[ 270.108135] Process accounting resumed 08:51:55 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x20, 0x0, &(0x7f0000000100), 0x8080, &(0x7f0000000140)={[{@norecovery}, {@mblk_io_submit}, {@sb={'sb', 0x3d, 0xf64}}, {@test_dummy_encryption}, {@nobarrier}, {@usrjquota}], [{@pcr={'pcr', 0x3d, 0x5}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x30, 0x36, 0x33, 0x30, 0x66, 0x66, 0x30], 0x2d, [0x30, 0x34, 0x31, 0x39], 0x2d, [0x0, 0x34, 0x35, 0x66], 0x2d, [0x32, 0x36, 0x63, 0x36], 0x2d, [0x37, 0x36, 0x38, 0x32, 0x65, 0x66, 0x63, 0x63]}}}, {@smackfstransmute={'smackfstransmute', 0x3d, ':-+'}}]}) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:51:55 executing program 5: creat(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x20, 0x0, &(0x7f0000000100), 0x8080, &(0x7f0000000140)={[{@norecovery}, {@mblk_io_submit}, {@sb={'sb', 0x3d, 0xf64}}, {@test_dummy_encryption}, {@nobarrier}, {@usrjquota}], [{@pcr={'pcr', 0x3d, 0x5}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x30, 0x36, 0x33, 0x30, 0x66, 0x66, 0x30], 0x2d, [0x30, 0x34, 0x31, 0x39], 0x2d, [0x0, 0x34, 0x35, 0x66], 0x2d, [0x32, 0x36, 0x63, 0x36], 0x2d, [0x37, 0x36, 0x38, 0x32, 0x65, 0x66, 0x63, 0x63]}}}, {@smackfstransmute={'smackfstransmute', 0x3d, ':-+'}}]}) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:51:55 executing program 2: syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='proc\x00', 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000001e00)=""/4100, 0x1004) 08:51:55 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) stat(&(0x7f0000000200)='./file1\x00', &(0x7f0000000580)) sendfile(r3, r4, 0x0, 0x100000001) 08:51:55 executing program 2: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) stat(&(0x7f0000000200)='./file1\x00', &(0x7f0000000580)) sendfile(r3, r4, 0x0, 0x100000001) 08:51:55 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) stat(&(0x7f0000000200)='./file1\x00', &(0x7f0000000580)) sendfile(r3, r4, 0x0, 0x100000001) [ 270.638425] Process accounting resumed [ 270.665808] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 270.667076] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 270.691106] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. 08:51:55 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0xec, r1, 0x4, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void, @val={0xc, 0x99, {0x0, 0x2b}}}}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'hsr0\x00'}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "8e8bd24f47309371aa7a65f69ff03b14090780533fff8428"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "18dc009680c111fb4f9ce89901e8714f7466cf350edc17b0"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "2a5bc91db9d34692f5cb734764247b50f6c2146ae365c104"}, @NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}], @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0xec}, 0x1, 0x0, 0x0, 0x4048800}, 0x44800) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, r3, 0x1}, 0x14}}, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x11, 0x4, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14) sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000880)={&(0x7f0000001e00)={0x3030, 0x0, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@ETHTOOL_A_FEATURES_WANTED={0x1118, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x85, 0x4, "444261536fe9daa6dd45d6e1e2aff6e0812e4fd94b45012dabe8b71f4cda965e48310d4ea93aa792b0e3a32143334dccb9cb952b578e5b0892a9966098029a38c689ebdfde307912492aec83d92d44a8a511a3c5e98833e139621f6a510cdd7bbf0f066333e9797d6b98796b6687d0940e87ac9b3b2e85a7e11c6b7f62d39f2ab3"}, @ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x3}, @ETHTOOL_A_BITSET_VALUE={0x7d, 0x4, "39817f204bf7e4388156860086140cd2eb914966173c9ca999cbbe1bfa8b58479767ccaf5a4e77500e1d0385e728da662b2e0d7c1e1e81c247b1215f0fcdc7bc2328dcf2645fd77032bb201b9f468a7872b90099a8b863532d317dbc98a48088e536838fa72207082a3bc3cc415bcc0f4754b8216b490abb70"}]}, @ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_FEATURES_WANTED={0x450, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}, @ETHTOOL_A_BITSET_BITS={0xe0, 0x3, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'hsr0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '*\xd1+\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\xaa\xaa\xaa\xaa\xaa'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '[{*#^&:\xe0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffffe}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x800}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\xaa\xaa\xaa\xaa\xaa'}]}, {0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '[(:\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x14}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '*\x00'}]}]}, @ETHTOOL_A_BITSET_MASK={0x4d, 0x5, "c081ae7ed3845f3f2272b595fb05c937e653c63e3aaa794ed8239da2d7ec2912e215c302e9cb4981abfeb72d45119ef39c24e18b79c61d321ce1f683a54f8ae0410f76a262f3b088f8"}, @ETHTOOL_A_BITSET_MASK={0xa2, 0x5, "e5979179585c997f32770a96237ed2d78177c89cddbb01ad3330273736538f6c4df0d1359198e7ef687bb61e886fbefdee360361be2b6c99a9089845877248eedf6492fb5f3addae64c8977a3785f3759ecff05b792f3990642c31d1a2d1d6c7a9d40990bfaf7332b91a0bbbfee940a27f523a01846a2dba3c75bc5f45589ee6244261bf632d04faba82d27a48a2d6d67b9b69ee7ffa4a5cc0f343346c62"}, @ETHTOOL_A_BITSET_MASK={0xa8, 0x5, "ed4c2e01d93e1fae1e29933c7ad8863950b77ac73fc61452d4987035b41b0679502b168b2b3c85ee1b41d53330b6bf89c057a4cc74fc4fadf2fbd15e3a11e53a5fd399e2fea19a22f6827ff1b152ba5e320b7e015feaed878c640d10b8201bc919823f965d217b5474a5f01898287e5ac40e9ba24da7ed58dad1c7d7f9535adca363b0a2821302055c48262bccd4f7faa2f987ac4e9f67f96956e1722a2ab1830b7fd82c"}, @ETHTOOL_A_BITSET_MASK={0x61, 0x5, "262dd1c4fc94fe4ae8cfaa348a80e3faf088f657d0923b351cf7a60343a79125da5a45faccf2e059e444b6ed0a46caae02d9dd9de430cd0bc58036ed9a346d15cbab12693810e9b04171222241cdd2efec50b0fcb701d777636607bdd7"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x5d, 0x5, "a6e18ff01aa48841e569bcba125208719fa25e928d5dbd682245bdd30d34d36ffcf450411015951ef017fab006e66af1ba6dd753313f83f0e4998231e5837e88348b1bffbd858121662b515f426f29bdc3cb83ef3968ea56d0"}, @ETHTOOL_A_BITSET_BITS={0x104, 0x3, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, ',[\'\\(\'@*\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, '^)\xda(!)!,\x00'}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, ')[(,{[,[.!\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\xaa\xaa\xaa\xaa\xaa'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3ff}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}]}, @ETHTOOL_A_FEATURES_WANTED={0x12b8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}, @ETHTOOL_A_BITSET_VALUE={0x27, 0x4, "009a01811249d5a63943ca8e943e97a760f9e7dd07e3d54cf23960630434bc7f3d97e0"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x1}, @ETHTOOL_A_BITSET_BITS={0xa4, 0x3, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\xaa\xaa\xaa\xaa\xaa'}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'hsr0\x00'}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1f}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, 'l$+},+\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}, {0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\xaa\xaa\xaa\xaa\xaa'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8000}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'hsr0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x4}]}, @ETHTOOL_A_BITSET_BITS={0xe0, 0x3, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\xaa\xaa\xaa\xaa\xaa'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2f78}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '%\'$%\x00'}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '+*-]\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}]}, {0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xd5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xedd}, @ETHTOOL_A_BITSET_BIT_NAME={0x17, 0x2, '-*.{\\\\\'.+&+.)\x14]-.,\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\xaa\xaa\xaa\xaa\xaa'}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\xaa\xaa\xaa\xaa\xaa'}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xd74f}, @ETHTOOL_A_BITSET_BITS={0x84, 0x3, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '*[{\xf2\x00'}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80000001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '-*\'\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x32}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, '/:!\xd4](@^-%[\\\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_MASK={0x6e, 0x5, "d8405cd54c229770784033ee2c687cff47711f51d4d7e87ba618de29d845795c84f84970dc42aea4022ae5d2282713db63c03757796ee6123eddcf94f055f6b80bc35d98ec1928656ed62c0ed5f03a864b1bf6d6e852efdce341bfb15936588b46d23bcee176e0f52724"}]}, @ETHTOOL_A_FEATURES_WANTED={0x338, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x34, 0x5, "aa4eb87371989c7c63d1bba39164dacc04e21b14e6ee2789f399c5519478a19e61e76e36829d5e06add8478c7bfb0007"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x28, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ']\x00'}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfff}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '[\x00'}]}]}, @ETHTOOL_A_BITSET_BITS={0x1a4, 0x3, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'hsr0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\x98.*\xb7\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4f}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xd, 0x2, ']\xa3@:!:*&\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '\xaa\xaa\xaa\xaa\xaa'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffe89}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5ca8}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x200}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '!\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80000000}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1ff}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'hsr0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}]}]}, @ETHTOOL_A_BITSET_BITS={0x128, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x20}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '!-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '$\x00'}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, ',\\\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x46a037b2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '%(-$\\]!\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fffffff}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ',\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1f2}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'hsr0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1a000000}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}]}]}]}, @ETHTOOL_A_FEATURES_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_FEATURES_WANTED={0x300, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x124, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '@\x00'}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, 'wlan1\x00'}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '*\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '^\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3f}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '-%.\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'hsr0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, ']},+\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3f}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '%\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xffff}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_MASK={0xe5, 0x5, "55e185d2c1a5ebd7029b5f3eed08c6b45438a0dd9093531e1bf1459aa6d21ec1ae759c8d143df5cc8c95fb562b4d38b09c1c8d64d20dbb97792599f351d5f540dc96025249ed281d8814620440d092d7f0b0c1be674462bde3b66c1af4c5da30c52f9dbce127ad761dffdf553bff93ad64d92464df85fe76ffa4bc01f155c55fecd1d76d569c159aace5c2037f208e6f5f5e81869b2001b44d47be9be6842af739bdfd0766143508e5bae229c091f9495df6430e8461a0716d97050071b22615489ca8194ed933ae4b1118ba823251f20b7828045afc63e61f5c2be187952cf92c"}, @ETHTOOL_A_BITSET_BITS={0x34, 0x3, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ')\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'nl80211\x00'}]}]}, @ETHTOOL_A_BITSET_MASK={0xbc, 0x5, "9cb405a03fce110b9d69e7213a720f8b1682be6b57a0b90f3d8e4c7d2c9779972b9b2d9bc0b807d9be32030b860d2320908d4a2fb51b5f3e7d752e5bfdec9223aade1acd0acd7071f592a7d4632ad1b4c2b3dd69eedcd79a1b1bd23178d1e8e892e6423344d7afa776ad3dc9d023b6893c265e00cd8ed2f39dfbf6e0fc19b8979f5144c6689937366cf39c46ede8db710957c122e94ef25d064db3c6a218977d42f230413d8c4cf16622bff8875dac6c9bfd9e1da712b819"}]}, @ETHTOOL_A_FEATURES_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x11c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0xb0, 0x4, "d00695357873a1f728f800dbc3c3c3dcd54f8193f758ed519f97074aee08503c9febc775419f07af0293007503f86a7e8564acd358d3b3ee3a51f6a95bd5cb1d5d1459177fae0446ec7cc324550b4504277d20499a7de23a6e8e6ff62a4d9120fe496b97f3f707ff82c50cf8f2b1d80d9b9b2f86e22ff705fff84f9657a39a99b06f9e7cce78ac55a8cebc2768bb5e6e7ce6c226ef332013fc639e3ca10835a598941240132f71746c78ed38"}, @ETHTOOL_A_BITSET_VALUE={0x66, 0x4, "94bad728168c49935754379ca5823a03f7e44a9b46db9735b74da2c44b4d9be90b548a7287b775b4878b181203bbcedb084e243e5ba5a7e8766d8d358a2e5da9046b5c9ed810c63a650958c51a1d0b86e4eed3c18fafda626d122af2abe24fc64c30"}]}]}, 0x3030}, 0x1, 0x0, 0x0, 0x20044010}, 0x800) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000400)=ANY=[@ANYRES16=r5, @ANYBLOB="010200000000000000000700000008000300", @ANYRES32=r6, @ANYBLOB="14000400677265746170300000000000000000000800050004000000050053000100"], 0x40}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000580)=ANY=[@ANYBLOB="2fcf933c7ac3592831a38e566cbd01", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x2e}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) clone3(&(0x7f0000000200)={0x44004100, 0x0, &(0x7f00000000c0), &(0x7f0000000100), {}, 0x0, 0x0, 0x0, 0x0}, 0x58) r7 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_RX_RING(r7, 0x10e, 0x6, 0x0, 0x0) sendmsg$NL80211_CMD_GET_KEY(r7, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x58, r1, 0x200, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8, 0x10}}}}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "70165f040c95c6f725a3cbe562"}, @NL80211_ATTR_KEY_TYPE={0x8}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "277457edfa323572a6d05bcd73"}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000010}, 0x0) 08:51:55 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x20, 0x0, &(0x7f0000000100), 0x8080, &(0x7f0000000140)={[{@norecovery}, {@mblk_io_submit}, {@sb={'sb', 0x3d, 0xf64}}, {@test_dummy_encryption}, {@nobarrier}, {@usrjquota}], [{@pcr={'pcr', 0x3d, 0x5}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x30, 0x36, 0x33, 0x30, 0x66, 0x66, 0x30], 0x2d, [0x30, 0x34, 0x31, 0x39], 0x2d, [0x0, 0x34, 0x35, 0x66], 0x2d, [0x32, 0x36, 0x63, 0x36], 0x2d, [0x37, 0x36, 0x38, 0x32, 0x65, 0x66, 0x63, 0x63]}}}, {@smackfstransmute={'smackfstransmute', 0x3d, ':-+'}}]}) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:51:55 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x20, 0x0, &(0x7f0000000100), 0x8080, &(0x7f0000000140)={[{@norecovery}, {@mblk_io_submit}, {@sb={'sb', 0x3d, 0xf64}}, {@test_dummy_encryption}, {@nobarrier}, {@usrjquota}], [{@pcr={'pcr', 0x3d, 0x5}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x30, 0x36, 0x33, 0x30, 0x66, 0x66, 0x30], 0x2d, [0x30, 0x34, 0x31, 0x39], 0x2d, [0x0, 0x34, 0x35, 0x66], 0x2d, [0x32, 0x36, 0x63, 0x36], 0x2d, [0x37, 0x36, 0x38, 0x32, 0x65, 0x66, 0x63, 0x63]}}}, {@smackfstransmute={'smackfstransmute', 0x3d, ':-+'}}]}) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:51:55 executing program 0: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x2, "77004a6efdff0000000008002600"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2}, 0x0) syz_io_uring_setup(0x5c, &(0x7f00000001c0)={0x0, 0x4000}, &(0x7f0000001000/0x2000)=nil, &(0x7f00009ad000/0x1000)=nil, &(0x7f0000000140), &(0x7f0000000240)=0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000000c0)=@IORING_OP_FSYNC={0x3, 0x5}, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) syz_io_uring_setup(0x238e, &(0x7f00000002c0)={0x0, 0x4063, 0x1, 0x3, 0x18c}, &(0x7f0000454000/0x2000)=nil, &(0x7f0000a99000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r4, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000888000/0x12000)=nil, 0x12000, 0x1000003, 0x13, r1, 0x8000000) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r1, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f00002ff000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r1, 0x8000000) syz_io_uring_submit(r5, r3, &(0x7f0000000180)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r2, 0x9, &(0x7f0000000340)="05f73b7a18d8180fa6ed9b901c1ee63b967487e364c8cfd46a5c1d485b09d17e133478b6896d6f84ed19100e6a12dd2c4b829b55036e2f2ab2e8826d70a7525258df5248bc9bf499762e6d9b47c0cbe6fa18588622b123c47042369ca9", 0x5d, 0x10}, 0xf2) socket$inet(0x2, 0xa, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfd4}, 0x840}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 270.812045] Process accounting resumed [ 270.922283] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 270.923475] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 270.932202] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 270.936311] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 270.937305] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 270.945603] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 270.952284] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 270.956845] Buffer I/O error on dev sr0, logical block 0, async page read [ 270.965051] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 270.976354] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 7 prio class 0 [ 270.988043] Buffer I/O error on dev sr0, logical block 1, async page read [ 270.992070] Buffer I/O error on dev sr0, logical block 2, async page read [ 270.996030] Buffer I/O error on dev sr0, logical block 3, async page read [ 271.000543] Buffer I/O error on dev sr0, logical block 4, async page read [ 271.012468] Buffer I/O error on dev sr0, logical block 5, async page read [ 271.020129] Buffer I/O error on dev sr0, logical block 6, async page read [ 271.020985] Buffer I/O error on dev sr0, logical block 7, async page read [ 271.033810] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.034466] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 271.035722] Buffer I/O error on dev sr0, logical block 0, async page read [ 271.037240] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.038516] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 271.039745] Buffer I/O error on dev sr0, logical block 1, async page read [ 271.041956] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.042625] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 271.044065] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.044735] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 271.048320] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.049011] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 271.050394] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.051063] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 271.052476] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.053143] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 271.054524] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.056143] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.057283] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.058022] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.058770] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.059485] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.060258] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.060989] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.061843] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.062670] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.064240] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.064989] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.065739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.066450] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.067201] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.067961] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.068722] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.069479] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.070235] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.072740] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.073462] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.074225] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.074954] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.075719] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.076441] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.077257] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.077992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.078739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.079447] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.080229] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.080958] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.081716] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.082426] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.083211] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.083970] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.084728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.085439] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.086184] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.092068] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.092807] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.093548] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.094355] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.095104] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.095853] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.096592] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.097325] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.098074] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.098802] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.099538] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.100337] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.101086] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.101817] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.102558] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.103287] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.104050] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.104786] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.105532] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.109441] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.110367] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.111218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.112294] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.113177] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.114154] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.115581] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.117078] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.117924] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.118691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.119431] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.120176] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.120920] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.121654] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.122389] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.123122] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.131126] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.132364] Process accounting resumed [ 271.133449] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.134426] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.135523] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.137879] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.139471] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.140456] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.141315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.142185] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.142948] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.144259] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.146902] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.147623] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.148437] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.149169] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.149915] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.151933] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.156916] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.160860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.161722] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.162595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.163443] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.165465] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.166359] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.167204] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.173545] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.174688] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.175416] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.176449] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.177210] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.178391] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.179146] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.180047] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.180972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.181950] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.182878] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.185325] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.186255] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.187151] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.192157] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.200932] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.201877] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.202772] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.203686] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.204544] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.205451] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.206301] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.207206] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.208030] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.208913] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.209647] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.210377] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.211553] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.212332] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.213068] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.213798] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.214595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.215328] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.216076] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.216812] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.217520] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.218734] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.219445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.220210] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.221380] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.231281] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.232649] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.242490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.252788] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.253166] Process accounting resumed [ 271.264007] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.272569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.304085] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 271.305290] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 271.306125] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 271.306923] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 271.314592] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.315343] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.316724] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.317431] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.318174] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.319396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.320199] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.320943] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.321724] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.322435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.323166] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.323925] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.324658] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.325366] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.326096] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.326830] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.327611] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.328366] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.329100] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.329836] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.330543] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.331281] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.332034] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.332767] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.333518] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.334253] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.334984] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.335721] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.336432] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.337166] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.337898] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.338607] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.339406] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.340161] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.340892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.342198] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.343009] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.343766] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.344474] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.345236] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.346020] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.346844] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.347552] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.348303] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.349066] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.351045] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.351794] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.352506] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.354364] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.355237] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.364604] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.365585] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.366460] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.367359] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.368244] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.369128] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.370164] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.371117] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.371959] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.372870] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.373776] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.374594] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.375828] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.380430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.384987] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.394744] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.395466] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.396347] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.397531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.398490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.399264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.400166] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.400956] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.401739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.402448] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.403213] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.404000] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.404775] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.405482] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.406270] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.407086] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.407928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.408670] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.409426] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.410189] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.410960] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.411741] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.412502] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.413278] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.414241] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.414983] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.415848] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.416562] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.417326] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.418089] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.418853] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.419839] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.427558] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.432477] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.433465] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.434302] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.435146] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.436034] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.436891] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.438218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.441928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.445293] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.447238] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.454363] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.456057] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.461480] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 271.463784] syz-executor.0 uses obsolete (PF_INET,SOCK_PACKET) [ 271.464227] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.376778] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:52:10 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) stat(&(0x7f0000000200)='./file1\x00', &(0x7f0000000580)) sendfile(r3, r4, 0x0, 0x100000001) 08:52:10 executing program 0: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x2, "77004a6efdff0000000008002600"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2}, 0x0) syz_io_uring_setup(0x5c, &(0x7f00000001c0)={0x0, 0x4000}, &(0x7f0000001000/0x2000)=nil, &(0x7f00009ad000/0x1000)=nil, &(0x7f0000000140), &(0x7f0000000240)=0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000000c0)=@IORING_OP_FSYNC={0x3, 0x5}, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) syz_io_uring_setup(0x238e, &(0x7f00000002c0)={0x0, 0x4063, 0x1, 0x3, 0x18c}, &(0x7f0000454000/0x2000)=nil, &(0x7f0000a99000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r4, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000888000/0x12000)=nil, 0x12000, 0x1000003, 0x13, r1, 0x8000000) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r1, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f00002ff000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r1, 0x8000000) syz_io_uring_submit(r5, r3, &(0x7f0000000180)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r2, 0x9, &(0x7f0000000340)="05f73b7a18d8180fa6ed9b901c1ee63b967487e364c8cfd46a5c1d485b09d17e133478b6896d6f84ed19100e6a12dd2c4b829b55036e2f2ab2e8826d70a7525258df5248bc9bf499762e6d9b47c0cbe6fa18588622b123c47042369ca9", 0x5d, 0x10}, 0xf2) socket$inet(0x2, 0xa, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfd4}, 0x840}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 08:52:10 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) stat(&(0x7f0000000200)='./file1\x00', &(0x7f0000000580)) sendfile(r3, r4, 0x0, 0x100000001) 08:52:10 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:52:10 executing program 6: ftruncate(0xffffffffffffffff, 0x4) r0 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$chown(0x4, 0x0, 0xee01, 