ? wait_for_completion_io+0x270/0x270 [ 1774.082553] ? mon_bin_get_event+0x440/0x440 [ 1774.082988] ? selinux_file_ioctl+0xb6/0x270 [ 1774.083407] ? mon_bin_get_event+0x440/0x440 [ 1774.083832] __x64_sys_ioctl+0x19a/0x210 [ 1774.084222] do_syscall_64+0x33/0x40 [ 1774.084582] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1774.085065] RIP: 0033:0x7f3f3b722b19 21:47:24 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key(&(0x7f00000000c0)='asymmetric\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffb) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x58, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000240)={0x3, 0x80, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x4, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_config_ext, 0x0, 0x4bd, 0x6, 0x0, 0x7d0e9dee, 0x6, 0x200}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) add_key$keyring(&(0x7f0000000140), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, r0) add_key$fscrypt_v1(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) keyctl$link(0x8, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000380)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="f9fd0d272031cd8b265e5e0890363396701af4ab4f3eb90cd7876b3816783d93a78afb83ed04bd0e5d2189ddfb258a209db72ace971cab689cea4ed922fa85d6ee000926cfd020f98b04769d165b9b5b7a2f922e89b1a26a115564c70331ff229ca2ff118ccce609943f61cf357bdb52af8e7f0c51f7e7010ad0b547"]) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d4100000000416d03000000000000030000000000000000000000000000000054461a010e7809140b2a3a087809140b2a3a087809140b2a3a0843451c011900000000000019000000000000", 0x7e, 0xb800}], 0x0, &(0x7f0000000180)) [ 1774.085421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1774.087089] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1774.087748] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1774.088344] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1774.088980] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1774.094519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1774.095256] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:47:24 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5424, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:24 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x4, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:24 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x80086601, 0x119b28) 21:47:24 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) r3 = socket$unix(0x1, 0x2, 0x0) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r5 = creat(&(0x7f0000000100)='./file0\x00', 0x20) ftruncate(r3, 0x2) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r5, 0xf501, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) writev(r4, &(0x7f0000000640)=[{&(0x7f0000000140)="6d05a4b207d3596dd67755fe006d75cde5a565e1f4c5269b47b811456b8b74d9439e932fce8f8f1dfebce6bb9b08f007654e21bd36c4e990309788caee843aad3bbe72bb2d772f55de9af7c799103670a0c6bd4a37dfa32985a01295dcd9e62fcb504d475e20d9f2fad042274903402032df7d135bc06a3401de9222cba57a94631e2d0591e149a91f0ea73a02198abea39e7cb8e885ccbb23acbc0dae5d43c495da04cdb9099f615db964fc", 0xac}, {&(0x7f0000000200)="7b3f18fc824e7f3672e1ac3cfdd1318baefe923e21d51c7adc953aef53dd1fe2fcb5ec5a7900f89c5fa4fbd3b83ae65ec5b88a551c52910ffcddccfb342e3394a2bb3c26dcf47352c4a3ed3713c1b23998b528e918dffdeb153279bd6b96e6fa5cf20682328796eb574501768be8937a23a8e48425fa29aa88beb1b9e3752ab4730871148739f8bc4d859bdc53709034af766a298f2e39bfe78ff0b26861f5dbc44c54467cac2a742b", 0xa9}, {&(0x7f00000002c0)="133248494b2ce404b968399ff6b16d19f728a4b4a74cdfe75dae87d2a8485035f8fadb27094ab704310b589cbe88a5c6", 0x30}, {&(0x7f0000000300)="97d1569d45f7f9e03d7c634ddf7f12a117bd08157e66a6ea1676ced662a00526c9d5c868aab1deea4a0ebb508ad8292a2c84894d8e7806c3e341a165930e8e292d9270b0233bb470628207d411bc7d681602ce9b167ef73807dd119bad356f54582c602444366bf1b0e471dfd01c582660848e46b099", 0x76}, {&(0x7f0000000380)="c71bfaff6aebb387776738015804e6ce63670a5e87975a6b30ceb13a61b73ad1ae8ed9ffc2da7371bc7d01b6a7c4479fd0c6d633391ffafc4af7f2165b44060ed3344df2f05a2e08056ecb64e4ce7829990314a2e27243a148c9f1074d5006974ba39a793081a8152ff192c5f97e8ed4e6aec2b285829c7ef845e00fb5ec3ea5d0652f0bd101ebe28d586c753bf5f4e9cc56116fb49c7f23d28fc959726e28361c165a1579", 0xa5}, {&(0x7f0000000440)="b784c660b5464a149b17e16c3e7aeb5594", 0x11}, {&(0x7f0000000480)="08d1b8dd45dffe77d3db6a4a5e630661e93871f7e51f34875eb308be90b09eb5b51cfd198191ae0f13d60827baa04a53ff04c3f42a8acda85b93b318ed0765f2fd400b520d9dd5dbe3e601a2a09c8bc9ff195e85877457f7d09b77628609a55ad6757ec2649d575e3ca77957201c282a3b59539975a961923aa938392946d31e0838d3447c9dc10b616cb49db7861ece0acf97cab1c16b60b3a393c7bd2e58e343e1ba8d5b12c18038c96da0944f4b", 0xaf}, {&(0x7f0000000540)="3c5edd4c1a2662c3fccbbd1375b8bf222916939868a628b0371086695a6749aea98c2a6b41827b61359b58f881fca375b5db79bd0879d0aa78447027d646059de3547b97466e47c1d9953e9b887fc8efe540c50830d994e22f92a2740d735e90a460259514f771ae0374951568386c42d430808ae64cccd44bda152ef696ae965a7a7ccf702d22b4edc62fcf1eb1fae91a3ac201ec6ead825c88e156b116d0e88a190e5e28ae050d12852bed2a03d0c2fda027ec076585fac909d3362de10e47d700c938ae13dba4bd7b25bc32a721736131aa115696028e01659a4d8a0a89fae9b8b55b", 0xe4}], 0x8) ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:24 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 78) 21:47:24 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 80) 21:47:24 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5425, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1774.412211] FAULT_INJECTION: forcing a failure. [ 1774.412211] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1774.413476] CPU: 0 PID: 10133 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1774.414120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1774.414894] Call Trace: [ 1774.415155] dump_stack+0x107/0x167 [ 1774.415515] should_fail.cold+0x5/0xa [ 1774.415889] __alloc_pages_nodemask+0x182/0x600 [ 1774.416322] ? lock_release+0x680/0x680 [ 1774.416691] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1774.417265] ? lock_downgrade+0x6d0/0x6d0 [ 1774.417680] alloc_pages_current+0x187/0x280 [ 1774.418122] get_zeroed_page+0x14/0xb0 [ 1774.418508] ? kasan_unpoison_shadow+0x33/0x50 [ 1774.418939] mon_alloc_buff+0xed/0x250 [ 1774.419331] mon_bin_ioctl+0x493/0xcc0 [ 1774.419714] ? wait_for_completion_io+0x270/0x270 [ 1774.420169] ? mon_bin_get_event+0x440/0x440 [ 1774.420604] ? selinux_file_ioctl+0xb6/0x270 [ 1774.421029] ? mon_bin_get_event+0x440/0x440 [ 1774.421452] __x64_sys_ioctl+0x19a/0x210 [ 1774.421862] do_syscall_64+0x33/0x40 [ 1774.422221] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1774.422715] RIP: 0033:0x7f3f3b722b19 [ 1774.423069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1774.424744] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1774.425447] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1774.426133] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1774.426785] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1774.427455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1774.428121] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1774.434064] FAULT_INJECTION: forcing a failure. [ 1774.434064] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1774.435158] CPU: 1 PID: 10134 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1774.435778] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1774.436517] Call Trace: [ 1774.436770] dump_stack+0x107/0x167 [ 1774.437112] should_fail.cold+0x5/0xa [ 1774.437479] __alloc_pages_nodemask+0x182/0x600 [ 1774.437932] ? lock_release+0x680/0x680 [ 1774.438308] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1774.438865] ? lock_downgrade+0x6d0/0x6d0 [ 1774.439262] alloc_pages_current+0x187/0x280 [ 1774.439679] get_zeroed_page+0x14/0xb0 [ 1774.440039] ? kasan_unpoison_shadow+0x33/0x50 [ 1774.440459] mon_alloc_buff+0xed/0x250 [ 1774.440834] mon_bin_ioctl+0x493/0xcc0 [ 1774.441201] ? wait_for_completion_io+0x270/0x270 [ 1774.441647] ? mon_bin_get_event+0x440/0x440 [ 1774.442074] ? selinux_file_ioctl+0xb6/0x270 [ 1774.442479] ? mon_bin_get_event+0x440/0x440 [ 1774.442879] __x64_sys_ioctl+0x19a/0x210 [ 1774.443263] do_syscall_64+0x33/0x40 [ 1774.443606] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1774.444069] RIP: 0033:0x7fceda384b19 [ 1774.444421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1774.446092] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1774.446801] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1774.447446] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1774.448104] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1774.448756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1774.449386] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:47:40 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x5, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:40 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5427, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:40 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000500)='ramfs\x00', 0x110000, 0x0) symlink(&(0x7f0000000000)='.\x00', &(0x7f00000000c0)='./file0/file0\x00') openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x250080, 0x41) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x220442, 0x9e) 21:47:40 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 81) 21:47:40 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 79) 21:47:40 executing program 0: socket$inet_udp(0x2, 0x2, 0x0) fallocate(0xffffffffffffffff, 0x2, 0x1, 0x5) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000200)={'gretap0\x00', 0x0}) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)) socket$inet6_udplite(0xa, 0x2, 0x88) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) syz_io_uring_submit(r3, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) pidfd_open(0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r5 = pidfd_getfd(r4, r0, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r5, 0x8982, &(0x7f0000000040)={0x3, 'ip6gre0\x00', {0xfff}, 0x8}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000001c0)=ANY=[@ANYBLOB="010087fe33c223904fff02bc7fb78218c61f3fbdcbda344a0fe4f69ce200000100c83c46a10000", @ANYRES32=0xffffffffffffffff, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r6, 0xc018937a, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000019000000", @ANYRES32=r0, @ANYBLOB="03000000000000002e2f66696c65302f66696c653000"]) io_uring_enter(r7, 0x6f64, 0x1311, 0x3, &(0x7f0000000180)={[0xfffffffffffffffc]}, 0x8) sendmmsg$inet6(r1, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) fspick(0xffffffffffffff9c, 0x0, 0x0) 21:47:40 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x80087601, 0x119b28) 21:47:40 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) r3 = socket$unix(0x1, 0x2, 0x0) pread64(r3, &(0x7f0000000100)=""/229, 0xe5, 0x8) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1789.404084] FAULT_INJECTION: forcing a failure. [ 1789.404084] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1789.405156] CPU: 0 PID: 10160 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1789.405748] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1789.406455] Call Trace: [ 1789.406693] dump_stack+0x107/0x167 [ 1789.407014] should_fail.cold+0x5/0xa [ 1789.407353] __alloc_pages_nodemask+0x182/0x600 [ 1789.407758] ? lock_release+0x680/0x680 [ 1789.408104] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1789.408632] ? lock_downgrade+0x6d0/0x6d0 [ 1789.409011] alloc_pages_current+0x187/0x280 [ 1789.409403] get_zeroed_page+0x14/0xb0 [ 1789.409455] FAULT_INJECTION: forcing a failure. [ 1789.409455] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1789.409740] ? kasan_unpoison_shadow+0x33/0x50 [ 1789.409755] mon_alloc_buff+0xed/0x250 [ 1789.409781] mon_bin_ioctl+0x493/0xcc0 [ 1789.411854] ? wait_for_completion_io+0x270/0x270 [ 1789.412274] ? mon_bin_get_event+0x440/0x440 [ 1789.412672] ? selinux_file_ioctl+0xb6/0x270 [ 1789.413061] ? mon_bin_get_event+0x440/0x440 [ 1789.413450] __x64_sys_ioctl+0x19a/0x210 [ 1789.413815] do_syscall_64+0x33/0x40 [ 1789.414154] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1789.414605] RIP: 0033:0x7f3f3b722b19 [ 1789.414931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1789.416490] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1789.417147] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1789.417758] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1789.418384] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1789.419002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1789.419614] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1789.420264] CPU: 1 PID: 10161 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1789.420855] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1789.426504] Call Trace: [ 1789.426738] dump_stack+0x107/0x167 [ 1789.427058] should_fail.cold+0x5/0xa [ 1789.427398] __alloc_pages_nodemask+0x182/0x600 [ 1789.427824] ? lock_release+0x680/0x680 [ 1789.428163] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1789.428672] ? lock_downgrade+0x6d0/0x6d0 [ 1789.429031] alloc_pages_current+0x187/0x280 [ 1789.429408] get_zeroed_page+0x14/0xb0 [ 1789.429738] ? kasan_unpoison_shadow+0x33/0x50 [ 1789.430143] mon_alloc_buff+0xed/0x250 [ 1789.430504] mon_bin_ioctl+0x493/0xcc0 [ 1789.430858] ? wait_for_completion_io+0x270/0x270 [ 1789.431274] ? mon_bin_get_event+0x440/0x440 [ 1789.431293] ? selinux_file_ioctl+0xb6/0x270 [ 1789.431308] ? mon_bin_get_event+0x440/0x440 [ 1789.431323] __x64_sys_ioctl+0x19a/0x210 [ 1789.431337] do_syscall_64+0x33/0x40 [ 1789.431348] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1789.431357] RIP: 0033:0x7fceda384b19 21:47:40 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5428, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1789.431370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1789.431377] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1789.431391] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 21:47:40 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x80089203, 0x119b28) 21:47:40 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x6, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1789.431398] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 21:47:40 executing program 6: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x4000000000000000, 0x3) [ 1789.431406] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1789.431413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1789.431421] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:47:40 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 82) 21:47:40 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 80) 21:47:40 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0xc0045878, 0x119b28) 21:47:40 executing program 0: read(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1451c2, 0x10) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x1c8) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r4) sendmsg$IEEE802154_LLSEC_DEL_DEV(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000500)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010100000000000000002b0000000a0001007770616e300000000c000500000000000000000008000200", @ANYRES32=0x0, @ANYBLOB="e8ba28cb114f357545571b7ab07e3399b50c7d4df073f6da6905c52461acc088ed755adbbd66d81fb6d6cf9ca8330f6cd329743e42fab6e1edaa0000000000000000000000000000bd717feef6e3b872a668ff4e367c6918c7498ad12fde1293acf74ca5aebdc28c6d83a713a5b6c41c94898d4ad06d17ae6b9b7b0713bc1c35a2aa927411d128de7c4494281b56dce766d222d1837782dd8dc10ea9915c155910f27ffd42e539d3852e402d0b43403e36334bf53ffa6344b4a2a9e7b59689fb0c673389ec6ba98656193ba2d682"], 0x34}}, 0x0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x1, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) umount2(&(0x7f00000001c0)='./file0\x00', 0x0) fallocate(r1, 0x8, 0x0, 0x8000) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r6) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000004c0)) write$P9_RAUTH(r0, &(0x7f0000000000)={0x14, 0x67, 0x2, {0x1, 0x3, 0x6}}, 0x14) [ 1789.588778] FAULT_INJECTION: forcing a failure. [ 1789.588778] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1789.589871] CPU: 0 PID: 10183 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1789.590485] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1789.591184] Call Trace: [ 1789.591421] dump_stack+0x107/0x167 [ 1789.591743] should_fail.cold+0x5/0xa [ 1789.592083] __alloc_pages_nodemask+0x182/0x600 [ 1789.592488] ? lock_release+0x680/0x680 [ 1789.592841] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1789.593371] ? lock_downgrade+0x6d0/0x6d0 [ 1789.593751] alloc_pages_current+0x187/0x280 [ 1789.594160] get_zeroed_page+0x14/0xb0 [ 1789.594501] ? kasan_unpoison_shadow+0x33/0x50 [ 1789.594906] mon_alloc_buff+0xed/0x250 [ 1789.595262] mon_bin_ioctl+0x493/0xcc0 [ 1789.595610] ? wait_for_completion_io+0x270/0x270 [ 1789.596030] ? mon_bin_get_event+0x440/0x440 [ 1789.596424] ? selinux_file_ioctl+0xb6/0x270 [ 1789.596817] ? mon_bin_get_event+0x440/0x440 [ 1789.597205] __x64_sys_ioctl+0x19a/0x210 [ 1789.597564] do_syscall_64+0x33/0x40 [ 1789.597891] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1789.598347] RIP: 0033:0x7fceda384b19 [ 1789.598674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1789.600233] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1789.600892] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1789.601505] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1789.602140] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1789.602752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1789.603361] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1789.611124] FAULT_INJECTION: forcing a failure. [ 1789.611124] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1789.612274] CPU: 1 PID: 10187 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1789.612879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1789.613625] Call Trace: [ 1789.613878] dump_stack+0x107/0x167 [ 1789.614240] should_fail.cold+0x5/0xa [ 1789.614591] __alloc_pages_nodemask+0x182/0x600 [ 1789.615039] ? lock_release+0x680/0x680 [ 1789.615411] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1789.615945] ? lock_downgrade+0x6d0/0x6d0 [ 1789.616322] alloc_pages_current+0x187/0x280 [ 1789.616716] get_zeroed_page+0x14/0xb0 [ 1789.617072] ? kasan_unpoison_shadow+0x33/0x50 [ 1789.617471] mon_alloc_buff+0xed/0x250 [ 1789.617832] mon_bin_ioctl+0x493/0xcc0 [ 1789.618205] ? wait_for_completion_io+0x270/0x270 [ 1789.618626] ? mon_bin_get_event+0x440/0x440 [ 1789.619022] ? selinux_file_ioctl+0xb6/0x270 [ 1789.619416] ? mon_bin_get_event+0x440/0x440 [ 1789.619818] __x64_sys_ioctl+0x19a/0x210 [ 1789.620184] do_syscall_64+0x33/0x40 [ 1789.620521] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1789.620971] RIP: 0033:0x7f3f3b722b19 [ 1789.621327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1789.622968] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1789.623649] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1789.624289] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1789.624931] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1789.625561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1789.626215] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:47:57 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x7, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:57 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x80089203, 0x119b28) 21:47:57 executing program 0: r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@nfc={0x27, 0x0, 0x1, 0x4}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000300)="a63a85f5", 0x4}], 0x1}, 0x0, 0x10}, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 21:47:57 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 81) 21:47:57 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5429, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:57 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0xc0045878, 0x119b28) 21:47:57 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 83) 21:47:57 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, @out_args}, './file0\x00'}) accept$unix(r4, &(0x7f0000000100), &(0x7f0000000180)=0x6e) dup2(0xffffffffffffffff, 0xffffffffffffffff) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1806.454982] FAULT_INJECTION: forcing a failure. [ 1806.454982] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1806.456177] CPU: 0 PID: 10201 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1806.456186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.456192] Call Trace: [ 1806.456213] dump_stack+0x107/0x167 [ 1806.456232] should_fail.cold+0x5/0xa [ 1806.456258] __alloc_pages_nodemask+0x182/0x600 [ 1806.456279] ? lock_release+0x680/0x680 [ 1806.456296] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1806.456321] ? lock_downgrade+0x6d0/0x6d0 [ 1806.456352] alloc_pages_current+0x187/0x280 [ 1806.460684] get_zeroed_page+0x14/0xb0 [ 1806.460697] ? kasan_unpoison_shadow+0x33/0x50 [ 1806.460711] mon_alloc_buff+0xed/0x250 [ 1806.460734] mon_bin_ioctl+0x493/0xcc0 [ 1806.460756] ? wait_for_completion_io+0x270/0x270 [ 1806.462636] ? mon_bin_get_event+0x440/0x440 [ 1806.462664] ? selinux_file_ioctl+0xb6/0x270 [ 1806.463449] ? mon_bin_get_event+0x440/0x440 [ 1806.463468] __x64_sys_ioctl+0x19a/0x210 [ 1806.463487] do_syscall_64+0x33/0x40 [ 1806.463500] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.463510] RIP: 0033:0x7fceda384b19 [ 1806.463524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1806.463534] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1806.463552] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1806.463562] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1806.463571] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1806.463579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1806.463588] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:47:57 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0xa, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1806.470127] FAULT_INJECTION: forcing a failure. [ 1806.470127] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1806.470153] CPU: 0 PID: 10211 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1806.470161] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.470173] Call Trace: [ 1806.470188] dump_stack+0x107/0x167 [ 1806.470206] should_fail.cold+0x5/0xa [ 1806.470228] __alloc_pages_nodemask+0x182/0x600 [ 1806.470242] ? lock_release+0x680/0x680 [ 1806.470259] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1806.470323] ? lock_downgrade+0x6d0/0x6d0 [ 1806.470355] alloc_pages_current+0x187/0x280 [ 1806.470375] get_zeroed_page+0x14/0xb0 [ 1806.470388] ? kasan_unpoison_shadow+0x33/0x50 [ 1806.470398] mon_alloc_buff+0xed/0x250 [ 1806.470421] mon_bin_ioctl+0x493/0xcc0 [ 1806.470439] ? wait_for_completion_io+0x270/0x270 [ 1806.470454] ? mon_bin_get_event+0x440/0x440 [ 1806.470477] ? selinux_file_ioctl+0xb6/0x270 [ 1806.470503] ? mon_bin_get_event+0x440/0x440 [ 1806.470521] __x64_sys_ioctl+0x19a/0x210 [ 1806.470541] do_syscall_64+0x33/0x40 [ 1806.470556] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.470567] RIP: 0033:0x7f3f3b722b19 21:47:57 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 82) [ 1806.470581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:47:57 executing program 0: ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) io_submit(0x0, 0x2, &(0x7f0000001680)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_bp={0x0, 0x2}}, 0x0, 0x0, 0xffffffffffffffff, 0x1) io_cancel(0x0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x2, 0x5, 0xffffffffffffffff, &(0x7f0000000440)="ae11e4447f5eda7d9de18b601a10d36a4b906d50147309633db606700d00b9bb89017b382feb8ecbedaf8e74bbe920223ce0fc4c3ec73e01d93695cdbda40b533f22eefe760847aa120a706a9aba7c6128994781ec0a20efb8c5662db6c6c7d8467451d94ba55515af46f5e2456bb18be89792dab21fc6214d7a7e3ee6191f89b9177a829bf12fc671d28c2f2796d183678fccf1f0a13d", 0x97, 0x40, 0x0, 0x3}, &(0x7f0000000540)) r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffe, 0x6, 0x0, @buffer={0x300, 0xae, &(0x7f0000000580)=""/174}, &(0x7f0000000040)="4feb7dc9066b", 0x0, 0x0, 0x0, 0x4, 0x0}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000340)={0x0}, &(0x7f0000000380)=0xc) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, 0x0, r4) sendmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@cred={{0x1c, 0x1, 0x2, {r3, r4}}}], 0x20}, 0x0) clone3(&(0x7f0000001e00)={0x21240400, &(0x7f00000001c0), &(0x7f0000001bc0), &(0x7f0000001b80), {0x1b}, &(0x7f0000001f00)=""/149, 0x95, &(0x7f0000001d00)=""/170, &(0x7f0000001dc0)=[0x0, r3, 0xffffffffffffffff], 0x53}, 0x58) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x0, &(0x7f0000000140), &(0x7f0000000180)=0x4) [ 1806.470590] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1806.470604] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1806.470613] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1806.470621] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 21:47:57 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x16}}, 0x1c) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r1, 0x400, 0x1) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000140)={0x800, {{0xa, 0x4e20, 0xf0e, @loopback, 0xffff}}}, 0x88) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x440002, 0x0) dup2(r0, r2) 21:47:57 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0xc0109207, 0x119b28) [ 1806.470629] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1806.470637] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:47:57 