0xee01) getsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000004c0)={@multicast1, @broadcast}, &(0x7f0000000300)=0x8) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', 0x0, 0xa}) r1 = add_key$keyring(0x0, &(0x7f0000000440)={'syz', 0x3}, 0x0, 0x0, 0x0) fstat(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) connect$inet(0xffffffffffffffff, &(0x7f0000000740)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) keyctl$chown(0x4, r0, 0xffffffffffffffff, r2) request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='R}\xa6$\x00', 0xfffffffffffffffa) keyctl$reject(0x13, 0x0, 0x7, 0x200, r0) r3 = add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000580)=ANY=[], 0x48, 0x0) add_key$keyring(&(0x7f0000000380), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0x0) add_key(&(0x7f0000000280)='.dead\x00', &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000640)="d54785073ff19bcb78920070067acb040e6cea09e8c44c5180178c3aa8c4544a9940a0aa5a878107773b9c8dc4c52fddfcf7f4fb21db0d72adfbc3ceeaf9e32ab776b540fe204c35c6ce392ad1f805e2944e5efd813df472f8318373cd15c0c22a63df0d6ca23327e9db3e65406ba9738e8c", 0x72, r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x2, 0x0, 0x6, 0x0, 0x4, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x7711771a}, 0x0, 0x2, 0xffffffffffffffff, 0x0) r4 = add_key(&(0x7f0000000200)='keyring\x00', &(0x7f00000004c0)={'syz', 0x1}, &(0x7f0000000540)="18726d0eed55eaa57fc580dc3a0b12e0a5ee08da294ac8119c4c73f93694f2a935d17a81959d084839f846dca8739131e4a9c45c6509af44529537eae3b5a4793a9a0aacfd7a75f2b566b874939829b82a35d20d1985a92c5d7ba971251e89286f64438db33a7f05fb0d1707fd3fa27a56032a79c1d09558fbbfcb2e5f36d3e7e1c749ad35c2064fa087cf6359507a36eb69853e0cdd920cbb7586aedf5a2e5a9a1a6b8d11c08a14918b01d07c92179dfae1ef58835b5fa4be28fbd3b3eac1c9f3cf74fbe25748c55d23902439133eecfafb2e0f", 0xd4, 0xfffffffffffffffa) add_key(0x0, &(0x7f0000000480)={'syz', 0x1}, 0x0, 0x0, r4) r5 = add_key$fscrypt_v1(&(0x7f0000000340), &(0x7f0000000400)={'fscrypt:', @auto=[0x65, 0x37, 0x64, 0x33, 0x32, 0x39, 0x32, 0x30, 0x64, 0x38, 0x39, 0xab84c59121d279bb, 0x62, 0x34, 0x22, 0x38]}, &(0x7f00000005c0)={0x0, "de275961ce158977bd71c54e0e8d924de28e4d37392f51b19541afb7aae1554853df8719aa87cd41db9fe2d99ab0488c3b2a4f1d1aecb2500c7c9f1458150a2a", 0x37}, 0x48, 0xfffffffffffffffa) keyctl$KEYCTL_MOVE(0x1e, r3, r4, r5, 0x1) clone3(&(0x7f0000000ac0)={0x17412c500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 285.388244] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 285.392261] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 08:52:10 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:10 executing program 2: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) stat(&(0x7f0000000200)='./file1\x00', &(0x7f0000000580)) sendfile(r3, r4, 0x0, 0x100000001) 08:52:10 executing program 4: ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, 0x0) r0 = openat$zero(0xffffffffffffff9c, 0x0, 0x90101, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) utimes(0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0x9}}, './file0\x00'}) openat(r3, &(0x7f0000000200)='./file0\x00', 0x40000, 0x188) mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={[{@subsystem='freezer'}]}) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000002c0)=ANY=[@ANYBLOB="0100"/12, @ANYRES32, @ANYBLOB]) r5 = fsmount(r0, 0x1, 0x71) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @local}, {0x0, @link_local}, 0x28, {0x2, 0x0, @empty}}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r2, 0xc0709411, &(0x7f0000050700)={{0x0, 0x5, 0x3, 0xa3, 0x5, 0x0, 0xea4, 0x3, 0x6, 0x20, 0x1, 0x8, 0x4, 0x9, 0x7}, 0x30, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, &(0x7f00000507c0)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0x1, "8ddad172484e70"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f00000517c0)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, &(0x7f00000519c0)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {r7, r8}], 0x6, "26550854ddc3f0"}) fsmount(0xffffffffffffffff, 0x1, 0x4) mq_open(&(0x7f0000005c00)='-@\x00', 0x0, 0x0, 0x0) stat(&(0x7f0000000180)='./file0\x00', &(0x7f0000001c00)) mount$cgroup(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), 0x2832020, &(0x7f0000000400)=ANY=[@ANYBLOB="6e616d653d2f6465762f736e617c16b8aa5e777076af2db2d1ba948e9ce65873686f74002c6370757365745f76325f6d6f64652c616c6c2c6e6f6e652c6370757365745f76325f6d6f64652c78617474722c6e6f7072656669782c636c6f6e655f6368696c6472656e2c68756765746c622c666465762f7a65726f002c736d61636b6673666c6f6f72"]) [ 285.420697] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 285.470143] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 285.471340] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 285.472200] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 285.473020] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 285.473958] print_req_error: 257 callbacks suppressed [ 285.473970] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 19 prio class 0 [ 285.477297] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.477984] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.479243] buffer_io_error: 270 callbacks suppressed [ 285.479251] Buffer I/O error on dev sr0, logical block 0, async page read [ 285.483444] Process accounting resumed [ 285.486748] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.487408] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.488669] Buffer I/O error on dev sr0, logical block 1, async page read [ 285.489851] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.490503] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.491744] Buffer I/O error on dev sr0, logical block 2, async page read [ 285.494116] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.494808] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.496024] Buffer I/O error on dev sr0, logical block 3, async page read [ 285.497146] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.497852] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.499094] Buffer I/O error on dev sr0, logical block 4, async page read [ 285.504487] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.505197] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.506491] Buffer I/O error on dev sr0, logical block 5, async page read [ 285.507584] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.508325] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.509559] Buffer I/O error on dev sr0, logical block 6, async page read [ 285.510884] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.511557] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.512848] Buffer I/O error on dev sr0, logical block 7, async page read [ 285.513852] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.514547] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 285.515843] Buffer I/O error on dev sr0, logical block 0, async page read [ 285.517728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.518401] Buffer I/O error on dev sr0, logical block 1, async page read [ 285.519578] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.520377] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.521135] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.521887] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.522655] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.523366] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.524184] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.524934] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.525720] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.526436] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.527197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.527930] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.529547] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.531230] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.532649] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.533385] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.534136] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.534886] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.535645] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.536430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.537194] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.537940] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.538739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.539476] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.540246] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.541730] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.542533] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.543324] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.544287] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.545070] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.546065] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.547033] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.548067] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.549010] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.550238] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.551140] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.552134] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.553042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.554013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.554991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.555879] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.556905] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.557746] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.558712] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.559497] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.560506] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.564478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.565383] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.566295] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.567138] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.568236] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.569113] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.570002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.570934] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.571751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.572823] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.574314] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.575733] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.577181] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.578664] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.580271] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.582124] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.585210] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.586204] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.587289] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.588333] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.589360] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.590421] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.591540] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.592722] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.593553] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.594414] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.595185] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.595992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.597331] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.598757] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.600232] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.601893] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.623349] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 285.625271] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 285.626105] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 285.626906] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 285.628047] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.628920] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.630318] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.631059] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.631844] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.632619] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.633434] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.634176] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.637389] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.638350] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.639284] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.640132] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.641082] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.643510] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.644391] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.645284] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.646281] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.647128] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.647952] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.648832] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.650234] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.651079] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.651953] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.652924] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.653815] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.655308] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.656831] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.658216] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.659596] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.661143] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.662558] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.663970] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.665671] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.667056] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.668491] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.669922] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.671335] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.673064] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.674467] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.675852] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.677511] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.678942] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.680363] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.681105] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.681883] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.682593] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.683393] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.684132] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.688320] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.690005] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.691986] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.693655] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.695088] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.696578] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.697995] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.699441] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.701106] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.702791] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.704821] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.706667] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.708256] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.710001] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.711534] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.713206] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.714714] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.716315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.717225] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.718094] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.719063] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.720366] cgroup: Invalid name [ 285.720386] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.722452] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.723387] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.724400] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.725267] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.726239] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.727136] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.728151] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.729047] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.730034] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.730927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.733034] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.734897] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 08:52:10 executing program 6: ftruncate(0xffffffffffffffff, 0x4) r0 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$chown(0x4, 0x0, 0xee01, 0xee01) getsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000004c0)={@multicast1, @broadcast}, &(0x7f0000000300)=0x8) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', 0x0, 0xa}) r1 = add_key$keyring(0x0, &(0x7f0000000440)={'syz', 0x3}, 0x0, 0x0, 0x0) fstat(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) connect$inet(0xffffffffffffffff, &(0x7f0000000740)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) keyctl$chown(0x4, r0, 0xffffffffffffffff, r2) request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='R}\xa6$\x00', 0xfffffffffffffffa) keyctl$reject(0x13, 0x0, 0x7, 0x200, r0) r3 = add_key$fscrypt_provisioning(&(0x7f0000000000), &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000580)=ANY=[], 0x48, 0x0) add_key$keyring(&(0x7f0000000380), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0x0) add_key(&(0x7f0000000280)='.dead\x00', &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000640)="d54785073ff19bcb78920070067acb040e6cea09e8c44c5180178c3aa8c4544a9940a0aa5a878107773b9c8dc4c52fddfcf7f4fb21db0d72adfbc3ceeaf9e32ab776b540fe204c35c6ce392ad1f805e2944e5efd813df472f8318373cd15c0c22a63df0d6ca23327e9db3e65406ba9738e8c", 0x72, r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100)}, 0x2, 0x0, 0x6, 0x0, 0x4, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x7711771a}, 0x0, 0x2, 0xffffffffffffffff, 0x0) r4 = add_key(&(0x7f0000000200)='keyring\x00', &(0x7f00000004c0)={'syz', 0x1}, &(0x7f0000000540)="18726d0eed55eaa57fc580dc3a0b12e0a5ee08da294ac8119c4c73f93694f2a935d17a81959d084839f846dca8739131e4a9c45c6509af44529537eae3b5a4793a9a0aacfd7a75f2b566b874939829b82a35d20d1985a92c5d7ba971251e89286f64438db33a7f05fb0d1707fd3fa27a56032a79c1d09558fbbfcb2e5f36d3e7e1c749ad35c2064fa087cf6359507a36eb69853e0cdd920cbb7586aedf5a2e5a9a1a6b8d11c08a14918b01d07c92179dfae1ef58835b5fa4be28fbd3b3eac1c9f3cf74fbe25748c55d23902439133eecfafb2e0f", 0xd4, 0xfffffffffffffffa) add_key(0x0, &(0x7f0000000480)={'syz', 0x1}, 0x0, 0x0, r4) r5 = add_key$fscrypt_v1(&(0x7f0000000340), &(0x7f0000000400)={'fscrypt:', @auto=[0x65, 0x37, 0x64, 0x33, 0x32, 0x39, 0x32, 0x30, 0x64, 0x38, 0x39, 0xab84c59121d279bb, 0x62, 0x34, 0x22, 0x38]}, &(0x7f00000005c0)={0x0, "de275961ce158977bd71c54e0e8d924de28e4d37392f51b19541afb7aae1554853df8719aa87cd41db9fe2d99ab0488c3b2a4f1d1aecb2500c7c9f1458150a2a", 0x37}, 0x48, 0xfffffffffffffffa) keyctl$KEYCTL_MOVE(0x1e, r3, r4, r5, 0x1) clone3(&(0x7f0000000ac0)={0x17412c500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 08:52:10 executing program 3: unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) [ 285.737758] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.740096] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.741898] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.745737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.748739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.750594] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.752100] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.753578] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.754350] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.755574] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.756356] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.757334] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.758154] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.759119] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.760275] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.761326] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.762170] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.763124] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.763995] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.764984] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.767202] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.768682] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.769476] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.770985] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.771819] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.772613] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.773697] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.774428] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.775324] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.776101] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.788603] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.790613] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.792608] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.794368] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.796105] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.797941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.799744] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.800965] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.801947] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.807342] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.808258] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.809209] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.810054] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.810945] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.811863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.816846] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.817892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.818898] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.819878] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.820877] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.821888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.822935] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.823941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.825015] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.826195] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.828403] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.829610] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.830814] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.831899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.833127] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.834222] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.835337] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.836268] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.837282] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.838189] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.839090] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.839972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.840962] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.841892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.842892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.843969] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.844953] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.845905] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.846862] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.847813] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.848795] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.849758] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.850691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.851836] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.852920] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.853995] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.855001] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.856044] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.857039] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.857951] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.858863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.859741] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.860545] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.861312] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.862062] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.862870] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.863600] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.864393] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.865145] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.866124] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.867042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.868795] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.870583] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.872444] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.874252] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.876046] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.877887] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.879865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.881750] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.883550] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.885324] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.886872] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.888658] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.890966] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.897842] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.898934] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.900437] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.901291] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.902227] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.903112] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.904042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.904925] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.905860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.906963] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.907842] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.908792] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.909853] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.910747] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.911732] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.912604] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.913537] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.914497] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.915678] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.916565] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.917709] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.918552] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.919487] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.920483] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.921408] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.922562] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.923607] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.924785] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.925675] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.926579] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.927474] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.928749] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.929671] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.932465] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.935046] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 08:52:10 executing program 6: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) [ 285.954277] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.956404] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.961433] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.972464] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.975503] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.977785] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 285.986762] Process accounting resumed 08:52:24 executing program 5: r0 = syz_io_uring_setup(0x4c4f, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000140)=0x0) r3 = socket$packet(0x11, 0x3, 0x300) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r3, 0x0, 0x0}, 0x0) writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000080)='1', 0x1}, {&(0x7f00000001c0)='+', 0x1}], 0x2) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x2010, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x4, 0x1}, 0x4) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 08:52:24 executing program 4: prlimit64(0x0, 0x9, &(0x7f0000000340), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10018, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000004c0)={0x0, 0x80, 0x3, 0x0, 0xdb, 0x8, 0x0, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000240), 0xc}, 0xc00, 0x1, 0x1, 0x5, 0x8, 0xffffffff, 0x9, 0x0, 0x0, 0x0, 0x20000000000}, 0x0, 0xe, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0x1, &(0x7f0000000200)={0x6, 0x1}, &(0x7f0000000240)) prlimit64(0xffffffffffffffff, 0xd, 0x0, &(0x7f0000000080)) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) r1 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) fstat(r1, &(0x7f00000002c0)) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) setsockopt$inet_group_source_req(r2, 0x0, 0x4, 0x0, 0x0) connect$inet(r2, 0x0, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000180)) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000100), 0x4) prlimit64(0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x7, 0x3}, &(0x7f0000000100)) setresuid(0xffffffffffffffff, r0, 0x0) prlimit64(0x0, 0xc, 0x0, &(0x7f0000000140)) io_setup(0x2d47, &(0x7f0000000000)) signalfd4(0xffffffffffffffff, &(0x7f0000000280)={[0xffffffff00000000]}, 0x8, 0x0) 08:52:24 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x10204, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000000, 0xfffffffffffffffd}, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x10, 0x0, 0x1000002) setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file1\x00', &(0x7f0000000100), &(0x7f0000000180)='./file1\x00', 0x8, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, 0x0) utimensat(r0, 0x0, &(0x7f0000000200), 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x20000, 0x62) ioctl$BLKROTATIONAL(r1, 0x127e, &(0x7f00000001c0)) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000040)=0x7) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00') pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r3 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x601, 0xcad2c232ea4510c1) bind$packet(r3, &(0x7f0000000340)={0x11, 0x15, 0x0, 0x1, 0x83, 0x6, @multicast}, 0x14) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)="cf", 0x1}], 0x1}, 0x50) recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) 08:52:24 executing program 3: unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:52:24 executing program 0: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x2, "77004a6efdff0000000008002600"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2}, 0x0) syz_io_uring_setup(0x5c, &(0x7f00000001c0)={0x0, 0x4000}, &(0x7f0000001000/0x2000)=nil, &(0x7f00009ad000/0x1000)=nil, &(0x7f0000000140), &(0x7f0000000240)=0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000000c0)=@IORING_OP_FSYNC={0x3, 0x5}, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) syz_io_uring_setup(0x238e, &(0x7f00000002c0)={0x0, 0x4063, 0x1, 0x3, 0x18c}, &(0x7f0000454000/0x2000)=nil, &(0x7f0000a99000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r4, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000888000/0x12000)=nil, 0x12000, 0x1000003, 0x13, r1, 0x8000000) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r1, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f00002ff000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r1, 0x8000000) syz_io_uring_submit(r5, r3, &(0x7f0000000180)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r2, 0x9, &(0x7f0000000340)="05f73b7a18d8180fa6ed9b901c1ee63b967487e364c8cfd46a5c1d485b09d17e133478b6896d6f84ed19100e6a12dd2c4b829b55036e2f2ab2e8826d70a7525258df5248bc9bf499762e6d9b47c0cbe6fa18588622b123c47042369ca9", 0x5d, 0x10}, 0xf2) socket$inet(0x2, 0xa, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfd4}, 0x840}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 08:52:24 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:24 executing program 2: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) stat(&(0x7f0000000200)='./file1\x00', &(0x7f0000000580)) sendfile(r3, r4, 0x0, 0x100000001) [ 299.087756] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 299.103767] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 299.106882] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 299.191290] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 299.192549] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 299.193461] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 299.194253] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 299.195159] print_req_error: 312 callbacks suppressed [ 299.195171] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 299.207312] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.208044] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 299.209310] buffer_io_error: 318 callbacks suppressed [ 299.209317] Buffer I/O error on dev sr0, logical block 0, async page read [ 299.214225] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.214936] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 299.216148] Buffer I/O error on dev sr0, logical block 1, async page read [ 299.217402] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.218934] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 299.220251] Buffer I/O error on dev sr0, logical block 2, async page read [ 299.221314] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.222051] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 5 prio class 0 [ 299.223346] Buffer I/O error on dev sr0, logical block 3, async page read [ 299.224286] Buffer I/O error on dev sr0, logical block 4, async page read [ 299.225250] Buffer I/O error on dev sr0, logical block 5, async page read [ 299.226205] Buffer I/O error on dev sr0, logical block 6, async page read [ 299.227166] Buffer I/O error on dev sr0, logical block 7, async page read [ 299.228597] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.229446] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 299.230750] Buffer I/O error on dev sr0, logical block 0, async page read [ 299.231917] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.232852] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 299.234175] Buffer I/O error on dev sr0, logical block 1, async page read [ 299.235726] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.236444] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 299.238004] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.238762] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 299.240197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.241022] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 299.242349] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.243113] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.243876] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.244737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.246902] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.247856] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.248717] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.250025] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.250817] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.251574] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.253827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.254774] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.255657] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.256523] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.257816] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.259091] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.259976] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.261042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.262027] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.262799] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.263580] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.264573] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.265398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.266200] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.266994] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.267823] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.268642] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.269501] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.274841] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.275581] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.276397] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.277991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.278789] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.279549] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 08:52:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x10204, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000000, 0xfffffffffffffffd}, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x10, 0x0, 0x1000002) setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file1\x00', &(0x7f0000000100), &(0x7f0000000180)='./file1\x00', 0x8, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, 0x0) utimensat(r0, 0x0, &(0x7f0000000200), 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x20000, 0x62) ioctl$BLKROTATIONAL(r1, 0x127e, &(0x7f00000001c0)) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000040)=0x7) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00') pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r3 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x601, 0xcad2c232ea4510c1) bind$packet(r3, &(0x7f0000000340)={0x11, 0x15, 0x0, 0x1, 0x83, 0x6, @multicast}, 0x14) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)="cf", 0x1}], 0x1}, 0x50) recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) [ 299.280396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.281254] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.282015] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.288330] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.296064] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.296927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.297800] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.298621] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.299550] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.300416] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.301557] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.302408] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.303284] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.304112] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.306800] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.307622] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.309668] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.310541] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.311391] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.312249] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.313823] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.314612] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.315517] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.316379] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.317409] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.318368] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.319216] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.320120] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.320979] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.321879] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.322729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.323581] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.324536] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.325442] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.326323] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.327227] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 08:52:24 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x10204, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000000, 0xfffffffffffffffd}, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x10, 0x0, 0x1000002) setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file1\x00', &(0x7f0000000100), &(0x7f0000000180)='./file1\x00', 0x8, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, 0x0) utimensat(r0, 0x0, &(0x7f0000000200), 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x20000, 0x62) ioctl$BLKROTATIONAL(r1, 0x127e, &(0x7f00000001c0)) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000040)=0x7) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00') pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r3 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x601, 0xcad2c232ea4510c1) bind$packet(r3, &(0x7f0000000340)={0x11, 0x15, 0x0, 0x1, 0x83, 0x6, @multicast}, 0x14) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)="cf", 0x1}], 0x1}, 0x50) recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) [ 299.328095] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.338887] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.339648] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.340395] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.341223] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.341997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.343439] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.344203] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.345057] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.345820] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.346562] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.347488] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.348343] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.349131] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.349931] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.350679] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.351439] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.352221] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.353363] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.357049] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.357882] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.358744] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.359457] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.360313] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.361138] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.361888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.362602] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.363375] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.364197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.364977] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.365716] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.366454] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.367203] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.367955] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.368697] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.369444] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.370223] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.371295] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.372057] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.372822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.373549] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.374309] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.375067] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.375839] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.376649] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.377443] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.378271] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.379127] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.379872] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.380997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.381769] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.382598] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.383833] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.384982] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.386113] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.387847] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.392342] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.394070] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.397233] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.399514] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.400418] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.401854] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.402572] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.403393] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.404945] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.406072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.408265] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.409305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.410662] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.411574] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.412477] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.413316] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.414162] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.415016] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.415785] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.416600] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.418779] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.431893] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.433290] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.435421] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 08:52:24 executing program 3: unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) [ 299.436509] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.438892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.441049] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.442119] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.444156] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.445276] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.446122] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.446995] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.447767] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.448554] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.449616] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.450425] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.451273] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.452066] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.453895] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.454776] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.455594] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.456563] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.457440] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.458298] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.459238] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.460088] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.461054] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.462027] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.462919] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.463784] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.464595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.465497] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.466491] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.467404] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.468255] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.469264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.470103] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.470997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.471846] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.472754] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.473689] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.474752] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.475588] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.476827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.477713] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.478547] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.479434] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.480305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.481401] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.482403] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.483525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.484603] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.486014] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 08:52:24 executing program 4: prlimit64(0x0, 0x9, &(0x7f0000000340), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10018, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000004c0)={0x0, 0x80, 0x3, 0x0, 0xdb, 0x8, 0x0, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000240), 0xc}, 0xc00, 0x1, 0x1, 0x5, 0x8, 0xffffffff, 0x9, 0x0, 0x0, 0x0, 0x20000000000}, 0x0, 0xe, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0x1, &(0x7f0000000200)={0x6, 0x1}, &(0x7f0000000240)) prlimit64(0xffffffffffffffff, 0xd, 0x0, &(0x7f0000000080)) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) r1 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) fstat(r1, &(0x7f00000002c0)) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) setsockopt$inet_group_source_req(r2, 0x0, 0x4, 0x0, 0x0) connect$inet(r2, 0x0, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000180)) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000100), 0x4) prlimit64(0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x7, 0x3}, &(0x7f0000000100)) setresuid(0xffffffffffffffff, r0, 0x0) prlimit64(0x0, 0xc, 0x0, &(0x7f0000000140)) io_setup(0x2d47, &(0x7f0000000000)) signalfd4(0xffffffffffffffff, &(0x7f0000000280)={[0xffffffff00000000]}, 0x8, 0x0) [ 299.489250] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.490497] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.492526] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.493606] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.496403] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.497297] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.498153] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.507880] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.508664] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.510609] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.511349] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.512142] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.516218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.516982] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.517721] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.518430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.519163] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.524751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.525547] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.527124] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.528388] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.529349] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.531013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.531866] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.533061] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.535623] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.551123] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.552482] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.553708] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.554902] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.555963] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.560030] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.563326] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.565304] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.569176] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 08:52:24 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x10204, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000000000, 0xfffffffffffffffd}, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r0, 0x10, 0x0, 0x1000002) setxattr$trusted_overlay_redirect(&(0x7f0000000080)='./file1\x00', &(0x7f0000000100), &(0x7f0000000180)='./file1\x00', 0x8, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, 0x0) utimensat(r0, 0x0, &(0x7f0000000200), 0x0) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x20000, 0x62) ioctl$BLKROTATIONAL(r1, 0x127e, &(0x7f00000001c0)) ioctl$TUNSETSNDBUF(r1, 0x400454d4, &(0x7f0000000040)=0x7) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter\x00') pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r3 = openat(r2, &(0x7f00000000c0)='./file1\x00', 0x601, 0xcad2c232ea4510c1) bind$packet(r3, &(0x7f0000000340)={0x11, 0x15, 0x0, 0x1, 0x83, 0x6, @multicast}, 0x14) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)="cf", 0x1}], 0x1}, 0x50) recvfrom$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) 08:52:24 executing program 0: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x2, "77004a6efdff0000000008002600"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2}, 0x0) syz_io_uring_setup(0x5c, &(0x7f00000001c0)={0x0, 0x4000}, &(0x7f0000001000/0x2000)=nil, &(0x7f00009ad000/0x1000)=nil, &(0x7f0000000140), &(0x7f0000000240)=0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000000c0)=@IORING_OP_FSYNC={0x3, 0x5}, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) syz_io_uring_setup(0x238e, &(0x7f00000002c0)={0x0, 0x4063, 0x1, 0x3, 0x18c}, &(0x7f0000454000/0x2000)=nil, &(0x7f0000a99000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r4, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000888000/0x12000)=nil, 0x12000, 0x1000003, 0x13, r1, 0x8000000) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r1, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f00002ff000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r1, 0x8000000) syz_io_uring_submit(r5, r3, &(0x7f0000000180)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd=r2, 0x9, &(0x7f0000000340)="05f73b7a18d8180fa6ed9b901c1ee63b967487e364c8cfd46a5c1d485b09d17e133478b6896d6f84ed19100e6a12dd2c4b829b55036e2f2ab2e8826d70a7525258df5248bc9bf499762e6d9b47c0cbe6fa18588622b123c47042369ca9", 0x5d, 0x10}, 0xf2) socket$inet(0x2, 0xa, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfd4}, 0x840}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 08:52:24 executing program 6: prlimit64(0x0, 0x9, &(0x7f0000000340), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10018, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000004c0)={0x0, 0x80, 0x3, 0x0, 0xdb, 0x8, 0x0, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000240), 0xc}, 0xc00, 0x1, 0x1, 0x5, 0x8, 0xffffffff, 0x9, 0x0, 0x0, 0x0, 0x20000000000}, 0x0, 0xe, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0x1, &(0x7f0000000200)={0x6, 0x1}, &(0x7f0000000240)) prlimit64(0xffffffffffffffff, 0xd, 0x0, &(0x7f0000000080)) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) r1 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) fstat(r1, &(0x7f00000002c0)) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) setsockopt$inet_group_source_req(r2, 0x0, 0x4, 0x0, 0x0) connect$inet(r2, 0x0, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000180)) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000100), 0x4) prlimit64(0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x7, 0x3}, &(0x7f0000000100)) setresuid(0xffffffffffffffff, r0, 0x0) prlimit64(0x0, 0xc, 0x0, &(0x7f0000000140)) io_setup(0x2d47, &(0x7f0000000000)) signalfd4(0xffffffffffffffff, &(0x7f0000000280)={[0xffffffff00000000]}, 0x8, 0x0) 08:52:24 executing program 3: creat(0x0, 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:52:24 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r3 = syz_io_uring_setup(0x4, &(0x7f0000000740), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000480)='/proc/key-users\x00', 0x0, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) sendfile(r0, r3, &(0x7f0000000040)=0x46f, 0x8) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 299.899595] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 299.900819] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 299.901929] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 299.902738] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 299.904372] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.905262] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.906157] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.907018] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.907960] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.908824] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.909682] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.910543] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.911591] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.920728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.921585] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.922468] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.926967] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.927834] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.928969] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.929854] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.930617] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.931647] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.932380] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.933173] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.934042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.935840] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.937517] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.939222] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.942443] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.944890] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.946885] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.948947] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.950812] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.954647] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.956542] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.958407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.960320] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.962137] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.963831] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.965521] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.967210] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.968887] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.970579] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.972251] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.974181] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.975182] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.976118] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.977573] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.978507] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.979432] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.980382] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.981336] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.982290] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.984009] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.985818] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.987490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.989219] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.990849] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.992696] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.993966] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.994942] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.995970] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.996942] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.997873] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.998873] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 299.999894] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.000860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.001706] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.002496] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.003341] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.004177] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.005024] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.005883] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.006735] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.007568] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.008412] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.009264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.010103] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.010944] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.011799] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.012583] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.013445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.014357] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.015197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.016019] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.016810] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.017534] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.018310] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.019105] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.019883] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.020704] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.023601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.024375] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.025203] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.026379] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.027232] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.028077] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.028913] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.030147] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.031015] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.031861] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.032716] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.033509] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.034370] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.035209] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.036054] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.036952] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.037822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.038646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.039471] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.040322] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.041180] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.042028] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.042907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.043823] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.044617] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.045480] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.046428] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.047261] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.048075] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.048858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.049581] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.050468] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.051245] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.052033] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.052829] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.053543] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.055827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.070415] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.074287] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.076020] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.077750] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.079391] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.081032] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.082728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.086710] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.088388] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.090068] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.091938] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.093072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.093991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.094900] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.096060] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.096979] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.097901] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.098866] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.100044] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.100977] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.101974] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.102963] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.103898] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.104858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.106077] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.107028] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.107879] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.109566] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.111272] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.112932] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.114571] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.116230] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.117910] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.119562] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.121322] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.122965] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.125792] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.127436] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.129112] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.130756] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.132422] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.134086] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.136002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.137002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.138181] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.139090] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.140026] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.140966] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.141898] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.142861] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.143950] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.144900] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.145804] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.146708] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.147601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.148549] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.149545] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.150529] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.151617] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.154446] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.155281] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.156128] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.156984] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.159990] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.160856] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.161737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.164998] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.166938] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.167776] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.170156] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.172219] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.175482] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.176347] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.177335] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.178147] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.178956] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.179710] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 08:52:25 executing program 2: setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000000)={0x0, 0x7fffffff}, 0x8) r0 = msgget(0x3, 0x6e0) r1 = msgget(0x3, 0x0) msgctl$IPC_RMID(r0, 0x0) msgctl$IPC_RMID(r1, 0x0) [ 300.180486] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.181257] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.183826] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.184555] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.201409] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.202527] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.203277] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.204023] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.204780] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.205506] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.206518] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.207272] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.208166] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.208989] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.209826] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.210557] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.211322] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.212104] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.212889] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.213682] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.214420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.215243] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.215992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.216752] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.217495] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.218248] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.219002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.219745] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.220488] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.221338] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.222108] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.222846] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.223582] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.224334] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.230355] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.231098] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.232248] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.233089] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.233905] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.234501] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.235160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.235785] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.236411] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.237111] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.237894] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.238648] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.239378] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.240108] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.240892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.241588] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.242383] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.243111] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.243871] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.244650] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.245420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.246160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.246904] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.247587] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.248361] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.249118] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.249904] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.250665] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.251396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.252128] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.252892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.253574] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.254352] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.255063] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.255822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.257307] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.265926] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.283969] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.290827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.292927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.294001] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.302971] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 