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 84) [ 1806.582745] FAULT_INJECTION: forcing a failure. [ 1806.582745] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1806.583839] CPU: 0 PID: 10219 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1806.584472] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.585170] Call Trace: [ 1806.585479] dump_stack+0x107/0x167 [ 1806.585799] should_fail.cold+0x5/0xa [ 1806.586135] __alloc_pages_nodemask+0x182/0x600 [ 1806.586656] ? lock_release+0x680/0x680 [ 1806.587046] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1806.587668] ? lock_downgrade+0x6d0/0x6d0 [ 1806.588087] alloc_pages_current+0x187/0x280 [ 1806.588564] get_zeroed_page+0x14/0xb0 [ 1806.588938] ? kasan_unpoison_shadow+0x33/0x50 [ 1806.589451] mon_alloc_buff+0xed/0x250 [ 1806.589836] mon_bin_ioctl+0x493/0xcc0 [ 1806.590215] ? wait_for_completion_io+0x270/0x270 [ 1806.590695] ? mon_bin_get_event+0x440/0x440 [ 1806.591095] ? selinux_file_ioctl+0xb6/0x270 [ 1806.591525] ? mon_bin_get_event+0x440/0x440 [ 1806.591926] __x64_sys_ioctl+0x19a/0x210 [ 1806.592318] do_syscall_64+0x33/0x40 [ 1806.592653] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.593101] RIP: 0033:0x7f3f3b722b19 [ 1806.593497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1806.595095] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1806.595808] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1806.596455] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1806.597058] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1806.597708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1806.598404] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:47:57 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0xb, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1806.626239] FAULT_INJECTION: forcing a failure. [ 1806.626239] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1806.642879] CPU: 1 PID: 10225 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1806.643526] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.644307] Call Trace: [ 1806.644575] dump_stack+0x107/0x167 [ 1806.644939] should_fail.cold+0x5/0xa [ 1806.646290] __alloc_pages_nodemask+0x182/0x600 [ 1806.646769] ? lock_release+0x680/0x680 [ 1806.647171] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1806.647755] ? lock_downgrade+0x6d0/0x6d0 [ 1806.648184] alloc_pages_current+0x187/0x280 [ 1806.648623] get_zeroed_page+0x14/0xb0 [ 1806.649009] ? kasan_unpoison_shadow+0x33/0x50 [ 1806.649461] mon_alloc_buff+0xed/0x250 [ 1806.649874] mon_bin_ioctl+0x493/0xcc0 [ 1806.650286] ? wait_for_completion_io+0x270/0x270 [ 1806.650775] ? mon_bin_get_event+0x440/0x440 [ 1806.651212] ? selinux_file_ioctl+0xb6/0x270 [ 1806.651638] ? mon_bin_get_event+0x440/0x440 [ 1806.652079] __x64_sys_ioctl+0x19a/0x210 [ 1806.652562] do_syscall_64+0x33/0x40 [ 1806.652985] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.653483] RIP: 0033:0x7fceda384b19 [ 1806.653906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1806.655774] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1806.656651] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1806.657397] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1806.658126] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1806.658808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1806.659536] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:47:57 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x3, 0x2, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:57 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5437, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:57 executing program 6: add_key$keyring(&(0x7f0000000040), 0x0, 0x0, 0x0, 0xffffffffffffffff) syz_io_uring_setup(0x36a7, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000000), &(0x7f0000000200)) 21:47:57 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 83) [ 1806.760883] FAULT_INJECTION: forcing a failure. [ 1806.760883] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1806.764062] CPU: 0 PID: 10241 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1806.765916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.767895] Call Trace: 21:47:57 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0xc, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:57 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0xc0189436, 0x119b28) [ 1806.768740] dump_stack+0x107/0x167 [ 1806.769631] should_fail.cold+0x5/0xa [ 1806.770568] __alloc_pages_nodemask+0x182/0x600 [ 1806.771696] ? lock_release+0x680/0x680 [ 1806.772633] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1806.774070] ? lock_downgrade+0x6d0/0x6d0 [ 1806.775091] alloc_pages_current+0x187/0x280 [ 1806.776158] get_zeroed_page+0x14/0xb0 [ 1806.777075] ? kasan_unpoison_shadow+0x33/0x50 [ 1806.778167] mon_alloc_buff+0xed/0x250 [ 1806.779108] mon_bin_ioctl+0x493/0xcc0 [ 1806.780048] ? wait_for_completion_io+0x270/0x270 [ 1806.781194] ? mon_bin_get_event+0x440/0x440 [ 1806.782251] ? selinux_file_ioctl+0xb6/0x270 [ 1806.783295] ? mon_bin_get_event+0x440/0x440 [ 1806.784339] __x64_sys_ioctl+0x19a/0x210 [ 1806.785295] do_syscall_64+0x33/0x40 [ 1806.786196] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.787410] RIP: 0033:0x7f3f3b722b19 21:47:57 executing program 5: r0 = perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x800, 0x6, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xf, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r4, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2}) r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r5, 0x400, 0x1) fcntl$dupfd(r3, 0x0, r5) dup2(0xffffffffffffffff, 0xffffffffffffffff) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000080)={0x0, 0x6, 0x1000, 0x6, 0x1}) ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1806.788304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1806.792910] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1806.794730] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1806.796439] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1806.798134] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1806.799831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1806.801542] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:47:57 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5441, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:47:57 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 85) 21:47:57 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0xc020660b, 0x119b28) 21:47:57 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='fd/3\x00') sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x100}, 0x1, 0x0, 0x0, 0x4804}, 0x0) sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0x78, 0x0, 0x300, 0x0, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x401}, @IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x7}]}, @IPVS_CMD_ATTR_DAEMON={0x38, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1_to_team\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x40000}, 0x20004000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl(0xffffffffffffffff, 0x8927, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="c40000007331051c3d602d96b5aa40fc4e83bf284af8406e1e09d725c3fbd48015bb0e8d83c6900e06b9ba94454f", @ANYRES16, @ANYBLOB="000000000000000000002100000008000300", @ANYRES32=r2, @ANYBLOB], 0x1c}}, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) rt_sigaction(0x17, 0x0, 0x0, 0x8, &(0x7f000000b280)) fallocate(r4, 0x0, 0x0, 0x1000002) sendmsg$WG_CMD_GET_DEVICE(r3, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f0000000500)={0x88, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x6c}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @c}]}, 0x88}, 0x1, 0x0, 0x0, 0x10}, 0x80) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r4, 0x0) [ 1806.893022] FAULT_INJECTION: forcing a failure. [ 1806.893022] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1806.895721] CPU: 1 PID: 10263 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1806.897438] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.899520] Call Trace: [ 1806.900197] dump_stack+0x107/0x167 [ 1806.901119] should_fail.cold+0x5/0xa [ 1806.902054] __alloc_pages_nodemask+0x182/0x600 [ 1806.903185] ? lock_release+0x680/0x680 [ 1806.904138] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1806.905593] ? lock_downgrade+0x6d0/0x6d0 [ 1806.906603] alloc_pages_current+0x187/0x280 [ 1806.907658] get_zeroed_page+0x14/0xb0 [ 1806.908594] ? kasan_unpoison_shadow+0x33/0x50 [ 1806.909724] mon_alloc_buff+0xed/0x250 [ 1806.910679] mon_bin_ioctl+0x493/0xcc0 [ 1806.911633] ? wait_for_completion_io+0x270/0x270 [ 1806.912888] ? mon_bin_get_event+0x440/0x440 [ 1806.914007] ? selinux_file_ioctl+0xb6/0x270 [ 1806.915091] ? mon_bin_get_event+0x440/0x440 [ 1806.916149] __x64_sys_ioctl+0x19a/0x210 [ 1806.917144] do_syscall_64+0x33/0x40 [ 1806.918056] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.919297] RIP: 0033:0x7fceda384b19 [ 1806.920202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1806.924764] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1806.926649] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1806.928368] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1806.930124] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1806.931813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1806.933633] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:48:13 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 84) 21:48:13 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) write$binfmt_elf64(r0, &(0x7f0000001480)={{0x7f, 0x45, 0x4c, 0x46, 0x8, 0xe0, 0x75, 0x8, 0xfffffffffffffff9, 0x3, 0x6, 0x80000001, 0xfc, 0x40, 0x17a, 0x80000001, 0x9, 0x38, 0x2, 0x0, 0x4, 0xde}, [{0x4, 0x7, 0xfe, 0xffffffffffffffe1, 0x80000000, 0x800, 0x1, 0x1}], "3b3b184911413a771546c4b9443c73657a1fef21c754fd4460b585fa3c9cbc212b491162701d551f8e33f0cbdf065b420b07c80d0d50870eadb9ec0ba1f3990b8dab36fd160104941175a45b4f6f395e652bb78cfb6a8dcbcf09ddb501c807c2aad9ab", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x8db) r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) chdir(&(0x7f00000002c0)='./file0\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0) write$binfmt_script(r1, &(0x7f0000000440)={'#! ', './file0', [{0x20, '@@\'--(!{[}'}, {}, {0x20, '\x00'}, {0x20, '\x00'}, {0x20, '--'}], 0xa, "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"}, 0x101e) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'macvlan1\x00'}) socket$inet(0x2, 0x3, 0x80) ioctl$sock_SIOCADDRT(r2, 0x890b, &(0x7f00000001c0)={0x0, @l2tp={0x2, 0x0, @local, 0x1}, @xdp={0x2c, 0xc, 0x0, 0x3a}, @ax25={0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x1}, 0x6584, 0x0, 0x0, 0x0, 0xad6, &(0x7f0000000100)='xfrm0\x00', 0x8, 0x3, 0x1}) dup2(r4, r3) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000180)=ANY=[@ANYRES32=r4, @ANYRESDEC]) ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91, 0x0, 0x9}) pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0) close_range(r5, 0xffffffffffffffff, 0x0) mkdirat(r5, &(0x7f0000000080)='./file0\x00', 0x109) ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0) 21:48:13 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0xd, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:48:13 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x4000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r3, {0x1}}, './file0\x00'}) ioctl$TIOCSTI(r6, 0x5412, &(0x7f0000000100)=0x20) 21:48:13 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b4b) 21:48:13 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5450, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1822.637375] FAULT_INJECTION: forcing a failure. [ 1822.637375] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1822.642520] CPU: 1 PID: 10284 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1822.643103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1822.643108] Call Trace: [ 1822.643126] dump_stack+0x107/0x167 [ 1822.643140] should_fail.cold+0x5/0xa [ 1822.643159] __alloc_pages_nodemask+0x182/0x600 [ 1822.643173] ? lock_release+0x680/0x680 [ 1822.643186] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1822.643203] ? lock_downgrade+0x6d0/0x6d0 [ 1822.643223] alloc_pages_current+0x187/0x280 [ 1822.643239] get_zeroed_page+0x14/0xb0 [ 1822.643251] ? kasan_unpoison_shadow+0x33/0x50 [ 1822.643262] mon_alloc_buff+0xed/0x250 [ 1822.643279] mon_bin_ioctl+0x493/0xcc0 [ 1822.643295] ? wait_for_completion_io+0x270/0x270 [ 1822.643307] ? mon_bin_get_event+0x440/0x440 [ 1822.643326] ? selinux_file_ioctl+0xb6/0x270 [ 1822.643340] ? mon_bin_get_event+0x440/0x440 [ 1822.643356] __x64_sys_ioctl+0x19a/0x210 [ 1822.643369] do_syscall_64+0x33/0x40 [ 1822.643381] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1822.643390] RIP: 0033:0x7fceda384b19 [ 1822.643406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1822.643413] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1822.643427] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1822.643434] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1822.643453] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1822.654067] FAULT_INJECTION: forcing a failure. [ 1822.654067] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1822.654525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1822.654534] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1822.657851] CPU: 0 PID: 10287 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1822.657862] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1822.657869] Call Trace: [ 1822.657892] dump_stack+0x107/0x167 [ 1822.657916] should_fail.cold+0x5/0xa 21:48:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 86) 21:48:13 executing program 6: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/165, 0xa5}, {&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000180)=""/33, 0x21}], 0x3, &(0x7f0000001300)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x148}, 0x0) r0 = getpid() r1 = getpgid(0x0) r2 = epoll_create(0x1) r3 = getpid() r4 = getpgid(0x0) r5 = epoll_create(0x1) kcmp$KCMP_EPOLL_TFD(r3, r4, 0x7, r5, &(0x7f0000000040)={r5}) ptrace(0x4207, r4) kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, r2, &(0x7f0000000040)={r2}) r6 = syz_open_procfs(r1, &(0x7f0000000140)='ns\x00') open_tree(r6, &(0x7f00000002c0)='./mnt\x00', 0x1) [ 1822.657946] __alloc_pages_nodemask+0x182/0x600 [ 1822.657968] ? lock_release+0x680/0x680 [ 1822.657988] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1822.658020] ? lock_downgrade+0x6d0/0x6d0 [ 1822.658059] alloc_pages_current+0x187/0x280 [ 1822.658087] get_zeroed_page+0x14/0xb0 [ 1822.658104] ? kasan_unpoison_shadow+0x33/0x50 [ 1822.658120] mon_alloc_buff+0xed/0x250 [ 1822.658151] mon_bin_ioctl+0x493/0xcc0 [ 1822.658176] ? wait_for_completion_io+0x270/0x270 [ 1822.658196] ? mon_bin_get_event+0x440/0x440 [ 1822.658229] ? selinux_file_ioctl+0xb6/0x270 [ 1822.658256] ? mon_bin_get_event+0x440/0x440 [ 1822.658281] __x64_sys_ioctl+0x19a/0x210 21:48:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 87) [ 1822.658305] do_syscall_64+0x33/0x40 [ 1822.658322] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1822.662518] RIP: 0033:0x7f3f3b722b19 [ 1822.662543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1822.662553] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:48:13 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f00000005c0)=@updsa={0x1bc, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0xc4, 0x14, {{'sha256\x00'}, 0x3c0, 0x0, "5a6855fde7707c1b7cae3c147135f9c2ba7b610ac300bd06b2f009bd0537d7580c0bb8bc4a600300009ebf1fd296cb32d8347608236c9004d559f11fac88076804527b3839e6b2eb1bfbff2583102c3acdd40d498078a0e5414843d514f7feef875b4d8b47d8028280268536e3fd7a983c0ce3f890c1bb41"}}, @XFRMA_SET_MARK={0x8}]}, 0x1bc}}, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0}, &(0x7f0000000100)=0xfffffffffffffc60) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000002c0)=0x0) setpriority(0x0, r2, 0x800000000081) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x30, 0x10, 0x1, 0x6, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0x11, 0x0, 0x0, 0x1, [@generic="487fec864b245e0f3f9be149f8"]}]}, 0x30}}, 0x0) lseek(r3, 0x1, 0x4) r4 = socket$netlink(0x10, 0x3, 0x14) sendmsg$nl_xfrm(r4, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000000c0)={&(0x7f0000000300)=@report={0xc4, 0x20, 0x10, 0x70bd2a, 0x25dfdbfb, {0x32, {@in6=@mcast2, @in6=@mcast2, 0x4e24, 0x0, 0x4e23, 0x0, 0xa, 0x0, 0xa0, 0x3a, 0x0, r1}}, [@replay_val={0x10, 0xa, {0x70bd2a, 0x70bd27, 0x4}}, @lifetime_val={0x24, 0x9, {0x4, 0x1fe000000000000, 0x9, 0x10001}}, @XFRMA_SET_MARK={0x8, 0x1d, 0x2}, @replay_esn_val={0x24, 0x17, {0x2, 0x70bd2d, 0x70bd27, 0x70bd2a, 0x70bd29, 0x6, [0x4952, 0x2]}}, @policy_type={0xa, 0x10, {0x2}}, @mark={0xc, 0x15, {0x35075a, 0x1}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x885}, 0x8805) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000000)={0x0, 0x1, 0x6, @local}, 0x10) [ 1822.662580] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1822.662593] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1822.662607] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1822.662620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1822.662634] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1822.751754] FAULT_INJECTION: forcing a failure. [ 1822.751754] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1822.751770] CPU: 1 PID: 10298 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1822.751777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1822.751782] Call Trace: [ 1822.751799] dump_stack+0x107/0x167 [ 1822.751813] should_fail.cold+0x5/0xa [ 1822.751831] __alloc_pages_nodemask+0x182/0x600 [ 1822.751845] ? lock_release+0x680/0x680 [ 1822.751858] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1822.751876] ? lock_downgrade+0x6d0/0x6d0 [ 1822.751896] alloc_pages_current+0x187/0x280 [ 1822.751918] get_zeroed_page+0x14/0xb0 [ 1822.751930] ? kasan_unpoison_shadow+0x33/0x50 [ 1822.751942] mon_alloc_buff+0xed/0x250 [ 1822.751959] mon_bin_ioctl+0x493/0xcc0 [ 1822.751975] ? wait_for_completion_io+0x270/0x270 [ 1822.751987] ? mon_bin_get_event+0x440/0x440 [ 1822.752006] ? selinux_file_ioctl+0xb6/0x270 [ 1822.752021] ? mon_bin_get_event+0x440/0x440 [ 1822.752037] __x64_sys_ioctl+0x19a/0x210 [ 1822.752050] do_syscall_64+0x33/0x40 [ 1822.752063] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1822.752071] RIP: 0033:0x7fceda384b19 [ 1822.752084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1822.752091] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1822.752105] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1822.752112] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1822.752119] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1822.752126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1822.752134] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1822.784835] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1822.811945] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.6'. 21:48:29 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 85) [ 1838.575283] FAULT_INJECTION: forcing a failure. [ 1838.575283] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1838.576516] CPU: 0 PID: 10323 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1838.576525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1838.576532] Call Trace: [ 1838.576553] dump_stack+0x107/0x167 [ 1838.576573] should_fail.cold+0x5/0xa [ 1838.576598] __alloc_pages_nodemask+0x182/0x600 [ 1838.576617] ? lock_release+0x680/0x680 [ 1838.576633] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 21:48:29 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0xe, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:48:29 executing program 6: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x11204, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x8, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='net/igmp\x00') pread64(0xffffffffffffffff, &(0x7f0000000300)=""/119, 0x77, 0x6) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r3 = syz_open_dev$mouse(&(0x7f0000000000), 0xacea, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000000080)=""/104, 0x68, 0x0, &(0x7f0000000440)=""/209, 0xd1}, &(0x7f0000000140)=0x40) perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x1f, 0x8, 0xfc, 0x0, 0x0, 0x2, 0x11002, 0x6, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_bp={&(0x7f00000001c0), 0xa}, 0x22, 0x0, 0x100, 0x5, 0x0, 0x3a09, 0x6, 0x0, 0xc4}, 0x0, 0xb, r2, 0x1) preadv(r1, &(0x7f0000000040)=[{&(0x7f00000011c0)=""/121, 0x79}, {&(0x7f0000000200)=""/246, 0xf6}], 0x2, 0x0, 0x0) io_submit(0x0, 0x1, &(0x7f0000019380)=[0x0]) connect$inet(r1, &(0x7f0000000400)={0x2, 0x0, @local}, 0x10) listen(r0, 0x0) 21:48:29 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5451, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:48:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 88) 21:48:29 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) r2 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd_index=0x7, 0x8, 0x0, 0x0, 0xcc6619bbecdd2ec3, 0x0, {0x0, r5}}, 0x10000) syz_io_uring_submit(r3, 0x0, &(0x7f0000001240)=@IORING_OP_STATX={0x15, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000001140), &(0x7f0000000000)='./file0\x00', 0x200, 0x4000, 0x1}, 0x4) fallocate(0xffffffffffffffff, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x2}) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000001300)={0x0, 0xffffffffffffffff, 0xffff, 0x7, 0xfffffffffffffff9}) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x119b28) r6 = creat(&(0x7f0000000040)='./file0\x00', 0xc0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r8 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r7, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r8, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r7, 0xc028660f, &(0x7f0000000040)={0x0, r8, 0x2}) io_uring_setup(0x3ac0, &(0x7f0000001280)={0x0, 0x297c, 0xf93159afab1a4396, 0x1, 0xb3, 0x0, r7}) fallocate(r6, 0x0, 0x0, 0x8000) fstat(r0, &(0x7f00000010c0)) ioctl$BTRFS_IOC_RM_DEV(r6, 0x5000940b, &(0x7f00000000c0)={{r0}, "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"}) 21:48:29 executing program 0: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x680201, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r1, 0x0, 0x0, 0x8000) ioctl$BLKROSET(r1, 0x125d, &(0x7f00000001c0)=0x18f) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f00000000c0)={"6ba0ee3353c5c6f0e5b0b4175ca6bc24", 0x0, 0x0, {0x7, 0x6}, {0x867, 0x9}, 0x1, [0x5, 0x5, 0x7ff, 0x3d9f, 0xad35, 0x100, 0x20, 0x3ff, 0x400, 0x2, 0x8b27, 0x3, 0x400, 0xffffffffffffff33, 0x100000000, 0x7ff]}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000380)={0x8, 0x0, {0x3b, @struct={0x2cd, 0x43d}, 0x0, 0x816b, 0x8, 0x3, 0x5, 0x3539, 0x10, @usage=0x1ff, 0x16fa, 0x5, [0x3ff, 0x4c3, 0x8, 0x8, 0x1]}, {0x0, @struct={0x7fe, 0x80000001}, 0x0, 0x1, 0xfc, 0x54977066, 0xd48, 0x6, 0x20, @usage=0x800, 0x7, 0x7, [0x4, 0x1, 0x6, 0x6, 0x4]}, {0x1, @struct={0x3, 0x5}, 0x0, 0x5, 0x7fff, 0x5, 0x3, 0xffff, 0x2, @struct={0x8, 0x1}, 0x4, 0x3c89, [0x9, 0x7, 0xfff, 0x1, 0x2, 0xfff]}, {0x3, 0x1, 0x9}}) ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f0000000780)={{r1}, r2, 0x2, @unused=[0x0, 0x1, 0x8000000, 0x3], @devid=r3}) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000000)={'wlan0\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r6, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SNDRV_TIMER_IOCTL_INFO(r6, 0x80e85411, &(0x7f0000000080)=""/43) r7 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r7, 0x400, 0x1) sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=ANY=[], 0x24}}, 0x0) 21:48:29 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) r6 = getpid() r7 = getpgid(0x0) setsockopt$inet6_icmp_ICMP_FILTER(r3, 0x1, 0x1, &(0x7f0000000140)={0x9}, 0x4) r8 = epoll_create(0x1) kcmp$KCMP_EPOLL_TFD(r6, r7, 0x7, r8, &(0x7f0000000040)={r8}) ioctl$TIOCSPGRP(r5, 0x5410, &(0x7f0000000100)=r7) [ 1838.576658] ? lock_downgrade+0x6d0/0x6d0 [ 1838.576689] alloc_pages_current+0x187/0x280 [ 1838.576711] get_zeroed_page+0x14/0xb0 [ 1838.576724] ? kasan_unpoison_shadow+0x33/0x50 21:48:29 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 86) [ 1838.576738] mon_alloc_buff+0xed/0x250 [ 1838.576762] mon_bin_ioctl+0x493/0xcc0 [ 1838.576783] ? wait_for_completion_io+0x270/0x270 [ 1838.576799] ? mon_bin_get_event+0x440/0x440 [ 1838.576825] ? selinux_file_ioctl+0xb6/0x270 [ 1838.576846] ? mon_bin_get_event+0x440/0x440 [ 1838.576867] __x64_sys_ioctl+0x19a/0x210 [ 1838.576886] do_syscall_64+0x33/0x40 [ 1838.576901] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1838.576911] RIP: 0033:0x7fceda384b19 [ 1838.576925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1838.576934] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1838.576951] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1838.576960] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1838.576969] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1838.576978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1838.576987] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1838.579483] FAULT_INJECTION: forcing a failure. [ 1838.579483] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1838.579549] CPU: 1 PID: 10313 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1838.579556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1838.579561] Call Trace: [ 1838.579579] dump_stack+0x107/0x167 [ 1838.579594] should_fail.cold+0x5/0xa [ 1838.579613] __alloc_pages_nodemask+0x182/0x600 [ 1838.579628] ? lock_release+0x680/0x680 [ 1838.579641] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1838.579659] ? lock_downgrade+0x6d0/0x6d0 [ 1838.579679] alloc_pages_current+0x187/0x280 [ 1838.579697] get_zeroed_page+0x14/0xb0 [ 1838.579710] ? kasan_unpoison_shadow+0x33/0x50 [ 1838.579723] mon_alloc_buff+0xed/0x250 [ 1838.579740] mon_bin_ioctl+0x493/0xcc0 [ 1838.579757] ? wait_for_completion_io+0x270/0x270 [ 1838.579769] ? mon_bin_get_event+0x440/0x440 [ 1838.579788] ? selinux_file_ioctl+0xb6/0x270 [ 1838.579804] ? mon_bin_get_event+0x440/0x440 [ 1838.579819] __x64_sys_ioctl+0x19a/0x210 [ 1838.579833] do_syscall_64+0x33/0x40 [ 1838.579845] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1838.579854] RIP: 0033:0x7f3f3b722b19 [ 1838.579867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1838.579874] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1838.579888] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1838.579896] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1838.579903] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1838.579910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1838.579918] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:48:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 89) [ 1838.717652] FAULT_INJECTION: forcing a failure. [ 1838.717652] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1838.720404] CPU: 0 PID: 10334 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1838.721945] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1838.723755] Call Trace: [ 1838.724332] dump_stack+0x107/0x167 [ 1838.725126] should_fail.cold+0x5/0xa [ 1838.725964] __alloc_pages_nodemask+0x182/0x600 [ 1838.727010] ? lock_release+0x680/0x680 [ 1838.727882] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1838.729195] ? lock_downgrade+0x6d0/0x6d0 [ 1838.730120] alloc_pages_current+0x187/0x280 [ 1838.731096] get_zeroed_page+0x14/0xb0 [ 1838.731946] ? kasan_unpoison_shadow+0x33/0x50 [ 1838.732947] mon_alloc_buff+0xed/0x250 [ 1838.733803] mon_bin_ioctl+0x493/0xcc0 [ 1838.734669] ? wait_for_completion_io+0x270/0x270 [ 1838.735854] ? mon_bin_get_event+0x440/0x440 [ 1838.736821] ? selinux_file_ioctl+0xb6/0x270 [ 1838.737855] ? mon_bin_get_event+0x440/0x440 [ 1838.739104] __x64_sys_ioctl+0x19a/0x210 [ 1838.739994] do_syscall_64+0x33/0x40 [ 1838.740934] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1838.742063] RIP: 0033:0x7fceda384b19 [ 1838.742928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1838.747238] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1838.748991] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1838.750596] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1838.751225] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1838.751837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1838.752447] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1838.753099] FAULT_INJECTION: forcing a failure. [ 1838.753099] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1838.770702] CPU: 1 PID: 10337 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1838.770710] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1838.770714] Call Trace: [ 1838.770732] dump_stack+0x107/0x167 21:48:29 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0xf, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:48:29 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5452, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1838.770746] should_fail.cold+0x5/0xa [ 1838.770763] __alloc_pages_nodemask+0x182/0x600 [ 1838.770778] ? lock_release+0x680/0x680 [ 1838.770791] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1838.770809] ? lock_downgrade+0x6d0/0x6d0 [ 1838.770829] alloc_pages_current+0x187/0x280 [ 1838.770845] get_zeroed_page+0x14/0xb0 [ 1838.770857] ? kasan_unpoison_shadow+0x33/0x50 [ 1838.770869] mon_alloc_buff+0xed/0x250 [ 1838.770885] mon_bin_ioctl+0x493/0xcc0 [ 1838.770903] ? wait_for_completion_io+0x270/0x270 [ 1838.770915] ? mon_bin_get_event+0x440/0x440 [ 1838.770934] ? selinux_file_ioctl+0xb6/0x270 [ 1838.770949] ? mon_bin_get_event+0x440/0x440 [ 1838.770964] __x64_sys_ioctl+0x19a/0x210 [ 1838.770978] do_syscall_64+0x33/0x40 [ 1838.770990] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1838.770998] RIP: 0033:0x7f3f3b722b19 [ 1838.771011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1838.771017] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1838.771031] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1838.771038] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1838.771046] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1838.771053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1838.771060] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:48:29 executing program 6: read(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1451c2, 0x10) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x40000000000007, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x1c8) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_DEV(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="10e1687ed59141933d112a329997b26c64bdb9b52840caaa28f42e8bcb8dcff48d52af927d5de49e14a739393342514206e620a73d25f5d1039a267e18680f24551ba6bb5b38d7c1d6bca54797e4c263fd52301952ff25e2af08c815ca0ca896651f761dd63a3870c7f7546e421dddf2e25cc770d9ac4fe3828eaeee3699f69669ef50ed3bfe710a6a91ca95fcb8f9984aeef4e8cc69bf65e2c87f893811025a93fe9c89d2c104373b3a4bc295f8f1addbf9a1cf6e7120bbf8391d1c54c98ac89aed80bb98629c3aa36f56f0091cb1909b2a5e85f062f2404ee0a1b7e31100e812ca", @ANYRES16, @ANYBLOB="010100000000000000002b0000000a0001007770616e300000000c000500000000000000000008000200", @ANYRES32=0x0, @ANYBLOB="e8ba28cb114f357545571b7a2461acc088ed755a9ca8330f6cd329743e421cb6e1edaa00000000000000000000000000000000000000000000642db7bbf538f8442b9cbe53511fde47e165b49ec5771a7f5acc4ba9b92dd65f89966ea097e63310e309113e2f1aea114c61f22b576b2ec8f4ab8c82cf548a62ea09ccca0712ad0266a8a0b7dd26100179"], 0x34}}, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x1000080, &(0x7f0000012900)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x185142, 0x153) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000300), 0x6000) ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r1, 0x3312, 0x2) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1f1, 0x40000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r3, 0x0, 0x2e, &(0x7f0000000100)={0x1, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r3, 0x0, 0x2e, &(0x7f0000000100)={0x1, {{0x2, 0x0, @multicast1}}, {{0x2, 0x0, @remote}}}, 0x108) ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000080)) dup2(0xffffffffffffffff, r2) 21:48:29 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x7, 0x0, 0x0, 0x0, 0x800000000}, 0x0, 0x0, 0xffffffffffffffff, 0xb) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205) [ 1838.917201] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue [ 1854.404334] FAULT_INJECTION: forcing a failure. [ 1854.404334] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1854.407736] CPU: 0 PID: 10371 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1854.409639] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.409647] Call Trace: [ 1854.409671] dump_stack+0x107/0x167 [ 1854.409695] should_fail.cold+0x5/0xa [ 1854.409724] __alloc_pages_nodemask+0x182/0x600 [ 1854.409746] ? lock_release+0x680/0x680 [ 1854.409766] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1854.409794] ? lock_downgrade+0x6d0/0x6d0 [ 1854.409831] alloc_pages_current+0x187/0x280 [ 1854.409860] get_zeroed_page+0x14/0xb0 [ 1854.409875] ? kasan_unpoison_shadow+0x33/0x50 [ 1854.409891] mon_alloc_buff+0xed/0x250 [ 1854.409918] mon_bin_ioctl+0x493/0xcc0 [ 1854.409942] ? wait_for_completion_io+0x270/0x270 [ 1854.409961] ? mon_bin_get_event+0x440/0x440 [ 1854.409992] ? selinux_file_ioctl+0xb6/0x270 [ 1854.410019] ? mon_bin_get_event+0x440/0x440 [ 1854.410043] __x64_sys_ioctl+0x19a/0x210 [ 1854.410067] do_syscall_64+0x33/0x40 [ 1854.410082] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.410093] RIP: 0033:0x7f3f3b722b19 [ 1854.410108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1854.410118] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1854.410138] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1854.410147] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1854.410156] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1854.410165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1854.410174] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1854.435034] FAULT_INJECTION: forcing a failure. [ 1854.435034] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1854.469367] CPU: 0 PID: 10367 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1854.469376] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.469381] Call Trace: [ 1854.469398] dump_stack+0x107/0x167 [ 1854.469415] should_fail.cold+0x5/0xa [ 1854.469438] __alloc_pages_nodemask+0x182/0x600 [ 1854.469453] ? lock_release+0x680/0x680 [ 1854.469469] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1854.469497] ? lock_downgrade+0x6d0/0x6d0 [ 1854.469526] alloc_pages_current+0x187/0x280 [ 1854.469547] get_zeroed_page+0x14/0xb0 [ 1854.469559] ? kasan_unpoison_shadow+0x33/0x50 [ 1854.469576] mon_alloc_buff+0xed/0x250 [ 1854.481863] mon_bin_ioctl+0x493/0xcc0 [ 1854.481883] ? wait_for_completion_io+0x270/0x270 [ 1854.481898] ? mon_bin_get_event+0x440/0x440 [ 1854.481923] ? selinux_file_ioctl+0xb6/0x270 [ 1854.481944] ? mon_bin_get_event+0x440/0x440 [ 1854.481962] __x64_sys_ioctl+0x19a/0x210 [ 1854.481981] do_syscall_64+0x33/0x40 [ 1854.481993] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.482003] RIP: 0033:0x7fceda384b19 21:48:45 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x4) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x4000, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r0, 0x0, &(0x7f0000000280), 0x0, 0x8080, 0x1}, 0x0) fsetxattr$security_capability(r0, &(0x7f0000000200), &(0x7f00000002c0)=@v2={0x2000000, [{0x1ff, 0x6}, {0x1, 0xa91}]}, 0x14, 0x1) r4 = syz_io_uring_complete(r2) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000400)=@IORING_OP_WRITEV={0x2, 0x5, 0x2004, @fd_index=0x1, 0x0, &(0x7f00000007c0)=[{&(0x7f00000008c0)="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", 0x1000}, {&(0x7f0000000300)="e924283a54b694ccdd143c7357b9f0e481be6ce4fb31b198c38ef7365a8be900ee592d1ff7bacb699e40f1b3141af8fb9c67175653d9556e0abc4755e2b8a2d3c3bb208aa0ac8dd7755ca6b5a3810d90235e43e7d34df6d3aea40b8635a4369145dd56da7e73868ef94f1fcd1478ed87d24e8bb168dee3d65c8a34dc918cded9ed8247a4b6310287e4d4556f9dcce31192fda89fe0bf959b9301e3b82b97b25409a7bab133a156864937a16169f3fdff5bfdc89a79aacd5a41baa8199a14d1740045f12866f5c46962a65197ecf47e", 0xcf}, {&(0x7f0000000540)="c4db9939621b8595c54638f2861a6503ea69d7bd446404f9fae34f14e8eca01cd38a1dec2f18e66c121fc1937ebd80b3afd159226fe293bbfe3b257fdf778f33530a56d05d511c6bfbf9271c6252d2a8dfc21556a8f7d01bdd21e56da2cbcfc8f467d5514ae8aeeee7ec86c2f64da0922a7581616c98a294686151ff4f41345669d527691d16c12ea8ab70a8711b2d80ce6abf20dcb0f34aee05308c0ed4f5a4eec934353914befabd8d4f165ce2b6bc54dfba4a8eeee4175b1fa7cab64f62fcf91f5ff39c", 0xc5}, {&(0x7f0000000640)="48e755dcfa33e462a8da90fcd04c54ead679e6ed5b7cd22f420a4aad1b6d71523ef29bc692e68a9e116f2c4b2e18807c403da4dd0619a0ab82e745a05535c6b97b63f74f81fc4bc0c2db87b86d98394c6c5577ebbbff39d84d0369c5e5625f9d9c46a38289e8d091d88a17a3cb54e183854a2cd2598d7b12afd2816458f6d1d906acc7c073c8e565decf2cebba5f087b46abb4890e6d92c1fdabdb44735f91eee48e83b474b4e26f8def22c59c8ddeff0b1c69c60f0829d2521366a0ff202f8b3b78b1aace39655c91bd8cbc36fa2bfea10065608df3d99a64ca9c71b99f3fea8048911a8dfc2e22c3e683ff9fd754b0aed1a848", 0xf4}, {&(0x7f0000000740)="cd12a7b80fb999ab2c6c3ed74a9d790b82869acbecca11f6dca9eb68636c1e9128497b2786cf7ff060710b1d1d7ea1592809c17ed03b14bc9020536a894e65351650794d0f218ba3b5", 0x49}, {&(0x7f00000018c0)="83b7f49be84f381847273a0a1b291830db6113faf360a39a1d5401991c0597ed2a40c4a7f38981a5c04c2e9a00fe053aa181e5e5992c5134e4fd0d0f8a9d1f5ffe465ad26c3a15c746cdbb9d2270f3a146a3568eaa4077098e063ff4cec27f9e3aa474717d2bd4691fa977598bd133a36ca114d0b6f9abdc52dd82f9f01eccafe88490bcd8a3ac36d68393dc2ec760f790215d6db867e78ee90d536627f8c91cc7b2609cb95d7a21446989bb1c0c66b634e55dc5228a9937cde74dc63c9c34949e95b28b7442940825a8", 0xca}], 0x6, 0x0, 0x1, {0x1, r5}}, 0x800) r6 = socket$inet6(0xa, 0x3, 0x2) setsockopt$inet6_int(r6, 0x29, 0x7, &(0x7f0000000880), 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x3, 0x0, r6, 0x0, &(0x7f0000000440)="8ee2309c47995455ec7dced68eb160c46014b839663252e10fdc61f5e2e2fd88054934d706470c49e1ecb5911b279caf9597c38f7138e265a9c0895eb5c08249a2c2fffbb7cf7c5a067a39e016d7a7be11e2a0359da88dd80144d1175f50989065d52c715c0fec711859e0ef0d7a51407b3c7d181c7a613c92ee0fb23ccfcc9ad88560cba56f1d1efc1e673619d9a31f9815bd4010524cce05589faff0ede4bcae4f0a79b2c7bf7721c3abcb4c37089fe8606a8293f7106711070be0505b1fa4c390dd60589e10d91df26fd0e49770", 0xcf, 0x2001}, 0x2) getdents(r4, &(0x7f00000001c0)=""/52, 0x34) socket$inet6_tcp(0xa, 0x1, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000004, 0x10, 0xffffffffffffffff, 0x10000000) pread64(0xffffffffffffffff, &(0x7f0000000280)=""/44, 0x2c, 0xffffffff) creat(&(0x7f0000000100)='./file0\x00', 0x32) [ 1854.482016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:48:45 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x28001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcb, 0x0, @perf_config_ext={0x778, 0x8c5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x5}, 0x0, 0x4, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f0000000080)=""/43) perf_event_open(&(0x7f00000011c0)={0x5, 0x80, 0x80, 0x3f, 0xc2, 0x8, 0x0, 0x66, 0x48003, 0xe, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000001180), 0xc}, 0xc0d2, 0x0, 0x2, 0x9, 0xc43, 0xfa28, 0x6, 0x0, 0x1, 0x0, 0x5}, 0x0, 0x2, r0, 0x2) syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r1, 0xc058534f, &(0x7f0000000080)={{0xff}}) add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffa) ioctl$MON_IOCX_GETX(0xffffffffffffffff, 0x4018920a, &(0x7f0000001140)={&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/4096, 0x1000}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r3, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) fchdir(r3) 21:48:45 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x11, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:48:45 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x545d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:48:45 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendfile(0xffffffffffffffff, r3, 0x0, 0x1) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8000, 0x42) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000100)) dup2(0xffffffffffffffff, 0xffffffffffffffff) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:48:45 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 87) 21:48:45 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 90) 21:48:45 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xf8}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xc1}]}]}]}, 0x34}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_REGISTER_BEACONS(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x71}, @val={0x8, 0x3, r5}, @void}}}, 0x24}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', 0x0}) [ 1854.482024] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1854.482040] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1854.482049] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1854.482057] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1854.482066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r3, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000048}, 0xc, &(0x7f00000001c0)={&(0x7f00000003c0)={0x17f4, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x2, 0x13}}}}, [@NL80211_PMSR_ATTR_PEERS={0xb6c, 0x5, 0x0, 0x1, [{0x4c0, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_REQ={0x2c4, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x128, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x14}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x14}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xb4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8d}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xef}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x20}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xd4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x80}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16fd}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x8}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x1cc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x98, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x64}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x800}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7f}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xc8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x80}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x47}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x20}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x60, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x80}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x40}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0x38, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x13a}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1ec}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}]}, {0x140, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_REQ={0x10c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x100, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x100}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xc0}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]}]}, {0x394, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x270, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x60, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xa3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1000}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x70, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x91}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0xe4, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x18}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x18}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xfc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xb0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xff}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x10}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1e}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2}]}, @NL80211_PMSR_PEER_ATTR_REQ={0xa8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7f}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_CHAN={0x34, 0x2, 0x0, 0x1, [@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1685}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x4}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x17d}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}]}]}, {0x19c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x198, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x10}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x15}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x20}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xf0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1e}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8001}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1e}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0xa9c, 0x5, 0x0, 0x1, [{0x590, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x238, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x110, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x16}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x117}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x23}]}, @NL80211_PMSR_TYPE_FTM={0x4}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xec, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xff}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x80}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7f}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x81}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0xe}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_REQ={0x8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x4}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x340, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x78, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x17}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7f}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x68, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x11}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xd6}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xf8}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x164, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xce}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x16}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x40}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x31fd}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4a7}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x81}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x13}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x10}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}]}]}, {0x19c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x10c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1d}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xd8}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x8c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x64, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x10}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xe123}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}]}]}, {0x108, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x94, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x28d}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x24}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xe547}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x176}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1644}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x3c, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7b}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x8000}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16f3}, @NL80211_ATTR_CENTER_FREQ1={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfffffff9}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x400}]}]}, {0x264, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0xec, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xf}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xfff7}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_REQ={0xb8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0xb0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1d}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3ff}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x2c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3b}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xc}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1a9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x4c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x199}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1a}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x324}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1af}]}]}]}, @NL80211_PMSR_ATTR_PEERS={0x1c4, 0x5, 0x0, 0x1, [{0x1c0, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x1a8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0xf8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x3ff}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xd}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}]}, @NL80211_PMSR_TYPE_FTM={0x40, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8001}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1f}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x21}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x8, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}]}]}]}, 0x17f4}, 0x1, 0x0, 0x0, 0x20020011}, 0x1) 21:48:45 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 88) 21:48:45 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 91) [ 1854.482074] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1854.551302] FAULT_INJECTION: forcing a failure. [ 1854.551302] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1854.551318] CPU: 1 PID: 10383 Comm: syz-executor.3 Not tainted 5.10.223 #1 21:48:45 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) r1 = fork() r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x8100) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x40, 0x4, 0x7f, 0x0, 0x7, 0x89042, 0x6, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1000, 0x2, @perf_bp, 0x0, 0x7, 0x8, 0x3, 0xefb, 0x7fff, 0xeee0, 0x0, 0x1, 0x0, 0x1f}, r1, 0x10, r2, 0xb) [ 1854.551326] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.551330] Call Trace: [ 1854.551348] dump_stack+0x107/0x167 [ 1854.551362] should_fail.cold+0x5/0xa [ 1854.551381] __alloc_pages_nodemask+0x182/0x600 [ 1854.551396] ? lock_release+0x680/0x680 [ 1854.551414] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1854.551431] ? lock_downgrade+0x6d0/0x6d0 [ 1854.551452] alloc_pages_current+0x187/0x280 [ 1854.551469] get_zeroed_page+0x14/0xb0 [ 1854.551482] ? kasan_unpoison_shadow+0x33/0x50 [ 1854.551495] mon_alloc_buff+0xed/0x250 [ 1854.551512] mon_bin_ioctl+0x493/0xcc0 [ 