300.305100] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 306.463238] Bluetooth: hci4: command 0x0406 tx timeout [ 306.464262] Bluetooth: hci0: command 0x0406 tx timeout [ 306.464953] Bluetooth: hci2: command 0x0406 tx timeout [ 306.465602] Bluetooth: hci1: command 0x0406 tx timeout [ 306.466265] Bluetooth: hci5: command 0x0406 tx timeout [ 306.466934] Bluetooth: hci3: command 0x0406 tx timeout [ 306.468534] Bluetooth: hci6: command 0x0406 tx timeout [ 306.475946] Bluetooth: hci7: command 0x0406 tx timeout 08:52:38 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r3 = syz_io_uring_setup(0x4, &(0x7f0000000740), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000480)='/proc/key-users\x00', 0x0, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) sendfile(r0, r3, &(0x7f0000000040)=0x46f, 0x8) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 08:52:38 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:38 executing program 5: perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r0 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r0, 0x400, 0x0) fcntl$setlease(r0, 0x400, 0x2) creat(&(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x40) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(0xffffffffffffffff, 0xc0bc5351, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r1, 0x6, 0x2, 0x0, &(0x7f0000000180)) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r2, 0x80045300, &(0x7f00000000c0)) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000080)={0x9d0, 0x4, 0x1af3}) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(0xffffffffffffffff, 0x80089419, 0x0) 08:52:38 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:38 executing program 2: setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000000)={0x0, 0x7fffffff}, 0x8) r0 = msgget(0x3, 0x6e0) r1 = msgget(0x3, 0x0) msgctl$IPC_RMID(r0, 0x0) msgctl$IPC_RMID(r1, 0x0) 08:52:38 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:38 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) getsockopt$ARPT_SO_GET_INFO(r4, 0x0, 0x60, &(0x7f0000000140)={'filter\x00', 0x0, [0x2, 0x57, 0x81]}, &(0x7f0000000040)=0x44) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:38 executing program 3: creat(0x0, 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) [ 313.813494] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 313.841454] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 313.844782] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 313.849996] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:52:38 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x6a8600, 0x0) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8800000) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r3, 0x6, 0x2, 0x0, &(0x7f0000000180)) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000300)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file1/file0\x00'}) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000380)={0xffffffff, 0x0, &(0x7f0000000340)=[r3, r4, r0, r0, r2]}, 0x5) r5 = accept$unix(r1, &(0x7f00000000c0), &(0x7f0000000140)=0x6e) fcntl$dupfd(r1, 0x406, r5) r6 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r6, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000001c0)='./binderfs2/binder0\x00', 0x0, 0x0) ioctl$BINDER_FREEZE(r7, 0x400c620e, &(0x7f0000000200)) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, &(0x7f0000000180)) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, 0xffffffffffffffff, &(0x7f0000000080)={0x12}) 08:52:38 executing program 5: ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000002500)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file1\x00'}) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000180)=ANY=[@ANYBLOB='//'], &(0x7f0000000000)='./file0\x00', 0x0, 0xf000, 0x0) open(&(0x7f00000001c0)='./file1\x00', 0x200580, 0x104) r1 = socket$inet(0x2, 0x2, 0x8) close(r1) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x87, 0x6, &(0x7f0000002380)=[{&(0x7f0000002600)="86374f25626872fa820015d39386478b5bb6d3fe2f9ed46fc71f80a8194d9467bf3cea128bbd87ff4e93fc06e7170e3075d8d8ccb5cb04396e071bfbdc42f65d712df5ba2598ae10f01a9751a08a6e54636db14203c2a359dabc0b19fa9062ada3c9a7dcebfd62106c1fe6de7862cffc323bb758ffffbb347e0308287e0bbfa8fa263579c3a2e31cde8f4f3dfe09962eec8dd147f082e7d958471e20c4f709c3003909432cf570700665ab5de33c54d5c2bfc8f110277f37eac7adf5def7d513f9c3498d3cdf0b5a66375c9eec53ff76de21c79ca1dddea9aad5ab8caf443a56d9b54fe46f10d06acf00cbb91949", 0xee, 0x2}, {&(0x7f0000000100)="cfa6f423e4b808e3fe2bf89e5c7bc0485d0b9f1e53c638209c93e059235b2605f9503eccbec44c84d78ed5dd37113989f23c25d6ffc0b58e241ccc1414e494e7c1414ddc4c0505517c6a9ec9a7776d45a660b04373fc4c163a96b818d9333e4ce2a7011b855230580c5a1da4bb4f73af3401f97cdfe2e160688ab4caf923", 0x7e, 0x80000000}, {&(0x7f00000002c0)="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", 0x1000, 0xffffffffffffffff}, {&(0x7f00000012c0)="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", 0x1000, 0x6}, {&(0x7f00000022c0)="3e5eb9fd8816aac5a19bb61647943892cbb7f1e062fa6bd0ecb72cfdce0676bbf5a138e90a0a7786b9a01340f8203702a21310c43e8d8c02b08a2e76a6e2d71220a43db10c2e15cb461ddd54c5d83adf1e423b858811be3088", 0x59, 0x6}, {&(0x7f0000002340)="04f1b834c2a0c0ea7945283a3d0eba680c982f684504", 0x16, 0x8001}], 0x2b448, &(0x7f0000002540)={[{@lazytime}, {@commit={'commit', 0x3d, 0x101}}], [{@pcr={'pcr', 0x3d, 0x2b}}, {@fowner_eq={'fowner', 0x3d, 0xee00}}, {@subj_type={'subj_type', 0x3d, '('}}, {@appraise}, {@obj_user={'obj_user', 0x3d, '%.+\xa8}$-*$'}}, {@obj_type}, {@hash}]}) 08:52:39 executing program 3: creat(0x0, 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:52:39 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00'}) bind$packet(0xffffffffffffffff, 0x0, 0x0) syncfs(0xffffffffffffffff) r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) syncfs(r0) ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r1, 0x6, 0x2, 0x0, &(0x7f0000000180)) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan1\x00'}) 08:52:39 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x11010}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x6a8600, 0x0) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, 0xffffffffffffffff) r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8800000) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r3, 0x6, 0x2, 0x0, &(0x7f0000000180)) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000300)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file1/file0\x00'}) io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000380)={0xffffffff, 0x0, &(0x7f0000000340)=[r3, r4, r0, r0, r2]}, 0x5) r5 = accept$unix(r1, &(0x7f00000000c0), &(0x7f0000000140)=0x6e) fcntl$dupfd(r1, 0x406, r5) r6 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r6, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000001c0)='./binderfs2/binder0\x00', 0x0, 0x0) ioctl$BINDER_FREEZE(r7, 0x400c620e, &(0x7f0000000200)) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, &(0x7f0000000180)) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, 0xffffffffffffffff, &(0x7f0000000080)={0x12}) 08:52:39 executing program 4: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r3 = syz_io_uring_setup(0x4, &(0x7f0000000740), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000480)='/proc/key-users\x00', 0x0, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) sendfile(r0, r3, &(0x7f0000000040)=0x46f, 0x8) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 327.686240] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 327.695571] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:52:52 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:52 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x0) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:52:52 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:52 executing program 6: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r1, 0x6, 0x2, 0x0, &(0x7f0000000180)) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000580)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f00000007c0)=ANY=[@ANYBLOB="010000ee0000000018000000", @ANYRES32=0xffffffffffffffff, @ANYBLOB="06000000000000002e2f66696c653000"]) r3 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0xa, 0x4e23, 0x0, @remote}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000300)="31716bb1a17bf9ae49bd8ff8c9229918031cbaa246b24c89d9029492e23d92b22bd98543f0c0e95c496b34957a70f5a177bcc0678148fd9edbd69a3ef119dbc8d4fc4903a9b7dee1427f2e122675a661ed21c80d4dc27a6cf65da8329280963e65a125eab556c115605a25244c3503e755b87a619d6b66dd48c3c8265574b674c6b5bbca8a39e148d123d50a", 0x8c}, {&(0x7f0000000900)="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", 0x501}], 0x2, &(0x7f00000005c0)=ANY=[@ANYBLOB="300000000000000029000000360000000003130000000000050200000502000040096b9a57e29c8e16642e2503000000"], 0x30}, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) r4 = openat$incfs(r3, &(0x7f00000000c0)='.log\x00', 0x40, 0x0) sendmmsg$inet6(r4, &(0x7f00000002c0)=[{{&(0x7f0000000100)={0xa, 0x4e24, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}, 0x80000000}, 0x1c, &(0x7f0000000180)=[{&(0x7f00000004c0)="d9962a9bdc46399ae4879b961c41ad924fe4fc3a675dfdd3df9e3d7444ceb36d71e709c1e659dffbfdfca9c2f840b23c1d8383ac6c6ad06cbcb281b019fb32ca9f86dc9ae437c1052943b985dda00d5f7d8cd353e104ade6c04f61461f20618c45ce2990dc55e7371c89b98957fa9c35dd730d8fb586e921b16b6c14904b5b65575092a2139221017d7e85c86ff8ce1dc940c334e8657f136f", 0x99}, {&(0x7f0000000600)="8fb8279def5c9d276f358979bd76800b8c832eb28f1f3729a4d5d46846e08ce0dfe1aa842f07ca26b9d32ba5db4d11740c3958ca0569d55f03b3f0a52275588b4ee34059929df756471f8bc1c1615770459b6894d538f8729a8c1fa8fb1bb50a9c17c59a0a20e3736e6af9eb8e560bbf6431086b857c8841c43d14e5b0847b161acea43b76fc99abc29c642eab35ba8022b00c2e1f957cf7efe8cd0956cc2c941173148017d547edf859f0bea5573b8674b5c73ef2a5", 0xb6}, {&(0x7f0000000140)="8ff3a0793a6998c7c7e0980ced673fff331c19bc301d84817ef115ec91", 0x1d}], 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1400000000000000290000003400000001000000000000001600000000000000290000003e0000000800000000000000d4fdb6cfb945d3a1f78a31d7a0d3fa224cd1f108b32107cc31f753b88a25f55799348be4d984bfd488e9025524a646a611cf0394a1472c7ef81e17b3ef"], 0x30}}], 0x1, 0x800) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r4) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f0000000400)={&(0x7f0000000040), 0xc, &(0x7f00000003c0)={&(0x7f00000006c0)={0x100, r6, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0xdc, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x4}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8}]}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x100}, 0x1, 0x0, 0x0, 0x8893}, 0x30) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x0) 08:52:52 executing program 2: connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r0 = syz_io_uring_setup(0x29e4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1e8}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, &(0x7f0000000400)) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) r2 = mq_open(&(0x7f0000005c00)='-@\x00', 0x42, 0x0, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000004, 0x11, r0, 0x10000000) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x91ddbfbe01867c78, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000440)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd=r2, 0x3, {0x0, r4}, 0x1ed8, 0x0, 0x0, {0x0, 0x0, r0}}, 0x7ff) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000340)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff", 0xd6}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x7, @local, 0xfffffffd}, 0x1c, &(0x7f0000000140)=[{&(0x7f00000002c0)="1798a257a2c32ab567887a3554ee5712b547e3da68b82eb58fe564d5f812bc3e9808d5178a243d176870d238dad07e443630ca0050bb74b1e72f38f8f1fb54e696902efb64508f34", 0x48}], 0x1, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x178}}], 0x2, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000480)={@private2}, 0x14) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x500, 0x0, 0x3, 0x3}, 0x23) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f00000003c0)) creat(&(0x7f0000000000)='./file0\x00', 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @rand_addr=' \x01\x00', 0xb2}, 0x1c) 08:52:52 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0xc6e2, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) fallocate(r0, 0x3, 0x900500, 0x30000000000) recvmsg$unix(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000040)=""/87, 0x57}, {&(0x7f00000000c0)=""/178, 0xb2}, {&(0x7f0000000180)=""/236, 0xec}], 0x3, &(0x7f0000000300)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}, 0x0) ioctl$KDGKBMETA(r1, 0x4b62, &(0x7f00000003c0)) 08:52:52 executing program 7: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x8120, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fremovexattr(r0, &(0x7f0000001200)=ANY=[@ANYBLOB="6f73321c968c88bbdd089e98"]) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r1, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x121042, 0x93) r3 = eventfd2(0x9, 0x0) dup(r3) sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x40094}, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f0000001280)={'#! ', './file1', [{0x20, '/dev/zero\x00'}], 0xa, "35db0c26f30038e8a17ea69acd3352fd86deaa90d1ca71a1549e420a68eeda87d1b96cf860577c5fdb8be401c85de3654272fe11dac89a7cdfaec0cf6d0177322c0f81efc7207ebfaa9980985c58894b9b"}, 0x67) fcntl$F_GET_RW_HINT(r2, 0x40b, &(0x7f0000000040)) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) open(&(0x7f0000000140)='./file1\x00', 0x400, 0x42) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) openat(r4, &(0x7f00000010c0)='./file1/file0\x00', 0x0, 0x2) read(r5, &(0x7f00000000c0)=""/4096, 0x1000) socket$nl_generic(0x10, 0x3, 0x10) openat(r5, &(0x7f00000001c0)='./file1/file0\x00', 0x0, 0x82) syz_io_uring_setup(0x6ab9, &(0x7f0000001100)={0x0, 0x7998, 0x4, 0x0, 0x2fb, 0x0, r2}, &(0x7f00000a7000/0x2000)=nil, &(0x7f0000993000/0x1000)=nil, &(0x7f0000001180), &(0x7f00000011c0)) 08:52:52 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:52:52 executing program 4: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 327.761266] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 327.792662] Process accounting resumed 08:52:52 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x0) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:52:52 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_RX_RING(r2, 0x10e, 0x6, 0x0, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x40, r3, 0x200, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x0, 0x32}}}}, [@NL80211_ATTR_MAC_ADDRS={0x10, 0xa6, 0x0, 0x1, [{0xa}]}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x40}, 0x800) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r0) sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r5, 0x400, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @void}}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000010) sendmsg$NL80211_CMD_SET_PMK(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x14, r3, 0x2, 0x70bd21, 0x0, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x40000) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000040)={@local, 0x3f, 0x2, 0x0, 0x4, 0x7, 0x3}, 0x20) 08:52:52 executing program 2: connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r0 = syz_io_uring_setup(0x29e4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1e8}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, &(0x7f0000000400)) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) r2 = mq_open(&(0x7f0000005c00)='-@\x00', 0x42, 0x0, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000004, 0x11, r0, 0x10000000) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x91ddbfbe01867c78, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000440)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd=r2, 0x3, {0x0, r4}, 0x1ed8, 0x0, 0x0, {0x0, 0x0, r0}}, 0x7ff) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000340)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff", 0xd6}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x7, @local, 0xfffffffd}, 0x1c, &(0x7f0000000140)=[{&(0x7f00000002c0)="1798a257a2c32ab567887a3554ee5712b547e3da68b82eb58fe564d5f812bc3e9808d5178a243d176870d238dad07e443630ca0050bb74b1e72f38f8f1fb54e696902efb64508f34", 0x48}], 0x1, &(0x7f00000008c0)=ANY=[@ANYBLOB="1400000000000000290000003400000001076b9bfc00000000000000180186946c00000000000029000000360000003a1f00000000000000010005f43cfdc6302b18d5eef81867bdf56da53fa182672a531e2c5e11596687e940cea16ef90321fdaa5981a6e3fe6d75b7f6b169d4e9c7ea5248cf85e516fc1410c556c1cb4300177fcc65e5aa87ad74a4cd61d9c832c1734a9a2a122b6ea169930007575c5bd362faf055c4cb6601984ae96418cf005b5c0e6897ff060b33096e7f46e0a57eed850683071a3ea82860d55b4fb650bdc87f523e5c45b3b6d1d6a226ebf3f9b10735f34ba63b5d2d1cd78a4d58abe8fad7c1bad5d586ed213981845f0daaa349d525f10c46b66731f805dc00b8373a1a286e74b514ae5fa16274fa2d1f5cc8c9f93b82de970c255b6a16110bb6eeeafad48ea9bef3b56800000000000000300000000000000029000000360000000c03000000000000c910fe880000000000000000000020875b82490876864500000001c2040000b2cca5a02466a6fe822e8dfd005e3306cb1592b2ce26cd569159a6be606a5735b5015467f8b5058ffd3cb43e76ed8d2f85327a4bb9ad91498f42cd1d365df63f9027830eee65b71233117e2ce7042693802a22517fb59c5cb2ba648d197150e3c616788d28be10dcc2764da579e33311c26f64ee46b6fe377434336614b5bda08b7876dac37191fa0fc50ae85bf2dd38c5ee4eb16b688e0b172c72fe7d48ecfa9996e2eb8dd598c62ca23a32a1d63c4e0100010000000000108d2c83bdf4723b5ce94e9b90a05bdca2fbc2750173969e4c985dade51684a9ee670db7132e65a9b701774a6cdd4fb4fbe092d60c4d0c5d0311"], 0x178}}], 0x2, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000480)={@private2}, 0x14) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x500, 0x0, 0x3, 0x3}, 0x23) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f00000003c0)) creat(&(0x7f0000000000)='./file0\x00', 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @rand_addr=' \x01\x00', 0xb2}, 0x1c) [ 327.948495] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. 08:52:52 executing program 6: connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r0 = syz_io_uring_setup(0x29e4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x1e8}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, &(0x7f0000000400)) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r0, 0x0) r2 = mq_open(&(0x7f0000005c00)='-@\x00', 0x42, 0x0, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000004, 0x11, r0, 0x10000000) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x91ddbfbe01867c78, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000000440)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd=r2, 0x3, {0x0, r4}, 0x1ed8, 0x0, 0x0, {0x0, 0x0, r0}}, 0x7ff) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000040)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000340)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff", 0xd6}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x7, @local, 0xfffffffd}, 0x1c, &(0x7f0000000140)=[{&(0x7f00000002c0)="1798a257a2c32ab567887a3554ee5712b547e3da68b82eb58fe564d5f812bc3e9808d5178a243d176870d238dad07e443630ca0050bb74b1e72f38f8f1fb54e696902efb64508f34", 0x48}], 0x1, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x178}}], 0x2, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000480)={@private2}, 0x14) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x500, 0x0, 0x3, 0x3}, 0x23) ioctl$sock_SIOCINQ(r5, 0x541b, &(0x7f00000003c0)) creat(&(0x7f0000000000)='./file0\x00', 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) bind$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @rand_addr=' \x01\x00', 0xb2}, 0x1c) 08:52:53 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, r1, 0x0) r2 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0xffffffffffffffff, 0xee01}}, './file0\x00'}) socket$inet6_udplite(0xa, 0x2, 0x88) syz_mount_image$nfs(&(0x7f0000000240), &(0x7f00000002c0)='./file0/../file0\x00', 0x3, 0x3, &(0x7f0000000500)=[{&(0x7f0000000680)="b09456e1cc1abe3be01b5ab628f4f34a9a6cc65a92f9877ae3771e21d09c820335483bdc14c4696a6b7661a1c0cd40bf760bbd9d7976fb11c6db4c32f90d212b2447c78c0bb70e2341b9135a", 0x4c, 0xffffffffffffffff}, {&(0x7f00000003c0)="734392bf111e34ad89833539b8bc9d0c90f5905723c06cb62a77178037bdf869a9e9f9cf9b423b1c6c08e00a09ff612f180330d73c0a707c15a15ce9cff7d35d67b8f1929ea5dbb86e30efc44374d16ea8b43e80ec4d305a95b6b85adc47c8abfc", 0x61, 0x40}, {&(0x7f00000007c0)="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", 0x166, 0x5}], 0x1, &(0x7f0000000700)={[{'-$/\xd1M\x8b\x0f\x1c\xa2lF_\xb2\xdf\xc7AK\xf8\x8f\xa9\xf6\x18\x90\xe0:\x1f\xd4\x04\x84\xaa\x982o(\xb3\xec)\xb0\xe0\xb0J\xe12\x8b\xd7\x89~\x84%\x81b\xd0\xddo\x8e8\x96\x8a\x9dx\x13\xf2JZa\xf9\xa7Ck\xf4\x84e^\xc0\x81\xfaL\xbc\x19\b\x9b\xc3'}, {'rfdno'}, {'9p\x00'}, {'[\x89'}], [{@obj_type={'obj_type', 0x3d, '-$/\xd1M\x8b\x0f\x1c\xa2lF_\xb2\xdf\xc7AK\xf8\x8f\xa9\xf6\x18\x90\xe0:\x1f\xd4\x04\x84\xaa\x982o(\xb3\xec)\xb0\xe0\xb0J\xe12\x8b\xd7\x89~\x84%\x81b\xd0\xddo\x8e8\x96\x8a\x9dx\x13\xf2JZa\xf9\xa7Ck\xf4\x84e^\xc0\x81\xfaL\xbc\x19\b\x9b\xc3'}}]}) unlinkat(r5, &(0x7f0000000000)='./file0/../file0\x00', 0x0) setsockopt$inet6_udp_int(r5, 0x11, 0xa, &(0x7f00000005c0)=0x6, 0x4) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x200) ioctl$HIDIOCINITREPORT(0xffffffffffffffff, 0x550c, 0x20000000) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000140)=0x7c0283a40842d60c) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x5) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) [ 328.107458] nfs: Unknown parameter '-$/ÑM‹¢lF_²ßÇAKø©öà:Ô„ª˜2o(³ì)°à°Já2‹×‰~„%bÐÝoŽ8–ŠxòJZaù§Ckô„e^ÀúL¼›Ã' [ 328.131121] Process accounting resumed 08:52:53 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x0) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) [ 328.436116] Process accounting resumed 08:53:07 executing program 6: r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) fcntl$notify(r0, 0x402, 0x80000007) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) preadv(r0, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xe, 0x100010, r0, 0xae082000) 08:53:07 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x0) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:53:07 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:53:07 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:53:07 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(0x0) unshare(0x48020200) 08:53:07 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, r1, 0x0) r2 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0xffffffffffffffff, 0xee01}}, './file0\x00'}) socket$inet6_udplite(0xa, 0x2, 0x88) syz_mount_image$nfs(&(0x7f0000000240), &(0x7f00000002c0)='./file0/../file0\x00', 0x3, 0x3, &(0x7f0000000500)=[{&(0x7f0000000680)="b09456e1cc1abe3be01b5ab628f4f34a9a6cc65a92f9877ae3771e21d09c820335483bdc14c4696a6b7661a1c0cd40bf760bbd9d7976fb11c6db4c32f90d212b2447c78c0bb70e2341b9135a", 0x4c, 0xffffffffffffffff}, {&(0x7f00000003c0)="734392bf111e34ad89833539b8bc9d0c90f5905723c06cb62a77178037bdf869a9e9f9cf9b423b1c6c08e00a09ff612f180330d73c0a707c15a15ce9cff7d35d67b8f1929ea5dbb86e30efc44374d16ea8b43e80ec4d305a95b6b85adc47c8abfc", 0x61, 0x40}, {&(0x7f00000007c0)="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", 0x166, 0x5}], 0x1, &(0x7f0000000700)={[{'-$/\xd1M\x8b\x0f\x1c\xa2lF_\xb2\xdf\xc7AK\xf8\x8f\xa9\xf6\x18\x90\xe0:\x1f\xd4\x04\x84\xaa\x982o(\xb3\xec)\xb0\xe0\xb0J\xe12\x8b\xd7\x89~\x84%\x81b\xd0\xddo\x8e8\x96\x8a\x9dx\x13\xf2JZa\xf9\xa7Ck\xf4\x84e^\xc0\x81\xfaL\xbc\x19\b\x9b\xc3'}, {'rfdno'}, {'9p\x00'}, {'[\x89'}], [{@obj_type={'obj_type', 0x3d, '-$/\xd1M\x8b\x0f\x1c\xa2lF_\xb2\xdf\xc7AK\xf8\x8f\xa9\xf6\x18\x90\xe0:\x1f\xd4\x04\x84\xaa\x982o(\xb3\xec)\xb0\xe0\xb0J\xe12\x8b\xd7\x89~\x84%\x81b\xd0\xddo\x8e8\x96\x8a\x9dx\x13\xf2JZa\xf9\xa7Ck\xf4\x84e^\xc0\x81\xfaL\xbc\x19\b\x9b\xc3'}}]}) unlinkat(r5, &(0x7f0000000000)='./file0/../file0\x00', 0x0) setsockopt$inet6_udp_int(r5, 0x11, 0xa, &(0x7f00000005c0)=0x6, 0x4) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x200) ioctl$HIDIOCINITREPORT(0xffffffffffffffff, 0x550c, 0x20000000) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000140)=0x7c0283a40842d60c) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x5) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) 08:53:07 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, r1, 0x0) r2 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0xffffffffffffffff, 0xee01}}, './file0\x00'}) socket$inet6_udplite(0xa, 0x2, 0x88) syz_mount_image$nfs(&(0x7f0000000240), &(0x7f00000002c0)='./file0/../file0\x00', 0x3, 0x3, &(0x7f0000000500)=[{&(0x7f0000000680)="b09456e1cc1abe3be01b5ab628f4f34a9a6cc65a92f9877ae3771e21d09c820335483bdc14c4696a6b7661a1c0cd40bf760bbd9d7976fb11c6db4c32f90d212b2447c78c0bb70e2341b9135a", 0x4c, 0xffffffffffffffff}, {&(0x7f00000003c0)="734392bf111e34ad89833539b8bc9d0c90f5905723c06cb62a77178037bdf869a9e9f9cf9b423b1c6c08e00a09ff612f180330d73c0a707c15a15ce9cff7d35d67b8f1929ea5dbb86e30efc44374d16ea8b43e80ec4d305a95b6b85adc47c8abfc", 0x61, 0x40}, {&(0x7f00000007c0)="ffdd14b2d545b969616d54fa413948ca8c884e05a5e0b29fda45678de5b6ea9b32040cfbe28f87c93cf898c2624a360384a71f96dc79194b8c9cf744da855ca0b5aaf22f51db7f7c1cf4850f245977421e5f993e2c5e97146ac61139caedb63455f06e0ac29e00f522a151c2774de3ac62b0621adbe8f1cfca71952a01bd410dbd0731eb96367acfaef362026b898c9311a95951a302f26d1b3d3c6fb59470b3ce9e99d98277d23940f8e92a64207f20951d9407895b748c482f265db1c50c6ce5fa293b3c6df0aed55abdbf92ae9dc014f34fcd19e510ab3b435533079e38c7461b76896956fabc2270a1e9d7544f9437801af098ccf290572882c5e59a7fa2d3828e1be94f6cff3ccd4299c732a19105d4f752652c22c999737a6ea7839172b41a362812c2307ea8feb0330fc19aa0684770adbb18354feb30e74e23046642c9a756a67428759ccfda2584018b34301ecd3c15408efce3adbe02983886d47b9558c71f5ac7", 0x166, 0x5}], 0x1, &(0x7f0000000700)={[{'-$/\xd1M\x8b\x0f\x1c\xa2lF_\xb2\xdf\xc7AK\xf8\x8f\xa9\xf6\x18\x90\xe0:\x1f\xd4\x04\x84\xaa\x982o(\xb3\xec)\xb0\xe0\xb0J\xe12\x8b\xd7\x89~\x84%\x81b\xd0\xddo\x8e8\x96\x8a\x9dx\x13\xf2JZa\xf9\xa7Ck\xf4\x84e^\xc0\x81\xfaL\xbc\x19\b\x9b\xc3'}, {'rfdno'}, {'9p\x00'}, {'[\x89'}], [{@obj_type={'obj_type', 0x3d, '-$/\xd1M\x8b\x0f\x1c\xa2lF_\xb2\xdf\xc7AK\xf8\x8f\xa9\xf6\x18\x90\xe0:\x1f\xd4\x04\x84\xaa\x982o(\xb3\xec)\xb0\xe0\xb0J\xe12\x8b\xd7\x89~\x84%\x81b\xd0\xddo\x8e8\x96\x8a\x9dx\x13\xf2JZa\xf9\xa7Ck\xf4\x84e^\xc0\x81\xfaL\xbc\x19\b\x9b\xc3'}}]}) unlinkat(r5, &(0x7f0000000000)='./file0/../file0\x00', 0x0) setsockopt$inet6_udp_int(r5, 0x11, 0xa, &(0x7f00000005c0)=0x6, 0x4) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000200), 0x200) ioctl$HIDIOCINITREPORT(0xffffffffffffffff, 0x550c, 0x20000000) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000140)=0x7c0283a40842d60c) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x5) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}}) 08:53:07 executing program 7: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x0) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) [ 342.545001] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 342.560211] audit: type=1400 audit(1731228787.547:12): avc: denied { watch watch_reads } for pid=4492 comm="syz-executor.6" path="/proc/4492/task/4493" dev="proc" ino=16397 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dir permissive=1 [ 342.563856] audit: type=1326 audit(1731228787.552:13): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4492 comm="syz-executor.6" exe="/syz-executor.6" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7eae2b0b19 code=0x0 [ 342.586446] nfs: Unknown parameter '-$/ÑM‹¢lF_²ßÇAKø©öà:Ô„ª˜2o(³ì)°à°Já2‹×‰~„%bÐÝoŽ8–ŠxòJZaù§Ckô„e^ÀúL¼›Ã' [ 342.595434] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 342.611786] audit: type=1400 audit(1731228787.599:14): avc: denied { map } for pid=4492 comm="syz-executor.6" path=2F70726F632F343439322F7461736B2F34343933202864656C6574656429 dev="proc" ino=16397 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dir permissive=1 [ 342.615308] audit: type=1400 audit(1731228787.600:15): avc: denied { execute } for pid=4492 comm="syz-executor.6" path=2F70726F632F343439322F7461736B2F34343933202864656C6574656429 dev="proc" ino=16397 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dir permissive=1 [ 342.617420] nfs: Unknown parameter '-$/ÑM‹¢lF_²ßÇAKø©öà:Ô„ª˜2o(³ì)°à°Já2‹×‰~„%bÐÝoŽ8–ŠxòJZaù§Ckô„e^ÀúL¼›Ã' 08:53:07 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(0x0) unshare(0x48020200) [ 342.817258] Process accounting resumed 08:53:07 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x0) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:53:07 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$binfmt_script(r3, &(0x7f0000000080)=ANY=[], 0x1020) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000240)={0x0, 0x4, 0x5, 0x1}) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000640)={r4, 0xe5, 0x7}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 342.941000] Process accounting resumed 08:53:07 executing program 7: openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x40800, 0x0) clock_gettime(0x0, &(0x7f0000001540)={0x0, 0x0}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000200)=[{{&(0x7f00000000c0), 0x6e, &(0x7f0000001440)=[{&(0x7f0000000140)=""/12, 0xc}, {&(0x7f00000002c0)=""/4096, 0x1000}, {&(0x7f0000000180)=""/40, 0x28}, {&(0x7f00000001c0)=""/18, 0x12}, {&(0x7f00000012c0)=""/226, 0xe2}, {&(0x7f00000013c0)=""/115, 0x73}], 0x6, &(0x7f00000014c0)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}], 0x60}}], 0x1, 0x12043, &(0x7f0000001580)={r0, r1+10000000}) ioctl$CDROM_GET_MCN(r2, 0x5329, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r3, &(0x7f0000000240)=""/83, 0x53, 0x200000048) ioctl$CDROMMULTISESSION(r3, 0x5310, &(0x7f0000000000)={@lba=0x4, 0x0, 0x1}) 08:53:07 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(0x0) unshare(0x48020200) 08:53:08 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$binfmt_script(r3, &(0x7f0000000080)=ANY=[], 0x1020) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000240)={0x0, 0x4, 0x5, 0x1}) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000640)={r4, 0xe5, 0x7}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:08 executing program 5: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f0000000300)) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x3c0f2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400000000000000, 0x0, 0x5, 0x0, 0x8, 0x3f}, 0x0, 0x4, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000280)=0x0) perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0xc5, 0x1f, 0x4, 0x6, 0x0, 0x3f, 0x60, 0xd, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2, @perf_bp={&(0x7f00000003c0)}, 0x40080, 0x8001, 0xf7, 0x9, 0x6, 0x1f, 0x0, 0x0, 0x3, 0x0, 0x400000006}, 0x0, 0x12, r0, 0x1) r2 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x6}, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0xfffffffd}, r1, 0xfbffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, 0xee00}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001700)=ANY=[@ANYBLOB="01e815000100800029000000", @ANYRES32, @ANYRES32=r4, @ANYRES32=0xee01, @ANYBLOB="2e2f66696c652fe1451d4e7b754bc7f05f0ff404807bf64d176a29993195992c14f39ee8328796f81d1886f6cb48f1ed71a941835b5840190114208ef9dda4756eab00fcd38d0a302906ffc3e8f25260ef7b4e28db855ed9e895bd4b0fbdedef955a9ddf4161dc9347ef97623a3ebf9ca8933a81653dd955d769a92740fbed0519a0fe8fb2bb1420fa5a24997c0cf4682cd464c3bcd44c267b10cfd7565652376257be8c2ef9d94e9ad1d44011543b4d0e2c77577a1157a58a7edab4a0981d3549776f00"/210]) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000660d56272786d3af480000002fe35d1d75244a9ca0496feca684863f5b04532731dc5f2302a96aab15899dc01c96006fe6df2ef50c1f2212420b1245d78a7d31dc47b596528f87d2eb0e253a666986de9a70c2968f8ee69c475fb874bf513748a75b71d64b5824b576d1fa3e00000000ab1c786437282da9bf572eb54d7798ba41dcf34a7c5508a630e42a7166c8ad2a02d7131f8195570ebc5395024260794f3ac3e28413ba0da278a66b085fd14a5222917dea1468844622913b"], 0x24}}, 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000100)={0x3000000a}) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x20, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4, 0x8, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xfffffff7ffffffff, 0xffffffffffffffff, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = dup(r6) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) preadv(r7, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, 0xffff57e9, 0x4) r8 = accept4$bt_l2cap(r7, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) r9 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x80202, 0x100) openat(r9, &(0x7f0000000380)='./file0\x00', 0x20000, 0x20) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r8, 0x8982, &(0x7f00000002c0)={0x8, 'batadv_slave_1\x00', {'syzkaller0\x00'}, 0x7ff}) syz_80211_join_ibss(&(0x7f00000001c0)='wlan1\x00', &(0x7f0000000500)=@default_ibss_ssid, 0xffffffffffffff98, 0x0) 08:53:08 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x0) [ 343.197945] Process accounting resumed [ 343.303385] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 343.337510] Process accounting resumed [ 343.353590] syz-executor.5 (4523) used greatest stack depth: 23656 bytes left [ 343.380261] audit: type=1326 audit(1731228788.356:16): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4492 comm="syz-executor.6" exe="/syz-executor.6" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7eae2b0b19 code=0x0 08:53:21 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$binfmt_script(r3, &(0x7f0000000080)=ANY=[], 0x1020) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000240)={0x0, 0x4, 0x5, 0x1}) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000640)={r4, 0xe5, 0x7}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:21 executing program 6: r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) fcntl$notify(r0, 0x402, 0x80000007) seccomp$SECCOMP_SET_MODE_STRICT(0x0, 0x0, 0x0) preadv(r0, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xe, 0x100010, r0, 0xae082000) 08:53:21 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 08:53:21 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="00000000000000042e2f66696c653100"]) r1 = fsmount(r0, 0x0, 0xf8) r2 = openat(r1, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x2d) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x2d) sendfile(r3, r4, 0x0, 0x100000001) fsmount(0xffffffffffffffff, 0x0, 0x0) epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, 0xffffffffffffffff, &(0x7f0000000040)) sendfile(r0, r2, 0x0, 0x100000001) 08:53:21 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x0) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) 08:53:21 executing program 5: perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x2840}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) shutdown(r0, 0x2) 08:53:21 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x0) 08:53:21 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 356.403120] audit: type=1326 audit(1731228801.391:17): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=4541 comm="syz-executor.6" exe="/syz-executor.6" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f7eae2b0b19 code=0x0 [ 356.409073] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 356.423775] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 08:53:21 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 356.458090] Process accounting resumed 08:53:21 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x0) 08:53:21 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$binfmt_script(r3, &(0x7f0000000080)=ANY=[], 0x1020) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000240)={0x0, 0x4, 0x5, 0x1}) ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000000640)={r4, 0xe5, 0x7}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 356.554286] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 356.664515] Process accounting resumed [ 356.691738] Process accounting resumed 08:53:21 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$binfmt_script(r2, &(0x7f0000000080)=ANY=[], 0x1020) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000240)={0x0, 0x4, 0x5, 0x1}) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000640)={r3, 0xe5, 0x7}) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:21 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x0) acct(&(0x7f0000000040)='./file0\x00') [ 356.870046] Process accounting resumed 08:53:21 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') 08:53:21 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$binfmt_script(r2, &(0x7f0000000080)=ANY=[], 0x1020) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000240)={0x0, 0x4, 0x5, 0x1}) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000640)={r3, 0xe5, 0x7}) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:21 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 1) [ 356.933671] FAULT_INJECTION: forcing a failure. [ 356.933671] name failslab, interval 1, probability 0, space 0, times 1 [ 356.935325] CPU: 1 PID: 4570 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 356.936199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 356.937318] Call Trace: [ 356.937665] dump_stack+0x107/0x167 [ 356.938138] should_fail.cold+0x5/0xa [ 356.938630] ? create_new_namespaces+0x30/0xb20 [ 356.939264] should_failslab+0x5/0x20 [ 356.939762] kmem_cache_alloc+0x5b/0x310 [ 356.940319] ? cap_capable+0x1cd/0x230 [ 356.941028] create_new_namespaces+0x30/0xb20 [ 356.941615] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 356.942254] ksys_unshare+0x449/0x8a0 [ 356.942753] ? unshare_fd+0x1c0/0x1c0 [ 356.943246] ? ksys_write+0x1a9/0x260 [ 356.943751] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 356.944434] __x64_sys_unshare+0x2d/0x40 [ 356.944968] do_syscall_64+0x33/0x40 [ 356.945459] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 356.946120] RIP: 0033:0x7fc7d3fdfb19 [ 356.946612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 356.949460] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 356.950459] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 356.951410] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 356.952567] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 356.953501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 356.954431] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 357.000316] Process accounting resumed 08:53:21 executing program 7: fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=@sha1={0x1, "ab30fea0dcb46e951cdec6c7a5b616d3746aaa67"}, 0x15, 0x2) r0 = syz_open_dev$loop(&(0x7f0000000140), 0x4bf, 0x80000) ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f0000000300)={{}, 0x0, 0x8, @inherit={0x88, &(0x7f0000000240)={0x1, 0x8, 0x401, 0x68, {0x10, 0x80000001, 0x5, 0x0, 0x1000}, [0x2, 0x80, 0x8, 0x0, 0xffffffff, 0x0, 0x5, 0xfffffffffffffffd]}}, @subvolid=0x4}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)) [ 357.020156] FAT-fs (loop7): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 357.126567] Process accounting resumed 08:53:34 executing program 4: acct(&(0x7f0000000040)='./file0\x00') 08:53:34 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:53:34 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 369.857140] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 08:53:34 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$binfmt_script(r2, &(0x7f0000000080)=ANY=[], 0x1020) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000240)={0x0, 0x4, 0x5, 0x1}) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000640)={r3, 0xe5, 0x7}) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:34 executing program 7: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) ioctl$SG_GET_ACCESS_COUNT(r0, 0x2289, &(0x7f0000000000)) ioctl$SG_IO(r0, 0x2285, &(0x7f0000001b40)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000180)="1502ff667f0f", 0x0, 0x0, 0x0, 0x0, 0x0}) 08:53:34 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 08:53:34 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 2) 08:53:34 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 369.880827] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 369.896510] FAULT_INJECTION: forcing a failure. [ 369.896510] name failslab, interval 1, probability 0, space 0, times 0 [ 369.899763] CPU: 1 PID: 4589 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 369.901728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 369.904141] Call Trace: [ 369.904891] dump_stack+0x107/0x167 [ 369.905927] should_fail.cold+0x5/0xa [ 369.907011] ? create_object.isra.0+0x3a/0xa20 [ 369.908325] should_failslab+0x5/0x20 [ 369.909409] kmem_cache_alloc+0x5b/0x310 [ 369.910566] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 369.911982] create_object.isra.0+0x3a/0xa20 [ 369.913239] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 369.914704] kmem_cache_alloc+0x159/0x310 [ 369.915912] create_new_namespaces+0x30/0xb20 [ 369.917202] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 369.918611] ksys_unshare+0x449/0x8a0 [ 369.919710] ? unshare_fd+0x1c0/0x1c0 [ 369.920809] ? ksys_write+0x1a9/0x260 [ 369.921906] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 369.923420] __x64_sys_unshare+0x2d/0x40 [ 369.924582] do_syscall_64+0x33/0x40 [ 369.925648] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 369.927129] RIP: 0033:0x7fc7d3fdfb19 [ 369.928201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 369.933559] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 369.935732] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 369.937423] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 369.939118] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 369.941175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 369.942871] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 369.946690] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:53:34 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$binfmt_script(r2, &(0x7f0000000080)=ANY=[], 0x1020) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000240)={0x0, 0x4, 0x5, 0x1}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:34 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 08:53:34 executing program 4: acct(&(0x7f0000000040)='./file0\x00') [ 370.024773] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 370.026468] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. 