1854.551528] ? wait_for_completion_io+0x270/0x270 [ 1854.551541] ? mon_bin_get_event+0x440/0x440 [ 1854.551560] ? selinux_file_ioctl+0xb6/0x270 [ 1854.551576] ? mon_bin_get_event+0x440/0x440 [ 1854.551592] __x64_sys_ioctl+0x19a/0x210 [ 1854.551606] do_syscall_64+0x33/0x40 [ 1854.551617] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.551626] RIP: 0033:0x7f3f3b722b19 [ 1854.551639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1854.551646] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1854.551661] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1854.551668] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1854.551676] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1854.551682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1854.551690] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1854.584647] FAULT_INJECTION: forcing a failure. [ 1854.584647] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1854.584664] CPU: 0 PID: 10386 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1854.584672] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.584677] Call Trace: [ 1854.584696] dump_stack+0x107/0x167 [ 1854.584714] should_fail.cold+0x5/0xa [ 1854.584737] __alloc_pages_nodemask+0x182/0x600 [ 1854.584754] ? lock_release+0x680/0x680 [ 1854.584771] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1854.584795] ? lock_downgrade+0x6d0/0x6d0 [ 1854.584825] alloc_pages_current+0x187/0x280 [ 1854.584847] get_zeroed_page+0x14/0xb0 [ 1854.584861] ? kasan_unpoison_shadow+0x33/0x50 [ 1854.584874] mon_alloc_buff+0xed/0x250 [ 1854.584897] mon_bin_ioctl+0x493/0xcc0 [ 1854.584918] ? wait_for_completion_io+0x270/0x270 [ 1854.584934] ? mon_bin_get_event+0x440/0x440 [ 1854.584959] ? selinux_file_ioctl+0xb6/0x270 [ 1854.584981] ? mon_bin_get_event+0x440/0x440 [ 1854.585000] __x64_sys_ioctl+0x19a/0x210 [ 1854.585019] do_syscall_64+0x33/0x40 [ 1854.585034] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.585044] RIP: 0033:0x7fceda384b19 [ 1854.585058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1854.585067] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1854.585084] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1854.585092] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1854.585101] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1854.585110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1854.585118] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:49:01 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 89) [ 1870.509570] FAULT_INJECTION: forcing a failure. [ 1870.509570] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1870.510713] CPU: 0 PID: 10404 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1870.511308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.512009] Call Trace: [ 1870.512248] dump_stack+0x107/0x167 [ 1870.512569] should_fail.cold+0x5/0xa [ 1870.512911] __alloc_pages_nodemask+0x182/0x600 [ 1870.513104] FAULT_INJECTION: forcing a failure. [ 1870.513104] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1870.513316] ? lock_release+0x680/0x680 [ 1870.515444] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1870.515966] ? lock_downgrade+0x6d0/0x6d0 [ 1870.516340] alloc_pages_current+0x187/0x280 [ 1870.516728] get_zeroed_page+0x14/0xb0 [ 1870.517063] ? kasan_unpoison_shadow+0x33/0x50 [ 1870.517454] mon_alloc_buff+0xed/0x250 [ 1870.517801] mon_bin_ioctl+0x493/0xcc0 [ 1870.518143] ? wait_for_completion_io+0x270/0x270 [ 1870.518562] ? mon_bin_get_event+0x440/0x440 [ 1870.518981] ? selinux_file_ioctl+0xb6/0x270 [ 1870.519366] ? mon_bin_get_event+0x440/0x440 [ 1870.519752] __x64_sys_ioctl+0x19a/0x210 [ 1870.520108] do_syscall_64+0x33/0x40 [ 1870.520429] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.520867] RIP: 0033:0x7fceda384b19 [ 1870.521188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.522739] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1870.524022] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1870.525245] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1870.526467] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1870.527932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1870.529130] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1870.530362] CPU: 1 PID: 10413 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1870.531146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.532041] Call Trace: [ 1870.532325] dump_stack+0x107/0x167 [ 1870.532706] should_fail.cold+0x5/0xa [ 1870.533173] __alloc_pages_nodemask+0x182/0x600 [ 1870.533657] ? lock_release+0x680/0x680 [ 1870.534121] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1870.534742] ? lock_downgrade+0x6d0/0x6d0 [ 1870.535244] alloc_pages_current+0x187/0x280 [ 1870.535705] get_zeroed_page+0x14/0xb0 [ 1870.536154] ? kasan_unpoison_shadow+0x33/0x50 [ 1870.536625] mon_alloc_buff+0xed/0x250 [ 1870.537097] mon_bin_ioctl+0x493/0xcc0 [ 1870.537505] ? wait_for_completion_io+0x270/0x270 [ 1870.538051] ? mon_bin_get_event+0x440/0x440 [ 1870.538510] ? selinux_file_ioctl+0xb6/0x270 [ 1870.539031] ? mon_bin_get_event+0x440/0x440 [ 1870.539486] __x64_sys_ioctl+0x19a/0x210 [ 1870.539957] do_syscall_64+0x33/0x40 [ 1870.540342] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.540938] RIP: 0033:0x7f3f3b722b19 [ 1870.541329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.543317] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1870.544147] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1870.544940] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1870.545672] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1870.546447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1870.547250] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:49:01 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 92) 21:49:01 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x24) openat(r2, &(0x7f0000000100)='./file0\x00', 0x20080, 0x19) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r3, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:01 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5460, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:01 executing program 0: mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x810, 0xffffffffffffffff, 0xa4813000) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000380)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101", 0xf, 0x400000000000}, {0x0, 0x0, 0x1e0}], 0x0, &(0x7f0000000140)={[], [{@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@audit}, {@appraise_type}, {@smackfsroot={'smackfsroot', 0x3d, ',.(]&-{\'\'^'}}, {@appraise_type}, {@smackfsroot={'smackfsroot', 0x3d, '.'}}, {@fsuuid={'fsuuid', 0x3d, {[0x3e, 0x32, 0x32, 0x34, 0x30, 0x36, 0x62, 0x33], 0x2d, [0x35, 0x34, 0x65, 0x37], 0x2d, [0x32, 0x65, 0x32, 0x32], 0x2d, [0x34, 0x92630cfa18d68903, 0x62, 0x63], 0x2d, [0x33, 0x31, 0x34, 0x64, 0x38, 0x0, 0x65, 0x30]}}}]}) 21:49:01 executing program 4: socketpair(0x10, 0x80001, 0x1, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r0, &(0x7f0000000b80)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000d80)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="10002bbd7000fedbdf25750000002000f08004000d80050003000b00000005000300c000000005000f00af0000001800f0800a000200cbe63f99edaf000004000400040004000803f080050007001a00000004000400050010000000000005000f00010000007d000b0042f397a0a44426cb0ad342e9070a22de129087674cb6ec3efc50e609d6020735be778673cba06b63b3a9c497a6e2f44977bb13dbe92d655740ea4a08d69ec1735a633d0c3f2461a11187a52b8a24b0e0305e2fde7b97d30539d0b95423eee21b8262418a04156f2ef4488c6cfab3c1a44433343ed7bd69f5a300000054020e80d2000000e8369540dd9594b949c60b7830dfb6e90a22dd069669652347883692e885346f2f009cccb1f9f0dd59f9dc488796b8549e08a4bdde163406fcda8688105f5cdfcc21fece8630ffedb6fa62f541ea3610517a3897df160bf13b4704854e9e54619feff66fc7992edfb60473fc57c41c7123102fbcdea52e45655b5fa1fa8d7b6158996bfa75beacb31cd84db9e9c7ca04afa553e2afe81c856f46c0acc380dda978dde987a1f707eb3d76adae8d00c94fb56e16704c1d4fd267d8ddb7748635928fcd8da56f2971e6e54f69013f8b0000da000000a16fd7bf0bc7be9a1d8bf430749af8c9c76c366fe332a140f1968b47ca3eb8aea756b96c7a243f07577e1f8ee9f39608e636d84e9cd2bb90e542d0dccbb5e5f94bba98676c9395bc0b27f2b253a34029229c4d3af650362a8165a16a80f594d9a5c29c58670b9fa99be9e7cf7629aa6b427dd99065d8f2c0ace8d08908e57632375386c987e3901d66e31ebad1f411a3a0f217fef98bc7e4072bb965395c334c231a48401ea4171975a2139276a2fe9f64782853d02858de2e19ec7b3964aa92fc8c64a30eaa0fe618a02960b7b320bd194839102ce00000a0000000261f16c2ad5e4fe8b3718a11be62078aacac8fc725661c350b1a0b56a4875fca0255157d8ae53734d0d1058c8c5dda6005f8acf3407be695a2cade09a7a128aed34205225f157d58756c3418ab17f49dc10542c52b7a47c21c2024e9d6ad3a736806a50771f1139c308f861dc366840443362ff2f2396f1b3979f439c1472fd8d3e2b2d21ea5b96f5374c7098a4e7047bdede3361eddbb32ca4db09705000700010000000a000200344e9f713e7b0000a406f080050007008000000010010c800500030009000000030102001d0b269a17805fa10b5b68307f47bc7d7aac2f50aaafe0ee8e76cb475a6278182c8c525a080d052703d739b232ebb79c2f542a4c73e4e80f65a9fdc50e0c3175f87dc76976fe0e152623fbcfbdbf83030b4a7b71756bf89e15db2c5aef8078ffa3e4e7eda953467524a565b49effd5ef64021b12109fb66b2205584c1feea9000d8543b2e3e1c73817bded767458357897969484f901a04b347005f7d432ade01b858315dff01f03f23abd9fd6069461102f2601378e564d3b604c6eda7b9a8bdb2952851608fb21d9b712fca591dd759728acef8cb7ef8bc3dd947fa9b2441f1b4f83a1eed18d8e6c111a545737c672a93455d4a70afa3040f7edaa051df40078000e8072000000f7e01e28129ec29a7673313ac11c4989dad191dbeb893a570a1208436b5cc8bf177eb0be8d9acc9ff51435ea2674e845bea92ec3d58caab42d4db61358eb13c9cae25af95b304cbe399b6c808f73b028b99a9dce5c23fc2c5f1ba3c9539a118a90149005817c046447f292fc8f6c000078010c800500030009000000640004800a000600ffffffffffff00000a000600ffffffffffff00000a00060008021100000000000a00060008021100000100000a00060008021100000000000a00060008021100000100000a00060008021100000000000a000600ffffffffffff0000040001000301020033699216827bf7b2f9050adf307ffc0fa352903a9118e35096879ec11fefbe9abd54c1d10b2537b448d1d8636529fe2be43a871ba458bc4bde0abfb2381192b0484a474a71368de2ad490d6951290814da9f7d24c2ae22dab8179507fab3062be4c35547f059f465c323c846656bf415ee7beec42e8921263e53af8f0891175e89bd2b759e67b4e0086124f474ba824d839c00da0e9503f073cf786c257872f35f1c52f9594d57e4d3b3ede0307f0b91ea1ae58ada9ea95bb0c553aa42288856d86ff37d9aa991b6a1fb9f01b770bed8378e058df8487253c1a3e05ce1ccb4060f347a3f434676b12a6dccd2b76af2be93273cc29dca9c2914260bd33c9edb0090030e80dc000000ffdce8e1729ec9acd1696706e67e12c509a4c04a5384545bc3403a3b9e9e2703796865fa37adac1132adf64aa3bbcc3841d379af999a0423b86d34fbbfdd3f61bdfbdeb62b4b4f4f1e50dcab8165b4e3e4d864b68d8a5582b41b18af9dd87560ce1f9028d46b18278a5433bc8881a15550dab8d229488995972d33e449d8a5c72d253c1e75a232b3e1e3f2e7479b09b4b06c1f24b5b16ff888baf58e95d9537cf07cbb2a936f5311872ff0bbf3c3cb150d750929b95add22c5056ec531a9bb63f331af720140070696fc8d49399fa5eb8c2114eafd2e6707b000000076c009d4fccc6fab979760088faa8c017f111eabfd4083e0248d5c62845fbec92ab7cdde7aa5e5c62ff0d3963619f2c103bb8fd58f49cf80f7fbe3822c82862e5bae0e39db0bcb539caac369908e33245e96f6c71bad34befb17294fcc6b47f8466c6b14de5c7ac5cf5f209916851910aa33c8042949d71a237fb9e135d357a2335ebaeec309e3b29c2da713eeac3192ee6efcfe903f80e76e296ce85b6058f33cca722db43fe2d0552dc31c99000000b7b087e05e4db025ea7cfb2b6528752a4953c119be492dca8b0e76ac7ca4b070926a11f7766f31bf541666ce204aaf5987eede54db741dcf4859118a33f8e657e70f128339408a5fcac4320c9bf5fd1aa807108096ce6c4bb10407d672273b9de98f81402144e29ef6b4b301e8f8e4e553c50b8b2dc08f710ea741ed5efd6725db7d2088bccd6d1c0760c713d1c28378a5b62fd7470000008e000000e80f25cbf8821c52ee96bcd78059abde3ea9d3d4a9d68804c29ad217267c8f3f65126936e3215b9377e71afb55086015bc877442e20d8333a4ec0abb76e4d05023493cbad6b5f9685eaf0e5c6806f7f0e84d2a4bcfbaf1e865638b772d93805c19dfa60414bf750b45a764d97cd578e53151ae9168e0f774ab65968a99007409cdd7d7e78e2a0d2d2b25000050000000402a8f5b1a7c26d06089a2204bdb49e7de6b998aa9cb50aed8c9962604bda765e087446f7cd18b1f15354fa1aee2bd13abb924f3e29006ce587330a54b80dc4439bffc6408018e19da0b3d6b81000000e3a3bcdcbcaffb603a15b4e71a6c93d4acafb290a72388cfaecffbbe0e75239e5d555c0b62286331d843c145e7f5602aee7946d141b88bf04eba05676e17bab46ee835d554bbf53301031db23cb3d8f1c3c5d033609bef390d1ccce12b46dbf64bd57936459d9c59c3edbc8ab272c7537da5cf6a1584c332436a7b61f900000005001000ff0000003000f080040004000a000200dcf512fcb76a000005000600040000000a00080008021100000100000500070006000000"], 0xa28}, 0x1, 0x0, 0x0, 0x2}, 0x20008081) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xef, 0x0, 0x10, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xcc27, 0x3}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000c00)={0x0, 0x80, 0x2, 0x9, 0xff, 0x5, 0x0, 0x0, 0x40000, 0x7, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x400, 0x2, @perf_bp={&(0x7f0000000bc0), 0x8}, 0x4800, 0x1f, 0x7, 0x9, 0x6232, 0x1, 0x1, 0x0, 0x3ff, 0x0, 0x1}, 0x0, 0x5, r1, 0x2) r2 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r2, 0x9204, 0x119b28) 21:49:01 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:01 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000140)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000180)=':\x00', 0x2}], 0x1}, 0x10044001) 21:49:01 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x3, 0x0, 0x0, 0x100}}) 21:49:01 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendfile(0xffffffffffffffff, r3, 0x0, 0x1) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8000, 0x42) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000100)) dup2(0xffffffffffffffff, 0xffffffffffffffff) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:01 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5600, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:01 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) r3 = accept4$unix(r1, 0x0, &(0x7f0000000080), 0x100800) ioctl$BTRFS_IOC_QUOTA_CTL(r3, 0xc0109428, &(0x7f0000000100)={0x1, 0x6}) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(r2, 0xffffffffffffffff) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:01 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = dup2(r0, 0xffffffffffffffff) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0xc}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, r1, 0x0) r3 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000700)=ANY=[@ANYBLOB="01109e000100000018000000", @ANYRES32=r3, @ANYRES32, @ANYRES32=0xee01, @ANYBLOB="2e2f66696c653000d519e171c3f8f4d5d5558e2d43caddc8cf4ad1dd9cfa0f9d3f81afc9fa89ef35a61ed0811a6466cb67ee8b5e5a52394b5983597ea46573dce0b8bde9cb3084874e2fc420629fb775b09df95be8a2cf70cce709e4f728163fb4299ac8058b0b48f4579ee4d226e6b12bb24ffc78d54f755748ab84a1df22bbd48eea8b11f13ec3684ddb38ecd31b1e10337c8a70c6aa83d176770211b954647e0679f50d083b95d0fd57e0f7a00a8d991a1ae7b1811a40f2b4fb9ac22ecc372792615220cbadd836004f5d1c22bf44597f"]) ioctl$EXT4_IOC_GROUP_EXTEND(r6, 0x40086607, &(0x7f0000000080)=0xc0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SNDRV_TIMER_IOCTL_INFO(0xffffffffffffffff, 0x80e85411, &(0x7f0000000080)=""/43) ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) syz_mount_image$nfs(&(0x7f0000000240), &(0x7f00000002c0)='./file0/../file0\x00', 0x1, 0x3, &(0x7f0000000500)=[{&(0x7f0000000300)="b09456e1cc1abe3be01b5ab628f4f34a9a6cc65a92f9877ae3771e21d09c820335483bdc14c4696a6b7661a1c0cd40bf760bbd9d7976fb11c6db4c32f90d212b2447c78c0bb70e2341b9135a36e3d037b1", 0x51, 0xffffffffffffffff}, {&(0x7f00000003c0)="734392bf111e34ad89833539b8bc9d0c90f5905723c06cb62a77178037bdf869a9e9f9cf93423b1c6c08e00a09fffd1739e62303500b707c15a15ce9cff7d35d67b8f1929ea5dbb86e30efc44374d16ea8b43e80ec4d305a95b6b85adc47c8abfc", 0x61, 0x40}, {&(0x7f0000000440)="ffdd14b2d545b969616d54fa413948ca8c884e05a5e0b29fda45678de5b6ea9b32040cfbe28f87c93cf898c2624a360384a71f96dc79194b8c9cf744da855ca0b5aaf22f51db7f7c1cf4850f245977421e5f993e2c5e97146ac61139caedb63455f06e0ac29e00f522a151c2774de3ac62b0621adbe8f1cfca71952a01bd410dbd0731eb96367acfaef362026b898c9311a95951a302f26d1b3d3c6fb59470b3ce9e99d98277d23940f8e92a64207f20951d9407895b748c482f265db1", 0xbd, 0x5}], 0x1, &(0x7f0000000580)={[{'-$'}, {'rfdno'}, {'9p\x00'}, {'[\x89'}], [{@hash}]}) setsockopt$inet6_udp_int(r6, 0x11, 0xa, &(0x7f00000005c0)=0x6, 0x4) dup3(0xffffffffffffffff, r2, 0x0) ioctl$F2FS_IOC_GET_FEATURES(r6, 0x8004f50c, &(0x7f0000000100)) close_range(r7, 0xffffffffffffffff, 0x0) ioctl$HIDIOCINITREPORT(0xffffffffffffffff, 0x550c, 0x20000000) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000140)=0x7c0283a40842d60c) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r5, @ANYBLOB="2c02187aa662d22e57eabbd9175df8ba0485280b3d6efc6ea74a297472288ff532798200007c7181677b9f7961e7558750a1759108c1adfcf3932ba1fbffa9611d836b919c70590893fbb64f00cef07f60d6890ddd895c9a703f18157bba4a8c10ec5a69f72728abdd4c3bbf644f111431dc82f733b3a12fb0d1f529d68d25019f855bac395e5017a439fee69445053703f74fbe"]) 21:49:01 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x300, 0x0, 0x0, 0x100}}) 21:49:01 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 90) 21:49:01 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 93) 21:49:01 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r3, 0x0, 0x10001, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r5, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2}) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r4) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000140)=0x1) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x80, 0x7, 0xff, 0x81, 0x0, 0xffffffff80000000, 0x10, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x55a81, 0x3aa, 0x9, 0x3, 0xfcc7, 0x8, 0xa1, 0x0, 0x430}, 0xffffffffffffffff, 0xb, r3, 0x1) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x119b28) 21:49:01 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendfile(0xffffffffffffffff, r3, 0x0, 0x1) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8000, 0x42) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000100)) dup2(0xffffffffffffffff, 0xffffffffffffffff) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:01 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5601, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1870.756035] nfs: Unknown parameter '-$' [ 1870.758860] FAULT_INJECTION: forcing a failure. [ 1870.758860] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1870.758879] CPU: 0 PID: 10443 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1870.758895] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.758901] Call Trace: [ 1870.758921] dump_stack+0x107/0x167 [ 1870.758940] should_fail.cold+0x5/0xa [ 1870.758964] __alloc_pages_nodemask+0x182/0x600 [ 1870.758981] ? lock_release+0x680/0x680 [ 1870.758998] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1870.759022] ? lock_downgrade+0x6d0/0x6d0 [ 1870.759053] alloc_pages_current+0x187/0x280 [ 1870.759074] get_zeroed_page+0x14/0xb0 [ 1870.759088] ? kasan_unpoison_shadow+0x33/0x50 [ 1870.759101] mon_alloc_buff+0xed/0x250 [ 1870.759125] mon_bin_ioctl+0x493/0xcc0 [ 1870.759145] ? wait_for_completion_io+0x270/0x270 [ 1870.759161] ? mon_bin_get_event+0x440/0x440 [ 1870.759187] ? selinux_file_ioctl+0xb6/0x270 [ 1870.759208] ? mon_bin_get_event+0x440/0x440 [ 1870.759229] __x64_sys_ioctl+0x19a/0x210 [ 1870.759248] do_syscall_64+0x33/0x40 [ 1870.759262] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.759272] RIP: 0033:0x7fceda384b19 [ 1870.759286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.759295] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1870.759312] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1870.759321] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1870.759329] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1870.759338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1870.759347] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1870.772230] FAULT_INJECTION: forcing a failure. [ 1870.772230] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1870.772246] CPU: 1 PID: 10445 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1870.772254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.772259] Call Trace: [ 1870.772278] dump_stack+0x107/0x167 [ 1870.772293] should_fail.cold+0x5/0xa [ 1870.772312] __alloc_pages_nodemask+0x182/0x600 [ 1870.772328] ? lock_release+0x680/0x680 [ 1870.772342] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1870.772359] ? lock_downgrade+0x6d0/0x6d0 [ 1870.772380] alloc_pages_current+0x187/0x280 [ 1870.772398] get_zeroed_page+0x14/0xb0 [ 1870.772411] ? kasan_unpoison_shadow+0x33/0x50 [ 1870.772424] mon_alloc_buff+0xed/0x250 [ 1870.772441] mon_bin_ioctl+0x493/0xcc0 [ 1870.772458] ? wait_for_completion_io+0x270/0x270 [ 1870.772476] ? mon_bin_get_event+0x440/0x440 [ 1870.772495] ? selinux_file_ioctl+0xb6/0x270 [ 1870.772511] ? mon_bin_get_event+0x440/0x440 [ 1870.772527] __x64_sys_ioctl+0x19a/0x210 [ 1870.772542] do_syscall_64+0x33/0x40 [ 1870.772553] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.772562] RIP: 0033:0x7f3f3b722b19 [ 1870.772575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.772582] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1870.772596] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1870.772604] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1870.772611] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1870.772619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1870.772626] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1885.804136] FAULT_INJECTION: forcing a failure. [ 1885.804136] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1885.805457] CPU: 0 PID: 10458 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1885.806091] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1885.806880] Call Trace: [ 1885.807117] dump_stack+0x107/0x167 [ 1885.807496] should_fail.cold+0x5/0xa [ 1885.807911] __alloc_pages_nodemask+0x182/0x600 [ 1885.808356] ? lock_release+0x680/0x680 [ 1885.808699] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1885.809376] ? lock_downgrade+0x6d0/0x6d0 [ 1885.809750] alloc_pages_current+0x187/0x280 [ 1885.811240] get_zeroed_page+0x14/0xb0 [ 1885.811657] ? kasan_unpoison_shadow+0x33/0x50 [ 1885.812100] mon_alloc_buff+0xed/0x250 [ 1885.812530] mon_bin_ioctl+0x493/0xcc0 [ 1885.812951] ? wait_for_completion_io+0x270/0x270 [ 1885.813420] ? mon_bin_get_event+0x440/0x440 [ 1885.813862] ? selinux_file_ioctl+0xb6/0x270 [ 1885.814324] ? mon_bin_get_event+0x440/0x440 [ 1885.814720] __x64_sys_ioctl+0x19a/0x210 [ 1885.815125] do_syscall_64+0x33/0x40 [ 1885.815507] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1885.815995] RIP: 0033:0x7f3f3b722b19 [ 1885.816370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1885.818074] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1885.818838] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1885.819517] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1885.820169] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1885.820879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1885.821527] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:49:16 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x20, 0x5, 0x13, 0x5, 0x0, 0x3, 0x48, 0xa, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6a4, 0x3, @perf_config_ext={0x5, 0x20}, 0x101, 0x67, 0x1, 0x9, 0x9, 0x80000001, 0xc65, 0x0, 0xff, 0x0, 0x8}, 0x0, 0xffffffffffffffff, r0, 0x3) fallocate(r2, 0x0, 0x0, 0x8000) sendfile(r1, r1, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:16 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x14ee, 0x0, 0x0, 0x100}}) 21:49:16 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5602, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:16 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendfile(0xffffffffffffffff, r3, 0x0, 0x1) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8000, 0x42) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000100)) dup2(0xffffffffffffffff, 0xffffffffffffffff) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r5, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:16 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 94) 21:49:16 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 91) 21:49:16 executing program 4: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r0, 0x0, 0x0, 0x8000) getsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f00000001c0)={@initdev, @private}, &(0x7f0000000200)=0xc) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) r2 = syz_io_uring_setup(0x3ca0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x8}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x10000) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_MADVISE={0x19, 0x4, 0x0, 0x0, 0x0, &(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x1, {0x0, r5}}, 0x7) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x119b28) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) copy_file_range(r1, &(0x7f0000000140)=0x100, r2, &(0x7f0000000180)=0x3, 0x5, 0x0) r7 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r7, 0x0, 0x10001, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x7, 0x8) ioctl$BTRFS_IOC_SET_FEATURES(r6, 0x40309439, &(0x7f0000000000)={0x3, 0x1}) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYBLOB='\t\x00\x00\x000\x00'/16]) mmap$IORING_OFF_SQ_RING(&(0x7f0000802000/0x4000)=nil, 0x4000, 0x4, 0x20010, r8, 0x0) 21:49:16 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffff, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, 0x0, 0x40000, 0x0) socket$netlink(0x10, 0x3, 0xa) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000080)=0x1000) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, 0x1b) syncfs(r1) creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x8, 0x0, 0x8000) write$9p(r2, &(0x7f00000000c0)="0fb865562069ab2f32beb83e263962827b00d7d8b791e504b65c5ed26e6688d67a9796c1aedca0de65d21b4796fd1b3df0ccedf9739e29f6b965de85433255da7945b7a842ba5fa3dbe88cd26fc9b1b807bc2d59e5a9f2c2bdaccdb839190141ba0151232669cb02b3b076251c024d73f501a54d959dac7cdb3fc324ab47f2a3e1ef12691eac5cab96860e94", 0x8c) r3 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/packet\x00') dup3(r4, r3, 0x0) fallocate(0xffffffffffffffff, 0x12, 0xfffffffffffffff8, 0x400) getsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f00000003c0), &(0x7f0000000400)=0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e24, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4}, 0x1c) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syncfs(r5) [ 1885.857644] FAULT_INJECTION: forcing a failure. [ 1885.857644] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1885.858781] CPU: 0 PID: 10470 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1885.858790] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1885.860170] Call Trace: [ 1885.860480] dump_stack+0x107/0x167 [ 1885.860867] should_fail.cold+0x5/0xa [ 1885.861214] __alloc_pages_nodemask+0x182/0x600 [ 1885.861661] ? lock_release+0x680/0x680 [ 1885.862068] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1885.862637] ? lock_downgrade+0x6d0/0x6d0 [ 1885.863062] alloc_pages_current+0x187/0x280 [ 1885.863528] get_zeroed_page+0x14/0xb0 [ 1885.863929] ? kasan_unpoison_shadow+0x33/0x50 [ 1885.864387] mon_alloc_buff+0xed/0x250 [ 1885.864742] mon_bin_ioctl+0x493/0xcc0 [ 1885.865159] ? wait_for_completion_io+0x270/0x270 [ 1885.865648] ? mon_bin_get_event+0x440/0x440 [ 1885.866108] ? selinux_file_ioctl+0xb6/0x270 [ 1885.866545] ? mon_bin_get_event+0x440/0x440 [ 1885.866981] __x64_sys_ioctl+0x19a/0x210 [ 1885.867415] do_syscall_64+0x33/0x40 [ 1885.867768] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1885.868297] RIP: 0033:0x7fceda384b19 [ 1885.868629] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1885.870400] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1885.871098] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1885.871777] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1885.872470] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1885.873144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1885.873873] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:49:16 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x17}, 0x200, 0x7d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:16 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5603, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:16 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0xee14, 0x0, 0x0, 0x100}}) 21:49:16 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5602, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:16 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r2, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r4, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2}) sendfile(r2, r3, &(0x7f0000000000)=0x7f, 0x2) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) [ 1901.047635] FAULT_INJECTION: forcing a failure. [ 1901.047635] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1901.048738] CPU: 0 PID: 10510 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1901.049331] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1901.050039] Call Trace: [ 1901.050278] dump_stack+0x107/0x167 [ 1901.050603] should_fail.cold+0x5/0xa [ 1901.050946] __alloc_pages_nodemask+0x182/0x600 [ 1901.051354] ? lock_release+0x680/0x680 [ 1901.051704] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1901.052245] ? lock_downgrade+0x6d0/0x6d0 [ 1901.052626] alloc_pages_current+0x187/0x280 [ 1901.053018] get_zeroed_page+0x14/0xb0 [ 1901.053359] ? kasan_unpoison_shadow+0x33/0x50 [ 1901.053756] mon_alloc_buff+0xed/0x250 [ 1901.054112] mon_bin_ioctl+0x493/0xcc0 [ 1901.054459] ? wait_for_completion_io+0x270/0x270 [ 1901.054880] ? mon_bin_get_event+0x440/0x440 [ 1901.055275] ? selinux_file_ioctl+0xb6/0x270 [ 1901.055662] ? mon_bin_get_event+0x440/0x440 [ 1901.056060] __x64_sys_ioctl+0x19a/0x210 [ 1901.056843] do_syscall_64+0x33/0x40 [ 1901.057487] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1901.058364] RIP: 0033:0x7f3f3b722b19 [ 1901.059001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1901.061078] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1901.061735] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1901.062344] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1901.062954] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1901.063565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1901.064490] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1901.070714] FAULT_INJECTION: forcing a failure. [ 1901.070714] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1901.073254] CPU: 0 PID: 10513 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1901.074434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1901.075840] Call Trace: [ 1901.076396] dump_stack+0x107/0x167 [ 1901.077022] should_fail.cold+0x5/0xa [ 1901.077679] __alloc_pages_nodemask+0x182/0x600 [ 1901.078472] ? lock_release+0x680/0x680 [ 1901.079152] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1901.080251] ? lock_downgrade+0x6d0/0x6d0 [ 1901.080978] alloc_pages_current+0x187/0x280 [ 1901.081739] get_zeroed_page+0x14/0xb0 [ 1901.082407] ? kasan_unpoison_shadow+0x33/0x50 [ 1901.083184] mon_alloc_buff+0xed/0x250 [ 1901.083867] mon_bin_ioctl+0x493/0xcc0 [ 1901.084711] ? wait_for_completion_io+0x270/0x270 [ 1901.085540] ? mon_bin_get_event+0x440/0x440 [ 1901.086322] ? selinux_file_ioctl+0xb6/0x270 [ 1901.087082] ? mon_bin_get_event+0x440/0x440 [ 1901.087840] __x64_sys_ioctl+0x19a/0x210 [ 1901.088715] do_syscall_64+0x33/0x40 [ 1901.089358] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1901.090234] RIP: 0033:0x7fceda384b19 [ 1901.090869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1901.094588] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1901.095884] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1901.097431] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1901.098657] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 21:49:31 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:31 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r1 = inotify_init1(0x0) inotify_add_watch(r1, &(0x7f0000000040)='.\x00', 0x2000003) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) dup3(r2, r1, 0x0) sendmsg$IPSET_CMD_DEL(r2, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={&(0x7f00000002c0)={0x120, 0xa, 0x6, 0x3, 0x0, 0x0, {0x5}, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x9}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x8}, @IPSET_ATTR_ADT={0x90, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @random="b139c3e4ee22"}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e24}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x8}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x3}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_COMMENT={0x9, 0x1a, 'uname'}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2_TO={0x18, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @mcast1}}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2_TO={0xc, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010100}}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x401}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_ADT={0x50, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x40}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x2}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x3f}}]}]}, 0x120}, 0x1, 0x0, 0x0, 0x48e0}, 0x80) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/timer_list\x00', 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2410d0, &(0x7f0000000100)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@access_client}, {@access_any}, {@access_uid={'access', 0x3d, 0xee01}}, {@uname={'uname', 0x3d, '.'}}, {@access_user}, {@debug={'debug', 0x3d, 0xfff}}, {@noextend}], [{@euid_eq={'euid', 0x3d, 0xee00}}]}}) fcntl$getown(0xffffffffffffffff, 0x9) fsmount(r3, 0x0, 0x70) r4 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000500)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r4, 0x5000943f, &(0x7f0000000100)={{r4}, 0x0, 0x0, @unused=[0xffffffff80000000, 0xfffffffffffffffa, 0x101, 0xfffffffffffffffc], @devid=r5}) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000000740)={{}, 0x0, 0x0, @unused=[0x3ff, 0x7, 0xccd5, 0x400], @devid=r5}) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f0000000580)={{}, 0x0, 0x8, @inherit={0x48, &(0x7f0000000500)={0x0, 0x0, 0x1, 0x10001, {0x18, 0xff, 0xa5d9, 0xcc, 0x2}}}, @devid=r5}) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) 21:49:31 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[]) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x40086602, 0xfffffffffffffffd) chdir(&(0x7f0000000040)='./file0\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x64) openat$pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0xc0d00, 0x19c) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f00000000c0)) mount$9p_fd(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x1000000, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_any}, {@access_any}, {@access_any}], [{@fscontext={'fscontext', 0x3d, 'user_u'}}, {@uid_gt={'uid>', 0xffffffffffffffff}}]}}) sendfile(r0, r1, 0x0, 0x100000001) 21:49:31 executing program 4: perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:49:31 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 95) 21:49:31 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 92) 21:49:31 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:31 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5605, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1901.099865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1901.101449] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:49:31 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) [ 1901.271045] FAULT_INJECTION: forcing a failure. [ 1901.271045] name fail_page_alloc, interval 1, probability 0, space 0, times 0 21:49:31 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x3, 0x0, 0x100}}) 21:49:31 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5606, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:31 executing program 4: perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:49:31 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x300, 0x0, 0x100}}) 21:49:31 executing program 5: r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x12000, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd933}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sysvipc/shm\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) r4 = syz_open_dev$mouse(&(0x7f0000000080), 0x4, 0x2) syz_io_uring_setup(0x65e9, &(0x7f00000001c0)={0x0, 0xfab2, 0x0, 0x2, 0x257, 0x0, r4}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280)) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:31 executing program 0: accept4$inet(0xffffffffffffffff, 0x0, &(0x7f00000000c0), 0x800) setsockopt$IP_VS_SO_SET_EDIT(0xffffffffffffffff, 0x0, 0x483, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x8000) [ 1901.272172] CPU: 1 PID: 10541 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1901.272965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1901.273659] Call Trace: [ 1901.273889] dump_stack+0x107/0x167 [ 1901.274202] should_fail.cold+0x5/0xa [ 1901.274531] __alloc_pages_nodemask+0x182/0x600 [ 1901.274928] ? lock_release+0x680/0x680 [ 1901.275266] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 write$binfmt_elf64(r3, &(0x7f0000002a80)=ANY=[@ANYBLOB="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"/6776], 0x1a78) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000b8c86efd0600000008", @ANYRES32=r1, @ANYBLOB="0800050006000000"], 0x24}}, 0x0) r4 = signalfd4(0xffffffffffffffff, &(0x7f00000001c0)={[0x1ff]}, 0x8, 0x800) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x4}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT, 0x1) r5 = syz_io_uring_setup(0x24, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000002a40)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r5}, 0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000100)=@IORING_OP_LINK_TIMEOUT, 0x1) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r4, &(0x7f0000000440)={&(0x7f0000000340), 0xc, &(0x7f0000000400)={&(0x7f0000000580)=ANY=[@ANYBLOB="f8dffc5c12449384f4380055248b78a2469f45d1570a66b42b4dfe0a5af3bb659b177379b92fd48ece01097dad9ea17da0f1348de851d092a591184788f3859527bc7f22eb679cbec43150b5583d794e94b06a4b3836b042826aa8b61d391b5ba233f2680dde2f0760edd38e8f71b6fa2709953caa3b7ea700"/132, @ANYRES16=0x0, @ANYBLOB="5dbb25425ae568b464340fe81d42f11d20ea87e6ee373db828a9b754752f29d87bf0ce87e335e95f93eefa08c0292838b11821ec326145eac4d2bb44072ad98761bee81884c424290753a203"], 0x28}}, 0x20000000) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010600)="ff4344303031", 0x6, 0x8800}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d4100000000416d03000000000000030000000000000000000000000000000054461a010e7809140b2a3a087809140b2a3a087809140b2a3a0843451c0119000000000000190000000000000000ed000000000000ed6600170000000000001700080000000008007809140b2a3a080200000100000101015252050181505824016d4100000000416d02000000000000020000000000000000000000000000000054461a010e7809140b2a3a087809140b2a3a087809140b2a3a08008c001a00000000", 0xf5, 0xb800}], 0x0, &(0x7f0000011700)=ANY=[@ANYBLOB]) syz_io_uring_submit(0x0, r7, &(0x7f0000000500)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2) ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x9362, 0x0) syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x77359400}, 0x1, 0x1, 0x1}, 0x1) 21:49:31 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 93) [ 1901.275788] ? lock_downgrade+0x6d0/0x6d0 [ 1901.275809] alloc_pages_current+0x187/0x280 [ 1901.275825] get_zeroed_page+0x14/0xb0 [ 1901.275837] ? kasan_unpoison_shadow+0x33/0x50 [ 1901.275849] mon_alloc_buff+0xed/0x250 [ 1901.275865] mon_bin_ioctl+0x493/0xcc0 [ 1901.275880] ? wait_for_completion_io+0x270/0x270 [ 1901.275892] ? mon_bin_get_event+0x440/0x440 [ 1901.275910] ? selinux_file_ioctl+0xb6/0x270 [ 1901.275925] ? mon_bin_get_event+0x440/0x440 [ 1901.275940] __x64_sys_ioctl+0x19a/0x210 21:49:31 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5607, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:31 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r2, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0xf2) fsetxattr$security_selinux(r0, &(0x7f0000000000), &(0x7f00000000c0)='system_u:object_r:hwclock_exec_t:s0\x00', 0x24, 0x2) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r4, 0x0, 0x10001, 0x0) ioctl$PERF_EVENT_IOC_RESET(r1, 0x2403, 0x8) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2, 0x0, 0x1000}) ioctl$HIDIOCGREPORT(r4, 0x400c4807, &(0x7f0000000100)={0x3, 0xffffffff, 0x3}) r5 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r5, 0x9204, 0x119b28) [ 1901.275954] do_syscall_64+0x33/0x40 [ 1901.275965] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1901.275974] RIP: 0033:0x7f3f3b722b19 [ 1901.275999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1901.276006] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1901.276020] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1901.276027] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1901.276034] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1901.276041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1901.276049] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:49:48 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x14ee, 0x0, 0x100}}) 21:49:48 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 94) 21:49:48 executing program 0: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x40, 0x0, 0x5e, 0x4, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480), 0xa}, 0x183a2, 0x1, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0x0) r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0x0) ioctl$KDGKBLED(0xffffffffffffffff, 0x4b64, &(0x7f0000000440)) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff) ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6}]}) r3 = add_key$user(&(0x7f00000002c0), &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000880)="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", 0x1000, r0) keyctl$revoke(0x3, r3) keyctl$KEYCTL_MOVE(0x1e, r2, 0xfffffffffffffffc, r1, 0x1) add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, r1) r4 = add_key$keyring(&(0x7f0000000380), &(0x7f00000004c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$revoke(0x3, r4) keyctl$set_timeout(0xf, 0x0, 0x0) keyctl$chown(0x4, 0x0, 0xee01, 0x0) add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000280), &(0x7f0000000340)={'syz', 0x1}, 0x0, 0x0, r4) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/snmp6\x00') unshare(0x48020200) unshare(0x40000180) 21:49:48 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5608, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1917.406784] capability: warning: `syz-executor.6' uses deprecated v2 capabilities in a way that may be insecure 21:49:48 executing program 6: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_create(0x2, &(0x7f0000000b80)={0x0, 0x40, 0x1}, &(0x7f0000000bc0)) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000d00)={0x20071026, 0xffffffffffffffff}, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) timer_create(0x7, &(0x7f0000000180)={0x0, 0x5, 0x1, @thr={&(0x7f0000000a80)="9ffd1d255e84604fa9590f295bf4abc885a9a99e2e6e3f6aa21bcf1811cd11082bcac4cff32b990e28c1558bab4cedb05c88e5116d1911611b8942471b4e5f779ad35d2026fa912b0906c2866d08918fa14c5dad2e8bfaa62e93f90424584cb1e4546a692f192d8ef8f905e000005591848a22092188946fe16e291fc2e283349247ccf93b455d70201b0f213e958adf446d9c3833d4ac42888d27eaea0aa4191ec10c98de6cade014cc404573505aec0aad2ab44706d4fbfae457e01509ea15fd93174bb086cd75029acd7a9ef4550a449fcddf50e4d298617b9871c68b8916f0", &(0x7f0000000c40)="46033b890ee2be8194e988d3ca7907fcf24a28ee6329cfde4fbcd4cec3b2dbb135c2d49a6f084ec1017b51eb1bd149012035e97817e63aa5b960d2230f3e2e9447e3ae01c9329e23800a432b868b7d626ee72d8e757b6899333d74e469231a9d0548b2f03ea303d8a2ceef9703384dfd53890da9330a7a69b7908f9ce66cb832f08eae4859e065fa818ceeca1481"}}, &(0x7f0000000340)) clock_gettime(0x0, &(0x7f0000000a00)={0x0, 0x0}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000940)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000002c0)=""/29, 0x1d}, {&(0x7f0000000400)=""/115, 0x73}, {&(0x7f00000004c0)=""/173, 0xad}, {&(0x7f0000000300)=""/37, 0x25}, {&(0x7f0000000580)=""/70, 0x46}, {&(0x7f0000000600)=""/34, 0x22}], 0x6}}, {{&(0x7f00000006c0), 0x6e, &(0x7f00000007c0)=[{&(0x7f0000000740)=""/44, 0x2c}, {&(0x7f0000000780)=""/4, 0x4}], 0x2, &(0x7f0000000800)}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000840)=""/67, 0x43}], 0x1, &(0x7f0000000900)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x40}}], 0x3, 0x61, &(0x7f0000000a40)={r1, r2+10000000}) timer_create(0x3, &(0x7f0000000280)={0x0, 0x2b, 0x2, @tid=r3}, &(0x7f0000000040)=0x0) timer_settime(r5, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000800)={0x0, r4}) r6 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000"], 0x14}}, 0x0) read(r6, &(0x7f0000000080)=""/65, 0x41) timer_gettime(r5, &(0x7f0000000080)) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000100)=0xfffffffffffff801) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000e80)=ANY=[@ANYBLOB="010600000900000000000000758e99e8c58ac13a548deab865aecfe823e8d5545b6cf57aa85897db1b3350b8fd2547496c1625e4676559b152b26e1442547a5d26cd5d80bbb61b", @ANYRES32=r0, @ANYRES32, @ANYBLOB="200000002e2f66696c8bcb0019976fdcf21900be52a353b1e157626a4fcc3a5f04eb850d5f47d5af218697f41c7286963bf1c33b1037e423e1a3e92c8646c8d8af950ebac94fd7f153866add81f6ca6eff9789a67ff35b4943cdfe317243fc9515477aa5d94b1a376aaabb573fa19a08d76a3bb208fc495b89f70c567c96f6566def8d36c41d111b8c5ad535e2c47eced87848948f5a8c0bd7063c5492869540bdf5fe126355bd5b63de4d9e98cfe0b458dca717668bca4b2c44aac794d40049f0"]) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 21:49:48 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0xd8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100000000000000, 0x400}}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x0, 0x40) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r3, 0x0, 0x10001, 0x0) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r4, 0x0, 0x0, 0x8000) fstat(r4, &(0x7f0000000140)) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'}) sendmsg$nl_generic(r1, &(0x7f0000001780)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001740)={&(0x7f00000017c0)={0x15b8, 0x16, 0x8, 0x70bd2c, 0x25dfdbfd, {0x2}, [@nested={0xa6, 0x69, 0x0, 0x1, [@typed={0x8, 0x40, 0x0, 0x0, @fd=r0}, @generic="5d7f62a2a0b8259e665e00488da172217be714d45e2882be91e5b072674707138786b004660b5ceb5105e56b84c21f9a3242b9f42afa4069ab50b921a29f4725af17b29bb4d615411d7017974cbc31b51bc64fe522376cd9b4ad4fc1f5f4359700b4dc43907aa08390c2", @typed={0xc, 0x16, 0x0, 0x0, @u64=0x401}, @typed={0x6, 0xc, 0x0, 0x0, @str='\x91\x00'}, @typed={0x8, 0x51, 0x0, 0x0, @uid=r5}, @generic="1f99657d26f498348164465a8183a41e5a79d29e"]}, @nested={0x3be, 0x64, 0x0, 0x1, [@typed={0x11, 0x45, 0x0, 0x0, @str='/dev/usbmon#\x00'}, @typed={0xc, 0x70, 0x0, 0x0, @u64=0x6}, @typed={0x11, 0x18, 0x0, 0x0, @str='/dev/usbmon#\x00'}, @generic="1713e56184ddaadfcbed7654eb8590e20adf77cd74e07b0cf4fb48bbb8a67a606691db1eea7228cda90be23449adc7a905ccd3b5ebb9b96357c0625b18108f202492e16ea7e4750ce1c76e8a73b7cb4e2a10bd60ae873d8bd2bd7cff7d18d9626e622692102efe8d65fc7ee69d898f6c462e0898ad1e6c9ad7e3f0", @generic="c3ca5f9adb13804c7cb818a7cfcaae55eeb5a1106f9119d38f79db2a2b9b36ef4e2f680702332923c3edfd4b7b20be7bbcdccd4406ae948417c9a181391d7b6c18a41ac96f80abe9442e12d8c1ebf80504af026ab079cfd19c3f77d801aa9cbf8aaf0c1fce4e6e02f0b7c7dc15e248261f8a445f144c315e8cbf17def0552d98c381c9de985342675ba66882c0a83e6717a9373791d993aa1780033e7422fea80e63e894a05cd2fc241b80d7c944a5670c50472db6", @generic="16f9606ee88be5d2d2943b3e795b13f5293a973d2260c264fb78b2130df45a7d3a1ab3ce1400f63fa6f05a533e34bbfb6165a4979bcf43c6a8cabf892702337abb0fd03c8495758459cd4a8a9b02b26c67c4ccd6d0469b0cb5acaca128a56e88504ace0dc2614f7a6a63e317bc6ecd4006adafa67be1d71a77d85cbc51afecc649f2dd9cd46cca150f3a92755cdafa9685612365ff19f0ce583a660e7c01fd6be3eeb0e3e38e02db95a42d8ad6b2fd9b8c35b77420b4b04daf73e07d896f5f7d", @generic="dba5d2a47343d66a3075cc35cb0e5afb627a42426dd548f24874b7073d553cba41f17332b57701db7c5c43317050e10bebd13f2781f1e25097398772c74975198bb75c85011dc3f504d7a8171f797a5020d044a3f562f2b9ce20e803f76b361b5eabacd3792f4aa3c3d06da3e1bac6ed704b137e0f18095fbd79d044eaf9eecba016826ccd551410ee91c0af52e755e7b32d301a6d4d9dfb1a6e2d121965ad1427932bd6458121b01a418edc599d8623968c1b13dadeb9218a35fecfba61fc868a693318a8671e37889f072a8c0425e5ccf37c45662e469e721e4dd8e81a15aba8b28441fd52944424659975a6d6c8bb08", @generic="ed16d2d91debb7aa01734e3046451b9aaa894fdc71ac7011042927486cf7f1cdbf6d53b61e36721c168a2efe93cea47b225a112523f3e6e4112035043563af3723e9247905a993cae018ee175ac2d5c0d5a1c7a998c93ac85276677b14f2c1a3cf7a8f90daa757e639422da2c7e97b4e6fd097810f51809460e6bfb13aa5dc93f24acc2e197f604278f8ab4f71e0258a00f91e66c845cef1ec5a7ac3f2dd6ad886be8d1804"]}, @generic="8252dd5c8101862e2e8b8eaf1848bdaa1ba7b7ce7594387ed863b1ca548ad6d11047aa15a2774fb9494248a4ee8e05d7ff4626d9928cf7dd12c3e7087a0ce8b5165f4ab9f6a3aaa88197d6d41f3c7f6cb7", @generic="53fcea3688558fd1be3435bd0f9b0c167350553796825bbacb390c5fbef0f930200594225aadfac17227a75f8ad381e59cd562696169019f3379d0", @nested={0x10f9, 0x8b, 0x0, 0x1, [@generic="90f6aafe366dc9d421c5f0a5d67d695f7a1050f9e9968bb8f8b1af23f5ac271c361183e50c2e2199365bf606c41dd9c107dcfaffc813f93108a278ad94fdacbe72d45dc120a125f051c800d018", @generic="8bcdc717ae4fb7a62e5615cf62370e73236f488244320728b801b5684321e79735e6a6e4bf05a6dd22f5943e901c092be823b7c2dff5c658bee99da100a2add7910af325488a5db1d09259039721b108a67be24ab6a050b8953a6174057a4e626bf54ab491", @typed={0x11, 0x37, 0x0, 0x0, @str='/dev/usbmon#\x00'}, @typed={0x8, 0x22, 0x0, 0x0, @uid=r5}, @typed={0xa86d4909bebbe9f1, 0x2d, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0xa}}, @generic="3a25693b83898f9a7bd74e3c2f933e6787ea1eedc10e7ea7c59312175a1878", @generic="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"]}]}, 0x15b8}, 0x1, 0x0, 0x0, 0x8080}, 0x800) r6 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r6, 0x9204, 0x119b28) 21:49:48 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 96) 21:49:48 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x9, 0x0, 0x0, 0x100}}) [ 1917.420165] FAULT_INJECTION: forcing a failure. [ 1917.420165] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1917.423199] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=10566 comm=syz-executor.6 [ 1917.425228] CPU: 1 PID: 10563 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1917.425237] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.425242] Call Trace: [ 1917.425262] dump_stack+0x107/0x167 [ 1917.425280] should_fail.cold+0x5/0xa [ 1917.425301] __alloc_pages_nodemask+0x182/0x600 [ 1917.425318] ? lock_release+0x680/0x680 [ 1917.425334] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1917.425355] ? lock_downgrade+0x6d0/0x6d0 [ 1917.425382] alloc_pages_current+0x187/0x280 [ 1917.425402] get_zeroed_page+0x14/0xb0 [ 1917.425416] ? kasan_unpoison_shadow+0x33/0x50 [ 1917.425431] mon_alloc_buff+0xed/0x250 [ 1917.425457] mon_bin_ioctl+0x493/0xcc0 [ 1917.425477] ? wait_for_completion_io+0x270/0x270 [ 1917.425493] ? mon_bin_get_event+0x440/0x440 [ 1917.425516] ? selinux_file_ioctl+0xb6/0x270 [ 1917.425535] ? mon_bin_get_event+0x440/0x440 [ 