08:53:35 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000100)='./file0\x00', 0x0) write$binfmt_script(r1, &(0x7f0000000080)=ANY=[], 0x1020) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:35 executing program 4: acct(&(0x7f0000000040)='./file0\x00') [ 370.215014] Process accounting resumed [ 383.357279] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 08:53:48 executing program 4: creat(0x0, 0x0) acct(&(0x7f0000000040)='./file0\x00') 08:53:48 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:53:48 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:53:48 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:53:48 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:48 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 3) 08:53:48 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 08:53:48 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 383.362757] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 383.370559] FAULT_INJECTION: forcing a failure. [ 383.370559] name failslab, interval 1, probability 0, space 0, times 0 [ 383.372822] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 383.376475] CPU: 1 PID: 4618 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 383.376483] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 383.376486] Call Trace: [ 383.376503] dump_stack+0x107/0x167 [ 383.376516] should_fail.cold+0x5/0xa [ 383.376530] ? alloc_mnt_ns+0xce/0x420 [ 383.376544] should_failslab+0x5/0x20 [ 383.376556] kmem_cache_alloc_trace+0x55/0x320 [ 383.376571] alloc_mnt_ns+0xce/0x420 [ 383.376582] copy_mnt_ns+0xae/0xa00 [ 383.376600] ? kmem_cache_alloc+0x2a6/0x310 [ 383.376616] create_new_namespaces+0xd6/0xb20 [ 383.376633] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 383.376646] ksys_unshare+0x449/0x8a0 [ 383.376656] ? unshare_fd+0x1c0/0x1c0 [ 383.376671] ? ksys_write+0x1a9/0x260 [ 383.376688] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 383.376701] __x64_sys_unshare+0x2d/0x40 [ 383.376712] do_syscall_64+0x33/0x40 [ 383.376723] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 383.376731] RIP: 0033:0x7fc7d3fdfb19 [ 383.376742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 383.376748] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 383.376761] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 383.376767] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 383.376774] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 383.376780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 383.376787] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 383.405501] Process accounting resumed [ 383.409628] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 383.418130] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:53:48 executing program 4: creat(0x0, 0x0) acct(&(0x7f0000000040)='./file0\x00') 08:53:48 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 4) 08:53:48 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:48 executing program 4: creat(0x0, 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 383.541025] FAULT_INJECTION: forcing a failure. [ 383.541025] name failslab, interval 1, probability 0, space 0, times 0 [ 383.542531] CPU: 1 PID: 4633 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 383.543377] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 383.560302] Call Trace: [ 383.560627] dump_stack+0x107/0x167 [ 383.561070] should_fail.cold+0x5/0xa [ 383.561531] ? create_object.isra.0+0x3a/0xa20 [ 383.562082] should_failslab+0x5/0x20 [ 383.562541] kmem_cache_alloc+0x5b/0x310 [ 383.563031] create_object.isra.0+0x3a/0xa20 [ 383.563557] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 383.564196] kmem_cache_alloc_trace+0x151/0x320 [ 383.564762] alloc_mnt_ns+0xce/0x420 [ 383.565211] copy_mnt_ns+0xae/0xa00 [ 383.565651] ? kmem_cache_alloc+0x2a6/0x310 [ 383.566175] create_new_namespaces+0xd6/0xb20 [ 383.566722] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 383.567320] ksys_unshare+0x449/0x8a0 [ 383.567794] ? unshare_fd+0x1c0/0x1c0 [ 383.568271] ? ksys_write+0x1a9/0x260 [ 383.568752] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 383.569407] __x64_sys_unshare+0x2d/0x40 [ 383.569906] do_syscall_64+0x33/0x40 [ 383.570358] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 383.570998] RIP: 0033:0x7fc7d3fdfb19 [ 383.571469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 383.573744] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 383.574664] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 383.575546] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 383.576440] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 383.577309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 383.578194] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:53:48 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(0x0) 08:53:48 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 383.771035] Process accounting resumed 08:53:48 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:53:48 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(0x0) 08:53:48 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(0x0) 08:54:01 executing program 2: mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:01 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:01 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:01 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 5) 08:54:01 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:01 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 1) [ 396.965121] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 396.969754] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 396.972842] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 396.975264] FAULT_INJECTION: forcing a failure. [ 396.975264] name failslab, interval 1, probability 0, space 0, times 0 [ 396.976920] CPU: 1 PID: 4658 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 396.977792] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 396.978838] Call Trace: [ 396.979190] dump_stack+0x107/0x167 [ 396.979659] should_fail.cold+0x5/0xa [ 396.980165] ? alloc_vfsmnt+0x23/0x680 [ 396.980688] should_failslab+0x5/0x20 [ 396.981186] kmem_cache_alloc+0x5b/0x310 [ 396.981713] ? lock_release+0x680/0x680 [ 396.982237] alloc_vfsmnt+0x23/0x680 [ 396.982723] clone_mnt+0x6c/0xce0 [ 396.983183] copy_tree+0xfe/0xa60 [ 396.983645] ? down_write_killable+0x180/0x180 [ 396.984271] copy_mnt_ns+0x144/0xa00 [ 396.984763] ? kmem_cache_alloc+0x2a6/0x310 [ 396.985336] create_new_namespaces+0xd6/0xb20 [ 396.985932] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 396.986571] ksys_unshare+0x449/0x8a0 [ 396.987042] ? unshare_fd+0x1c0/0x1c0 [ 396.987547] ? ksys_write+0x1a9/0x260 [ 396.988052] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 396.988754] __x64_sys_unshare+0x2d/0x40 [ 396.989280] do_syscall_64+0x33/0x40 [ 396.989763] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 396.990432] RIP: 0033:0x7fc7d3fdfb19 [ 396.990922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 396.993304] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 396.994286] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 396.995210] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 396.996128] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 396.997056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 396.997979] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 397.004089] FAULT_INJECTION: forcing a failure. [ 397.004089] name failslab, interval 1, probability 0, space 0, times 0 [ 397.005665] CPU: 1 PID: 4654 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 397.006549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 397.007618] Call Trace: [ 397.007964] dump_stack+0x107/0x167 [ 397.012452] should_fail.cold+0x5/0xa [ 397.012908] ? getname_flags.part.0+0x50/0x4f0 [ 397.013446] should_failslab+0x5/0x20 [ 397.013907] kmem_cache_alloc+0x5b/0x310 [ 397.014385] ? io_schedule_timeout+0x140/0x140 [ 397.014925] getname_flags.part.0+0x50/0x4f0 [ 397.015444] getname+0x8e/0xd0 [ 397.015832] __x64_sys_acct+0x71/0x220 [ 397.016312] do_syscall_64+0x33/0x40 [ 397.016772] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 397.017435] RIP: 0033:0x7ff5d412ab19 [ 397.017927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 397.020263] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 397.021176] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 397.022095] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 397.023020] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 397.023895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 397.024799] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 08:54:02 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 08:54:02 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 397.086429] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 397.090747] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 397.106460] Process accounting resumed 08:54:02 executing program 2: mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:02 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 6) 08:54:02 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 2) [ 397.190439] FAULT_INJECTION: forcing a failure. [ 397.190439] name failslab, interval 1, probability 0, space 0, times 0 [ 397.193748] CPU: 1 PID: 4673 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 397.195433] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 397.197720] Call Trace: [ 397.198333] dump_stack+0x107/0x167 [ 397.199176] should_fail.cold+0x5/0xa [ 397.200062] ? create_object.isra.0+0x3a/0xa20 [ 397.201364] should_failslab+0x5/0x20 [ 397.202280] kmem_cache_alloc+0x5b/0x310 [ 397.203256] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 397.204350] create_object.isra.0+0x3a/0xa20 [ 397.204883] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 397.205500] kmem_cache_alloc+0x159/0x310 [ 397.206007] getname_flags.part.0+0x50/0x4f0 [ 397.206542] getname+0x8e/0xd0 [ 397.206934] __x64_sys_acct+0x71/0x220 [ 397.207408] do_syscall_64+0x33/0x40 [ 397.207862] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 397.208953] RIP: 0033:0x7ff5d412ab19 [ 397.209854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 397.213289] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 397.214213] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 397.215079] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 397.215945] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 397.217736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 397.219469] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 08:54:02 executing program 2: mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 397.330325] FAULT_INJECTION: forcing a failure. [ 397.330325] name failslab, interval 1, probability 0, space 0, times 0 [ 397.337964] CPU: 1 PID: 4672 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 397.339825] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 397.342380] Call Trace: [ 397.343082] dump_stack+0x107/0x167 [ 397.344024] should_fail.cold+0x5/0xa [ 397.344579] ? create_object.isra.0+0x3a/0xa20 [ 397.345126] should_failslab+0x5/0x20 [ 397.345605] kmem_cache_alloc+0x5b/0x310 [ 397.346133] ? kfree+0x1ab/0x340 [ 397.346579] create_object.isra.0+0x3a/0xa20 [ 397.347149] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 397.347791] kmem_cache_alloc+0x159/0x310 [ 397.348301] ? lock_release+0x680/0x680 [ 397.348795] alloc_vfsmnt+0x23/0x680 [ 397.349284] clone_mnt+0x6c/0xce0 [ 397.349745] copy_tree+0xfe/0xa60 [ 397.350204] ? down_write_killable+0x180/0x180 [ 397.350806] copy_mnt_ns+0x144/0xa00 [ 397.351294] ? kmem_cache_alloc+0x2a6/0x310 [ 397.351865] create_new_namespaces+0xd6/0xb20 [ 397.352489] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 397.353132] ksys_unshare+0x449/0x8a0 [ 397.353639] ? unshare_fd+0x1c0/0x1c0 [ 397.354120] ? ksys_write+0x1a9/0x260 [ 397.354626] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 397.355313] __x64_sys_unshare+0x2d/0x40 [ 397.355844] do_syscall_64+0x33/0x40 [ 397.360365] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 397.361035] RIP: 0033:0x7fc7d3fdfb19 [ 397.361521] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 397.363807] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 397.364819] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 397.365743] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 397.366670] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 397.367601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 397.368546] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 397.386414] Process accounting resumed 08:54:02 executing program 2: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:02 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 3) [ 397.516433] FAULT_INJECTION: forcing a failure. [ 397.516433] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 397.517983] CPU: 1 PID: 4680 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 397.518846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 397.519893] Call Trace: [ 397.520303] dump_stack+0x107/0x167 [ 397.520811] should_fail.cold+0x5/0xa [ 397.521293] strncpy_from_user+0x34/0x470 [ 397.521787] getname_flags.part.0+0x95/0x4f0 [ 397.522339] getname+0x8e/0xd0 [ 397.522762] __x64_sys_acct+0x71/0x220 [ 397.523272] do_syscall_64+0x33/0x40 [ 397.523758] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 397.524458] RIP: 0033:0x7ff5d412ab19 [ 397.524917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 397.527150] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 397.528075] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 397.528991] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 397.529861] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 397.530725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 397.531588] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 08:54:02 executing program 2: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 397.588284] Process accounting resumed 08:54:02 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 7) 08:54:02 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 4) [ 397.792380] FAULT_INJECTION: forcing a failure. [ 397.792380] name failslab, interval 1, probability 0, space 0, times 0 [ 397.794143] CPU: 0 PID: 4686 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 397.795046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 397.796489] Call Trace: [ 397.796912] dump_stack+0x107/0x167 [ 397.797481] should_fail.cold+0x5/0xa [ 397.798079] ? acct_on+0x58/0x790 [ 397.798625] should_failslab+0x5/0x20 [ 397.799220] kmem_cache_alloc_trace+0x55/0x320 [ 397.799929] acct_on+0x58/0x790 [ 397.800435] __x64_sys_acct+0xab/0x220 [ 397.801043] do_syscall_64+0x33/0x40 [ 397.801612] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 397.802407] RIP: 0033:0x7ff5d412ab19 [ 397.802985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 397.805561] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 397.806552] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 397.807476] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 397.808394] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 397.809281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 397.810196] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 397.813137] FAULT_INJECTION: forcing a failure. [ 397.813137] name failslab, interval 1, probability 0, space 0, times 0 [ 397.815039] CPU: 1 PID: 4684 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 397.815887] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 397.816963] Call Trace: [ 397.817424] dump_stack+0x107/0x167 [ 397.817885] should_fail.cold+0x5/0xa [ 397.818352] ? create_object.isra.0+0x3a/0xa20 [ 397.818911] should_failslab+0x5/0x20 [ 397.819372] kmem_cache_alloc+0x5b/0x310 [ 397.819870] create_object.isra.0+0x3a/0xa20 [ 397.820427] kmemleak_alloc_percpu+0xa0/0x100 [ 397.820973] pcpu_alloc+0x4e2/0x1240 [ 397.821436] alloc_vfsmnt+0xfd/0x680 [ 397.821889] clone_mnt+0x6c/0xce0 [ 397.822311] copy_tree+0xfe/0xa60 [ 397.822733] ? down_write_killable+0x180/0x180 [ 397.823291] copy_mnt_ns+0x144/0xa00 [ 397.823746] ? kmem_cache_alloc+0x2a6/0x310 [ 397.824289] create_new_namespaces+0xd6/0xb20 [ 397.824846] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 397.825445] ksys_unshare+0x449/0x8a0 [ 397.825908] ? unshare_fd+0x1c0/0x1c0 [ 397.826373] ? ksys_write+0x1a9/0x260 [ 397.826846] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 397.827488] __x64_sys_unshare+0x2d/0x40 [ 397.827979] do_syscall_64+0x33/0x40 [ 397.828449] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 397.829070] RIP: 0033:0x7fc7d3fdfb19 [ 397.829526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 397.831752] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 397.832695] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 397.833556] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 397.834415] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 397.835279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 397.836143] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 398.068816] Process accounting resumed 08:54:16 executing program 2: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:16 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 8) 08:54:16 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:16 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 411.262971] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 08:54:16 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 5) 08:54:16 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:16 executing program 7: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x9, 0x1, 0x0, 0x0, 0x0, 0x400005e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000002c0), 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001640)=ANY=[@ANYBLOB="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"], 0x98}}, 0x0) close_range(r1, r0, 0x0) r2 = perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r0, 0x0) fallocate(0xffffffffffffffff, 0x1, 0x7, 0x4) syz_open_dev$tty1(0xc, 0x4, 0x1) add_key$keyring(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0) r3 = add_key(&(0x7f0000000200)='keyring\x00', &(0x7f00000004c0)={'syz', 0x1}, &(0x7f0000000540)="18726d0eed55eaa57fc580dc3a0b12e0a5ee08da294ac8119c4c73f93694f2a935d17a81959d084839f846dca8739131e4a9c45c6509af44529537eae3b5a4793a9a0aacfd7a75f2b566b874939829b82a35d20d1985a92c5d7ba971251e89286f64438db33a7f05fb0d1707fd3fa27a56032a79c1d09558fbbfcb2e5f36d3e7e1c749ad35c2064fa087cf6359507a36eb69853e0cdd920cbb7586aedf5a2e5a9a1a6b8d11c08a14918b01d07c92179dfae1ef58835b5fa4be28fbd3b3eac1c9f3cf74fbe25748c55d23902439133eecfafb2e0f", 0xd4, 0xfffffffffffffffa) add_key(0x0, &(0x7f0000000480)={'syz', 0x1}, 0x0, 0x0, r3) add_key$keyring(&(0x7f0000000100), &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0x0) add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$read(0xb, 0x0, &(0x7f0000000880)=""/191, 0xbf) sendmsg$NL80211_CMD_REQ_SET_REG(r1, 0x0, 0x20000010) ioctl$TIOCGSERIAL(0xffffffffffffffff, 0x541e, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/182}) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) ioctl$KDFONTOP_COPY(r4, 0x4b72, &(0x7f0000000040)={0x3, 0x0, 0xb, 0xf, 0x39, &(0x7f0000000fc0)}) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, 0x0, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_DISASSOCIATE(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x30, 0x0, 0x1, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x76}}}}, [@NL80211_ATTR_REASON_CODE={0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x4008000) unshare(0x48020200) 08:54:16 executing program 6: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000c80), 0xffffffffffffffff) syz_mount_image$ext4(0x0, &(0x7f0000000e00)='./file0\x00', 0x0, 0x2, &(0x7f0000001100)=[{&(0x7f0000000e40)="10", 0x1, 0x16}, {&(0x7f0000000f40)=',', 0x1, 0x401}], 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_RX_RING(r1, 0x10e, 0x6, 0x0, 0x0) sendmsg$BATADV_CMD_GET_NEIGHBORS(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000086b1edc91a2408f55d2be6d5871d0a78f9563428bdcd71f2a83e87796cba107a3bd223f4aa6f12992466b3a4e8", @ANYRES16=r0, @ANYBLOB="08002dbd7000fddbdf2509000000050038000100000005003500ef000000050030000100000005002a000100000008000b0006000000"], 0x3c}, 0x1, 0x0, 0x0, 0x40000c4}, 0x0) [ 411.289762] FAULT_INJECTION: forcing a failure. [ 411.289762] name failslab, interval 1, probability 0, space 0, times 0 [ 411.291193] CPU: 1 PID: 4706 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 411.292020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 411.294184] Call Trace: [ 411.294817] dump_stack+0x107/0x167 [ 411.295686] should_fail.cold+0x5/0xa [ 411.296610] ? create_object.isra.0+0x3a/0xa20 [ 411.297929] should_failslab+0x5/0x20 [ 411.298847] kmem_cache_alloc+0x5b/0x310 [ 411.299826] create_object.isra.0+0x3a/0xa20 [ 411.300948] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 411.302178] kmem_cache_alloc_trace+0x151/0x320 [ 411.303303] acct_on+0x58/0x790 [ 411.304094] __x64_sys_acct+0xab/0x220 [ 411.304878] do_syscall_64+0x33/0x40 [ 411.305334] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 411.305965] RIP: 0033:0x7ff5d412ab19 [ 411.306425] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 411.306522] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 411.308674] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 411.311817] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 411.313711] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 411.315443] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 411.317301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 411.317727] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 411.319043] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 411.322942] netlink: 124 bytes leftover after parsing attributes in process `syz-executor.7'. 08:54:16 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 411.345717] FAULT_INJECTION: forcing a failure. [ 411.345717] name failslab, interval 1, probability 0, space 0, times 0 [ 411.348714] CPU: 1 PID: 4713 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 411.350666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 411.352724] Call Trace: [ 411.353377] dump_stack+0x107/0x167 [ 411.354255] should_fail.cold+0x5/0xa [ 411.355176] ? create_object.isra.0+0x3a/0xa20 [ 411.356283] should_failslab+0x5/0x20 [ 411.357312] kmem_cache_alloc+0x5b/0x310 [ 411.358298] ? kfree+0x1ab/0x340 [ 411.359121] create_object.isra.0+0x3a/0xa20 [ 411.360182] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 411.361555] kmem_cache_alloc+0x159/0x310 [ 411.362568] ? lock_release+0x680/0x680 [ 411.363541] alloc_vfsmnt+0x23/0x680 [ 411.364466] clone_mnt+0x6c/0xce0 [ 411.365420] copy_tree+0xfe/0xa60 [ 411.366260] ? down_write_killable+0x180/0x180 [ 411.367372] copy_mnt_ns+0x144/0xa00 [ 411.368274] ? kmem_cache_alloc+0x2a6/0x310 [ 411.369455] create_new_namespaces+0xd6/0xb20 [ 411.370554] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 411.371743] ksys_unshare+0x449/0x8a0 [ 411.372662] ? unshare_fd+0x1c0/0x1c0 [ 411.373760] ? fput_many+0x2f/0x1a0 [ 411.374641] ? ksys_write+0x1a9/0x260 [ 411.375572] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 411.376900] __x64_sys_unshare+0x2d/0x40 [ 411.377886] do_syscall_64+0x33/0x40 [ 411.378787] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 411.380044] RIP: 0033:0x7fc7d3fdfb19 [ 411.380841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 411.383109] RSP: 002b:00007fc7d1534188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 411.384063] RAX: ffffffffffffffda RBX: 00007fc7d40f3020 RCX: 00007fc7d3fdfb19 [ 411.385328] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 411.387082] RBP: 00007fc7d15341d0 R08: 0000000000000000 R09: 0000000000000000 [ 411.388854] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 411.390604] R13: 00007ffd9825f31f R14: 00007fc7d1534300 R15: 0000000000022000 08:54:16 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:16 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:16 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 411.561903] Process accounting resumed [ 411.562761] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. 08:54:16 executing program 7: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000480)=@abs, 0x6e, &(0x7f0000000880)=[{&(0x7f0000000500)=""/202, 0xca}, {&(0x7f0000000640)=""/220, 0xdc}, {&(0x7f0000000740)=""/119, 0x77}, {&(0x7f00000007c0)=""/141, 0x8d}], 0x4, &(0x7f00000008c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="10fc56789bece9e995242f66696c30"], 0x10) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) umount2(&(0x7f0000000200)='./file0\x00', 0x0) ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, &(0x7f00000001c0)='>') r1 = mq_open(&(0x7f0000000300)='.\x00', 0x80, 0x24, &(0x7f0000000340)={0x0, 0x0, 0x40, 0x10000}) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000fee000/0xf000)=nil, 0xf000, 0x9, 0x11, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x2382, 0xb5f6, 0x4, &(0x7f00000000c0)={[0xc7]}, 0x8) r3 = fcntl$dupfd(r2, 0x406, r2) ioctl$SG_IO(r3, 0x2285, &(0x7f0000000a40)={0x53, 0xfffffffffffffffc, 0x47, 0x0, @buffer={0x0, 0x1000, &(0x7f0000001e00)=""/4096}, &(0x7f0000000940)="fd47fa23230338135875a16c320ba1b8444b72034047dad1dea53e915a9d514d3e22b94df254ef5c92917ef52a4bdd5232cfa432ef04eab485434e154eb8b9d2e9b98d0938cba5", &(0x7f0000000600)=""/53, 0xe87, 0x1003c, 0x3, &(0x7f0000000a00)}) ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="002000c036d403e99fc500"]) ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, &(0x7f0000000380)="0a2d2da2ef9ee479574e35e3ba64f870fe3898f364eddd8079caf5ae0616dffb698891ce445201982337c5a5bfa42703a314a7f82c9295b30351c6a696d1a7e173ab9cc9af1c5006e0044025e8868a8d1a199d7ed9857476d24dd0f9aa64d4fd35d60e125a3fe8970087fa53f87140bc6771deee3d032144161692536e78de9d5e7ea9018b4c8a352844ade27c0b847b013a69fb35e31382d99427d343e6b914ae7bca84796baedf2aa518fd74886f04d6f48ec7fdc5a1dcb9f193b46a2095f9b8c382aad5ae8afebdc22c157d85110db667e0c10dc6eabec0331261c3337731c637") openat2$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240)={0x40, 0x1, 0x4}, 0x18) rename(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)='./file0\x00') 08:54:16 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 6) [ 411.618809] Process accounting resumed [ 411.629934] FAULT_INJECTION: forcing a failure. [ 411.629934] name failslab, interval 1, probability 0, space 0, times 0 [ 411.631380] CPU: 0 PID: 4728 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 411.632229] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 411.633276] Call Trace: [ 411.633610] dump_stack+0x107/0x167 [ 411.634066] should_fail.cold+0x5/0xa [ 411.634541] ? __alloc_file+0x21/0x320 [ 411.635019] should_failslab+0x5/0x20 [ 411.635488] kmem_cache_alloc+0x5b/0x310 [ 411.635998] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 411.636664] __alloc_file+0x21/0x320 [ 411.637150] alloc_empty_file+0x6d/0x170 [ 411.637655] path_openat+0xe6/0x2770 [ 411.638124] ? unwind_get_return_address+0x55/0xa0 [ 411.638733] ? create_prof_cpu_mask+0x20/0x20 [ 411.639289] ? arch_stack_walk+0x99/0xf0 [ 411.639802] ? path_lookupat+0x860/0x860 [ 411.640309] ? stack_trace_save+0x8c/0xc0 [ 411.640840] ? stack_trace_consume_entry+0x160/0x160 [ 411.641472] do_filp_open+0x190/0x3e0 [ 411.641945] ? may_open_dev+0xf0/0xf0 [ 411.642420] ? acct_on+0x58/0x790 [ 411.642855] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 411.643525] ? lock_chain_count+0x20/0x20 [ 411.644046] ? lock_acquire+0x197/0x470 [ 411.644546] ? create_object.isra.0+0x3ad/0xa20 [ 411.645151] ? lock_release+0x680/0x680 [ 411.645650] ? kmem_cache_alloc_trace+0x151/0x320 [ 411.646242] file_open_name+0x2a9/0x430 [ 411.646729] ? do_sys_openat2+0x4d0/0x4d0 [ 411.647239] ? kasan_unpoison_shadow+0x33/0x50 [ 411.647804] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 411.648430] acct_on+0x78/0x790 [ 411.648858] __x64_sys_acct+0xab/0x220 [ 411.649346] do_syscall_64+0x33/0x40 [ 411.649810] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 411.650448] RIP: 0033:0x7ff5d412ab19 [ 411.650916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 411.653225] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 411.654177] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 411.655061] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 411.655932] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 411.656838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 411.657727] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 08:54:16 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:16 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 9) [ 411.759268] FAULT_INJECTION: forcing a failure. [ 411.759268] name failslab, interval 1, probability 0, space 0, times 0 [ 411.760737] CPU: 0 PID: 4736 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 411.761573] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 411.762607] Call Trace: [ 411.762942] dump_stack+0x107/0x167 [ 411.763395] should_fail.cold+0x5/0xa [ 411.763872] ? alloc_vfsmnt+0x23/0x680 [ 411.764359] should_failslab+0x5/0x20 [ 411.764854] kmem_cache_alloc+0x5b/0x310 [ 411.765359] ? rwlock_bug.part.0+0x90/0x90 [ 411.765887] alloc_vfsmnt+0x23/0x680 [ 411.766349] clone_mnt+0x6c/0xce0 [ 411.766776] ? is_subdir+0x1aa/0x3a0 [ 411.767231] copy_tree+0x3b0/0xa60 [ 411.767671] copy_mnt_ns+0x144/0xa00 [ 411.768129] ? kmem_cache_alloc+0x2a6/0x310 [ 411.768673] create_new_namespaces+0xd6/0xb20 [ 411.769252] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 411.769866] ksys_unshare+0x449/0x8a0 [ 411.770341] ? unshare_fd+0x1c0/0x1c0 [ 411.770824] ? ksys_write+0x1a9/0x260 [ 411.771307] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 411.771961] __x64_sys_unshare+0x2d/0x40 [ 411.772467] do_syscall_64+0x33/0x40 [ 411.772966] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 411.773605] RIP: 0033:0x7fc7d3fdfb19 [ 411.774073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 411.776341] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 411.777314] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 411.778202] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 411.779089] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 411.779979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 411.780872] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:54:16 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 411.889366] Process accounting resumed 08:54:30 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 7) 08:54:30 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:30 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:30 executing program 7: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xffffffffffffffab, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) add_key$keyring(&(0x7f00000003c0), &(0x7f0000000600)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000440)) r1 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000400)={'syz', 0x3}, 0x0, 0x0, 0x0) r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000500)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x1}]}) keyctl$KEYCTL_MOVE(0x1e, r2, 0xfffffffffffffffc, r1, 0x0) add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000200)={'syz', 0x1}, 0x0, 0x0, 0x0) r3 = add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffa) keyctl$unlink(0x9, 0x0, 0x0) request_key(&(0x7f0000000100)='asymmetric\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='\\&\\^+%))#7\x00', r3) request_key(&(0x7f0000000280)='rxrpc_s\x00', &(0x7f00000002c0)={'syz', 0x1}, &(0x7f0000000300)='\x00', 0xfffffffffffffffc) keyctl$revoke(0x3, r3) ioctl$TIOCGSERIAL(0xffffffffffffffff, 0x541e, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)=""/182}) perf_event_open(&(0x7f0000000480)={0x4, 0x80, 0x9e, 0x0, 0x3, 0xc7, 0x0, 0x86d1, 0x50000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x40, 0x4, @perf_config_ext={0x2, 0x5}, 0x1, 0x9, 0x5, 0x7, 0x10000, 0x1, 0x22, 0x0, 0x8001, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r4 = add_key(&(0x7f00000006c0)='rxrpc_s\x00', &(0x7f00000005c0)={'syz', 0x1}, &(0x7f0000000080)="fa", 0x1, 0xfffffffffffffffe) keyctl$chown(0x4, r4, 0x0, 0xffffffffffffffff) add_key$keyring(&(0x7f0000000540), &(0x7f0000000580)={'syz', 0x0}, 0x0, 0x0, r4) unshare(0x48020200) 08:54:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:30 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 10) 08:54:30 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:30 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 