1917.425554] __x64_sys_ioctl+0x19a/0x210 [ 1917.425572] do_syscall_64+0x33/0x40 [ 1917.425587] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.425597] RIP: 0033:0x7f3f3b722b19 [ 1917.425612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1917.425621] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1917.425638] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1917.425647] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1917.425656] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1917.425665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1917.425674] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1917.458615] FAULT_INJECTION: forcing a failure. [ 1917.458615] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1917.459725] CPU: 1 PID: 10571 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1917.460350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.461120] Call Trace: [ 1917.461375] dump_stack+0x107/0x167 [ 1917.461717] should_fail.cold+0x5/0xa [ 1917.462082] __alloc_pages_nodemask+0x182/0x600 [ 1917.462518] ? lock_release+0x680/0x680 [ 1917.462886] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1917.463438] ? lock_downgrade+0x6d0/0x6d0 [ 1917.463833] alloc_pages_current+0x187/0x280 [ 1917.464247] get_zeroed_page+0x14/0xb0 [ 1917.464622] ? kasan_unpoison_shadow+0x33/0x50 [ 1917.465047] mon_alloc_buff+0xed/0x250 [ 1917.465413] mon_bin_ioctl+0x493/0xcc0 [ 1917.465794] ? wait_for_completion_io+0x270/0x270 [ 1917.466238] ? mon_bin_get_event+0x440/0x440 [ 1917.466672] ? selinux_file_ioctl+0xb6/0x270 [ 1917.467083] ? mon_bin_get_event+0x440/0x440 [ 1917.467493] __x64_sys_ioctl+0x19a/0x210 [ 1917.467883] do_syscall_64+0x33/0x40 [ 1917.468230] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.468719] RIP: 0033:0x7fceda384b19 [ 1917.469076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1917.470729] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1917.471442] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1917.472094] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1917.472756] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1917.473417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1917.474065] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:49:48 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0xee14, 0x0, 0x100}}) 21:49:48 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r1, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2}) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x3, 0x7f, 0x80, 0x7, 0x0, 0x7, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0xff, 0x2, @perf_bp={&(0x7f0000000000), 0x2}, 0x16020, 0x800000, 0x51f, 0x9, 0x40, 0x10001, 0x200, 0x0, 0x5ae, 0x0, 0x1000}, 0x0, 0x8, r0, 0x2) r2 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r2, 0x9204, 0x119b28) 21:49:48 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x5609, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:48 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 95) [ 1917.591411] FAULT_INJECTION: forcing a failure. [ 1917.591411] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1917.592648] CPU: 1 PID: 10587 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1917.593273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.594021] Call Trace: [ 1917.594274] dump_stack+0x107/0x167 [ 1917.594617] should_fail.cold+0x5/0xa [ 1917.594977] __alloc_pages_nodemask+0x182/0x600 [ 1917.595409] ? lock_release+0x680/0x680 [ 1917.595780] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1917.596343] ? lock_downgrade+0x6d0/0x6d0 [ 1917.596758] alloc_pages_current+0x187/0x280 [ 1917.597172] get_zeroed_page+0x14/0xb0 [ 1917.597543] ? kasan_unpoison_shadow+0x33/0x50 [ 1917.597965] mon_alloc_buff+0xed/0x250 [ 1917.598331] mon_bin_ioctl+0x493/0xcc0 [ 1917.598698] ? wait_for_completion_io+0x270/0x270 [ 1917.599143] ? mon_bin_get_event+0x440/0x440 [ 1917.599556] ? selinux_file_ioctl+0xb6/0x270 [ 1917.599968] ? mon_bin_get_event+0x440/0x440 [ 1917.600377] __x64_sys_ioctl+0x19a/0x210 [ 1917.600772] do_syscall_64+0x33/0x40 [ 1917.601118] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.601587] RIP: 0033:0x7f3f3b722b19 [ 1917.601935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1917.603589] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1917.604278] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1917.604938] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1917.605578] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1917.606224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1917.606869] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:49:48 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 97) 21:49:48 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2000002, 0x30, 0xffffffffffffffff, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r6 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r6, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000040)={0x0, r6, 0x2}) r7 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x10000) syz_io_uring_submit(r4, 0x0, &(0x7f0000000080)=@IORING_OP_WRITE={0x17, 0x4, 0x2000, @fd=r6, 0xc56d, &(0x7f0000000100)="72d64a89062cf36f33388b7e554c4f33ef42de723480e9df521be607d9622010381fdbeb962e3c05bea8498ca091d4d09233dd78ccb7ef086d1704ff26ad7c970c1ad21af70d71eb453b87235e81f40a50453d41ee2a21a738e5de6aecbc771e146f4db8c28e5a881361646774b8a0283a0ce93448b832936c3f10fb474f1bf76444e2f15b0be699712b28001676e596f277f26996d949bc59383616051778a0068cb00d95e83926730aa83b50155e815b416eaab57567f9ddc69de5939ea7298cd3ffc66cbc9d87349b5e7ccd7a86", 0xcf, 0xe72202bf73f8363d, 0x1, {0x0, r10}}, 0x7) 21:49:48 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:49:48 executing program 4: r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs2/custom0\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = fcntl$dupfd(0xffffffffffffffff, 0x612a649a964eabc3, r1) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x300000a, 0x1010, r2, 0x10000000) r3 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r3, 0x9204, 0x119b28) [ 1917.689997] FAULT_INJECTION: forcing a failure. [ 1917.689997] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1917.691114] CPU: 1 PID: 10593 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1917.691756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.692491] Call Trace: [ 1917.692762] dump_stack+0x107/0x167 [ 1917.693113] should_fail.cold+0x5/0xa [ 1917.693455] __alloc_pages_nodemask+0x182/0x600 [ 1917.693872] ? lock_release+0x680/0x680 [ 1917.694229] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1917.694775] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1917.695280] alloc_pages_current+0x187/0x280 [ 1917.695684] ? alloc_pages_current+0x18f/0x280 [ 1917.696109] get_zeroed_page+0x14/0xb0 [ 1917.696466] mon_alloc_buff+0xed/0x250 [ 1917.696857] mon_bin_ioctl+0x493/0xcc0 [ 1917.697227] ? wait_for_completion_io+0x270/0x270 [ 1917.697672] ? mon_bin_get_event+0x440/0x440 [ 1917.698087] ? selinux_file_ioctl+0xb6/0x270 [ 1917.698500] ? mon_bin_get_event+0x440/0x440 [ 1917.698911] __x64_sys_ioctl+0x19a/0x210 [ 1917.698930] do_syscall_64+0x33/0x40 [ 1917.698944] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.698955] RIP: 0033:0x7fceda384b19 [ 1917.698970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 21:49:48 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x560a, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1917.698978] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1917.698996] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1917.699005] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1917.699015] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1917.699023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1917.699032] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:50:06 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) membarrier(0x10, 0x0) membarrier(0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:06 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x8) openat(r1, &(0x7f00000000c0)='./file0\x00', 0xa000, 0xc0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:50:06 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x3, 0x100}}) 21:50:06 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 98) 21:50:06 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x34, 0x10, 0x1, 0x6, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0x15, 0x0, 0x0, 0x1, [@generic="487fec864b245e0f3f9be149f83265549b"]}]}, 0x34}}, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000000), 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setstatus(r2, 0x4, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000500)=0x5) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r2, 0x80089419, &(0x7f0000000640)) connect$inet6(0xffffffffffffffff, &(0x7f0000000540)={0xa, 0x4e23, 0x8, @remote, 0x7fffffff}, 0x1c) r3 = syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff) fremovexattr(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"]) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000100)=ANY=[@ANYBLOB="01e9ff20010010b807b90897001810000026742239b7c49fc7e380d39c3530a275e790cbd0a94de9285757bc", @ANYRES32]) ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000600)) renameat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff, &(0x7f00000004c0)='./file0\x00', 0x5) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x80800, 0x110) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000700)=ANY=[@ANYRESOCT=r2, @ANYRES16=r3, @ANYBLOB="010029bd7002fcdbdf25040000004404004e24000014000300000000000000000000000000000000000c0007003000000004000000080005000400000008000b0e73697000060002005a00000038000280060002004e2100000800090000000000080006f54f00000014000100e00000020000000000001e000000000008000900090000001c00038008000300000000000800010001000000080001000200000008000400200000004c000280080006000300000005000d00010000000800050005001c283171ff89dec201000800070086000000080009007c000000080004000900000006000f0002000078e00006000b000a00"], 0x100}, 0x1, 0x0, 0x0, 0x4804}, 0x44) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000c40)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) unshare(0x48020200) 21:50:06 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x560b, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:06 executing program 6: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NET_DM_CMD_START(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x400, 0x70bd25, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040041}, 0x20000800) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="3081240000001e002100000000000000070000f10800"/33], 0x30}}, 0x0) [ 1935.655866] FAULT_INJECTION: forcing a failure. 21:50:06 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 96) [ 1935.655866] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1935.656996] CPU: 1 PID: 10615 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1935.661679] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1935.662413] Call Trace: [ 1935.662668] dump_stack+0x107/0x167 [ 1935.663009] should_fail.cold+0x5/0xa [ 1935.663367] __alloc_pages_nodemask+0x182/0x600 [ 1935.663806] ? lock_release+0x680/0x680 [ 1935.664185] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1935.664746] ? lock_downgrade+0x6d0/0x6d0 [ 1935.665147] alloc_pages_current+0x187/0x280 [ 1935.673599] get_zeroed_page+0x14/0xb0 [ 1935.673616] ? kasan_unpoison_shadow+0x33/0x50 [ 1935.673631] mon_alloc_buff+0xed/0x250 [ 1935.673653] mon_bin_ioctl+0x493/0xcc0 [ 1935.673673] ? wait_for_completion_io+0x270/0x270 [ 1935.673689] ? mon_bin_get_event+0x440/0x440 [ 1935.673712] ? selinux_file_ioctl+0xb6/0x270 [ 1935.673732] ? mon_bin_get_event+0x440/0x440 [ 1935.673751] __x64_sys_ioctl+0x19a/0x210 [ 1935.673766] do_syscall_64+0x33/0x40 [ 1935.673780] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1935.673790] RIP: 0033:0x7fceda384b19 [ 1935.673805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1935.673815] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1935.673832] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1935.673842] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1935.673851] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1935.673859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1935.673869] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 [ 1935.683952] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1935.707915] FAULT_INJECTION: forcing a failure. [ 1935.707915] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1935.712456] CPU: 1 PID: 10628 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1935.713085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1935.713852] Call Trace: [ 1935.713871] dump_stack+0x107/0x167 [ 1935.713888] should_fail.cold+0x5/0xa [ 1935.713910] __alloc_pages_nodemask+0x182/0x600 [ 1935.713926] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1935.713937] ? trace_hardirqs_on+0x5b/0x180 [ 1935.713952] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1935.713965] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1935.713988] ? alloc_pages_current+0x10e/0x280 [ 1935.714007] alloc_pages_current+0x187/0x280 [ 1935.717939] get_zeroed_page+0x14/0xb0 [ 1935.717952] ? kasan_unpoison_shadow+0x33/0x50 [ 1935.717970] mon_alloc_buff+0xed/0x250 [ 1935.719058] mon_bin_ioctl+0x493/0xcc0 [ 1935.719075] ? wait_for_completion_io+0x270/0x270 [ 1935.719088] ? mon_bin_get_event+0x440/0x440 [ 1935.719107] ? selinux_file_ioctl+0xb6/0x270 [ 1935.719123] ? mon_bin_get_event+0x440/0x440 [ 1935.719142] __x64_sys_ioctl+0x19a/0x210 [ 1935.719159] do_syscall_64+0x33/0x40 [ 1935.719173] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1935.719183] RIP: 0033:0x7f3f3b722b19 [ 1935.719198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1935.719206] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:50:06 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x8) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x2f, &(0x7f0000000080)={0x0, 0x0}, 0x10) r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) bind$802154_raw(r1, &(0x7f0000000100)={0x24, @none={0x4}}, 0x14) creat(&(0x7f0000000040)='./file0\x00', 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x7f) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) socket$packet(0x11, 0x3, 0x300) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x81) [ 1935.719221] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1935.719231] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1935.719240] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1935.719249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1935.719259] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:50:06 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000002400)='net/ip_mr_vif\x00') connect$inet6(r2, &(0x7f0000002440)={0xa, 0x4e23, 0x80000001, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}, 0x1c) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x119b28) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r4, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2}) ioctl$BTRFS_IOC_RM_DEV(r0, 0x5000940b, &(0x7f0000001400)={{r3}, "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"}) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$SNDRV_TIMER_IOCTL_INFO(r5, 0x80e85411, &(0x7f0000000080)=""/43) readv(r5, &(0x7f0000001380)=[{&(0x7f00000000c0)=""/239, 0xef}, {&(0x7f00000001c0)=""/114, 0x72}, {&(0x7f0000000240)=""/203, 0xcb}, {&(0x7f0000000000)=""/5, 0x5}, {&(0x7f0000000340)=""/60, 0x3c}, {&(0x7f0000000380)=""/4096, 0x1000}], 0x6) 21:50:06 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 99) 21:50:06 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 97) 21:50:06 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x560c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:06 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x300, 0x100}}) 21:50:06 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000100)=0xeca) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/firmware/dmi', 0x208801, 0xd) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1935.878557] FAULT_INJECTION: forcing a failure. [ 1935.878557] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1935.879680] CPU: 1 PID: 10641 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1935.880300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1935.881044] Call Trace: [ 1935.881316] dump_stack+0x107/0x167 [ 1935.881660] should_fail.cold+0x5/0xa [ 1935.882025] __alloc_pages_nodemask+0x182/0x600 [ 1935.882459] ? lock_release+0x680/0x680 [ 1935.882836] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1935.883310] FAULT_INJECTION: forcing a failure. [ 1935.883310] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1935.883385] ? lock_downgrade+0x6d0/0x6d0 [ 1935.884701] alloc_pages_current+0x187/0x280 [ 1935.885085] get_zeroed_page+0x14/0xb0 [ 1935.885435] ? kasan_unpoison_shadow+0x33/0x50 [ 1935.885832] mon_alloc_buff+0xed/0x250 [ 1935.886174] mon_bin_ioctl+0x493/0xcc0 [ 1935.886517] ? wait_for_completion_io+0x270/0x270 [ 1935.886934] ? mon_bin_get_event+0x440/0x440 [ 1935.887318] ? selinux_file_ioctl+0xb6/0x270 [ 1935.887700] ? mon_bin_get_event+0x440/0x440 [ 1935.888080] __x64_sys_ioctl+0x19a/0x210 [ 1935.888431] do_syscall_64+0x33/0x40 [ 1935.888756] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1935.889198] RIP: 0033:0x7f3f3b722b19 [ 1935.889527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1935.891060] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1935.891710] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1935.892309] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1935.892912] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1935.893528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1935.894128] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 [ 1935.894756] CPU: 0 PID: 10640 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1935.895391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1935.896151] Call Trace: [ 1935.896411] dump_stack+0x107/0x167 [ 1935.896765] should_fail.cold+0x5/0xa [ 1935.897144] __alloc_pages_nodemask+0x182/0x600 [ 1935.897600] ? lock_release+0x680/0x680 [ 1935.897984] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1935.898556] ? lock_downgrade+0x6d0/0x6d0 [ 1935.898968] alloc_pages_current+0x187/0x280 [ 1935.899388] get_zeroed_page+0x14/0xb0 [ 1935.899760] ? kasan_unpoison_shadow+0x33/0x50 [ 1935.900188] mon_alloc_buff+0xed/0x250 [ 1935.900572] mon_bin_ioctl+0x493/0xcc0 [ 1935.900953] ? wait_for_completion_io+0x270/0x270 [ 1935.901427] ? mon_bin_get_event+0x440/0x440 [ 1935.901863] ? selinux_file_ioctl+0xb6/0x270 [ 1935.902290] ? mon_bin_get_event+0x440/0x440 [ 1935.902711] __x64_sys_ioctl+0x19a/0x210 [ 1935.903099] do_syscall_64+0x33/0x40 [ 1935.903446] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1935.903919] RIP: 0033:0x7fceda384b19 [ 1935.904269] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1935.905957] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1935.906664] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1935.907309] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1935.907968] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1935.908621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1935.909292] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:50:06 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) membarrier(0x10, 0x0) membarrier(0x8, 0x0) socket$nl_generic(0x10, 0x3, 0x10) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:06 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x1, 0x4003) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000000c0)={0x0, 0x1, 0x6, @random="4d708e0015f4"}, 0x10) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x119b28) 21:50:06 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x14ee, 0x100}}) 21:50:06 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x560d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:06 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 98) [ 1936.041429] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1936.105935] FAULT_INJECTION: forcing a failure. [ 1936.105935] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1936.107057] CPU: 1 PID: 10665 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1936.107677] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1936.108413] Call Trace: [ 1936.108673] dump_stack+0x107/0x167 [ 1936.109021] should_fail.cold+0x5/0xa [ 1936.109405] __alloc_pages_nodemask+0x182/0x600 [ 1936.109425] ? lock_release+0x680/0x680 [ 1936.109443] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1936.109465] ? lock_downgrade+0x6d0/0x6d0 [ 1936.109493] alloc_pages_current+0x187/0x280 [ 1936.109515] get_zeroed_page+0x14/0xb0 [ 1936.109530] ? kasan_unpoison_shadow+0x33/0x50 [ 1936.109545] mon_alloc_buff+0xed/0x250 [ 1936.109568] mon_bin_ioctl+0x493/0xcc0 [ 1936.109589] ? wait_for_completion_io+0x270/0x270 [ 1936.109605] ? mon_bin_get_event+0x440/0x440 [ 1936.109630] ? selinux_file_ioctl+0xb6/0x270 [ 1936.109651] ? mon_bin_get_event+0x440/0x440 [ 1936.109670] __x64_sys_ioctl+0x19a/0x210 [ 1936.109688] do_syscall_64+0x33/0x40 [ 1936.109703] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1936.109714] RIP: 0033:0x7f3f3b722b19 [ 1936.109730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1936.109739] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1936.109757] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1936.109766] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1936.109775] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1936.109784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1936.109794] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:50:28 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 100) 21:50:28 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) r1 = syz_open_dev$tty1(0xc, 0x4, 0x4) ioctl$GIO_SCRNMAP(r1, 0x4b40, &(0x7f0000000100)=""/244) sendmsg$nl_generic(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000000c0)={0x14, 0x12, 0x69844ea0a6ddcd11, 0x0, 0x0, {0x80}}, 0x14}}, 0x0) [ 1957.458974] FAULT_INJECTION: forcing a failure. [ 1957.458974] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1957.460043] CPU: 0 PID: 10678 Comm: syz-executor.1 Not tainted 5.10.223 #1 [ 1957.460628] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1957.461324] Call Trace: [ 1957.461563] dump_stack+0x107/0x167 [ 1957.461884] should_fail.cold+0x5/0xa [ 1957.462236] __alloc_pages_nodemask+0x182/0x600 [ 1957.462640] ? lock_release+0x680/0x680 [ 1957.462988] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1957.463515] ? lock_downgrade+0x6d0/0x6d0 [ 1957.463892] alloc_pages_current+0x187/0x280 [ 1957.464282] get_zeroed_page+0x14/0xb0 [ 1957.464624] ? kasan_unpoison_shadow+0x33/0x50 [ 1957.465020] mon_alloc_buff+0xed/0x250 [ 1957.465369] mon_bin_ioctl+0x493/0xcc0 [ 1957.465717] ? wait_for_completion_io+0x270/0x270 21:50:28 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 99) 21:50:28 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pidfd_getfd(0xffffffffffffffff, r0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x119b28) 21:50:28 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6}, 0x0, 0x1ffffffffffffff, 0x0, 0x0, 0x10001, 0x0, 0xfffc, 0x0, 0x10000000, 0x0, 0x2000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0) fgetxattr(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="dd8801000000000001104b1e070032c9a960850b08a22641ef8003b812fdc6fcda204b15f0f58c77c9c477d755f33b1b118b5b832f7c4591772200b63343556397761d41351ee27a2ded8202af06f25ac841ea55a2122268c711188464afacd52f9db90dae657b1e"], 0x0, 0x0) r3 = syz_io_uring_setup(0x3a79, &(0x7f0000000380)={0x0, 0xa673, 0x0, 0x3, 0x0, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000080)=0x0) ftruncate(r1, 0x3f) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r6, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}}, 0x0) openat$full(0xffffffffffffff9c, 0x0, 0x40, 0x0) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x5477, 0x8c23, 0x2, &(0x7f0000000180)={[0x6]}, 0x8) ftruncate(0xffffffffffffffff, 0x10001) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r7, 0x0, 0x20d315) r8 = syz_io_uring_setup(0x2a7b, &(0x7f00000002c0), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000240)=@IORING_OP_STATX={0x15, 0x0, 0x0, 0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r11}}, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd_index=0x1000002, 0xffffffffffffffe6, 0x0, 0x9, 0x2, 0x0, {0x0, r11}}, 0x80) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, r7, 0x80, &(0x7f0000000300)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x8}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @null, @default, @default, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x0, 0x0, 0x0, {0x0, r11}}, 0xfffffffa) [ 1957.466148] ? mon_bin_get_event+0x440/0x440 [ 1957.474273] ? selinux_file_ioctl+0xb6/0x270 [ 1957.474660] ? mon_bin_get_event+0x440/0x440 [ 1957.475043] __x64_sys_ioctl+0x19a/0x210 [ 1957.475398] do_syscall_64+0x33/0x40 [ 1957.475720] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1957.476157] RIP: 0033:0x7fceda384b19 [ 1957.476479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1957.478039] RSP: 002b:00007fced78fa188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1957.478691] RAX: ffffffffffffffda RBX: 00007fceda497f60 RCX: 00007fceda384b19 [ 1957.479299] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1957.479906] RBP: 00007fced78fa1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1957.480518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 1957.481123] R13: 00007ffc6f27646f R14: 00007fced78fa300 R15: 