425.375306] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 425.388611] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 425.407274] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 425.418975] FAULT_INJECTION: forcing a failure. [ 425.418975] name failslab, interval 1, probability 0, space 0, times 0 [ 425.420658] CPU: 0 PID: 4760 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 425.421592] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 425.422595] Call Trace: [ 425.422923] dump_stack+0x107/0x167 [ 425.423366] should_fail.cold+0x5/0xa [ 425.423838] ? create_object.isra.0+0x3a/0xa20 [ 425.424395] should_failslab+0x5/0x20 [ 425.424860] kmem_cache_alloc+0x5b/0x310 [ 425.425411] create_object.isra.0+0x3a/0xa20 [ 425.426057] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 425.426810] kmem_cache_alloc+0x159/0x310 [ 425.427421] __alloc_file+0x21/0x320 [ 425.427966] alloc_empty_file+0x6d/0x170 [ 425.428564] path_openat+0xe6/0x2770 [ 425.429113] ? unwind_get_return_address+0x55/0xa0 [ 425.429793] ? create_prof_cpu_mask+0x20/0x20 [ 425.430453] ? arch_stack_walk+0x99/0xf0 [ 425.431059] ? path_lookupat+0x860/0x860 [ 425.431658] ? stack_trace_save+0x8c/0xc0 [ 425.432267] ? stack_trace_consume_entry+0x160/0x160 [ 425.433018] do_filp_open+0x190/0x3e0 [ 425.433549] ? may_open_dev+0xf0/0xf0 [ 425.434107] ? acct_on+0x58/0x790 [ 425.434618] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 425.435402] ? lock_chain_count+0x20/0x20 [ 425.436015] ? lock_acquire+0x197/0x470 [ 425.436594] ? create_object.isra.0+0x3ad/0xa20 [ 425.437272] ? lock_release+0x680/0x680 [ 425.437762] ? kmem_cache_alloc_trace+0x151/0x320 [ 425.438356] file_open_name+0x2a9/0x430 [ 425.438841] ? do_sys_openat2+0x4d0/0x4d0 [ 425.439349] ? kasan_unpoison_shadow+0x33/0x50 [ 425.439908] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 425.440526] acct_on+0x78/0x790 [ 425.440930] __x64_sys_acct+0xab/0x220 [ 425.441430] do_syscall_64+0x33/0x40 [ 425.441884] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 425.442507] RIP: 0033:0x7ff5d412ab19 [ 425.442972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 425.445215] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 425.446147] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 425.447015] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 425.447881] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 425.448748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 425.449622] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 08:54:30 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 425.467864] FAULT_INJECTION: forcing a failure. [ 425.467864] name failslab, interval 1, probability 0, space 0, times 0 [ 425.469283] CPU: 1 PID: 4757 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 425.470112] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 425.471109] Call Trace: [ 425.471431] dump_stack+0x107/0x167 [ 425.471881] should_fail.cold+0x5/0xa [ 425.472344] ? create_object.isra.0+0x3a/0xa20 [ 425.472897] should_failslab+0x5/0x20 [ 425.473643] kmem_cache_alloc+0x5b/0x310 [ 425.474592] ? find_held_lock+0x2c/0x110 [ 425.475547] create_object.isra.0+0x3a/0xa20 [ 425.476572] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 425.477507] kmem_cache_alloc+0x159/0x310 [ 425.478009] ? rwlock_bug.part.0+0x90/0x90 [ 425.478526] alloc_vfsmnt+0x23/0x680 [ 425.478982] clone_mnt+0x6c/0xce0 [ 425.479408] ? is_subdir+0x1aa/0x3a0 [ 425.479862] copy_tree+0x3b0/0xa60 [ 425.480303] copy_mnt_ns+0x144/0xa00 [ 425.480758] ? kmem_cache_alloc+0x2a6/0x310 [ 425.481349] create_new_namespaces+0xd6/0xb20 [ 425.481904] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 425.482506] ksys_unshare+0x449/0x8a0 [ 425.482971] ? unshare_fd+0x1c0/0x1c0 [ 425.483439] ? ksys_write+0x1a9/0x260 [ 425.483909] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 425.484070] Process accounting resumed [ 425.484551] __x64_sys_unshare+0x2d/0x40 [ 425.485978] do_syscall_64+0x33/0x40 [ 425.486872] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 425.488119] RIP: 0033:0x7fc7d3fdfb19 [ 425.489017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 425.494318] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 425.496118] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 425.497998] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 425.498953] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 425.499733] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 425.499740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 425.499747] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:54:30 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 8) 08:54:30 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 425.560737] FAULT_INJECTION: forcing a failure. [ 425.560737] name failslab, interval 1, probability 0, space 0, times 0 [ 425.563703] CPU: 1 PID: 4768 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 425.565399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 425.567354] Call Trace: [ 425.567966] dump_stack+0x107/0x167 [ 425.568811] should_fail.cold+0x5/0xa [ 425.569842] ? security_file_alloc+0x34/0x170 [ 425.570925] should_failslab+0x5/0x20 [ 425.571841] kmem_cache_alloc+0x5b/0x310 [ 425.572821] security_file_alloc+0x34/0x170 [ 425.573991] __alloc_file+0xb7/0x320 [ 425.574863] alloc_empty_file+0x6d/0x170 [ 425.575816] path_openat+0xe6/0x2770 [ 425.576693] ? unwind_get_return_address+0x55/0xa0 [ 425.577558] ? create_prof_cpu_mask+0x20/0x20 [ 425.578108] ? arch_stack_walk+0x99/0xf0 [ 425.578608] ? path_lookupat+0x860/0x860 [ 425.579113] ? stack_trace_save+0x8c/0xc0 [ 425.579622] ? stack_trace_consume_entry+0x160/0x160 [ 425.580249] do_filp_open+0x190/0x3e0 [ 425.580713] ? may_open_dev+0xf0/0xf0 [ 425.581176] ? acct_on+0x58/0x790 [ 425.582176] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 425.583437] ? lock_chain_count+0x20/0x20 [ 425.584409] ? lock_acquire+0x197/0x470 [ 425.585404] ? create_object.isra.0+0x3ad/0xa20 [ 425.586537] ? lock_release+0x680/0x680 [ 425.587500] ? kmem_cache_alloc_trace+0x151/0x320 [ 425.588667] file_open_name+0x2a9/0x430 [ 425.589710] ? do_sys_openat2+0x4d0/0x4d0 [ 425.590682] ? kasan_unpoison_shadow+0x33/0x50 [ 425.591754] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 425.592947] acct_on+0x78/0x790 [ 425.593855] __x64_sys_acct+0xab/0x220 [ 425.594794] do_syscall_64+0x33/0x40 [ 425.595692] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 425.596935] RIP: 0033:0x7ff5d412ab19 [ 425.597957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 425.602622] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 425.604468] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 425.606383] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 425.608069] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 425.609507] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 425.610378] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 08:54:30 executing program 2: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:30 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:30 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 9) 08:54:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x0, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 425.721584] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 425.742780] Process accounting resumed [ 425.779637] FAULT_INJECTION: forcing a failure. [ 425.779637] name failslab, interval 1, probability 0, space 0, times 0 [ 425.781145] CPU: 0 PID: 4776 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 425.782024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 425.783033] Call Trace: [ 425.783360] dump_stack+0x107/0x167 [ 425.783804] should_fail.cold+0x5/0xa [ 425.784270] ? create_object.isra.0+0x3a/0xa20 [ 425.784827] should_failslab+0x5/0x20 [ 425.785310] kmem_cache_alloc+0x5b/0x310 [ 425.785816] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 425.786489] create_object.isra.0+0x3a/0xa20 [ 425.787026] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 425.787649] kmem_cache_alloc+0x159/0x310 [ 425.788161] security_file_alloc+0x34/0x170 [ 425.788690] __alloc_file+0xb7/0x320 [ 425.789145] alloc_empty_file+0x6d/0x170 [ 425.789657] path_openat+0xe6/0x2770 [ 425.790117] ? unwind_get_return_address+0x55/0xa0 [ 425.790718] ? create_prof_cpu_mask+0x20/0x20 [ 425.791268] ? arch_stack_walk+0x99/0xf0 [ 425.791775] ? path_lookupat+0x860/0x860 [ 425.792273] ? lock_chain_count+0x20/0x20 [ 425.792782] ? stack_trace_save+0x8c/0xc0 [ 425.793304] ? stack_trace_consume_entry+0x160/0x160 [ 425.793932] do_filp_open+0x190/0x3e0 [ 425.794398] ? may_open_dev+0xf0/0xf0 [ 425.794863] ? acct_on+0x58/0x790 [ 425.795291] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 425.795951] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 425.796595] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 425.797270] ? trace_hardirqs_on+0x5b/0x180 [ 425.797818] ? file_open_name+0xf7/0x430 [ 425.798319] file_open_name+0x2a9/0x430 [ 425.798807] ? do_sys_openat2+0x4d0/0x4d0 [ 425.799315] ? kasan_unpoison_shadow+0x33/0x50 [ 425.799874] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 425.800497] acct_on+0x78/0x790 [ 425.800902] __x64_sys_acct+0xab/0x220 [ 425.801392] do_syscall_64+0x33/0x40 [ 425.801851] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 425.802477] RIP: 0033:0x7ff5d412ab19 [ 425.802938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 425.805199] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 425.806135] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 425.807004] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 425.807869] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 425.808739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 425.809618] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 08:54:30 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x0, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:30 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 11) [ 425.978267] FAULT_INJECTION: forcing a failure. [ 425.978267] name failslab, interval 1, probability 0, space 0, times 0 [ 425.979699] CPU: 0 PID: 4781 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 425.980525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 425.981546] Call Trace: [ 425.981875] dump_stack+0x107/0x167 [ 425.982321] should_fail.cold+0x5/0xa [ 425.982793] should_failslab+0x5/0x20 [ 425.983259] __kmalloc_track_caller+0x79/0x370 [ 425.983816] ? kstrdup_const+0x53/0x80 [ 425.984293] kstrdup+0x36/0x70 [ 425.984686] kstrdup_const+0x53/0x80 [ 425.985143] alloc_vfsmnt+0xb5/0x680 [ 425.985640] clone_mnt+0x6c/0xce0 [ 425.986067] ? is_subdir+0x1aa/0x3a0 [ 425.986519] copy_tree+0x3b0/0xa60 [ 425.986960] copy_mnt_ns+0x144/0xa00 [ 425.987418] ? kmem_cache_alloc+0x2a6/0x310 [ 425.987957] create_new_namespaces+0xd6/0xb20 [ 425.988510] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 425.989113] ksys_unshare+0x449/0x8a0 [ 425.989593] ? unshare_fd+0x1c0/0x1c0 [ 425.990065] ? ksys_write+0x1a9/0x260 [ 425.990537] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 425.991184] __x64_sys_unshare+0x2d/0x40 [ 425.991681] do_syscall_64+0x33/0x40 [ 425.992137] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 425.992763] RIP: 0033:0x7fc7d3fdfb19 [ 425.993262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 425.995524] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 425.996456] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 425.997345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 425.998225] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 425.999095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 425.999965] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 426.038331] Process accounting resumed [ 426.099519] Process accounting resumed 08:54:31 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 426.361288] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. 08:54:31 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x0, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:31 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 10) 08:54:31 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 12) [ 426.387619] FAULT_INJECTION: forcing a failure. [ 426.387619] name failslab, interval 1, probability 0, space 0, times 0 [ 426.389072] CPU: 0 PID: 4790 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 426.389916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 426.390921] Call Trace: [ 426.391017] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 426.391247] dump_stack+0x107/0x167 08:54:31 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 426.391261] should_fail.cold+0x5/0xa [ 426.393315] ? create_object.isra.0+0x3a/0xa20 [ 426.393888] should_failslab+0x5/0x20 [ 426.394355] kmem_cache_alloc+0x5b/0x310 [ 426.394854] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 426.395531] create_object.isra.0+0x3a/0xa20 [ 426.396068] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 426.396693] kmem_cache_alloc+0x159/0x310 [ 426.397213] security_file_alloc+0x34/0x170 [ 426.397766] __alloc_file+0xb7/0x320 [ 426.398224] alloc_empty_file+0x6d/0x170 [ 426.398724] path_openat+0xe6/0x2770 [ 426.399183] ? unwind_get_return_address+0x55/0xa0 [ 426.399785] ? create_prof_cpu_mask+0x20/0x20 [ 426.400333] ? arch_stack_walk+0x99/0xf0 [ 426.400833] ? path_lookupat+0x860/0x860 [ 426.401347] ? stack_trace_save+0x8c/0xc0 [ 426.401856] ? stack_trace_consume_entry+0x160/0x160 [ 426.402482] do_filp_open+0x190/0x3e0 [ 426.402952] ? may_open_dev+0xf0/0xf0 [ 426.403417] ? acct_on+0x58/0x790 [ 426.403843] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 426.404497] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 426.405107] ? lock_chain_count+0x20/0x20 [ 426.406045] ? osq_unlock+0x1a0/0x1a0 [ 426.406942] ? create_object.isra.0+0x3ad/0xa20 [ 426.408051] ? kmem_cache_alloc_trace+0x151/0x320 [ 426.409196] file_open_name+0x2a9/0x430 [ 426.410354] ? do_sys_openat2+0x4d0/0x4d0 [ 426.411358] ? kasan_unpoison_shadow+0x33/0x50 [ 426.412460] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 426.413786] acct_on+0x78/0x790 [ 426.414561] __x64_sys_acct+0xab/0x220 [ 426.415474] do_syscall_64+0x33/0x40 [ 426.416352] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 426.417642] RIP: 0033:0x7ff5d412ab19 [ 426.418543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 426.423522] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 426.425387] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 426.427127] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 426.428866] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 426.430953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 08:54:31 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 426.432643] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 08:54:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 426.464144] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 426.475557] FAULT_INJECTION: forcing a failure. [ 426.475557] name failslab, interval 1, probability 0, space 0, times 0 [ 426.478715] CPU: 0 PID: 4791 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 426.480370] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 426.482610] Call Trace: [ 426.483241] dump_stack+0x107/0x167 [ 426.484112] should_fail.cold+0x5/0xa [ 426.485026] ? create_object.isra.0+0x3a/0xa20 [ 426.485710] should_failslab+0x5/0x20 [ 426.486183] kmem_cache_alloc+0x5b/0x310 [ 426.486683] ? find_held_lock+0x2c/0x110 [ 426.487185] create_object.isra.0+0x3a/0xa20 [ 426.487723] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 426.488350] kmem_cache_alloc+0x159/0x310 [ 426.488861] ? rwlock_bug.part.0+0x90/0x90 [ 426.489661] alloc_vfsmnt+0x23/0x680 [ 426.490561] clone_mnt+0x6c/0xce0 [ 426.491397] ? is_subdir+0x1aa/0x3a0 [ 426.492302] copy_tree+0x3b0/0xa60 [ 426.493163] copy_mnt_ns+0x144/0xa00 [ 426.501662] ? kmem_cache_alloc+0x2a6/0x310 [ 426.502197] create_new_namespaces+0xd6/0xb20 [ 426.502750] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 426.503350] ksys_unshare+0x449/0x8a0 [ 426.503814] ? unshare_fd+0x1c0/0x1c0 [ 426.504276] ? fput_many+0x2f/0x1a0 [ 426.504721] ? ksys_write+0x1a9/0x260 [ 426.505189] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 426.505859] __x64_sys_unshare+0x2d/0x40 [ 426.506356] do_syscall_64+0x33/0x40 [ 426.506811] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 426.507434] RIP: 0033:0x7fc7d3fdfb19 [ 426.507897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 426.510160] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 426.511089] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 426.511954] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 426.512817] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 426.513701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 426.514573] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 426.517406] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 08:54:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) [ 426.594934] Process accounting resumed 08:54:31 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) 08:54:31 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 11) [ 426.626922] FAULT_INJECTION: forcing a failure. [ 426.626922] name failslab, interval 1, probability 0, space 0, times 0 [ 426.628343] CPU: 1 PID: 4806 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 426.629171] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 426.630201] Call Trace: [ 426.630530] dump_stack+0x107/0x167 [ 426.630975] should_fail.cold+0x5/0xa [ 426.631445] ? create_object.isra.0+0x3a/0xa20 [ 426.632008] should_failslab+0x5/0x20 [ 426.632476] kmem_cache_alloc+0x5b/0x310 [ 426.632976] ? lock_release+0x680/0x680 [ 426.633486] create_object.isra.0+0x3a/0xa20 [ 426.634027] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 426.634650] kmem_cache_alloc+0x159/0x310 [ 426.635166] alloc_vfsmnt+0x23/0x680 [ 426.635622] clone_mnt+0x6c/0xce0 [ 426.636046] ? kasan_unpoison_shadow+0x33/0x50 [ 426.636605] mnt_clone_internal+0x5c/0xf0 [ 426.637110] acct_on+0x171/0x790 [ 426.637575] __x64_sys_acct+0xab/0x220 [ 426.638055] do_syscall_64+0x33/0x40 [ 426.638513] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 426.639138] RIP: 0033:0x7ff5d412ab19 [ 426.639599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 426.641862] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 426.642789] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 426.643659] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 426.644528] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 426.645466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 426.646336] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 426.756206] Process accounting resumed [ 426.779564] Process accounting resumed 08:54:45 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:45 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:45 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:45 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 13) 08:54:45 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)) 08:54:45 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 12) 08:54:45 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 440.337531] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. 08:54:45 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000080)=0x20) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000100)={0x1, 0x0, [0x0]}) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) preadv(r1, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x2, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r3) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) vmsplice(r2, &(0x7f00000003c0)=[{&(0x7f00000001c0)="82ed4108006d2375e0ed06b9b2d8b57559380d3a36dc4ec90a5cdee6a64cded15315b5b4e47e962ab595badb5156576eeea55f6fc1c555deb253", 0x3a}, {&(0x7f0000000440)="4406428381a0f4bce402007d7a249b45b7b9bfdffa1602369a05d9205426dde0b1426d39e17de4e2f0a03363154d78235ae1ffee3eed5fcd3505d2b7600f351fc15494616be2a8384b1632aedd2db9af95b555a603b2d5b3cda1307f74839aa331756ceda8e8b4833664379b227b0934ec708cd5d51aa191e41b65c948bfd2f09264c9a1f327f8b96d00bc05baa17a65a294550936bfa77b1c4b5569b23b8831ed8b20ed0601617db4d3da13176be43d2559fee71c4e413b9dbc7338e4c86c1b43b73dd80bbff7966e214c0f65e6a9bd68", 0xd1}], 0x2, 0x0) sendmsg$NFNL_MSG_ACCT_NEW(r1, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8}, 0xffffff22, &(0x7f00000002c0)={&(0x7f0000000380)={0x2c, 0x0, 0x7, 0x801, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FLAGS={0x0, 0x5, 0x1, 0x0, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20048001}, 0x24004889) getsockopt$packet_int(r1, 0x107, 0xb, &(0x7f0000000140), &(0x7f0000000180)=0x4) [ 440.358524] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 440.358813] FAULT_INJECTION: forcing a failure. [ 440.358813] name failslab, interval 1, probability 0, space 0, times 0 [ 440.361042] CPU: 1 PID: 4816 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 440.361932] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 440.362984] Call Trace: [ 440.363318] dump_stack+0x107/0x167 [ 440.363793] should_fail.cold+0x5/0xa [ 440.364274] should_failslab+0x5/0x20 [ 440.364772] __kmalloc_track_caller+0x79/0x370 [ 440.365342] ? kstrdup_const+0x53/0x80 [ 440.365868] kstrdup+0x36/0x70 [ 440.366277] kstrdup_const+0x53/0x80 [ 440.366768] alloc_vfsmnt+0xb5/0x680 [ 440.367236] clone_mnt+0x6c/0xce0 [ 440.367683] ? kasan_unpoison_shadow+0x33/0x50 [ 440.368254] mnt_clone_internal+0x5c/0xf0 [ 440.368783] acct_on+0x171/0x790 [ 440.369194] __x64_sys_acct+0xab/0x220 [ 440.369694] do_syscall_64+0x33/0x40 [ 440.370180] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 440.370831] RIP: 0033:0x7ff5d412ab19 [ 440.371300] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 440.373640] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 440.374754] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 440.375662] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 440.376555] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 440.377467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 440.378450] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 440.379828] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 440.380192] FAULT_INJECTION: forcing a failure. [ 440.380192] name failslab, interval 1, probability 0, space 0, times 0 [ 440.382435] CPU: 0 PID: 4813 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 440.383270] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 440.384276] Call Trace: [ 440.384604] dump_stack+0x107/0x167 [ 440.384679] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 440.385050] should_fail.cold+0x5/0xa [ 440.386602] ? create_object.isra.0+0x3a/0xa20 [ 440.387163] should_failslab+0x5/0x20 [ 440.387635] kmem_cache_alloc+0x5b/0x310 [ 440.388139] create_object.isra.0+0x3a/0xa20 [ 440.388691] kmemleak_alloc_percpu+0xa0/0x100 [ 440.389252] pcpu_alloc+0x4e2/0x1240 [ 440.389739] alloc_vfsmnt+0xfd/0x680 [ 440.390212] clone_mnt+0x6c/0xce0 [ 440.390642] ? is_subdir+0x1aa/0x3a0 [ 440.391098] copy_tree+0x3b0/0xa60 [ 440.391539] copy_mnt_ns+0x144/0xa00 [ 440.392005] ? kmem_cache_alloc+0x2a6/0x310 [ 440.392544] create_new_namespaces+0xd6/0xb20 [ 440.393103] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 440.393720] ksys_unshare+0x449/0x8a0 [ 440.394209] ? unshare_fd+0x1c0/0x1c0 [ 440.394677] ? ksys_write+0x1a9/0x260 [ 440.395146] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 440.395788] __x64_sys_unshare+0x2d/0x40 [ 440.396279] do_syscall_64+0x33/0x40 [ 440.396733] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 440.397365] RIP: 0033:0x7fc7d3fdfb19 [ 440.397851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 440.400130] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 440.401061] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 440.401964] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 440.402844] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 440.403833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 440.404704] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:54:45 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)) 08:54:45 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 440.483983] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 440.504430] Process accounting resumed 08:54:45 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000100)) 08:54:45 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 14) 08:54:45 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 13) 08:54:45 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) [ 440.704591] FAULT_INJECTION: forcing a failure. [ 440.704591] name failslab, interval 1, probability 0, space 0, times 0 [ 440.706138] CPU: 0 PID: 4844 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 440.706976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 440.707979] Call Trace: [ 440.708305] dump_stack+0x107/0x167 [ 440.708749] should_fail.cold+0x5/0xa [ 440.709224] ? create_object.isra.0+0x3a/0xa20 [ 440.709814] should_failslab+0x5/0x20 [ 440.710290] kmem_cache_alloc+0x5b/0x310 [ 440.710792] create_object.isra.0+0x3a/0xa20 [ 440.711328] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 440.711960] __kmalloc_track_caller+0x177/0x370 [ 440.712538] ? kstrdup_const+0x53/0x80 [ 440.713023] kstrdup+0x36/0x70 [ 440.713418] kstrdup_const+0x53/0x80 [ 440.713924] alloc_vfsmnt+0xb5/0x680 [ 440.714380] clone_mnt+0x6c/0xce0 [ 440.714812] ? kasan_unpoison_shadow+0x33/0x50 [ 440.715383] mnt_clone_internal+0x5c/0xf0 [ 440.715890] acct_on+0x171/0x790 [ 440.716303] __x64_sys_acct+0xab/0x220 [ 440.716781] do_syscall_64+0x33/0x40 [ 440.717235] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 440.717915] RIP: 0033:0x7ff5d412ab19 [ 440.718385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 440.720645] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 440.721570] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 440.722458] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 440.723338] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 440.724216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 440.725089] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 440.778476] FAULT_INJECTION: forcing a failure. [ 440.778476] name failslab, interval 1, probability 0, space 0, times 0 [ 440.780040] CPU: 0 PID: 4848 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 440.780878] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 440.781920] Call Trace: [ 440.782249] dump_stack+0x107/0x167 [ 440.782698] should_fail.cold+0x5/0xa [ 440.783168] ? create_object.isra.0+0x3a/0xa20 [ 440.783730] should_failslab+0x5/0x20 [ 440.784211] kmem_cache_alloc+0x5b/0x310 [ 440.784710] create_object.isra.0+0x3a/0xa20 [ 440.785289] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 440.785934] __kmalloc_track_caller+0x177/0x370 [ 440.786501] ? kstrdup_const+0x53/0x80 [ 440.786979] kstrdup+0x36/0x70 [ 440.787371] kstrdup_const+0x53/0x80 [ 440.787826] alloc_vfsmnt+0xb5/0x680 [ 440.788280] clone_mnt+0x6c/0xce0 [ 440.788704] ? is_subdir+0x1aa/0x3a0 [ 440.789158] copy_tree+0x3b0/0xa60 [ 440.789597] copy_mnt_ns+0x144/0xa00 [ 440.790067] ? kmem_cache_alloc+0x2a6/0x310 [ 440.790598] create_new_namespaces+0xd6/0xb20 [ 440.791148] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 440.791748] ksys_unshare+0x449/0x8a0 [ 440.792216] ? unshare_fd+0x1c0/0x1c0 [ 440.792677] ? fput_many+0x2f/0x1a0 [ 440.793120] ? ksys_write+0x1a9/0x260 [ 440.793590] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 440.794239] __x64_sys_unshare+0x2d/0x40 [ 440.794733] do_syscall_64+0x33/0x40 [ 440.795193] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 440.795816] RIP: 0033:0x7fc7d3fdfb19 [ 440.796274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 440.798533] RSP: 002b:00007fc7d1534188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 440.799458] RAX: ffffffffffffffda RBX: 00007fc7d40f3020 RCX: 00007fc7d3fdfb19 [ 440.800325] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 440.801195] RBP: 00007fc7d15341d0 R08: 0000000000000000 R09: 0000000000000000 [ 440.802110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 440.803107] R13: 00007ffd9825f31f R14: 00007fc7d1534300 R15: 0000000000022000 08:54:45 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) [ 440.870224] Process accounting resumed 08:54:45 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 14) [ 440.960985] FAULT_INJECTION: forcing a failure. [ 440.960985] name failslab, interval 1, probability 0, space 0, times 0 [ 440.962627] CPU: 1 PID: 4852 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 440.963491] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 440.964520] Call Trace: [ 440.964846] dump_stack+0x107/0x167 [ 440.965291] should_fail.cold+0x5/0xa [ 440.965768] ? create_object.isra.0+0x3a/0xa20 [ 440.966335] should_failslab+0x5/0x20 [ 440.966808] kmem_cache_alloc+0x5b/0x310 [ 440.967322] create_object.isra.0+0x3a/0xa20 [ 440.967877] kmemleak_alloc_percpu+0xa0/0x100 [ 440.968439] pcpu_alloc+0x4e2/0x1240 [ 440.968913] alloc_vfsmnt+0xfd/0x680 [ 440.969380] clone_mnt+0x6c/0xce0 [ 440.969822] ? kasan_unpoison_shadow+0x33/0x50 [ 440.970393] mnt_clone_internal+0x5c/0xf0 [ 440.970911] acct_on+0x171/0x790 [ 440.971337] __x64_sys_acct+0xab/0x220 [ 440.971830] do_syscall_64+0x33/0x40 [ 440.972291] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 440.972917] RIP: 0033:0x7ff5d412ab19 [ 440.973380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 440.975646] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 440.976574] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 440.977440] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 440.978317] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 440.979196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 440.980076] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 441.001445] Process accounting resumed [ 441.028958] Process accounting resumed [ 441.254742] syz-executor.7 (4819) used greatest stack depth: 23416 bytes left 08:54:59 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:59 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:59 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:59 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) 08:54:59 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 15) 08:54:59 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:59 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 15) 08:54:59 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 454.377357] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 454.379619] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 454.383218] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 454.389039] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 454.399269] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 454.405154] FAULT_INJECTION: forcing a failure. [ 454.405154] name failslab, interval 1, probability 0, space 0, times 0 [ 454.406642] CPU: 0 PID: 4867 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 454.407470] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 454.408483] Call Trace: [ 454.408819] dump_stack+0x107/0x167 [ 454.409276] should_fail.cold+0x5/0xa [ 454.409753] ? alloc_vfsmnt+0x23/0x680 [ 454.410249] should_failslab+0x5/0x20 [ 454.410719] kmem_cache_alloc+0x5b/0x310 [ 454.411217] ? copy_tree+0x61a/0xa60 [ 454.411650] alloc_vfsmnt+0x23/0x680 [ 454.412122] clone_mnt+0x6c/0xce0 [ 454.412553] copy_tree+0x3b0/0xa60 [ 454.413001] copy_mnt_ns+0x144/0xa00 [ 454.413468] ? kmem_cache_alloc+0x2a6/0x310 [ 454.414010] create_new_namespaces+0xd6/0xb20 [ 454.414600] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 454.415209] ksys_unshare+0x449/0x8a0 [ 454.415683] ? unshare_fd+0x1c0/0x1c0 [ 454.416166] ? ksys_write+0x1a9/0x260 [ 454.416649] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 454.417287] __x64_sys_unshare+0x2d/0x40 [ 454.417795] do_syscall_64+0x33/0x40 [ 454.418246] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 454.418886] RIP: 0033:0x7fc7d3fdfb19 [ 454.419354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 454.421598] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 454.422575] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 454.423400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 454.424223] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 454.425061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 454.425884] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 454.457729] FAULT_INJECTION: forcing a failure. [ 454.457729] name failslab, interval 1, probability 0, space 0, times 0 [ 454.459107] CPU: 0 PID: 4870 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 454.459891] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 454.460847] Call Trace: [ 454.461156] dump_stack+0x107/0x167 [ 454.461577] should_fail.cold+0x5/0xa [ 454.462019] ? create_object.isra.0+0x3a/0xa20 [ 454.462586] should_failslab+0x5/0x20 [ 454.463032] kmem_cache_alloc+0x5b/0x310 [ 454.463506] create_object.isra.0+0x3a/0xa20 [ 454.464022] kmemleak_alloc_percpu+0xa0/0x100 [ 454.464544] pcpu_alloc+0x4e2/0x1240 [ 454.464990] alloc_vfsmnt+0xfd/0x680 [ 454.465424] clone_mnt+0x6c/0xce0 [ 454.465826] ? kasan_unpoison_shadow+0x33/0x50 [ 454.466389] mnt_clone_internal+0x5c/0xf0 [ 454.466869] acct_on+0x171/0x790 [ 454.467264] __x64_sys_acct+0xab/0x220 [ 454.467716] do_syscall_64+0x33/0x40 [ 454.468147] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 454.468741] RIP: 0033:0x7ff5d412ab19 [ 454.469177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 454.471336] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 454.472218] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 454.473043] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 454.473866] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 454.474714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 454.475546] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 454.504908] Process accounting resumed 08:54:59 executing program 2: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:54:59 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 16) [ 454.592863] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 454.597091] Process accounting resumed [ 454.624404] FAULT_INJECTION: forcing a failure. [ 454.624404] name failslab, interval 1, probability 0, space 0, times 0 08:54:59 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 16) [ 454.625921] CPU: 1 PID: 4880 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 454.630770] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 454.631767] Call Trace: [ 454.632091] dump_stack+0x107/0x167 [ 454.632532] should_fail.cold+0x5/0xa [ 454.632995] ? create_object.isra.0+0x3a/0xa20 [ 454.633547] should_failslab+0x5/0x20 [ 454.634007] kmem_cache_alloc+0x5b/0x310 [ 454.634512] ? find_held_lock+0x2c/0x110 [ 454.635003] create_object.isra.0+0x3a/0xa20 [ 454.635530] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 454.636143] kmem_cache_alloc+0x159/0x310 [ 454.636653] alloc_vfsmnt+0x23/0x680 [ 454.637104] clone_mnt+0x6c/0xce0 [ 454.637527] copy_tree+0x3b0/0xa60 [ 454.637966] copy_mnt_ns+0x144/0xa00 [ 454.638434] ? kmem_cache_alloc+0x2a6/0x310 [ 454.638963] create_new_namespaces+0xd6/0xb20 [ 454.639512] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 454.640110] ksys_unshare+0x449/0x8a0 [ 454.640571] ? unshare_fd+0x1c0/0x1c0 [ 454.641036] ? ksys_write+0x1a9/0x260 [ 454.641503] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 454.642141] __x64_sys_unshare+0x2d/0x40 [ 454.642644] do_syscall_64+0x33/0x40 [ 454.643095] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 454.643715] RIP: 0033:0x7fc7d3fdfb19 [ 454.644171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 454.646405] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 454.647326] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 454.648188] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 454.649049] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 454.649911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 454.650789] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 454.672016] FAULT_INJECTION: forcing a failure. [ 454.672016] name failslab, interval 1, probability 0, space 0, times 0 [ 454.673396] CPU: 0 PID: 4882 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 454.674183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 454.675162] Call Trace: [ 454.675472] dump_stack+0x107/0x167 [ 454.675895] should_fail.cold+0x5/0xa [ 454.676338] ? create_object.isra.0+0x3a/0xa20 [ 454.676872] should_failslab+0x5/0x20 [ 454.677314] kmem_cache_alloc+0x5b/0x310 [ 454.677787] ? mark_held_locks+0x9e/0xe0 [ 454.678276] create_object.isra.0+0x3a/0xa20 [ 454.678793] kmemleak_alloc_percpu+0xa0/0x100 [ 454.679316] pcpu_alloc+0x4e2/0x1240 [ 454.679762] alloc_vfsmnt+0xfd/0x680 [ 454.680199] clone_mnt+0x6c/0xce0 [ 454.680608] ? kasan_unpoison_shadow+0x33/0x50 [ 454.681139] mnt_clone_internal+0x5c/0xf0 [ 454.681625] acct_on+0x171/0x790 [ 454.682019] __x64_sys_acct+0xab/0x220 [ 454.682492] do_syscall_64+0x33/0x40 [ 454.682924] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 454.683518] RIP: 0033:0x7ff5d412ab19 [ 454.683956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 454.686093] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 454.687028] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 454.687857] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 454.688687] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 454.689517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 