0000000000022000 21:50:28 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0xee14, 0x100}}) 21:50:28 executing program 0: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x9, 0x1, 0x3, 0x0, 0x0, 0x5, 0x20c10, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffbff, 0x4, @perf_config_ext={0x7, 0x6}, 0x20, 0x5, 0x8, 0x8, 0xdd6, 0xf0, 0xb25, 0x0, 0x8, 0x0, 0x28}, 0x0, 0x10, 0xffffffffffffffff, 0x8) getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, 0x0, &(0x7f0000000240)) 21:50:28 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x560e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) [ 1957.491841] FAULT_INJECTION: forcing a failure. [ 1957.491841] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1957.492877] CPU: 0 PID: 10677 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1957.493462] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1957.494173] Call Trace: [ 1957.494409] dump_stack+0x107/0x167 [ 1957.494732] should_fail.cold+0x5/0xa [ 1957.495072] __alloc_pages_nodemask+0x182/0x600 [ 1957.495477] ? lock_release+0x680/0x680 [ 1957.495825] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1957.496356] ? lock_downgrade+0x6d0/0x6d0 [ 1957.496735] alloc_pages_current+0x187/0x280 [ 1957.497128] get_zeroed_page+0x14/0xb0 [ 1957.497470] ? kasan_unpoison_shadow+0x33/0x50 [ 1957.497868] mon_alloc_buff+0xed/0x250 [ 1957.498236] mon_bin_ioctl+0x493/0xcc0 [ 1957.498586] ? wait_for_completion_io+0x270/0x270 [ 1957.499008] ? mon_bin_get_event+0x440/0x440 [ 1957.499404] ? selinux_file_ioctl+0xb6/0x270 [ 1957.499797] ? mon_bin_get_event+0x440/0x440 [ 1957.500187] __x64_sys_ioctl+0x19a/0x210 [ 1957.500549] do_syscall_64+0x33/0x40 [ 1957.500876] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1957.501320] RIP: 0033:0x7f3f3b722b19 [ 1957.501648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1957.503250] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1957.503912] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1957.504524] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1957.505138] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1957.505751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1957.506384] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:50:28 executing program 6: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10031, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x11010, 0x5, 0xfffffffb, 0x0, 0x0, 0x64}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x50, 0x7, 0x8, 0x5, 0x0, 0xc76, 0x94208, 0x9, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x3, 0xfc58}, 0x400, 0x7fffffff, 0x3, 0x5, 0x1, 0x49c0, 0x2f8, 0x0, 0x0, 0x0, 0x77e}, 0x0, 0x4, r0, 0xa) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x3) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x20}}, 0x0) fcntl$getown(r1, 0x9) madvise(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x2) readv(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f00000004c0)=""/4089, 0xff9}], 0x1) syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ffc000/0x4000)=nil) madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0) [ 1972.443452] FAULT_INJECTION: forcing a failure. [ 1972.443452] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1972.444610] CPU: 0 PID: 10718 Comm: syz-executor.3 Not tainted 5.10.223 #1 [ 1972.445218] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1972.445916] Call Trace: [ 1972.446155] dump_stack+0x107/0x167 [ 1972.446485] should_fail.cold+0x5/0xa [ 1972.446833] __alloc_pages_nodemask+0x182/0x600 [ 1972.447236] ? lock_release+0x680/0x680 [ 1972.447584] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1972.448110] ? lock_downgrade+0x6d0/0x6d0 [ 1972.448492] alloc_pages_current+0x187/0x280 [ 1972.448883] get_zeroed_page+0x14/0xb0 [ 1972.448904] ? kasan_unpoison_shadow+0x33/0x50 [ 1972.449685] mon_alloc_buff+0xed/0x250 [ 1972.449709] mon_bin_ioctl+0x493/0xcc0 [ 1972.449730] ? wait_for_completion_io+0x270/0x270 [ 1972.449746] ? mon_bin_get_event+0x440/0x440 [ 1972.449772] ? selinux_file_ioctl+0xb6/0x270 [ 1972.449794] ? mon_bin_get_event+0x440/0x440 [ 1972.449814] __x64_sys_ioctl+0x19a/0x210 [ 1972.449833] do_syscall_64+0x33/0x40 [ 1972.449847] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1972.449857] RIP: 0033:0x7f3f3b722b19 [ 1972.449872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1972.449880] RSP: 002b:00007f3f38c98188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1972.449897] RAX: ffffffffffffffda RBX: 00007f3f3b835f60 RCX: 00007f3f3b722b19 [ 1972.449906] RDX: 0000000000119b28 RSI: 0000000000009204 RDI: 0000000000000004 [ 1972.449914] RBP: 00007f3f38c981d0 R08: 0000000000000000 R09: 0000000000000000 [ 1972.449923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 1972.449932] R13: 00007ffe949f228f R14: 00007f3f38c98300 R15: 0000000000022000 21:50:43 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x560e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:43 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:50:43 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x11010, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x0) pkey_alloc(0x0, 0x0) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) madvise(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x8) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2) munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, &(0x7f0000000180)=0x2, 0x0, 0x6) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) r2 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/attr/keycreate\x00', 0x2, 0x0) sendfile(r1, r2, &(0x7f00000002c0)=0xfffffffffffffffb, 0x8) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000001c0), &(0x7f0000000240)=0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3c196920d8b85fc5, &(0x7f0000000140)=0x5, 0x5, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r1, r0, 0x0, 0x9bbb) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8000, &(0x7f0000000100)=0x100, 0x9, 0x0) 21:50:43 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x560f, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:43 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x7, 0x20, 0x2, 0x5, 0x0, 0x3f, 0x4100, 0x6, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1f, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x49106, 0x2, 0x80, 0x2, 0xfffffffffffffffc, 0x9, 0xfbff, 0x0, 0x7, 0x0, 0xffffffffffffffff}, 0xffffffffffffffff, 0x4, r0, 0x3) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x119b28) 21:50:43 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x3}}) 21:50:43 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:43 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) (fail_nth: 100) 21:50:43 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x560e, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:43 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x103}}) 21:50:43 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x2, 0x119b28) 21:50:43 executing program 4: ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f00000000c0)={{}, "cde057427e38258cfd528f8cd7d2ffcc10a560190d4b6ca3d3b6690ad17c6c23b58363f3a13e11c84b8bb92e31d5046a00533866bd9c9927b60abf66f42e11d5b9c494545d8512ae0b3db8ed2a0bf60d174c67d4badd78f5f69c83f74b43853145d8f6b240f3925a8579921a52499c91452ea93a3608e1efd50c180369dfdb7bece411210c44873b031aa27167345b998b7d333448afddd950600330d17e697ec3b19b986e0efde60f84a1b47f8a438538af59ce1058591828baa2b79fc74bc1f1c31f641f081daf9e5f88a75f4c57070329f74e93fadf9e758823b1f25515a9f7c3bf14454c415dbd1d5c6d3fffec4950ab6eb8e24e2c713aa8d87f917c3d6d0bd4c3b34a2552571e0b9113f15fe681a8bc64afc4cb3fb6f32702ed6e3d48d4a45305342f6f3c48fe6203fee6be6c280f0a3d0c5ca7b0ef642314cb7251473a57c6bfb82e9d89154673c4005c9b5abfb9abc37ca4a5320c4c70f0ef7db98cbd2216f67a7a8dbbc82acd25cf3502b4a0df9a38829187c9b0ad585d0dce924f14521a0e46c013ceaf730224217850b0715994da8a61ada384fef85157ce5c2dc71a78df1ca7179b4ac8296a82bf88872e3bfbc7a49982720a63af62dd4d7d5558c258d7edff3cc97e1eef69f2801ad69122b4bab980ba0c21884eaf614e23a09639824b1623fa7a82f52a636bc8523e901342074c162fa7fa5ea7ea6c1fa42c56dd12bedaae0545919ab75ceb91fe2ba08445ba08c9ffe64457de160e1d88d50f6302627d6a5fc593cbf29370c4d62019ae80be01fec9711976f579b79e03be0c64fe0c5d113010884482b3e84788b42cb4834332bda5b5e4d4c36e0271a278289f10ed41b4ca322f5fdcfcc8c17c859d63832f04c6e6308f7f94d7f74ba1256a24438ed9c0a24f153c67878ee2d3fd50678a81cbe2593a85b9336919508a256936eee9370f745cafc1b7e67b62c4694414814c9afa200c91e74b21b5c544b9cd0631ad08982cddf884f6cab427e90f9a876b920ef5e12b9f8b37f3d3d15b96c27534d5c7fd07f6103c2ac01795a9bd2c136db693c500d4cae3f95a35ea31d10242aeda755a1316b77fff5b6af76229640637e1cf32071d6e4b3c6efbb3ddbf1c63a4a9da10e7af84a3df86755a748fd9395a50f6774afd3b1befa486c5da7f17dc6d94034d3f262f37d363b8b68a4c0fb7d3b7eeab3ea24a311d02446584f5bf0178378d5710fdd3f066d75f62582321e504bfb20df480255661c96b050a502af068b75f74022f2ff18392beb6b7c93474614fea817192b4385032f9e02a0e54162743af696c6f80f87e34c5b4ab49df15f96a8ddd4281a81fb1a66335ee828c5b0bfcc727b5e8375e0c1a57b77ae599673fb33f9061dd8b50e103984776fe61b595b15222c4909ea1af596b2482cdf05750be3675a18cf5098d828e73c271d7a5f38a5eaa604b9cf44d7b19be72600cfd0a5274f8cd1e7a67e1dda8e74cbbebbcdd24e00bfc863c5db52fee16896ee1d01e5d29951d0938d35340d499fb0ac95b847173f1f1cdf3657f5b6dd8046a925ae4baaa33f53a85d62140825de2e02a2276ae66f4f1cf3c018d09934290247a04bb81018d3e5555b20674f4e73768872347822a11d2874c18ead28e412524feabaf69b528e61ca5246a3a30c174c42e3380be611b92f9d736ec3979829457c2d8595901551e5143446680a5682dd3e9ef023b1e570f71e0851b7a68e0ba8be50f8a10c2ad584468cb360366f8dde409dcf61874e2e07619f2d770e66c44c766ec376193ac5c4949d20ac8a9f649ec03de4087ceabd2504dacef09e453dd078659f18d847eb7f232e81602415e783f673dab12eba0d5c5a27031960492f7e743574eec1ac1369b117351880049ad4be415a6e55b318c2d4563946ad67e56281e3612173674c5bcb0edc0b5469fa907ad41345915be49adb984328b37e58647e7620345e06d115f1b797089bc7102ad871eae9692e83dc3f835387ccf697610a1e1743df9740f0ea33cbd709868c13d006c40b3b7f54f1553798723f1bb0e847c02eb6f6a9fbddc2af438319ffe7753583b10e7b11153f141a91bc6e2fe8b4eb8eeafb54812d834c8414e867f7330e57c4dc6e984c4dc8735eb5ef5b91ec212596a2ce19ae57494af6925d150117a98dd8e2fe7ca001bdd42c706d07d54402901fc49ce64102c7b6fff53533ed3d669629155b8b53967ee513f036dbabb4311a7a6f1eaa34c7d60168474cadd7b91589cd808a10ede52d53cc0ccbdac83169da334d4dc5bfcbd8137d3e522de99f02ecd11c170c297bf62b0fd68da73b8ffb604b794a852e2dcc4149b61db7383a07203c486e350dcf34dbdd1a85ea045dfe47da57bd82baff175964c760d16cb74406b2653e72eeb42037423972a499cd25497e427eae6ad2fd4ec75b90a80d49c39a6f2b051635c6ffadeb7fecc742f22f15814bc1175f067a8a3481d10ad196612720071dac61b9a244db313dcc8a4972f902cb77b126be182aba0258fb72ee2f145d9298efc2cdf4bca9ca39f53e4683d7137e7303ce9515e22a848ac39ab2829190438682674820c008b79bb33f95fbc78eda118660d7ecfb988426a6697a04dee9dbe66cd83c29653eef45b362242f744d33a9c4d6b279ca7478975b3f66f197ce4bca2882d4d0b2d26ddc976bba17687bf9f45ee798af24bc700aa38ebf766f3afca7f4927a87f344631656d6b6be4c952b1a1a5867804c10f5aa9a84d91c4f9238bd60ab7dd37d82ab74c8c6cf392777e3e895bf3a7f2f034d9ddc9f3a47f95cb3e3ca9305ae9581e01f1ef071b839ba93791bf75bb8b744e41ba3d77dca90f06aa4efab3b35fdddcc4ec79242a08f4e63d6a4ed6293e610a23ab458ae1989cd0df6e70618134fc33c4174ac6b35ff33149942dba090a4003cd429dcb38c178811f99428fda92083d6e2aaac4fae018c8b9807bfea94a4d4f12f82e64dfdc0a3fd726dc4394b4ba177efc8829a9f9b81b7e594b4118720079c0446cb1bb1f8574ba059c68486a64ae1807caf3207116c6b221b3b4a8bc0a80791b9d4d240308dd77547f5667db314e34bb667cfd9f0ce59a6dcbc688bf04a9110fe1ffc308bdd2f3c07ff75bb5c58ecc072dbfeb34f9ce00e6d2c738140bbe4d95e67c9bc0a438ee00201b5658f0590e4c96c9a9a8372974901f86f46f84baf97574907a1f48228d886eb2c3795c1dade1001d5b5a4f8aded6feec294aac53e9dab8ed64962e47ce6c5690d99e62f8356c4817de787dc4bbc51ba0356da9b63e44ebe6005951a482adf19db4e8c13ed04272c0bd90d53493948aa9387eda264d1c4410d76ce189a2809c1623f6fd612bdb9dc6946f08c1bae992bec64054e0a7352b6b1aefd3e2aa7a852b8de30ea3181329d5ee2c576da5f7eeeec76a12ac5a51b2f21d39754e2ed99535c0a848833cad15fc099df1aaf5de61fd25216474b99b5306c9ec3ccb4b67f18e5cdcadf804473123f608dbf76f412ba79303fc4f047ffd9cd96819b57188141fd2663be887c45187f32280437ddd7aaa0ea11ff10347388e309c5801a8bdb8c80529b5b62067e0e0744471fac3330ee6b78588b6c6562e91e2547edb61e88edb23017463a07547ab7fdb146cd12960fd83cad23bd6ff60ec977344bc0165f676898e8caba72e4c066a9b0389364123ac28293703f90db94f69cc9780838d483d09155a9f13c7416f18cb531ef4f156c6548400210c71657e5e3140e7302b4a13f2c37318f7f1fcdeca0e201d77d7358f35cde6dce6b6df619666ae7607e887c980d0a881d70416add336022fcfaad73e800ef85b7c6b11f4d913dcc8d1d221f6b2e039e27141c4fd008208ba2597a909005d556d3d71f8ec437c7d96fc0caa7311f7b11556ce731e0eef2ecbd7243dbddcdde7b4042511758bfcfff798fd33e28640f054ac69c3362d3d82f26e738441870ad3c6c50166a4e8311765ba432a6a9b7d1354bdf4151ac6db237fc133b0c7ef2fbfc2f986f2e36c2414036df145b6567423e1876dc80995ce9db94c20ebeae50e4886201cbec625b2be9111a4f4e7268446e4e4f92b14aab957755681797187b668447acbb4a6054713218b4a823064b77d358e558843f7dcf5fcad4bcc80819c79b25de3d8fc381cb3a3ca6874ea77f70cb61e59769cf26b9b410b9191bf485bf6f69e1c15ed1ab4bfa5b06cc0fb347e6f23361931a563e1d497b16390e83607c1e0189dacdfedd364b235aac236ec0f016e816746e7189aea228eeafa71de24a40b6709c19057833e5da56c5afd652460236219211b137ca6f5d6fafb5903eab5a9ef00708c226909cd5a6002e01d3502d70ef6255dacc42986a6e5ebbe6d98cd17d4bb90ef82df919408d653832d2b1747874a0ee506ec6892e0e79c545776652628c0fbf8a6edcf457605e9f1149ac569ee00fc330a97ac82c4208bac6cae3b0d3b128a0d692894b95ee55d9d72fc1a09b9c27634811ab3e44beb4805fa37f25435ee4120b73c98f661a3c1560e0e4821e0a9e943983ba5e9e4ed159d13aefa05c4d8a8e06989ec1ecf53cf9bd4a3fb09bddf8b2eb96dd3b4960632158035a07c959b9890d6a4c904c3fc7683abaa20b9d2157b77ed0ef0db8a6a3af803d3ebe72460c9dc4dc611f20a15b47b4286a67b107eb794c659b30e077cabdb0c5d7fdc8f730dfa2eef4577c7f8f0ad3a3dcd26eab4fd700e2b242e640369033e73a2404907e368da295b26935059fdb61fae24e647d99edfb1ab68b845932f6015df1c6c98c099e106e4008f14c9239447cb1290ecf6283628e03eb9fa4770fbe7618b6a55a4e56521fd67c5ef8a26298003f801502d50e98ca856ec0fac4dcd32bf138faba5e358961d20d690a29f7a1e197ac1fdf8d7ee54f5e5174d8da7655794683e9e700ff656cdb78dd8d43b215992defef0ec5399c1ff43a049c456513de776d571859175cd8e5fff193796ccfd6b2ed11ddf8f6dcca076508f7cf820255c7d9cab11b493a1b1bb44fe55b1ef0f8909419afcbb48e8081d849cd5fcd7387c4497266cd14986fe637ac778e0597b81b6f5c11971dc0386f7db57e026b4fc1de6c49793ea4473dd59d9263956123fe124a78feefb03c54ce9108ec237215a2b162ea7d830221d0e50d51343f954c13942358eb4d31688fbbafa8b6dcc0e49f0bb12007919923ff53a9fbbdb64a5febf708290b251a98fa8a34cb1adf8bff697d7b4923faf307a20b02c4093da78e47a465e9d91accfc028fd0772e4f915df45423abcf69ec4be996cea003ea2422ac082693bd27ba7a2d891d7198541ea5c66cef189fd567c2e7a5e28fde637536b46a0384ba607ab29b1d94a471f32cebe52a01d123e96cb05c2021912e68b0668463c2786eeaaef398a95a9599c685fea144ee1ea7a66453507d7705338aa9fd2423a242355263e1c3b956aacdcf816f9f716518e52f015a5084af351da8bd0d4b5f0fb3f0e81f8354f67c4131e3d29fd270685716c3cc215b857ffc50904bec8d63c94e53c9f8ad62c16cd80ee4f57d49ec8b54289e2c35b00c2b2ea38a80adb70db6f0f718844b66d593d09be19d8483e087765f88d7b04b53cf4a5ae63186d1b7e1f8d311f60dbe2d9f5bf6ff4ef5800e7df1f3673b2b4c0b712d1957941e1f2d52e31e52cc6a5fd536631713a89a3b52bd80e20389da4099e80623fafc1ed55671e1ed9e6e22484666dd54ab36a127fd64cde2ffe9dc949876aece69950e739139e15e92ceac1eada4fa7b94be29bd1"}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x9, 0x400242) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x107f97) 21:50:43 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:50:43 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x4b47, 0x119b28) 21:50:43 executing program 0: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0xdee, 0x2, &(0x7f0000000200)=[{&(0x7f0000000240)="010000000000000066617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x2000000000004000}], 0x0, &(0x7f0000000040)={[{@shortname_mixed}]}) statx(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x100, 0x10, &(0x7f0000000100)) 21:50:43 executing program 6: r0 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc) r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, r0) add_key$keyring(0x0, &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, r1) add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_MOVE(0x1e, r1, 0x0, 0x0, 0x0) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) add_key$keyring(0x0, &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$KEYCTL_MOVE(0x1e, 0x0, r2, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}}, 0x0, 0x8, 0xffffffffffffffff, 0x0) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x86) newfstatat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) keyctl$describe(0x6, r0, &(0x7f0000001e00)=""/4096, 0x1000) r4 = syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000140)='./file0\x00', 0x67, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000440)="de39a87b4abaed61a3dc4832ef95dce40b94c06e36294405bd97a9fe7cbdd006df96e033c2ebdcf6c065391335afa91c9fecb4ebc915f5b25f21d898b0ff8a593eb2b3eb3cd394495a5b8ac509b9556eb8394e6c5705eaf31ea32ae94e5beef79f50930925c9b42de81a425387e05c6e58d89e50eb1367bbeab1a6ff2db6d90d3f18fbaa6bacd3bb66c1f8b6a0307dea44168bf0738f7bc41f185a43ec14fbbc51254e324cab6a64b77dcecfebbba4a2955e525f6891d95eb56e68ef16f90154a03459124867df8ed4468bb7b26962abf7892139cd176f168913a6e93d1094092edb3f70d7b4e4c6e44e8b37757f536e4f2976e1eb1117fa98c5ba131a6edb448b813023298a28bea99a913dbcb4a6157bf992dfcfc1b74a19b2e1ee4165ae3d9428a67d570986330d21802ca6995699d3af07f525f471760352433e607bedef7e4ecd17e2a82cc4528f2cf8987ea7da8d3f42c1eed2a58499e8f0c98f1e33bbf33edccd4a57133800dcf7c33bf356a7190fb438c0dc34f76e51631745cb6022702e102e6481cc10020ea4e8e986b259a791098495d0f29c1c2ab318d16696e10a12cb5c6a8d799ef6df0674d781cbe20a0f68f83d8b71c860f5d2fa613d89c306a42f9eb825670ed0c978bdc7b3eab81438fbc3017e706ececfaf22bfebeced648025c7e503801d60a82898d8b4c1b5fe6cc916430c46bf6e7e1720a1a608602cb7634fe0e764bbcca7e7274cda1ba05644fc924db6da7138d9450c4b48c62cc28857e7481fbb6abe0e2999d702d28f246b5b7793f57cd375bbb82d3f3176d8fea6c250c29ff11db8e4167f89de97d9f0c6fd833cb76b6b0aa7adc0360379851435ba8c7bdb344960e11adf5e6b023f50b3ad13f78f5cd0cfaada73810bfa353df94276239dd2f55da76598c6efe8ff0f251ada4359332b31dba754e773dff00b5b7d46582a1a4df8a6efbcd227d54e1a587f23615581974121c954cfc6796a339e188dc1f1b859e2a3485adbbdace19ca5f41ab120e151c076c8a573a1c12ad10fe36770d53ad730c6854f523cd63003ef70985660c8a035bbeb15add47013da4c9f16c1ae71fd3d3d4d02dc46489ebe7f17cce0ba4619293596fd214e2ebcd4af5644f92c45aeb7c391f776adf4beb6e3c224feb736457e64f866a96b0b016a64db332b78bb612200f22eac92a0c5027488ad62d9998ae272f730ee6422235b21e9270e657515059be56975dd19f47ea615894e33264dfb42d05c450da89768f631041c7dc269f24fd6800dd7a5cde545ef676b9414d548a1e6c513b4de674edc3cfc82701e85ba5ed340d38f4e6d2f4d1c6b19feaeb335e9707fda05e2c88df725c97a758d827439e40448256e927ae7d6d969f6e927ab46ba8e263be01c0fadd3589b7d30e360645fb12c25fa68bbdb94793862725601e3df57b6e91ee142cf4cda26d0febe803c2fc39678b67a224245dca13276d2f31037af40650a4f42ee1ecff248c816e2a2f25db10c0743f4d07358c36a9b137d67e550e3629a583fdbaba7287fd596eea6fcd11a6b20096d337a1e4072372adf392194d4b5f2cd7d65c36894c7956631ca9a440b0904796757b337dde8d6adef4ba830b23c09db7cd68d5da90a9ee45c24dba75e189ccd02c36dc4f999503724ab7d16b283b0a373a796b1075db1ccb95e206fa3ab8ece2d4c6079b3eedc282d681f09434c1462a3eada98474d470f9450c9ceebdd44327b3a0a1c58d6465d2c4ead6510425bab8cbc5ef9763cec47cf10de817d0f3aef41298717b2cfa862be07b847250c1606c33821eda352b06bfdf19fb27e8b373939c1f2ae2fa76840df4990fe8910e2e9183bd006ce5a8c59753b6a126dec47a7f53709cff0d39a888cab4766ff7236d852d737e32dfd41cbda03b7388db9929e48af740207f01f0b51d9bba9a58b7efb560c493cccb17074672d3bfdda1d54b14c9432a422dae0bf9bc7c7bc923ac5d829bd9cac6422978e7180421edda6fbbfbf3efa8b15df4f1c49548a85136a190631ddf7993cb5fb733817d929a85249b218fc55f98ba0e7943fb18f0fd4c6cee9f017736edf2903e2c412d295e75c409308b87428cc6d9a425164ad0fdc9474ac29ad3e279a1b4038ac03cfba3db61040f17b24c98d8b1134e8b5d6f2365c7689cb7e250a88d05563c091478bd6737a4654e0a43aeb5105e5546d707ab76153c4315f8b6c23bd29dc79c44ed824f7a25cd0ef143afdb881379f30ca904d4d085754c98fa54c20b6faedec5c748cf9dbf2b4e7506f469f5442aeba5a6d21ac9bd56d958a9ad206ae9f47809c52225b05a13d9be9eb6f438363849fdc7b63e46d979f6a6424edebf1c3618e2579c8997db9a89c166016ff3515f657d1258178ff3a9b6ae6230aea763dc24625a5f03474863aacfc370b74dfdaac59acaddf9a1fc618dc64eac02006195edaf69a18d83f3641a34f5157b5d7f22d6c4384d1f038bc6996161d326a52f6662d0c0c2778617670967138c1ea5365e32919813eed5984e8882d2b273e58cb9209247a9ec52ba4d52bf8d9f864f982cbdf9b8ad7ebd51d312e78eb8832609a361e3c5c58fc93cfff3b7ce443691a552b26295e1b80a32f192ee88b76e9ff50487eb2479f883d4a81dce14274f5827502a5338181a3009f2bd6d4f4c1f60b51344e6cd9f859e5d4976043b9423b468ee9d77f266204451edc0ea2b845fc9cf99eefb24968ab8b62cea83a54f787747e6ea9f524ebfe72d091e080435e58ca1018ad8f5fdf141647ea106cee132af6c8177eefca306f2fca9384e9c8e97ce84707e85786ca334b6c5a4a8087c4a1dfa2e0269689d5ddb169f4de50b373ee444873708b212acdb0f7fb64212cfd82869b4bf1b21f76407f93546730aeedbc5e8c7dbd53c1d488a072803d81b8cc0fd3977d2118f8406cae1bbc499ad702fb47be959e7482e7177eddd6a55744582374b2fee32d18f0cca9bc7c3e63160084a2c658fbe166142cc094aa3ef87617881de8051e71e8a3161209c9a7e66913c959430649300af4fbea547fcf11c045c7dc5fbea5c8243a4b1e163422cd66766c18c05237b0a41d0561160ef1499f70c7333c29697f00977102e02b5e4d8774ae82616acb1d811ec6f027b7e24fc6e3b29a78ca731ab10b7ae984dc74aa3ff4c2c93d49b4d0122636106d667d6f590c6cdf6de6e464bb6b38caebd7be6e6d73b6644030069f5e2352975a050a3f66b2a9043a9f44960d992a084c62e1872c1774c048e17196a353eac7b93f509f3c22cd970ae6296a335cf34eb94ee52741d8d328317273bc31d180a2f0be0b9af18ddaee742bd82246731fd4e874ecc38aaeab1adbdf0bef549152431a53ee76250154e986f0727d20546eb0a81dd76a20b56f54b0f22a980fadcebae735c280dece0c4c2522a2d408f5ca181b83f8ba99f2a661127efb012021cd1a1d52b00710d091c243e77c95cc24c1347b45f67dbf8970177bbbdbb01f89d4bc83bc0da0c27df72384079d4d9f251e651bfd8cd611bcef03cfc7364c130af14f81e41f2eed7a3b50b215c8da33166c55ec7b0835b555a9667e5d982dcc66f69a9993111266f5e734d3e9252a8a5d9522293a854e9dbe7db91ce72fa37521b071f25ccecf9b560d3cd7c7d13bc61283b55b3e281988b80b159ef33db03567a760a903cf6cece2b875095708fc910f82e997ce0ebe0de0d12261e5b6f94d132316cf4d9519c10c344665cc922b659511e59782849c64e25fe06643443351a8f5e131e69e90362f8807d1d20a22d97c5cea7631cf9983da15cae1c39724bc2073a8eec1da3d13bc675960f5ab14f1edca8a975cb6c7079573571b3ec8e3aaf8e556dfb93e6c9448a7591d9a2cc454359bde852aa276b38bd63a2ace38a7429a0f73e5eb0f4c1cd8984fc2748f5a865e280883a3b186a45992fba2eac66df839788363dec4a7a67c88e58fe7dc98c53d69d6c6f7e198871577499e9f07a749514dbdda0b8a4c324f59f6849002e0aff00b344e67070ec35d204b858b97e362fc22f01bd8ae8125f59779fb8257f91b6e32933768723cdfa247f9a60ff6671fe4a7ddefa10d7571b7e50cc2a67bc393771c7079b1d5c23035cc7d28d663357f505ccb24e821c0bf32796ac790ae778f45f7ae2f160de0690958b979448f3cf45a1f4ca881cbc1265dc98af5bae5dd97dbf45c1cdb8464ebbed643386be500a64331e5de85d2dbc95c7ef9488dbbe93719a98d73b7245e21049c574b47333b7123f0831347ab8144c0d7fb5dcda2409d0cb32af6dda5a83fc33aabcdbe75b07c5479465b34abc256351bd6e31e809291b96df4c8595b8431179304a16a98fc229af9ed93d397a3157f39fb503ceca6cc68b769bb66e29c08215229bdbadc15eba1408c196e95f489ffadd3604e66cbface520f6b230e63d6cf5b16d694b0235f1209cb26497bd932c7d61ae3cb3a81c4b506d01875efab33ef7101f4f14af1e544e90fcc478070183d72a444fa1229470205b7094d01a978cb47175d0440e4df37a5a1b1fe82f9c2217f61118241214b7744b61bb640d9a2f8802b6facb433f1bbf2c4a9b2f4467120053c10ca964b95b728c967622237bd283ce53d8dc00d912cfada7312475a8eaa0b6d2a566a0db8ce0d66b4e2e12f5c5a8bb9bff4f15e6111b5a1ecd11ab965a61c9aa178d2679e46de10a211fbb357ca8d3615ab012a8b760f4dae07c6f0ccd870b19fcd2eec31bd787f18364a4b2eecba63c988e42f41dcdb9c54cab2ff75a170159d4d15627414a9c330caf43a4e1cfb50bd26bb5e047351b5ed30cbb4df5fb4eafdb32d7661c8e9cfc207e202eea91075baea7384d21272e1dca3c122fa8de5f592f6d2fae1f0783776d35644cd3888f82fdcdd742669f2208fb7cf279f1045439ab4fd5b5211cadc09243b619c0a1b257107e96105f2543457292bb291870542d2ea7047aa0e2b6b767e74247b3d9e2e137300159bf1824db18822e16a37930475ec05505289db29f081f2b164e66385b2b9925e67d71bb6e880a4088c26e48173a5d2893a566dd17d703506783cea5505867878abcf2bbd9575edc40fd6c3d6c3d195394334048304d265e8f46930bbf8d209a01021408cc7c3b78f0c06e817306cc9813cf406d27afa73f1c3af4d3dd312fd91b6ed5a04f7db8c4b6f69f2de6f3db84d1872671a0f49b4fccb7364555595af4f115bb57ca35aaaf88227a561b1a7913fec8a7b2d47bf40ca434db6a3b06e0cbd9b217c92a60bc8df447a0be94695a8d84378785d449e1ba6f6fa261bd84bd85d6d5bdcf12584fd6d297325fef1ab89ad160cc36ca947d45fa10289f9331cdb558c931df8b3f6ef8d62eee1e328259d4717a1a88b9ab3329badb24ff008b6d0e488f72a8d28727bb5d3e3487407f4daddd5ac8d376c295946010c51532e27d8c4452c1a178372b6a6277e79fa209cd20d2fd498931fb8adabed4cbb016384de27663d0e78954c2cf49200d75a1162dfc16f1e88f56ea9f214e998c0a70c22cb2b92f196f3a395b3d998df49eeb5a67a9cd895fefd16f38ee315fda0088a706844c327bf1521d53981d53c2403238482e10d89dbceb2eea6d9e43c8b6fea95d6d31bc827d0f8fabeb56bb36254f0c6d180d145e5ac5c9b4516fb3fcbc90f02f4ac4b952e658e1052fb06abe524cf06c13a26572b9ff90787eb1739e8dfe964305cc089ed9f106a69cfed87f81bf00517bd4604cb93cb093bbcc5ebe611c0069ac4b00ac238436adbd1acf2f6e9a5061222f553d433b1", 0x1000, 0x2ce}, {&(0x7f0000000240)="e0d02ae0e46098dbeacd064e233e9e6f83d271989096f89732e4c6ac8c6d20b26efeb1214a1b429a17e2805031ed68d531b04167fef987fd91dbf6858914a4c147988ad4717513b17f3acd1a334cdfac0581ffc214", 0x55, 0x1}], 0x20, &(0x7f0000001440)={[{@nobarrier}, {@abort}, {@prjquota}], [{@subj_role={'subj_role', 0x3d, ','}}, {@dont_measure}, {@smackfsroot={'smackfsroot', 0x3d, ')('}}, {@euid_eq={'euid', 0x3d, r3}}, {@appraise}]}) fallocate(0xffffffffffffffff, 0x0, 0x23, 0x7) ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, &(0x7f0000000200)) r5 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xeab03, 0x0) ioctl$SG_IO(r5, 0x127f, &(0x7f00000003c0)={0xe00, 0x0, 0x0, 0x0, @buffer={0x300, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$FS_IOC_GETFSMAP(r4, 0xc0c0583b, &(0x7f00000014c0)=ANY=[@ANYBLOB="000000000000000004000000000000000000000000000000000000000000000000000000000000000074ec5b93c17141d10000000000000000000000000000007707000000100000ff0700000000000004000000000000000900000000000000fcffffffffffffff00000000000000000000000000000000000000000000000000000100000001000400000000000000010001000000000002000000000000000800"/446]) 21:50:43 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x300}}) 21:50:43 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x40049409, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:43 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x2, 0x119b28) 21:50:43 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x400, 0x40000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r2, 0x0, 0x10001, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r4 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r4, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000040)={0x0, r4, 0x2}) r5 = openat(r4, &(0x7f0000000000)='./file0\x00', 0x9c242, 0x0) r6 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r5, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r6, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000040)={0x0, r6, 0x2}) mmap$usbmon(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000004, 0x16010, r5, 0x4) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0x2}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'geneve1\x00'}) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:50:43 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080), 0x401, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:43 executing program 0: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_udplite(0xa, 0x2, 0x88) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00'}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f00000003c0)={@empty}) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e24, 0x5, @private2={0xfc, 0x2, '\x00', 0x80}, 0xfffffc01}, 0x1c) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x500000a, 0x80010, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6211, &(0x7f0000000400)={0x0, 0x1000000, 0x2, 0x2, 0x293}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000001c0), &(0x7f00000000c0)) socket$inet(0x2, 0xa, 0x0) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$setlease(r3, 0x400, 0x1) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syz_tun\x00'}) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000000)={'wlan0\x00'}) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) 21:50:58 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x4b49, 0x119b28) 21:50:58 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x4b47, 0x119b28) 21:50:58 executing program 0: ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000340)) pipe(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0xe, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x40, @multicast2}, {0x2, 0x0, @loopback}, {0x2, 0x4e23, @loopback}, 0x155, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) r2 = creat(&(0x7f0000000240)='./file0\x00', 0x49) r3 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc244, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10020, 0x0, @perf_config_ext={0x101, 0xe8ec}, 0x0, 0x0, 0xfffffffd, 0x2, 0x0, 0x2, 0xffff, 0x0, 0x2}, 0x0, 0x3, 0xffffffffffffffff, 0x3) setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x0, @remote}}, 0x0, 0x0, 0x4f, 0x0, "3c1c2fd629c4af55a8680f7a892e0865c7fbba0cdfa184016bc00618cdb5732d900802764f98b1af0cd43f34e89ab87a13a460acbb4433cb8a7aaa5797c2f5b5cc15058fbbef4c13daa3094bf3e22ec6"}, 0xd8) fcntl$dupfd(0xffffffffffffffff, 0x0, r2) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r3, 0x40189429, &(0x7f0000000080)={0x1, 0x5, 0x2}) fstatfs(r1, &(0x7f0000002e00)=""/4102) r4 = creat(0x0, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000300)=ANY=[], 0x30180) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)=ANY=[@ANYBLOB="00001b0000ce7c00cd97d723f5bd14b2e26fa82a4f7f8945ae13f8c51ab684c8e62ebeef10817a8a57bfa1f641e5af396f4e2ca45aff190445d871fb52abcb68036e9988c1755e35e7a09934208d08005ed2fcc468b61e9c1c98fd525244f8e4b4a0e7fe6bb490cf5c38f2b02735373aa23cc29bcf8a29c47e0e774e8ff08eb53a0fd04d46d567d1e78fbf0d072e4c1cc07603be86061447db8dd335f0eaa9d4c2178be2678e0cb769c6aade1c541ba98084ec7e325940599e2475aeb8d0f521fe6887b9af7a52d8dc34eb4f330225b04f13966b8cde25a8d6dafe23dcbe6def54dc5ce4cd529ddaee1abe2372", @ANYRESOCT=r4, @ANYBLOB="00042abdd200fcdbdf25070000000800320000040000080031000920000008000b31000400000000000000000000000000000000000067bb80e29b3eca71df776d6cc88280429b6e4b7b8d525c54ebcfee66da90deb82adea6679f1a6f578fb52bd3b21469f4770b1b653ab691523e519674480bc7c6e79e4e96a878a006d03e3dfed7abdd0307c944d0ce9df10217bd9792947dfe261134245abc107efd55348223281b255e372657f752d1d42613306890b90d82cf2545d40080205eb81238dd005ddaaadbaf505defbe7c61fc0f920400000000000000db5fc0e05968d7b6c3343485ad8f216fe745fbcf07d7ac0b7480700500008209c68bd14802e817b22be0c7a84e432e0e1e30ccc37d071c34a23804c0343aa58b9b38f2462acd501091c3753751e7b77814ca23caa130d5a8d0a92ae4a73b7eecfe23ee49c46fad55d0bc4d9eeea2616538d4c6d09e53f52f0078957951d389ffd70e680ff920f49bed2d1d24b9de0e31aa140066a42ebd80eeaa592cb0e4eb94b6c9592712c2d3ba295ccb36d635c55f0f3aafe328efe8e8e0428ff2e1f49d412afafa1d9e6cbcce549705fce2cf9c51eb58e483505b12c07eef602b7f57943f70fd8087fc479667a4e84bf3efbff146f2b123f4441c7ec85fd51261a9198b33ec7a02320fcd94974d6e515a25c6269a193775a7254e5c8714875a3d2d"], 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20004800) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f00000002c0)={0xfffffffffffffffe, 0xf4, 0xfffffffffffffff9}) ioctl$FITRIM(r5, 0xc0185879, &(0x7f00000000c0)={0x0, 0xfffefffffffffffd}) 21:50:58 executing program 6: r0 = openat(0xffffffffffffff9c, 0x0, 0x505103, 0x0) ioctl$F2FS_IOC_GET_PIN_FILE(r0, 0x8004f50e, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000440)=0x6, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x400, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x8, 0x4}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x41}, 0x0, 0xffffffffffffffff, r0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x200, 0x0, @mcast1, 0x2}, 0x1c) sendmsg$inet(r1, &(0x7f00000000c0)={&(0x7f0000000240)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3b}}, 0x10, 0x0}, 0x404c808) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') readv(r3, &(0x7f0000000840)=[{&(0x7f00000008c0)=""/189, 0xbd}, {&(0x7f0000000500)=""/218, 0xda}, {&(0x7f0000000a00)=""/236, 0xec}, {&(0x7f0000000180)=""/6, 0x6}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f00000006c0)=""/146, 0x92}, {&(0x7f0000000780)=""/131, 0x83}], 0x7) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000400)='./file0/file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x800010, 0x0) syz_mount_image$tmpfs(&(0x7f0000000340), &(0x7f0000000080)='./file0/../file0\x00', 0x8d0c, 0x0, 0x0, 0x100800, &(0x7f0000001fc0)=ANY=[]) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) mount$bind(&(0x7f0000000600)='./file0/../file0\x00', &(0x7f00000004c0)='./file0/../file0\x00', 0x0, 0x2013c1a, 0x0) umount2(&(0x7f0000000200)='./file0/file0\x00', 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x1f, 0x1, &(0x7f0000000380)="8d226ee5e8ad7264d3ca49059ed8bc3b6072a54420284fa5e35084951b17fe833ec8a2c473276c4ab02e9e150efec8b92dbf677e394ae2028676feaa051cd156897dcbbf439531ab363ace703021e909bb6a583c7e2679fa68196243e2", 0x101, 0x0, 0x1, {0x1}}, 0xbc0) unshare(0x48020200) 21:50:58 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x40086602, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:58 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x401, 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f00000000c0)={&(0x7f0000000000)=[0x0, 0x0, 0x0], 0x3}) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:50:58 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000180)=0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0xdd, 0x8, 0x4, 0xff, 0x0, 0x8, 0x1001, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x80, 0x2, @perf_bp={&(0x7f0000000080), 0x4}, 0x1881, 0x8, 0x5, 0x2, 0x1, 0x4, 0x2, 0x0, 0x9, 0x0, 0x200}, r3, 0x8, 0xffffffffffffffff, 0x8) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:50:58 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:51:13 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100, 0x3}}) 21:51:13 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000, 0xfffffffffffffff8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x119b28) 21:51:13 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0x7ff}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') lremovexattr(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)=@random={'trusted.', 'vfat\x00'}) getdents64(0xffffffffffffffff, &(0x7f0000000240)=""/42, 0x2a) socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) creat(&(0x7f0000000200)='./file1\x00', 0x88) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffff7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r3 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r3, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0x0, r3, 0x2}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18}, './file0\x00'}) sendfile(r0, r1, 0x0, 0x100000001) 21:51:13 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) socket$unix(0x1, 0x2, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r2, 0x40505330, &(0x7f0000000100)={{0x2, 0x80}, {0xa0, 0x4}, 0x6169, 0x4, 0x7f}) dup2(0xffffffffffffffff, 0xffffffffffffffff) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:51:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x541b, 0x119b28) 21:51:13 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x4b49, 0x119b28) 21:51:13 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x40087602, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:51:13 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = dup2(r0, r0) ioctl$HIDIOCINITREPORT(r1, 0x550c, 0x20000000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r1, 0x0) r2 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0xffffffffffffffff, 0xee01}}, './file0\x00'}) ioctl$EXT4_IOC_GROUP_EXTEND(r5, 0x40086607, &(0x7f0000000080)=0xc0) fsetxattr$security_ima(r1, 0x0, &(0x7f0000000200)=@ng={0x4, 0x10, "e2"}, 0x3, 0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_mount_image$nfs(&(0x7f0000000240), &(0x7f00000002c0)='./file0/../file0\x00', 0x1, 0x3, &(0x7f0000000500)=[{&(0x7f0000000300)="b09456e1cc1abe3be01b5ab628f4f34a9a6cc65a92f9877ae3771e21d09c820335483bdc14c4696a6b7661a1c0cd40bf760bbd9d7976fb11c6db4c32f90d212b2447c78c0bb70e2341b9135a36e3d037b1", 0x51, 0xffffffffffffffff}, {&(0x7f00000003c0)="734392bf111e34ad89833539b8bc9d0c90f5905723c06cb62a77178037bdf869a9e9f9cf93423b1c6c08e00a09fffd1739e62303500b707c15a15ce9cff7d35d67b8f1929ea5dbb86e30efc44374d16ea8b43e80ec4d305a95b6b85adc47c8abfc", 0x61, 0x40}, {&(0x7f0000000440)="ffdd14b2d545b969616d54fa413948ca8c884e05a5e0b29fda45678de5b6ea9b32040cfbe28f87c93cf898c2624a360384a71f96dc79194b8c9cf744da855ca0b5aaf22f51db7f7c1cf4850f245977421e5f993e2c5e97146ac61139caedb63455f06e0ac29e00f522a151c2774de3ac62b0621adbe8f1cfca71952a01bd410dbd0731eb96367acfaef362026b898c9311a95951a302f26d1b3d3c6fb59470b3ce9e99d98277d23940f8e92a64207f20951d9407895b748c482f265db1ff0ac5", 0xc0, 0x5}], 0x1, &(0x7f0000000580)={[{'-$'}, {'rfdno'}, {'9p\x00'}, {'[\x89'}]}) setsockopt$inet6_udp_int(r5, 0x11, 0xa, &(0x7f00000005c0)=0x6, 0x4) ioctl$F2FS_IOC_GET_FEATURES(r5, 0x8004f50c, &(0x7f0000000100)) close_range(r6, 0xffffffffffffffff, 0x0) r7 = dup2(r6, r6) ioctl$HIDIOCINITREPORT(r7, 0x550c, 0x20000000) fcntl$F_SET_RW_HINT(r7, 0x40c, &(0x7f0000000140)=0x7c0283a40842d60c) ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000000)) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) [ 2003.275043] FAT-fs (loop6): bogus number of reserved sectors [ 2003.275711] FAT-fs (loop6): Can't find a valid FAT filesystem 21:51:13 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5421, 0x119b28) 21:51:14 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100, 0x300}}) 21:51:14 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x541b, 0x119b28) 21:51:14 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x4020940d, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:51:14 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x80045432, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:51:14 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5421, 0x119b28) 21:51:14 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x80045440, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:51:14 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100, 0x14ee}}) 21:51:14 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5450, 0x119b28) 21:51:14 executing program 4: r0 = accept4(0xffffffffffffffff, &(0x7f0000000300)=@nl, &(0x7f0000000200)=0x80, 0x100800) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) r2 = syz_io_uring_setup(0x3ca0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x4}, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x8, 0x0, 0x10001, 0x0, 0x0, {0x0, r5}}, 0x10000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) syz_io_uring_submit(r6, r4, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5}, 0x80000001) syz_io_uring_submit(0x0, r4, &(0x7f00000001c0)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0x3, &(0x7f0000000180)={0x0, 0x3938700}, 0x1, 0x1, 0x1}, 0xfe000000) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x119b28) [ 2003.724865] FAT-fs (loop6): bogus number of reserved sectors [ 2003.725406] FAT-fs (loop6): Can't find a valid FAT filesystem 21:51:29 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100, 0xee14}}) 21:51:29 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5450, 0x119b28) 21:51:29 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0xffff) r3 = socket$unix(0x1, 0x2, 0x0) bind$unix(r3, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e) openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8080, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) stat(&(0x7f0000000040)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(r5, 0x0, 0x0) sendmsg$unix(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)="e62ee71b9dc3541aa7f00a9a87648620fb751b525ad715341385ff6cfc16d86d4ae1f0b5da9ad895462908c1aa7bd5e00908d7017f05b4923e47d095f7af248d1295128f4e9145ee3f0de5a7afe8441ec42f6e9cebff5744c3ce43be38bfaa6a13613dc6405bd43f00b612e2c85b9510bd52a29b6d0f378feb58a25f6765dee07ca22ebbd8eb634e4de1ec3036e77e28b860113b4d78ccc3df95016ba775b7a975940a3bd14adfc12fad7454b7677417cbd2a3f711c0526f01550204f898d8bf46e757aaaa659f8f0a5804249ef1cc3d2472f917a0e5e521035b5bdbd59ce91bc8dfdbd4527830ead7e0be0d26ca655302114d93946e206df5e4ad3b464c", 0xfe}, {&(0x7f0000000280)="735df2349baf0f6d1e75cbcf54f5a66ed7b282589b24998c3af1698dc0db71d727c3b55b0ff964931aa130f71a7a5208cf527d579ae95dde1e0d1549a5334b86f2e229449184a0395e535969cd9c01d2099aca3a495fb035a4f126ab143023b5a21fe1a6f4225cb126d040ad731a76dd1bd62b502d121255a9b1dca75c95f1426024c5c7088380d7b573d77a6280b05499fdc4f68f8ef6fb2c60117f097de5632e8a52581ce975117f1efaefbbe7722eda5721595b32ed08a8b7ebf4b5cc9ffc22109aa4332e44a4089d8e7ef4a9be382bdf", 0xd2}], 0x2, &(0x7f0000000380)=[@cred={{0x1c, 0x1, 0x2, {0x0, r5}}}], 0x20, 0x8080}, 0x0) 21:51:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5451, 0x119b28) 21:51:29 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x80086601, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:51:29 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000)=0x20000) mkdirat(r0, &(0x7f0000000080)='./file0\x00', 0x0) 21:51:29 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:51:29 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x401, 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f00000000c0)={&(0x7f0000000000)=[0x0, 0x0, 0x0], 0x3}) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:51:29 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x80087601, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:51:29 executing program 7: ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'syztnl2\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x2f, 0x9c, 0x40, 0x7, 0x40, @mcast2, @remote, 0x7, 0x80, 0x7ff, 0xc0d}}) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000100)={'syztnl0\x00', r0, 0x2f, 0x9, 0x81, 0x7, 0x14, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, 0x1, 0x8, 0x4e5236fd, 0x8}}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r1, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0x0, 0x0, 0x0, 0x100}}) 21:51:29 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5451, 0x119b28) 21:51:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5452, 0x119b28) 21:51:29 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x196400) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f00000002c0)="af", 0x1}], 0x1) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/mnt\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r5 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) fallocate(r5, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000040)={0x0, r5, 0x2}) fallocate(0xffffffffffffffff, 0x0, 0x10001, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x2}) perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0x0, 0x8, 0x1, 0x80, 0x0, 0x6, 0x40, 0x4, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x200, 0x5, @perf_bp={&(0x7f00000001c0), 0x4}, 0x0, 0x80000000, 0x9, 0x0, 0xa42, 0x9, 0x2047, 0x0, 0x7, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000080)={{0xffffffffffffffff, 0x3, 0x30c, 0x3, 0x3ff}}) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2}) 21:51:29 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x14000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x401, 0x3}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f00000000c0)={&(0x7f0000000000)=[0x0, 0x0, 0x0], 0x3}) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:51:29 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6714, 0x9}, 0x14000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/100, 0x64}, {&(0x7f00000013c0)=""/168, 0xa8}, {&(0x7f0000000200)=""/144, 0x90}], 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="20000000000000000100000201000040e3dfa8c0a7542726d48a6f24d26c87c812401eafb4f7dd9d9cd1889eaa84387280046a0ee186aaef606e22a95e4e62d5df0cf045e21e4ab72deb3743f7b321d8fe85d4e6e9fd734d6dd3342c33b71ede2821e1c2298ae422e8234b543404a4b8096b2de44dff01c66fa399afd8e3aafe566099f29de65e805ffd291f57381c460846966313", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32], 0x20}, 0x40010100) ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f0000001380)={&(0x7f0000000340), &(0x7f0000000380)=""/4096, 0x1000}) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8000) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r2, 0x4008941a, &(0x7f00000002c0)) ioctl$MON_IOCT_RING_SIZE(r0, 0x9204, 0x119b28) 21:51:29 executing program 1: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5460, 0x119b28) 21:51:29 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x9, 0xfff5, 0xfffe, 0x0, 0x100}}) 21:51:29 executing program 3: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r0, 0x5452, 0x119b28) [ 2018.737105] ------------[ cut here ]------------ [ 2018.737558] WARNING: CPU: 0 PID: 10910 at kernel/locking/lockdep.c:894 look_up_lock_class+0x86/0x110 [ 2018.738312] Modules linked in: [ 2018.738592] CPU: 0 PID: 10910 Comm: syz-executor.6 Not tainted 5.10.223 #1 [ 2018.739164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2018.739861] RIP: 0010:look_up_lock_class+0x86/0x110 [ 2018.740295] Code: 24 e8 ce 02 00 00 4d 85 e4 74 2c 49 39 5c 24 40 75 eb 48 8b 45 18 49 39 84 24 b0 00 00 00 74 1a 48 81 7d 00 00 22 15 86 74 10 <0f> 0b eb 0c e8 b1 4a 0a fe 85 c0 75 50 45 31 e4 48 83 c4 08 4c 89 [ 2018.741822] RSP: 0018:ffff88800e9a7590 EFLAGS: 00010002 [ 2018.742268] RAX: ffffffff84535860 RBX: ffffffff871b9521 RCX: 0000000000000000 [ 2018.742861] RDX: 0000000000000046 RSI: 0000000000000001 RDI: ffff88801d6ceec0 [ 2018.743456] RBP: ffff88801d6ceec0 R08: 0000000000000001 R09: 0000000000000000 [ 2018.744069] R10: 0000000000000246 R11: 0000000000000001 R12: ffffffff868b1580 [ 2018.744666] R13: ffffffff86bf59e0 R14: 0000000000000001 R15: 0000000000000000 [ 2018.745267] FS: 00007fb44a71a700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 2018.745944] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2018.746430] CR2: 0000001b2d327000 CR3: 000000005a01e000 CR4: 0000000000350ef0 [ 2018.747024] Call Trace: [ 2018.747252] ? __warn+0xe2/0x1f0 [ 2018.747539] ? look_up_lock_class+0x86/0x110 [ 2018.747926] ? report_bug+0x1c1/0x210 [ 2018.748252] ? handle_bug+0x41/0x90 [ 2018.748557] ? exc_invalid_op+0x14/0x50 [ 2018.748891] ? asm_exc_invalid_op+0x12/0x20 [ 2018.749263] ? look_up_lock_class+0x86/0x110 [ 2018.749639] ? register_lock_class+0xbb/0x17b0 [ 2018.750024] register_lock_class+0xbb/0x17b0 [ 2018.750394] ? mark_held_locks+0x9e/0xe0 [ 2018.750740] ? is_dynamic_key+0x1e0/0x1e0 [ 2018.751095] ? is_dynamic_key+0x1e0/0x1e0 [ 2018.751446] ? mark_lock+0xf5/0x2df0 [ 2018.751762] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2018.756239] ? lock_chain_count+0x20/0x20 [ 2018.756590] __lock_acquire+0x102/0x5b00 [ 2018.756943] ? perf_trace_lock_acquire+0xbc/0x590 [ 2018.757350] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2018.757787] ? SOFTIRQ_verbose+0x10/0x10 [ 2018.758128] ? mark_held_locks+0x9e/0xe0 [ 2018.758472] lock_acquire+0x197/0x470 [ 2018.758792] ? ext4_move_extents+0x3a0/0x3050 [ 2018.759168] ? lock_release+0x680/0x680 [ 2018.759504] ? lock_is_held_type+0x54/0x110 [ 2018.759875] down_write_nested+0x96/0x160 [ 2018.764245] ? ext4_move_extents+0x3a0/0x3050 [ 2018.764622] ? rwsem_down_write_slowpath+0xc30/0xc30 [ 2018.765050] ext4_move_extents+0x3a0/0x3050 [ 2018.765411] ? __lock_acquire+0x1657/0x5b00 [ 2018.765776] ? mark_lock+0x2dcc/0x2df0 [ 2018.766109] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2018.766546] ? trace_hardirqs_on+0x5b/0x180 [ 2018.766907] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2018.767363] ? lock_acquire+0x1b9/0x470 [ 2018.767696] ? ext4_double_up_write_data_sem+0x30/0x30 [ 2018.772243] ? lock_release+0x680/0x680 [ 2018.772596] __ext4_ioctl+0x302e/0x4190 [ 2018.772938] ? ext4_reset_inode_seed+0x450/0x450 [ 2018.773336] ? perf_trace_lock+0xac/0x490 [ 2018.773684] ? SOFTIRQ_verbose+0x10/0x10 [ 2018.774035] ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x410 [ 2018.774521] ? __sanitizer_cov_trace_switch+0x45/0x80 [ 2018.774957] ? do_vfs_ioctl+0x283/0x10d0 [ 2018.775299] ? selinux_bprm_creds_for_exec+0xb60/0xb60 [ 2018.775741] ? generic_block_fiemap+0x60/0x60 [ 2018.780181] ? lock_downgrade+0x6d0/0x6d0 [ 2018.780537] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2018.780979] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2018.781430] ? trace_hardirqs_on+0x5b/0x180 [ 2018.781796] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2018.782252] ? __ext4_ioctl+0x4190/0x4190 [ 2018.782606] ? __ext4_ioctl+0x4190/0x4190 [ 2018.782955] __x64_sys_ioctl+0x19a/0x210 [ 2018.783298] do_syscall_64+0x33/0x40 [ 2018.783613] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2018.788068] RIP: 0033:0x7fb44d1a4b19 [ 2018.788381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2018.789923] RSP: 002b:00007fb44a71a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 2018.790559] RAX: ffffffffffffffda RBX: 00007fb44d2b7f60 RCX: 00007fb44d1a4b19 [ 2018.791152] RDX: 0000000020000040 RSI: 00000000c028660f RDI: 0000000000000003 [ 2018.791746] RBP: 00007fb44d1fef6d R08: 0000000000000000 R09: 0000000000000000 [ 2018.804343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2018.804940] R13: 00007ffd5f73c22f R14: 00007fb44a71a300 R15: 0000000000022000 [ 2018.805540] irq event stamp: 2291 [ 2018.805836] hardirqs last enabled at (2291): [] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2018.806655] hardirqs last disabled at (2290): [] sysvec_apic_timer_interrupt+0xb/0xa0 [ 2018.807437] softirqs last enabled at (2232): [] asm_call_irq_on_stack+0x12/0x20 [ 2018.808199] softirqs last disabled at (2127): [] asm_call_irq_on_stack+0x12/0x20 [ 2018.808942] ---[ end trace e14c368dc2cfc6e7 ]--- VM DIAGNOSIS: 21:51:29 Registers: info registers vcpu 0 RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822d97a1 RDI=ffffffff879ef240 RBP=ffffffff879ef200 RSP=ffff88800e9a6f38 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=000000000000006e R13=000000000000006e R14=ffffffff879ef200 R15=dffffc0000000000 RIP=ffffffff822d97f8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb44a71a700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2d327000 CR3=000000005a01e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000001 RCX=ffff88806cf09cb0 RDX=0000000000000001 RSI=ffff88800cf50880 RDI=ffff88800ea35808 RBP=0000000000000000 RSP=ffff88806cf09c20 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffff88800ea35808 R13=ffff88800cf50880 R14=ffff88806cf09cb0 R15=ffff88800ea34ec0 RIP=ffffffff83e5cbf0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1cbbcab8c0 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055e9e3f24f30 CR3=0000000009da8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000000000002f002f2e2e2f002e2e XMM01=0000000000000000696c61766e49002f XMM02=ffffffffffffff0f0e0d0c0b0a090807 XMM03=696e656420737365636341002f737973 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055e9e3f1b420000055e9e3f2d060 XMM06=000055e9e3eef370ffffffff00000003 XMM07=00000000000000000000000000000000 XMM08=2f63697361622f6372732f2e2e000d0a XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000