454.690362] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 454.691984] Process accounting resumed 08:54:59 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 17) [ 454.788006] FAULT_INJECTION: forcing a failure. [ 454.788006] name failslab, interval 1, probability 0, space 0, times 0 [ 454.789444] CPU: 0 PID: 4886 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 454.790264] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 454.791318] Call Trace: [ 454.791638] dump_stack+0x107/0x167 [ 454.792075] should_fail.cold+0x5/0xa [ 454.792533] should_failslab+0x5/0x20 [ 454.792976] __kmalloc_track_caller+0x79/0x370 [ 454.793505] ? kstrdup_const+0x53/0x80 [ 454.793962] kstrdup+0x36/0x70 [ 454.794351] kstrdup_const+0x53/0x80 [ 454.794786] alloc_vfsmnt+0xb5/0x680 [ 454.795220] clone_mnt+0x6c/0xce0 [ 454.795626] copy_tree+0x3b0/0xa60 [ 454.796046] copy_mnt_ns+0x144/0xa00 [ 454.796482] ? kmem_cache_alloc+0x2a6/0x310 [ 454.796993] create_new_namespaces+0xd6/0xb20 [ 454.797521] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 454.798096] ksys_unshare+0x449/0x8a0 [ 454.798553] ? unshare_fd+0x1c0/0x1c0 [ 454.799010] ? ksys_write+0x1a9/0x260 [ 454.799462] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 454.800076] __x64_sys_unshare+0x2d/0x40 [ 454.800553] do_syscall_64+0x33/0x40 [ 454.800989] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 454.801589] RIP: 0033:0x7fc7d3fdfb19 [ 454.802028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 454.804181] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 454.805069] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 454.805901] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 454.806747] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 454.807579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 454.808409] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 454.840689] Process accounting resumed 08:54:59 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 17) [ 454.894373] FAULT_INJECTION: forcing a failure. [ 454.894373] name failslab, interval 1, probability 0, space 0, times 0 [ 454.896212] CPU: 1 PID: 4888 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 454.897095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 454.898158] Call Trace: [ 454.898512] dump_stack+0x107/0x167 [ 454.899028] should_fail.cold+0x5/0xa [ 454.899498] ? create_object.isra.0+0x3a/0xa20 [ 454.900107] should_failslab+0x5/0x20 [ 454.900621] kmem_cache_alloc+0x5b/0x310 [ 454.901120] create_object.isra.0+0x3a/0xa20 [ 454.901707] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 454.902347] kmem_cache_alloc+0x159/0x310 [ 454.902906] jbd2__journal_start+0x190/0x7e0 [ 454.903453] __ext4_journal_start_sb+0x214/0x390 [ 454.904106] ext4_dirty_inode+0xbc/0x130 [ 454.904656] ? ext4_setattr+0x20f0/0x20f0 [ 454.905160] __mark_inode_dirty+0x492/0xd40 [ 454.905737] ? mark_lock+0xf5/0x2df0 [ 454.906195] generic_update_time+0x21c/0x370 [ 454.906800] file_update_time+0x43a/0x520 [ 454.907304] ? evict_inodes+0x470/0x470 [ 454.907865] ? down_write_killable+0x180/0x180 [ 454.908424] file_modified+0x7d/0xa0 [ 454.908932] ext4_buffered_write_iter+0xf9/0x4a0 [ 454.909510] ext4_file_write_iter+0x3ab/0x1530 [ 454.910117] ? __lock_acquire+0xbb1/0x5b00 [ 454.910705] ? ext4_file_read_iter+0x4c0/0x4c0 [ 454.911266] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 454.911955] ? lock_chain_count+0x20/0x20 [ 454.912463] __kernel_write+0x593/0xb40 [ 454.913025] ? do_iter_readv_writev+0x750/0x750 [ 454.913640] ? acct_pin_kill+0x29/0xf0 [ 454.914124] ? lock_release+0x680/0x680 [ 454.914677] ? from_kgid+0xd0/0xd0 [ 454.915118] do_acct_process+0xd46/0x1360 [ 454.915675] ? acct_on+0x790/0x790 [ 454.916111] ? find_held_lock+0x2c/0x110 [ 454.916687] ? rwlock_bug.part.0+0x90/0x90 [ 454.917205] acct_pin_kill+0x29/0xf0 [ 454.917711] pin_kill+0x17c/0x810 [ 454.918131] ? acct_on+0x4ac/0x790 [ 454.918632] ? pin_insert+0x210/0x210 [ 454.919098] ? __mutex_unlock_slowpath+0xe1/0x600 [ 454.919732] ? lock_downgrade+0x6d0/0x6d0 [ 454.920238] ? wait_woken+0x250/0x250 [ 454.920784] acct_on+0x558/0x790 [ 454.921199] __x64_sys_acct+0xab/0x220 [ 454.921723] do_syscall_64+0x33/0x40 [ 454.922181] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 454.922868] RIP: 0033:0x7ff5d412ab19 [ 454.923329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 454.925718] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 454.926704] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 454.927619] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 454.928484] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 454.929395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 454.930325] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 454.964551] Process accounting resumed [ 454.967868] Process accounting resumed 08:54:59 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 18) 08:54:59 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 18) [ 455.040276] FAULT_INJECTION: forcing a failure. [ 455.040276] name failslab, interval 1, probability 0, space 0, times 0 [ 455.041603] CPU: 0 PID: 4890 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 455.042434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 455.043396] Call Trace: [ 455.043708] dump_stack+0x107/0x167 [ 455.044130] should_fail.cold+0x5/0xa [ 455.044575] ? create_object.isra.0+0x3a/0xa20 [ 455.045106] should_failslab+0x5/0x20 [ 455.045548] kmem_cache_alloc+0x5b/0x310 [ 455.046022] create_object.isra.0+0x3a/0xa20 [ 455.046574] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 455.047166] __kmalloc_track_caller+0x177/0x370 [ 455.047712] ? kstrdup_const+0x53/0x80 [ 455.048167] kstrdup+0x36/0x70 [ 455.048547] kstrdup_const+0x53/0x80 [ 455.048984] alloc_vfsmnt+0xb5/0x680 [ 455.049420] clone_mnt+0x6c/0xce0 [ 455.049828] copy_tree+0x3b0/0xa60 [ 455.050258] copy_mnt_ns+0x144/0xa00 [ 455.050701] ? kmem_cache_alloc+0x2a6/0x310 [ 455.051211] create_new_namespaces+0xd6/0xb20 [ 455.051740] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 455.052322] ksys_unshare+0x449/0x8a0 [ 455.052766] ? unshare_fd+0x1c0/0x1c0 [ 455.053215] ? ksys_write+0x1a9/0x260 [ 455.053665] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 455.054293] __x64_sys_unshare+0x2d/0x40 [ 455.054771] do_syscall_64+0x33/0x40 [ 455.055207] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 455.055807] RIP: 0033:0x7fc7d3fdfb19 [ 455.056245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 455.058401] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 455.059289] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 455.060119] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 455.060951] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 455.061783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 455.062625] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 455.068622] FAULT_INJECTION: forcing a failure. [ 455.068622] name failslab, interval 1, probability 0, space 0, times 0 [ 455.070013] CPU: 0 PID: 4892 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 455.070838] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 455.071791] Call Trace: [ 455.072096] dump_stack+0x107/0x167 [ 455.072518] should_fail.cold+0x5/0xa [ 455.072960] ? create_object.isra.0+0x3a/0xa20 [ 455.073494] should_failslab+0x5/0x20 [ 455.073939] kmem_cache_alloc+0x5b/0x310 [ 455.074435] create_object.isra.0+0x3a/0xa20 [ 455.074947] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 455.075544] kmem_cache_alloc+0x159/0x310 [ 455.076034] start_this_handle+0x674/0x1390 [ 455.076539] ? kmem_cache_alloc+0x159/0x310 [ 455.077048] ? mark_held_locks+0x9e/0xe0 [ 455.077521] ? __jbd2_journal_unfile_buffer+0xb0/0xb0 [ 455.078127] ? trace_hardirqs_on+0x5b/0x180 [ 455.078653] ? kmem_cache_alloc+0x2a6/0x310 [ 455.079161] jbd2__journal_start+0x390/0x7e0 [ 455.079683] __ext4_journal_start_sb+0x214/0x390 [ 455.080243] ext4_dirty_inode+0xbc/0x130 [ 455.080718] ? ext4_setattr+0x20f0/0x20f0 [ 455.081202] __mark_inode_dirty+0x492/0xd40 [ 455.081711] ? mark_lock+0xf5/0x2df0 [ 455.082147] generic_update_time+0x21c/0x370 [ 455.082680] file_update_time+0x43a/0x520 [ 455.083164] ? evict_inodes+0x470/0x470 [ 455.083633] ? down_write_killable+0x180/0x180 [ 455.084177] file_modified+0x7d/0xa0 [ 455.084620] ext4_buffered_write_iter+0xf9/0x4a0 [ 455.085174] ext4_file_write_iter+0x3ab/0x1530 [ 455.085711] ? __lock_acquire+0xbb1/0x5b00 [ 455.086210] ? ext4_file_read_iter+0x4c0/0x4c0 [ 455.086762] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 455.087372] ? lock_chain_count+0x20/0x20 [ 455.087864] __kernel_write+0x593/0xb40 [ 455.088329] ? do_iter_readv_writev+0x750/0x750 [ 455.088869] ? acct_pin_kill+0x29/0xf0 [ 455.089330] ? lock_release+0x680/0x680 [ 455.089799] ? from_kgid+0xd0/0xd0 [ 455.090220] do_acct_process+0xd46/0x1360 [ 455.090717] ? acct_on+0x790/0x790 [ 455.091130] ? find_held_lock+0x2c/0x110 [ 455.091610] ? rwlock_bug.part.0+0x90/0x90 [ 455.092104] acct_pin_kill+0x29/0xf0 [ 455.092541] pin_kill+0x17c/0x810 [ 455.092947] ? acct_on+0x4ac/0x790 [ 455.093364] ? pin_insert+0x210/0x210 [ 455.093809] ? __mutex_unlock_slowpath+0xe1/0x600 [ 455.094379] ? lock_downgrade+0x6d0/0x6d0 [ 455.094862] ? wait_woken+0x250/0x250 [ 455.095315] acct_on+0x558/0x790 [ 455.095712] __x64_sys_acct+0xab/0x220 [ 455.096163] do_syscall_64+0x33/0x40 [ 455.096598] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 455.097192] RIP: 0033:0x7ff5d412ab19 [ 455.097624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 455.099770] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 455.100655] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 455.101481] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 455.102328] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 455.103158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 455.103988] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 455.139437] Process accounting resumed [ 455.143049] Process accounting resumed 08:55:00 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 19) [ 455.165833] FAULT_INJECTION: forcing a failure. [ 455.165833] name failslab, interval 1, probability 0, space 0, times 0 [ 455.167323] CPU: 1 PID: 4894 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 455.168153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 455.169163] Call Trace: [ 455.169492] dump_stack+0x107/0x167 [ 455.169937] should_fail.cold+0x5/0xa [ 455.170441] ? create_object.isra.0+0x3a/0xa20 [ 455.171029] should_failslab+0x5/0x20 [ 455.171523] kmem_cache_alloc+0x5b/0x310 [ 455.172049] ? find_get_entry+0x2c8/0x740 [ 455.172587] create_object.isra.0+0x3a/0xa20 [ 455.173150] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 455.173802] kmem_cache_alloc+0x159/0x310 [ 455.174357] jbd2__journal_start+0x190/0x7e0 [ 455.174926] __ext4_journal_start_sb+0x214/0x390 [ 455.175552] ext4_da_write_begin+0x51f/0xd40 [ 455.176139] ? ext4_write_begin+0x10f0/0x10f0 [ 455.176716] ? copyout_mc+0x140/0x140 [ 455.177215] ? ext4_dirty_inode+0x107/0x130 [ 455.177774] ? __mark_inode_dirty+0x12e/0xd40 [ 455.178367] generic_perform_write+0x20a/0x4f0 [ 455.178970] ? page_cache_prev_miss+0x310/0x310 [ 455.179579] ? down_write_killable+0x180/0x180 [ 455.180178] ext4_buffered_write_iter+0x232/0x4a0 [ 455.180797] ext4_file_write_iter+0x3ab/0x1530 [ 455.181391] ? __lock_acquire+0xbb1/0x5b00 [ 455.181953] ? ext4_file_read_iter+0x4c0/0x4c0 [ 455.182570] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 455.183242] ? lock_chain_count+0x20/0x20 [ 455.183787] __kernel_write+0x593/0xb40 [ 455.184307] ? do_iter_readv_writev+0x750/0x750 [ 455.184902] ? acct_pin_kill+0x29/0xf0 [ 455.185406] ? lock_release+0x680/0x680 [ 455.185928] ? from_kgid+0xd0/0xd0 [ 455.186414] do_acct_process+0xd46/0x1360 [ 455.186948] ? acct_on+0x790/0x790 [ 455.187409] ? find_held_lock+0x2c/0x110 [ 455.187942] ? rwlock_bug.part.0+0x90/0x90 [ 455.188486] acct_pin_kill+0x29/0xf0 [ 455.188978] pin_kill+0x17c/0x810 [ 455.189426] ? acct_on+0x4ac/0x790 [ 455.189893] ? pin_insert+0x210/0x210 [ 455.190411] ? __mutex_unlock_slowpath+0xe1/0x600 [ 455.191030] ? lock_downgrade+0x6d0/0x6d0 [ 455.191570] ? wait_woken+0x250/0x250 [ 455.192078] acct_on+0x558/0x790 [ 455.192523] __x64_sys_acct+0xab/0x220 [ 455.193025] do_syscall_64+0x33/0x40 [ 455.193511] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 455.194160] RIP: 0033:0x7ff5d412ab19 [ 455.194666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 455.196948] RSP: 002b:00007ff5d16a0188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a3 [ 455.197919] RAX: ffffffffffffffda RBX: 00007ff5d423df60 RCX: 00007ff5d412ab19 [ 455.198827] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000040 [ 455.199719] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 455.200620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 455.201517] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 455.224694] Process accounting resumed 08:55:13 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:13 executing program 2: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:13 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:13 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 19) 08:55:13 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') (fail_nth: 20) 08:55:13 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:13 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:13 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 468.078339] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 468.111071] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 468.112800] FAULT_INJECTION: forcing a failure. [ 468.112800] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 468.114419] CPU: 0 PID: 4911 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 468.118726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 468.120480] Call Trace: [ 468.120888] dump_stack+0x107/0x167 [ 468.121550] should_fail.cold+0x5/0xa [ 468.122092] _copy_to_user+0x2e/0x180 [ 468.122853] simple_read_from_buffer+0xcc/0x160 [ 468.123563] proc_fail_nth_read+0x198/0x230 [ 468.124184] ? proc_sessionid_read+0x230/0x230 [ 468.125027] ? security_file_permission+0xb1/0xe0 [ 468.125853] ? proc_sessionid_read+0x230/0x230 [ 468.126406] vfs_read+0x228/0x620 [ 468.127151] ksys_read+0x12d/0x260 [ 468.127671] ? vfs_write+0xb10/0xb10 [ 468.128319] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 468.129228] ? syscall_enter_from_user_mode+0x1d/0x50 [ 468.129966] do_syscall_64+0x33/0x40 [ 468.130735] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 468.131523] RIP: 0033:0x7ff5d40dd69c [ 468.132066] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 468.135048] RSP: 002b:00007ff5d16a0170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 468.136201] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff5d40dd69c [ 468.137301] RDX: 000000000000000f RSI: 00007ff5d16a01e0 RDI: 0000000000000004 [ 468.140231] RBP: 00007ff5d16a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 468.141392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 468.142524] R13: 00007ffe2a57b59f R14: 00007ff5d16a0300 R15: 0000000000022000 [ 468.177875] Process accounting resumed [ 468.179907] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'. [ 468.181287] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. 08:55:13 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 468.212666] FAULT_INJECTION: forcing a failure. [ 468.212666] name failslab, interval 1, probability 0, space 0, times 0 [ 468.214080] CPU: 0 PID: 4905 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 468.222947] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 468.223981] Call Trace: [ 468.224325] dump_stack+0x107/0x167 [ 468.224786] should_fail.cold+0x5/0xa [ 468.225269] ? create_object.isra.0+0x3a/0xa20 [ 468.225845] should_failslab+0x5/0x20 [ 468.226324] kmem_cache_alloc+0x5b/0x310 [ 468.226863] create_object.isra.0+0x3a/0xa20 [ 468.227425] kmemleak_alloc_percpu+0xa0/0x100 [ 468.227997] pcpu_alloc+0x4e2/0x1240 [ 468.228482] alloc_vfsmnt+0xfd/0x680 [ 468.228955] clone_mnt+0x6c/0xce0 [ 468.229398] copy_tree+0x3b0/0xa60 [ 468.229863] copy_mnt_ns+0x144/0xa00 [ 468.230332] ? kmem_cache_alloc+0x2a6/0x310 [ 468.230905] create_new_namespaces+0xd6/0xb20 [ 468.231482] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 468.232103] ksys_unshare+0x449/0x8a0 [ 468.232591] ? unshare_fd+0x1c0/0x1c0 [ 468.233083] ? ksys_write+0x1a9/0x260 [ 468.233568] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 468.234232] __x64_sys_unshare+0x2d/0x40 [ 468.234759] do_syscall_64+0x33/0x40 [ 468.235235] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 468.235888] RIP: 0033:0x7fc7d3fdfb19 [ 468.236365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 468.238649] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 468.239610] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 468.240498] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 468.241390] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 468.242279] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 468.243189] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 468.251424] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 468.252660] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 468.298348] Process accounting resumed 08:55:13 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r0, &(0x7f0000000240)=""/83, 0x53, 0x200000048) ioctl$CDROMREADALL(r0, 0x5318, &(0x7f00000001c0)) openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x46e2, 0x0) r1 = inotify_init1(0x0) inotify_add_watch(r1, &(0x7f0000000180)='./file0\x00', 0xa4000004) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0) close(r2) r3 = inotify_init1(0x0) inotify_add_watch(r3, &(0x7f0000000040)='./file0\x00', 0x4000000) inotify_add_watch(r3, &(0x7f0000000180)='./file0\x00', 0xa4000004) creat(&(0x7f0000000000)='./file0\x00', 0x1e2) acct(&(0x7f0000000040)='./file0\x00') [ 468.392159] Process accounting resumed [ 468.410766] Process accounting resumed [ 468.447650] Process accounting resumed 08:55:13 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x128) acct(&(0x7f0000000040)='./file0\x00') 08:55:13 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 20) [ 468.545038] FAULT_INJECTION: forcing a failure. [ 468.545038] name failslab, interval 1, probability 0, space 0, times 0 [ 468.546576] CPU: 1 PID: 4928 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 468.547473] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 468.548547] Call Trace: [ 468.548874] dump_stack+0x107/0x167 [ 468.549304] should_fail.cold+0x5/0xa [ 468.549777] ? create_object.isra.0+0x3a/0xa20 [ 468.550379] should_failslab+0x5/0x20 [ 468.554909] kmem_cache_alloc+0x5b/0x310 [ 468.555448] ? mark_held_locks+0x9e/0xe0 [ 468.555986] create_object.isra.0+0x3a/0xa20 [ 468.556568] kmemleak_alloc_percpu+0xa0/0x100 [ 468.557150] pcpu_alloc+0x4e2/0x1240 [ 468.557616] alloc_vfsmnt+0xfd/0x680 [ 468.558062] clone_mnt+0x6c/0xce0 [ 468.558507] copy_tree+0x3b0/0xa60 [ 468.559018] copy_mnt_ns+0x144/0xa00 [ 468.559515] ? kmem_cache_alloc+0x2a6/0x310 [ 468.560086] create_new_namespaces+0xd6/0xb20 [ 468.560690] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 468.561338] ksys_unshare+0x449/0x8a0 [ 468.561843] ? unshare_fd+0x1c0/0x1c0 [ 468.562345] ? ksys_write+0x1a9/0x260 [ 468.562881] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 468.563576] __x64_sys_unshare+0x2d/0x40 [ 468.564078] do_syscall_64+0x33/0x40 [ 468.564520] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 468.565189] RIP: 0033:0x7fc7d3fdfb19 [ 468.565686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 468.568019] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 468.568942] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 468.569807] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 468.570668] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 468.572800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 468.573726] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 468.620643] Process accounting resumed [ 468.621652] Process accounting resumed 08:55:13 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 21) [ 468.767507] FAULT_INJECTION: forcing a failure. [ 468.767507] name failslab, interval 1, probability 0, space 0, times 0 [ 468.768900] CPU: 0 PID: 4931 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 468.769727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 468.770710] Call Trace: [ 468.771048] dump_stack+0x107/0x167 [ 468.771488] should_fail.cold+0x5/0xa [ 468.771947] ? alloc_vfsmnt+0x23/0x680 [ 468.772423] should_failslab+0x5/0x20 [ 468.772884] kmem_cache_alloc+0x5b/0x310 [ 468.773370] ? copy_tree+0x61a/0xa60 [ 468.773828] alloc_vfsmnt+0x23/0x680 [ 468.774278] clone_mnt+0x6c/0xce0 [ 468.774703] copy_tree+0x3b0/0xa60 [ 468.775201] copy_mnt_ns+0x144/0xa00 [ 468.775658] ? kmem_cache_alloc+0x2a6/0x310 [ 468.776188] create_new_namespaces+0xd6/0xb20 [ 468.776743] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 468.777354] ksys_unshare+0x449/0x8a0 [ 468.777819] ? unshare_fd+0x1c0/0x1c0 [ 468.778279] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 468.779024] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 468.780386] ? ksys_write+0x1a9/0x260 [ 468.781352] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 468.782673] __x64_sys_unshare+0x2d/0x40 [ 468.783224] do_syscall_64+0x33/0x40 [ 468.783674] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 468.784292] RIP: 0033:0x7fc7d3fdfb19 [ 468.784754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 468.787041] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 468.787956] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 468.788819] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 468.789678] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 468.790539] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 468.791420] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 468.832689] Process accounting resumed 08:55:13 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 22) [ 468.952663] FAULT_INJECTION: forcing a failure. [ 468.952663] name failslab, interval 1, probability 0, space 0, times 0 [ 468.954181] CPU: 1 PID: 4933 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 468.955084] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 468.956054] Call Trace: [ 468.956407] dump_stack+0x107/0x167 [ 468.956886] should_fail.cold+0x5/0xa [ 468.957371] ? create_object.isra.0+0x3a/0xa20 [ 468.957918] should_failslab+0x5/0x20 [ 468.958375] kmem_cache_alloc+0x5b/0x310 [ 468.958891] ? find_held_lock+0x2c/0x110 [ 468.959389] create_object.isra.0+0x3a/0xa20 [ 468.959964] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 468.960614] kmem_cache_alloc+0x159/0x310 [ 468.961111] alloc_vfsmnt+0x23/0x680 [ 468.961567] clone_mnt+0x6c/0xce0 [ 468.962025] copy_tree+0x3b0/0xa60 [ 468.962499] copy_mnt_ns+0x144/0xa00 [ 468.963013] ? kmem_cache_alloc+0x2a6/0x310 [ 468.963532] create_new_namespaces+0xd6/0xb20 [ 468.964124] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 468.964763] ksys_unshare+0x449/0x8a0 [ 468.965217] ? unshare_fd+0x1c0/0x1c0 [ 468.965678] ? ksys_write+0x1a9/0x260 [ 468.966186] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 468.966888] __x64_sys_unshare+0x2d/0x40 [ 468.967380] do_syscall_64+0x33/0x40 [ 468.967834] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 468.968500] RIP: 0033:0x7fc7d3fdfb19 [ 468.968994] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 468.971295] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 468.972222] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 468.973085] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 468.973947] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 468.974822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 468.975684] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:55:13 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 469.039773] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 469.095963] Process accounting resumed 08:55:14 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 469.200114] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. 08:55:27 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:27 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 482.396534] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 482.410397] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:55:27 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:27 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:27 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 23) 08:55:27 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 1) 08:55:27 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:27 executing program 4: recvmsg$unix(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000001400)=[{&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000001100)=""/135, 0x87}, {&(0x7f00000011c0)=""/140, 0x8c}, {&(0x7f0000001280)=""/109, 0x6d}, {&(0x7f0000001300)=""/231, 0xe7}], 0x5, &(0x7f0000001480)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38}, 0xc0) r3 = creat(0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(0xffffffffffffffff, 0x0, r4) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000100)={0x0}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000001540)=ANY=[@ANYBLOB="001800007bc2000000000000b9ab2b3b8d7d4ebbce54cdb6a461c1df8be3a0642cf5dc46855e3ace55d874c740080d888b96e4757e36cc210045cb6fc11ef0a47669756aef14d6673fa1ff20091748b7a93ee050ba01fce417472c6e66436b65060039259cabb26a8cf4a3d10c128e096410313c9d9adcdce087d7a47bc90100094728a0e7e3421d17d84cadda33dcd71483e2f4a2ec9a97f0949f3b6b7780ad8b855bdf07d3d2b9070a70221820a474c56e584a78c765570622ffd53c9146741b0e2c6420e43bafe5e6dc80b0846e9f01fe288b311478adb052303a48937104cf2384782fa6387f3ff3723c66", @ANYRESDEC=r6]) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r7, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r7, 0x6, 0x2, 0x0, &(0x7f0000000180)) socket$netlink(0x10, 0x3, 0xf) sendmsg$TIPC_CMD_GET_LINKS(r2, &(0x7f0000001740)={&(0x7f0000001680)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001700)={&(0x7f00000016c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x1}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0xc000}, 0x4811) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f0000001500)={r6, 0x1, r7, 0x80}) sendmsg$AUDIT_USER(0xffffffffffffffff, &(0x7f0000001840)={&(0x7f0000001780)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001800)={&(0x7f00000017c0)={0x24, 0x3ed, 0x20, 0x70bd28, 0x25dfdbff, "8e64f54d9b5d10497fc8391488b511d4f8", ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4804}, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000001880)={{0x3c, @rand_addr=0x64010100, 0x4e22, 0x2, 'sh\x00', 0x20, 0x0, 0x3a}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e24, 0x10000, 0x8, 0x0, 0x3}}, 0x44) setsockopt$netlink_NETLINK_RX_RING(0xffffffffffffffff, 0x10e, 0x6, 0x0, 0x0) r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000001880), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001940)={&(0x7f00000018c0)={0x14, r8, 0x10, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x40) sendmsg$DEVLINK_CMD_PORT_SET(0xffffffffffffffff, &(0x7f0000001b40)={&(0x7f0000001900)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001b00)={&(0x7f0000001940)={0x1b0, r8, 0x8, 0x70bd25, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x6}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x6, 0x4, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x6}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x6, 0x4, 0x3}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x6, 0x4, 0x2}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x6, 0x4, 0x2}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x6}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x6, 0x4, 0x3}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x6, 0x4, 0x2}}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x4}, 0x84) creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 482.419748] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 482.426742] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 482.449223] FAULT_INJECTION: forcing a failure. [ 482.449223] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 482.455836] CPU: 0 PID: 4955 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 482.456682] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 482.457682] Call Trace: [ 482.458007] dump_stack+0x107/0x167 [ 482.458450] should_fail.cold+0x5/0xa [ 482.458918] _copy_from_user+0x2e/0x1b0 [ 482.459436] io_uring_setup+0x9b/0x2980 [ 482.459925] ? __mutex_unlock_slowpath+0xe1/0x600 [ 482.460514] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 482.461132] ? wait_for_completion_io+0x270/0x270 [ 482.461722] ? rcu_read_lock_any_held+0x75/0xa0 [ 482.462287] ? vfs_write+0x354/0xb10 [ 482.462740] ? fput_many+0x2f/0x1a0 [ 482.463184] ? ksys_write+0x1a9/0x260 [ 482.463690] ? __ia32_sys_read+0xb0/0xb0 [ 482.464206] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 482.464864] ? syscall_enter_from_user_mode+0x1d/0x50 [ 482.465513] do_syscall_64+0x33/0x40 [ 482.465982] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 482.466625] RIP: 0033:0x7f932fac1b19 [ 482.467097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 482.469406] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 482.470359] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 482.471265] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 482.472164] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 482.474149] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 482.475046] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 482.503044] FAULT_INJECTION: forcing a failure. [ 482.503044] name failslab, interval 1, probability 0, space 0, times 0 [ 482.504558] CPU: 0 PID: 4952 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 482.505429] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 482.506457] Call Trace: [ 482.506802] dump_stack+0x107/0x167 [ 482.507307] should_fail.cold+0x5/0xa [ 482.508469] ? create_object.isra.0+0x3a/0xa20 [ 482.509054] should_failslab+0x5/0x20 [ 482.509543] kmem_cache_alloc+0x5b/0x310 [ 482.510062] ? find_held_lock+0x2c/0x110 [ 482.515675] create_object.isra.0+0x3a/0xa20 [ 482.516958] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 482.518485] kmem_cache_alloc+0x159/0x310 [ 482.519737] alloc_vfsmnt+0x23/0x680 [ 482.520845] clone_mnt+0x6c/0xce0 [ 482.521870] copy_tree+0x3b0/0xa60 [ 482.522916] copy_mnt_ns+0x144/0xa00 [ 482.523423] ? kmem_cache_alloc+0x2a6/0x310 [ 482.523973] create_new_namespaces+0xd6/0xb20 [ 482.524550] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 482.525171] ksys_unshare+0x449/0x8a0 [ 482.525648] ? unshare_fd+0x1c0/0x1c0 [ 482.526132] ? ksys_write+0x1a9/0x260 [ 482.526620] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 482.527295] __x64_sys_unshare+0x2d/0x40 [ 482.527811] do_syscall_64+0x33/0x40 [ 482.528283] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 482.528925] RIP: 0033:0x7fc7d3fdfb19 [ 482.529399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 482.531735] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 482.532699] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 482.533594] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 482.534488] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 482.535416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 482.536318] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 482.560717] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 482.611067] Process accounting resumed 08:55:27 executing program 4: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffc000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffa000/0x4000)=nil, 0x2000) creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 482.676911] Process accounting resumed 08:55:27 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 2) [ 482.726882] FAULT_INJECTION: forcing a failure. [ 482.726882] name failslab, interval 1, probability 0, space 0, times 0 [ 482.728304] CPU: 1 PID: 4971 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 482.729131] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 482.729802] Process accounting resumed [ 482.730133] Call Trace: [ 482.730156] dump_stack+0x107/0x167 [ 482.731402] should_fail.cold+0x5/0xa [ 482.731875] ? io_uring_setup+0x258/0x2980 [ 482.732396] should_failslab+0x5/0x20 [ 482.732863] kmem_cache_alloc_trace+0x55/0x320 [ 482.733418] io_uring_setup+0x258/0x2980 [ 482.733917] ? __mutex_unlock_slowpath+0xe1/0x600 [ 482.734508] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 482.735125] ? wait_for_completion_io+0x270/0x270 [ 482.735748] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 482.736403] ? syscall_enter_from_user_mode+0x1d/0x50 [ 482.737043] do_syscall_64+0x33/0x40 [ 482.737508] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 482.738133] RIP: 0033:0x7f932fac1b19 [ 482.738593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 482.740880] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 482.741807] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 482.742677] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 482.743558] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 482.744434] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 482.745316] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:55:27 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') recvmmsg(r0, &(0x7f00000061c0)=[{{&(0x7f0000000080)=@rc, 0x80, &(0x7f0000000140)=[{&(0x7f0000000100)=""/9, 0x9}], 0x1, &(0x7f0000000180)=""/4096, 0x1000}, 0xfffffffe}, {{&(0x7f0000001180)=@alg, 0x80, &(0x7f0000005680)=[{&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f0000002200)=""/4096, 0x1000}, {&(0x7f0000003200)=""/73, 0x49}, {&(0x7f0000003280)=""/4096, 0x1000}, {&(0x7f0000004280)=""/176, 0xb0}, {&(0x7f0000004340)=""/212, 0xd4}, {&(0x7f0000004440)=""/4096, 0xfffffffffffffe60}, {&(0x7f0000005440)=""/75, 0x4b}, {&(0x7f00000054c0)=""/241, 0xf1}, {&(0x7f00000055c0)=""/140, 0x8c}], 0xa, &(0x7f0000005740)=""/192, 0xc0}, 0x5}, {{&(0x7f0000005800)=@alg, 0x80, &(0x7f0000005940)=[{&(0x7f0000005880)=""/69, 0x45}, {&(0x7f0000005900)=""/3, 0x3}], 0x2, &(0x7f0000005980)=""/81, 0x51}, 0x3}, {{&(0x7f0000005a00)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000005cc0)=[{&(0x7f0000005a80)=""/31, 0x1f}, {&(0x7f0000005ac0)=""/229, 0xe5}, {&(0x7f0000005bc0)=""/117, 0x75}, {&(0x7f0000005c40)=""/116, 0x74}], 0x4, &(0x7f0000005d00)=""/182, 0xb6}, 0x420d}, {{0x0, 0x0, &(0x7f00000060c0)=[{&(0x7f0000005dc0)=""/53, 0x35}, {&(0x7f0000005e00)=""/130, 0x82}, {&(0x7f0000005ec0)=""/209, 0xd1}, {&(0x7f0000005fc0)=""/253, 0xfd}], 0x4, &(0x7f0000006100)=""/163, 0xa3}, 0xfffffff9}], 0x5, 0x0, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000006300)=0x0) fcntl$lock(r0, 0x5, &(0x7f0000006340)={0x0, 0x0, 0xffffffffffff7fff, 0x76f, r1}) 08:55:27 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 3) [ 482.856334] FAULT_INJECTION: forcing a failure. [ 482.856334] name failslab, interval 1, probability 0, space 0, times 0 [ 482.857782] CPU: 0 PID: 4975 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 482.858632] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 482.859676] Call Trace: [ 482.860014] dump_stack+0x107/0x167 [ 482.860483] should_fail.cold+0x5/0xa [ 482.860978] ? create_object.isra.0+0x3a/0xa20 [ 482.861569] should_failslab+0x5/0x20 [ 482.862059] kmem_cache_alloc+0x5b/0x310 [ 482.862587] create_object.isra.0+0x3a/0xa20 [ 482.863152] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 482.863822] kmem_cache_alloc_trace+0x151/0x320 [ 482.864428] io_uring_setup+0x258/0x2980 [ 482.864957] ? __mutex_unlock_slowpath+0xe1/0x600 [ 482.865576] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 482.866212] ? wait_for_completion_io+0x270/0x270 [ 482.866847] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 482.871551] ? syscall_enter_from_user_mode+0x1d/0x50 [ 482.872205] do_syscall_64+0x33/0x40 [ 482.872677] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 482.873320] RIP: 0033:0x7f932fac1b19 [ 482.873804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 482.876120] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 482.877087] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 482.877993] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 482.878894] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 482.883826] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 482.884723] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 482.902727] Process accounting resumed [ 482.908617] Process accounting resumed [ 482.935384] Process accounting resumed 08:55:27 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(r0, 0x80106720, &(0x7f00000013c0)={0x7, &(0x7f00000014c0)=[{0x15, 0x1000, &(0x7f0000000080)="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"}, {0x1, 0x53, &(0x7f0000001080)="50d0f2ae07570c0f412050fca9a44fd3a47b1bafd7e89f50ce3718703eee9fcdb202bc995186cf34fd8793225f42d8611eb3028a7fb02b8ef4d778da6da1b26303b2252787544ce459cef6d8d9b2cc54289375"}, {0x9, 0x19, &(0x7f0000001100)="b6a15afd9ab673143369037266cc95a813a1ed7e60464d807c"}, {0x107, 0xb9, &(0x7f0000001140)="0c481ecdc0736c80745bf074d4ff6424f16453dbb1e33150c3c67fc6d0e7891f4fbb31f0fb32597d7259e6a9cddbbafc1e58515740abd05969ffe3c9ec2b13c86580b5e0aa7d933190246bcead3459b25f5ca287514ca45be40e9dae5b62780bdc22815e8fb17c511e258ef0306686c78af4cfa5eed8d83dd63cc696aa1157b647f461e2275855aa3e1e11f02402012c42b47591f63fbf6574d2080e033a7543803c0e0438d723ccac5780a94b705244aa1ba3441af3aba02d", 0x1}, {0x995a, 0xa8, &(0x7f0000001200)="0a04ad0464202d0aee13d8b8b98a56efa229894d933ecc000c6e46ccb65caad48f7faba6a40237ac2949a8173a5e8ca5475d08973fe14508b79f5991475f7c4c5932a4279cf98eed39c2b2e989ded7e602e794404cd554cb37440003a69ee8f8fe11f21279a0cad0187f3d227cd441d25b8c52ccbb670dcadc067720297a7b1ae8ef32b90eeb5799aa5cb95dd9bc89a52f9bb021c2c05f5a38d78dc32c5cc8955a754c7110796d53", 0x0, 0x1}, {0xfffffffd, 0x32, &(0x7f00000012c0)="1f300b5a0ff22f2e2ba0e3038f00818586f692e19bc484bb8f5f1b17a5d9cde00f83703bc648a5bc4b380d2a9e65a8f8ab51", 0xd311f8c07d708414}, {0x0, 0x87, &(0x7f0000001400)="b0775e23dc3dfdf907ae515437c5a8259eebc0570a598d07126778ed61f1cebda6bfcc9ceb593268b1deee7f0520ebafb3c85942c853641e21caaa4aa3e5f72ede26aede2cb94a42310c57f4f12121631b20df6de10a5f0d89b57199795e6d82d89efe9d5d12fd2b68146578463573e3ba6dbb83c222c14f7b67c82c0ab20a0a1158e2c35be2b8", 0x1, 0x1}]}) acct(&(0x7f0000000040)='./file0\x00') [ 483.042384] Process accounting resumed 08:55:28 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 24) [ 483.086188] Process accounting resumed 08:55:28 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') bind(r0, &(0x7f0000000080)=@hci={0x1f, 0x4}, 0x80) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100), 0x82040, 0x0) execveat(r1, &(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[&(0x7f0000000180)='.-[\\\x00'], &(0x7f0000000240)=[&(0x7f0000000200)=')\x00'], 0x800) 08:55:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 4) [ 483.165234] FAULT_INJECTION: forcing a failure. [ 483.165234] name failslab, interval 1, probability 0, space 0, times 0 [ 483.166657] CPU: 1 PID: 4983 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 483.167503] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 483.168507] Call Trace: [ 483.168832] dump_stack+0x107/0x167 [ 483.169274] should_fail.cold+0x5/0xa [ 483.169738] ? create_object.isra.0+0x3a/0xa20 [ 483.170293] should_failslab+0x5/0x20 [ 483.170754] kmem_cache_alloc+0x5b/0x310 [ 483.171261] create_object.isra.0+0x3a/0xa20 [ 483.171797] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 483.172413] __kmalloc_track_caller+0x177/0x370 [ 483.172976] ? kstrdup_const+0x53/0x80 [ 483.173451] kstrdup+0x36/0x70 [ 483.173844] kstrdup_const+0x53/0x80 [ 483.174299] alloc_vfsmnt+0xb5/0x680 [ 483.174754] clone_mnt+0x6c/0xce0 [ 483.175178] copy_tree+0x3b0/0xa60 [ 483.175637] copy_mnt_ns+0x144/0xa00 [ 483.176093] ? kmem_cache_alloc+0x2a6/0x310 [ 483.176624] create_new_namespaces+0xd6/0xb20 [ 483.177174] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 483.177770] ksys_unshare+0x449/0x8a0 [ 483.178231] ? unshare_fd+0x1c0/0x1c0 [ 483.178694] ? ksys_write+0x1a9/0x260 [ 483.179161] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 483.179812] __x64_sys_unshare+0x2d/0x40 [ 483.180302] do_syscall_64+0x33/0x40 [ 483.180753] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 483.181374] RIP: 0033:0x7fc7d3fdfb19 [ 483.181824] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 483.184061] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 483.184980] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 483.185841] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 483.186705] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 483.187584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 483.188449] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 483.197419] Process accounting resumed [ 483.202777] FAULT_INJECTION: forcing a failure. [ 483.202777] name failslab, interval 1, probability 0, space 0, times 0 [ 483.206273] CPU: 1 PID: 4988 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 483.208477] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 483.211135] Call Trace: [ 483.211969] dump_stack+0x107/0x167 [ 483.213120] should_fail.cold+0x5/0xa [ 483.214340] ? io_uring_setup+0x33c/0x2980 [ 483.215700] should_failslab+0x5/0x20 [ 483.216917] __kmalloc+0x72/0x390 [ 483.218028] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 483.223687] io_uring_setup+0x33c/0x2980 [ 483.224991] ? __mutex_unlock_slowpath+0xe1/0x600 [ 483.226539] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 483.228160] ? wait_for_completion_io+0x270/0x270 [ 483.229709] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 483.231395] ? syscall_enter_from_user_mode+0x1d/0x50 [ 483.233049] do_syscall_64+0x33/0x40 [ 483.234225] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 483.235876] RIP: 0033:0x7f932fac1b19 [ 483.237060] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 483.243015] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 483.245450] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 483.247753] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 483.250037] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 483.252345] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 483.254704] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 483.292512] Process accounting resumed [ 483.395809] Process accounting resumed [ 495.997359] FAULT_INJECTION: forcing a failure. [ 495.997359] name failslab, interval 1, probability 0, space 0, times 0 [ 495.998872] CPU: 0 PID: 4995 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 495.999788] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 496.000838] Call Trace: [ 496.001165] dump_stack+0x107/0x167 [ 496.001660] should_fail.cold+0x5/0xa [ 496.004643] ? create_object.isra.0+0x3a/0xa20 [ 496.005204] should_failslab+0x5/0x20 [ 496.005760] kmem_cache_alloc+0x5b/0x310 [ 496.006257] create_object.isra.0+0x3a/0xa20 [ 496.007280] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 496.007968] __kmalloc+0x16e/0x390 [ 496.008461] io_uring_setup+0x33c/0x2980 [ 496.008971] ? __mutex_unlock_slowpath+0xe1/0x600 [ 496.009631] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 496.010249] ? wait_for_completion_io+0x270/0x270 [ 496.010902] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 496.011592] ? syscall_enter_from_user_mode+0x1d/0x50 [ 496.012245] do_syscall_64+0x33/0x40 [ 496.012758] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 496.013383] RIP: 0033:0x7f932fac1b19 [ 496.013911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 496.016252] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 496.017230] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 496.018168] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 496.019090] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 496.019198] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 496.020027] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 496.020035] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 496.034844] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 496.036893] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 496.042017] FAULT_INJECTION: forcing a failure. [ 496.042017] name failslab, interval 1, probability 0, space 0, times 0 [ 496.043458] CPU: 1 PID: 5006 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 496.044317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 496.045324] Call Trace: [ 496.045653] dump_stack+0x107/0x167 [ 496.046098] should_fail.cold+0x5/0xa [ 496.046566] ? create_object.isra.0+0x3a/0xa20 08:55:40 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:40 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 5) 08:55:40 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:40 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:40 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r0, &(0x7f0000000240)=""/83, 0x53, 0x200000048) recvmsg$unix(r0, &(0x7f0000000240)={&(0x7f0000000080), 0x6e, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/160, 0xa0}], 0x1, &(0x7f0000000200)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}, 0x2002) creat(&(0x7f0000000000)='./file0\x00', 0x159) r3 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000002a40)=0x0) r6 = socket$inet6_udp(0xa, 0x2, 0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000000, 0x40010, r2, 0x8000000) syz_io_uring_setup(0x753d, &(0x7f0000000300)={0x0, 0x1555, 0x4, 0x1, 0x17a}, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000380), &(0x7f00000003c0)=0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000400)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x2004, @fd=r3, 0x100, 0x0, 0x0, 0x2, 0x0, {0x3}}, 0x10001) syz_io_uring_submit(r4, r5, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000200)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) r10 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r10, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r10, 0x6, 0x2, 0x0, &(0x7f0000000180)) syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x6, 0x0, 0x0, 0x1, 0x3, 0x0, {0x0, r9, r10}}, 0x3a114136) acct(&(0x7f0000000040)='./file0\x00') 08:55:41 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:41 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:41 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 25) [ 496.047124] should_failslab+0x5/0x20 [ 496.055959] kmem_cache_alloc+0x5b/0x310 [ 496.056454] create_object.isra.0+0x3a/0xa20 [ 496.056996] kmemleak_alloc_percpu+0xa0/0x100 [ 496.057550] pcpu_alloc+0x4e2/0x1240 [ 496.058022] alloc_vfsmnt+0xfd/0x680 [ 496.058483] clone_mnt+0x6c/0xce0 [ 496.058909] copy_tree+0x3b0/0xa60 [ 496.059356] copy_mnt_ns+0x144/0xa00 [ 496.059836] ? kmem_cache_alloc+0x2a6/0x310 [ 496.060379] create_new_namespaces+0xd6/0xb20 [ 496.060938] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 496.061548] ksys_unshare+0x449/0x8a0 [ 496.062020] ? unshare_fd+0x1c0/0x1c0 [ 496.062485] ? ksys_write+0x1a9/0x260 [ 496.062953] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 496.063603] __x64_sys_unshare+0x2d/0x40 [ 496.064118] do_syscall_64+0x33/0x40 [ 496.071921] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 496.072544] RIP: 0033:0x7fc7d3fdfb19 [ 496.073002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 496.075228] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 496.084045] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 496.088075] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 496.088188] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 496.088202] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 496.090992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 496.095837] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:55:41 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 6) [ 496.103530] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 496.143060] FAULT_INJECTION: forcing a failure. [ 496.143060] name failslab, interval 1, probability 0, space 0, times 0 [ 496.144715] CPU: 1 PID: 5010 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 496.145563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 496.146576] Call Trace: [ 496.146909] dump_stack+0x107/0x167 [ 496.147364] should_fail.cold+0x5/0xa [ 496.147878] ? io_uring_setup+0x40b/0x2980 [ 496.148413] should_failslab+0x5/0x20 [ 496.148890] kmem_cache_alloc_trace+0x55/0x320 [ 496.149459] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 496.150091] io_uring_setup+0x40b/0x2980 [ 496.150601] ? __mutex_unlock_slowpath+0xe1/0x600 [ 496.151203] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 496.151907] ? wait_for_completion_io+0x270/0x270 [ 496.152565] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 496.153223] ? syscall_enter_from_user_mode+0x1d/0x50 [ 496.153865] do_syscall_64+0x33/0x40 [ 496.154332] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 496.154971] RIP: 0033:0x7f932fac1b19 [ 496.155440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 496.157757] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 496.158685] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 496.159554] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 496.160442] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 496.161310] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 496.162176] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 496.188819] Process accounting resumed 08:55:41 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r2, 0x6, 0x2, 0x0, &(0x7f0000000180)) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f00000000c0)=0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r4, 0x6, 0x2, 0x0, &(0x7f0000000180)) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r5, 0x6, 0x2, 0x0, &(0x7f0000000180)) kcmp$KCMP_EPOLL_TFD(r3, 0x0, 0x7, r4, &(0x7f0000000100)={r1, r5, 0x1}) fallocate(r2, 0x4, 0x2, 0xfff) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x5}}, './file0\x00'}) acct(&(0x7f0000000040)='./file0\x00') [ 496.206259] Process accounting resumed [ 496.257133] Process accounting resumed [ 496.274781] Process accounting resumed 08:55:41 executing program 4: acct(&(0x7f0000000040)='./file0\x00') setxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080), &(0x7f00000000c0), 0x2, 0x3) 08:55:41 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 7) 08:55:41 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 26) [ 496.373030] FAULT_INJECTION: forcing a failure. [ 496.373030] name failslab, interval 1, probability 0, space 0, times 0 [ 496.374648] CPU: 0 PID: 5024 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 496.375537] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 496.376651] Call Trace: [ 496.376979] dump_stack+0x107/0x167 [ 496.377489] should_fail.cold+0x5/0xa [ 496.377968] ? create_object.isra.0+0x3a/0xa20 [ 496.378594] should_failslab+0x5/0x20 [ 496.379066] kmem_cache_alloc+0x5b/0x310 [ 496.379565] create_object.isra.0+0x3a/0xa20 [ 496.380139] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 496.380761] kmem_cache_alloc_trace+0x151/0x320 [ 496.381333] io_uring_setup+0x40b/0x2980 [ 496.381841] ? __mutex_unlock_slowpath+0xe1/0x600 [ 496.382444] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 496.383060] ? wait_for_completion_io+0x270/0x270 [ 496.383661] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 496.384333] ? syscall_enter_from_user_mode+0x1d/0x50 [ 496.384962] do_syscall_64+0x33/0x40 [ 496.385415] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 496.386044] RIP: 0033:0x7f932fac1b19 [ 496.386512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 496.388797] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 496.389735] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 496.390603] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 496.391475] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 496.392406] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 496.393276] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:55:41 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file1\x00'}) unlinkat(r1, &(0x7f00000000c0)='./file0\x00', 0x200) [ 496.429251] FAULT_INJECTION: forcing a failure. [ 496.429251] name failslab, interval 1, probability 0, space 0, times 0 [ 496.430742] CPU: 0 PID: 5025 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 496.431590] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 496.432652] Call Trace: [ 496.432981] dump_stack+0x107/0x167 [ 496.433427] should_fail.cold+0x5/0xa [ 496.433895] ? create_object.isra.0+0x3a/0xa20 [ 496.434455] should_failslab+0x5/0x20 [ 496.434920] kmem_cache_alloc+0x5b/0x310 [ 496.435422] ? mark_held_locks+0x9e/0xe0 [ 496.435951] create_object.isra.0+0x3a/0xa20 [ 496.436505] kmemleak_alloc_percpu+0xa0/0x100 [ 496.437054] pcpu_alloc+0x4e2/0x1240 [ 496.437520] alloc_vfsmnt+0xfd/0x680 [ 496.437988] clone_mnt+0x6c/0xce0 [ 496.438422] copy_tree+0x3b0/0xa60 [ 496.438864] copy_mnt_ns+0x144/0xa00 [ 496.439321] ? kmem_cache_alloc+0x2a6/0x310 [ 496.439881] create_new_namespaces+0xd6/0xb20 [ 496.440447] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 496.441053] ksys_unshare+0x449/0x8a0 [ 496.441517] ? unshare_fd+0x1c0/0x1c0 [ 496.441994] ? ksys_write+0x1a9/0x260 [ 496.442476] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 496.443130] __x64_sys_unshare+0x2d/0x40 [ 496.443626] do_syscall_64+0x33/0x40 [ 496.444097] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 496.444722] RIP: 0033:0x7fc7d3fdfb19 [ 496.445185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 496.447453] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 496.448398] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 496.449271] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 496.450144] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 496.451016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 496.451908] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 496.537273] Process accounting resumed 08:55:41 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) 08:55:41 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 8) [ 496.615446] Process accounting resumed [ 496.644205] FAULT_INJECTION: forcing a failure. [ 496.644205] name failslab, interval 1, probability 0, space 0, times 0 [ 496.645655] CPU: 0 PID: 5033 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 496.646498] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 496.647526] Call Trace: [ 496.647936] dump_stack+0x107/0x167 [ 496.648394] should_fail.cold+0x5/0xa [ 496.648876] ? create_object.isra.0+0x3a/0xa20 [ 496.649453] should_failslab+0x5/0x20 [ 496.649930] kmem_cache_alloc+0x5b/0x310 [ 496.650445] create_object.isra.0+0x3a/0xa20 [ 496.650999] kmemleak_alloc_percpu+0xa0/0x100 [ 496.651562] pcpu_alloc+0x4e2/0x1240 [ 496.652058] ? io_tctx_exit_cb+0xf0/0xf0 [ 496.652566] percpu_ref_init+0x31/0x3d0 [ 496.653068] io_uring_setup+0x47a/0x2980 [ 496.653577] ? __mutex_unlock_slowpath+0xe1/0x600 [ 496.654183] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 496.654815] ? wait_for_completion_io+0x270/0x270 [ 496.655434] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 496.656110] ? syscall_enter_from_user_mode+0x1d/0x50 [ 496.656758] do_syscall_64+0x33/0x40 [ 496.657224] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 496.657862] RIP: 0033:0x7f932fac1b19 [ 496.658337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 496.660665] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 496.661617] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 496.662511] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 496.663403] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 496.664312] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 496.665201] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:55:56 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:56 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:56 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 9) 08:55:56 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0x80}}, './file0\x00'}) mknodat(r1, &(0x7f00000000c0)='./file0\x00', 0x80, 0x7fff) acct(&(0x7f0000000040)='./file0\x00') 08:55:56 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 27) 08:55:56 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:55:56 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:55:56 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 511.319629] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 511.344905] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 511.352423] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 511.352861] FAULT_INJECTION: forcing a failure. [ 511.352861] name failslab, interval 1, probability 0, space 0, times 0 [ 511.354834] CPU: 0 PID: 5049 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 511.355674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 511.355879] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 511.356702] Call Trace: [ 511.356721] dump_stack+0x107/0x167 [ 511.356733] should_fail.cold+0x5/0xa [ 511.356750] ? create_object.isra.0+0x3a/0xa20 [ 511.359497] should_failslab+0x5/0x20 [ 511.359963] kmem_cache_alloc+0x5b/0x310 [ 511.360482] create_object.isra.0+0x3a/0xa20 [ 511.361023] kmemleak_alloc_percpu+0xa0/0x100 [ 511.361572] pcpu_alloc+0x4e2/0x1240 [ 511.362033] ? io_tctx_exit_cb+0xf0/0xf0 [ 511.362529] percpu_ref_init+0x31/0x3d0 [ 511.363018] io_uring_setup+0x47a/0x2980 [ 511.363515] ? __mutex_unlock_slowpath+0xe1/0x600 [ 511.364103] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 511.364741] ? wait_for_completion_io+0x270/0x270 [ 511.365340] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 511.365975] ? syscall_enter_from_user_mode+0x1d/0x50 [ 511.366602] do_syscall_64+0x33/0x40 [ 511.367053] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 511.367674] RIP: 0033:0x7f932fac1b19 [ 511.368132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 511.370391] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 511.371317] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 511.372185] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 511.373070] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 511.373937] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 511.380544] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 511.399942] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 511.402612] FAULT_INJECTION: forcing a failure. [ 511.402612] name failslab, interval 1, probability 0, space 0, times 0 [ 511.404007] CPU: 1 PID: 5050 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 511.404913] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 511.405918] Call Trace: [ 511.406242] dump_stack+0x107/0x167 [ 511.406684] should_fail.cold+0x5/0xa [ 511.407154] ? alloc_vfsmnt+0x23/0x680 [ 511.407627] should_failslab+0x5/0x20 [ 511.408088] kmem_cache_alloc+0x5b/0x310 [ 511.408628] ? copy_tree+0x61a/0xa60 [ 511.409083] alloc_vfsmnt+0x23/0x680 [ 511.409536] clone_mnt+0x6c/0xce0 [ 511.409964] copy_tree+0x3b0/0xa60 [ 511.410401] copy_mnt_ns+0x144/0xa00 [ 511.410855] ? kmem_cache_alloc+0x2a6/0x310 [ 511.411387] create_new_namespaces+0xd6/0xb20 [ 511.411944] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 511.412594] ksys_unshare+0x449/0x8a0 [ 511.413063] ? unshare_fd+0x1c0/0x1c0 [ 511.413531] ? ksys_write+0x1a9/0x260 [ 511.414002] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 511.414645] __x64_sys_unshare+0x2d/0x40 [ 511.415139] do_syscall_64+0x33/0x40 [ 511.415594] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 511.416220] RIP: 0033:0x7fc7d3fdfb19 [ 511.416723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 511.418968] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 511.419897] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 511.420812] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 511.421681] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 511.422549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 511.423419] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 511.458271] Process accounting resumed 08:55:56 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 10) 08:55:56 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) creat(&(0x7f0000000080)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 511.538262] FAULT_INJECTION: forcing a failure. [ 511.538262] name failslab, interval 1, probability 0, space 0, times 0 [ 511.539693] CPU: 0 PID: 5059 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 511.540605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 511.541606] Call Trace: [ 511.541934] dump_stack+0x107/0x167 [ 511.542383] should_fail.cold+0x5/0xa [ 511.542856] ? percpu_ref_init+0xd8/0x3d0 [ 511.543366] should_failslab+0x5/0x20 [ 511.543833] kmem_cache_alloc_trace+0x55/0x320 [ 511.544454] ? io_tctx_exit_cb+0xf0/0xf0 [ 511.544950] percpu_ref_init+0xd8/0x3d0 [ 511.545442] io_uring_setup+0x47a/0x2980 [ 511.545942] ? __mutex_unlock_slowpath+0xe1/0x600 [ 511.546534] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 511.547153] ? wait_for_completion_io+0x270/0x270 [ 511.547756] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 511.548437] ? syscall_enter_from_user_mode+0x1d/0x50 [ 511.549069] do_syscall_64+0x33/0x40 [ 511.549525] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 511.550150] RIP: 0033:0x7f932fac1b19 [ 511.550613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 511.552900] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 511.553828] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 511.554701] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 511.555569] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 511.556481] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 511.557352] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 511.570653] Process accounting resumed [ 511.583405] Process accounting resumed 08:55:56 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 28) [ 511.619376] Process accounting resumed 08:55:56 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 11) 08:55:56 executing program 4: creat(&(0x7f0000000080)='./file0\x00', 0x10) acct(&(0x7f0000000040)='./file0\x00') write$binfmt_script(0xffffffffffffffff, &(0x7f00000000c0)={'#! ', './file0', [{0x20, '\\{!\x9f+]#!}\xe4/-'}, {}, {0x20, '!.!+*'}, {}, {0x20, '$*]{]%\xfc/-'}, {0x20, '/@*/'}, {}], 0xa, "385275a1689210527c7168161875b9882df212f6f6ac0d15bf425ad9bb5a2634e80ac61becd1bfd64303844688aa0e3853e4337b34c98b07335536a42b285e9d0a8af0a9623b10952a91136dcf90605705391a9bada9b532bec0dc3a8959981087d475fc3e796acaa35e65ddbc183763e8c3758222963f3ab21cf366f24bc5be63cd17208ef61d7edab5ab5b7a27ce7f64a679efc5e9de173e610c419d8daf4e9042ecbb841dca1579d2e1c67f38464ea050d072994ed776ac5a33b3e51b4a7a2daa77118b0cb058dc6e53e4d99c36"}, 0xff) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x2, 0x0, &(0x7f0000000180)) recvmmsg(r0, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000001c0)=""/65, 0x41}, {&(0x7f0000000240)=""/92, 0x5c}, {&(0x7f00000002c0)=""/161, 0xa1}, {&(0x7f0000000000)=""/63, 0x3f}], 0x4, &(0x7f00000003c0)=""/63, 0x3f}, 0xc2a}, {{&(0x7f0000000400)=@nl, 0x80, &(0x7f0000000480)}, 0x3ff00}, {{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000004c0)=""/102, 0x66}, {&(0x7f0000000540)=""/95, 0x5f}, {&(0x7f00000005c0)=""/171, 0xab}], 0x3, &(0x7f00000006c0)=""/79, 0x4f}, 0x9}], 0x3, 0x20c2, &(0x7f0000000800)) [ 511.654184] FAULT_INJECTION: forcing a failure. [ 511.654184] name failslab, interval 1, probability 0, space 0, times 0 [ 511.655656] CPU: 0 PID: 5063 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 511.658254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 511.659258] Call Trace: [ 511.659583] dump_stack+0x107/0x167 [ 511.660024] should_fail.cold+0x5/0xa [ 511.660506] ? create_object.isra.0+0x3a/0xa20 [ 511.661060] should_failslab+0x5/0x20 [ 511.661519] kmem_cache_alloc+0x5b/0x310 [ 511.662010] ? find_held_lock+0x2c/0x110 [ 511.662503] create_object.isra.0+0x3a/0xa20 [ 511.663031] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 511.663651] kmem_cache_alloc+0x159/0x310 [ 511.664157] alloc_vfsmnt+0x23/0x680 [ 511.664663] clone_mnt+0x6c/0xce0 [ 511.665092] copy_tree+0x3b0/0xa60 [ 511.665532] copy_mnt_ns+0x144/0xa00 [ 511.665988] ? kmem_cache_alloc+0x2a6/0x310 [ 511.666518] create_new_namespaces+0xd6/0xb20 [ 511.667068] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 511.667669] ksys_unshare+0x449/0x8a0 [ 511.668132] ? unshare_fd+0x1c0/0x1c0 [ 511.668616] ? ksys_write+0x1a9/0x260 [ 511.669087] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 511.669727] __x64_sys_unshare+0x2d/0x40 [ 511.670222] do_syscall_64+0x33/0x40 [ 511.670679] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 511.671303] RIP: 0033:0x7fc7d3fdfb19 [ 511.671761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 511.673509] FAULT_INJECTION: forcing a failure. [ 511.673509] name failslab, interval 1, probability 0, space 0, times 0 [ 511.678019] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 511.678033] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 511.678040] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 511.678051] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 511.682888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 511.683752] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 511.684652] CPU: 1 PID: 5065 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 511.685490] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 511.686503] Call Trace: [ 511.686825] dump_stack+0x107/0x167 [ 511.687270] should_fail.cold+0x5/0xa [ 511.687740] ? create_object.isra.0+0x3a/0xa20 [ 511.688316] should_failslab+0x5/0x20 [ 511.688784] kmem_cache_alloc+0x5b/0x310 [ 511.689283] create_object.isra.0+0x3a/0xa20 [ 511.689819] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 511.690443] kmem_cache_alloc_trace+0x151/0x320 [ 511.691015] ? io_tctx_exit_cb+0xf0/0xf0 [ 511.691511] percpu_ref_init+0xd8/0x3d0 [ 511.691999] io_uring_setup+0x47a/0x2980 [ 511.692522] ? __mutex_unlock_slowpath+0xe1/0x600 [ 511.693111] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 511.693729] ? wait_for_completion_io+0x270/0x270 [ 511.694329] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 511.694966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 511.695594] do_syscall_64+0x33/0x40 [ 511.696049] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 511.696732] RIP: 0033:0x7f932fac1b19 [ 511.697189] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 511.699426] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 511.700372] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 511.701260] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 511.702128] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 511.702995] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 511.703862] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 511.728112] Process accounting resumed [ 511.813691] Process accounting resumed 08:55:56 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x2) [ 511.863802] Process accounting resumed 08:55:56 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') 08:55:56 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 511.972289] Process accounting resumed [ 512.022484] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. 08:56:10 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:10 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:56:10 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 12) [ 525.967415] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 525.985689] FAULT_INJECTION: forcing a failure. [ 525.985689] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 525.987225] CPU: 0 PID: 5093 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 525.988052] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 525.989079] Call Trace: [ 525.989407] dump_stack+0x107/0x167 [ 525.989803] FAULT_INJECTION: forcing a failure. [ 525.989803] name failslab, interval 1, probability 0, space 0, times 0 [ 525.989859] should_fail.cold+0x5/0xa [ 525.991657] __alloc_pages_nodemask+0x182/0x600 [ 525.992225] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 525.992984] ? cap_capable+0x1cd/0x230 [ 525.993463] alloc_pages_current+0x187/0x280 [ 525.994009] __get_free_pages+0xc/0xa0 [ 525.994483] io_uring_setup+0xe27/0x2980 [ 525.994981] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 525.995601] ? wait_for_completion_io+0x270/0x270 [ 525.996203] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 525.996850] ? syscall_enter_from_user_mode+0x1d/0x50 [ 525.997482] do_syscall_64+0x33/0x40 [ 525.997934] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 525.998559] RIP: 0033:0x7f932fac1b19 [ 525.999017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 526.001275] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 526.002203] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 526.003071] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 526.003938] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 526.004824] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 526.005693] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 526.006587] CPU: 1 PID: 5088 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 526.007260] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 526.007456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 526.009515] Call Trace: [ 526.009849] dump_stack+0x107/0x167 [ 526.010310] should_fail.cold+0x5/0xa [ 526.010786] should_failslab+0x5/0x20 [ 526.011246] __kmalloc_track_caller+0x79/0x370 [ 526.011798] ? kstrdup_const+0x53/0x80 [ 526.012176] Process accounting resumed [ 526.012270] kstrdup+0x36/0x70 [ 526.013139] kstrdup_const+0x53/0x80 [ 526.014450] alloc_vfsmnt+0xb5/0x680 [ 526.014913] clone_mnt+0x6c/0xce0 [ 526.015334] copy_tree+0x3b0/0xa60 [ 526.015774] copy_mnt_ns+0x144/0xa00 [ 526.016226] ? kmem_cache_alloc+0x2a6/0x310 [ 526.016751] create_new_namespaces+0xd6/0xb20 [ 526.017332] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 526.017931] ksys_unshare+0x449/0x8a0 [ 526.018389] ? unshare_fd+0x1c0/0x1c0 [ 526.018852] ? ksys_write+0x1a9/0x260 [ 526.019315] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 526.019948] __x64_sys_unshare+0x2d/0x40 [ 526.020455] do_syscall_64+0x33/0x40 [ 526.021665] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 526.022284] RIP: 0033:0x7fc7d3fdfb19 [ 526.022733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 526.025727] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 526.026644] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 526.027501] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 08:56:10 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 29) 08:56:10 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') openat(r0, &(0x7f0000000080)='./file0\x00', 0x80000, 0x4) 08:56:10 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:10 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:56:10 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) [ 526.028358] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 526.029933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 526.030801] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 526.032321] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 526.036516] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 526.047277] Process accounting resumed [ 526.048037] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 526.058405] Process accounting resumed 08:56:11 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = creat(&(0x7f0000000080)='./file1\x00', 0xd) r2 = openat$cgroup_freezer_state(r0, &(0x7f0000000180), 0x2, 0x0) fsetxattr$security_ima(r2, &(0x7f00000001c0), &(0x7f0000000200)=@sha1={0x1, "0cf5e6c3b57b8f658b2350b4b4d83114c8139657"}, 0x15, 0x2) fsetxattr$security_ima(r0, &(0x7f0000000240), &(0x7f0000000280)=@v1={0x2, "b88527149308fa"}, 0x8, 0x3) ioctl$AUTOFS_IOC_PROTOSUBVER(r1, 0x80049367, &(0x7f0000000100)) r3 = syz_open_dev$vcsn(&(0x7f00000000c0), 0x9, 0x0) acct(&(0x7f0000000040)='./file0\x00') write$P9_RRENAMEAT(r3, &(0x7f0000000140)={0x7, 0x4b, 0x2}, 0x7) 08:56:11 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 30) 08:56:11 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 13) [ 526.212310] Process accounting resumed [ 526.245419] FAULT_INJECTION: forcing a failure. [ 526.245419] name failslab, interval 1, probability 0, space 0, times 0 [ 526.246918] CPU: 1 PID: 5109 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 526.247776] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 526.248858] Call Trace: [ 526.249219] dump_stack+0x107/0x167 [ 526.249691] should_fail.cold+0x5/0xa [ 526.251218] ? create_object.isra.0+0x3a/0xa20 [ 526.251817] should_failslab+0x5/0x20 [ 526.252310] kmem_cache_alloc+0x5b/0x310 [ 526.252854] create_object.isra.0+0x3a/0xa20 [ 526.253822] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 526.255625] __kmalloc_track_caller+0x177/0x370 [ 526.256231] ? kstrdup_const+0x53/0x80 08:56:11 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) [ 526.256728] kstrdup+0x36/0x70 [ 526.257706] kstrdup_const+0x53/0x80 [ 526.258537] alloc_vfsmnt+0xb5/0x680 [ 526.259028] clone_mnt+0x6c/0xce0 [ 526.259485] copy_tree+0x3b0/0xa60 [ 526.259959] copy_mnt_ns+0x144/0xa00 [ 526.260461] ? kmem_cache_alloc+0x2a6/0x310 [ 526.261060] create_new_namespaces+0xd6/0xb20 [ 526.261659] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 526.262296] ksys_unshare+0x449/0x8a0 [ 526.262802] ? unshare_fd+0x1c0/0x1c0 [ 526.263307] ? ksys_write+0x1a9/0x260 [ 526.263827] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 526.264520] __x64_sys_unshare+0x2d/0x40 [ 526.265547] do_syscall_64+0x33/0x40 [ 526.266054] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 526.266702] RIP: 0033:0x7fc7d3fdfb19 [ 526.267198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 526.270385] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 526.271431] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 526.272576] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 526.273542] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 526.274470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 526.275383] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 526.279815] FAULT_INJECTION: forcing a failure. [ 526.279815] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 526.292474] CPU: 1 PID: 5112 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 526.294282] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 526.295361] Call Trace: [ 526.295711] dump_stack+0x107/0x167 [ 526.296197] should_fail.cold+0x5/0xa [ 526.296700] __alloc_pages_nodemask+0x182/0x600 [ 526.297341] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 526.298134] ? cap_capable+0x1cd/0x230 [ 526.298659] alloc_pages_current+0x187/0x280 [ 526.299245] __get_free_pages+0xc/0xa0 [ 526.299763] io_uring_setup+0xf9a/0x2980 [ 526.300302] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 526.305618] ? wait_for_completion_io+0x270/0x270 [ 526.306272] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 526.306962] ? syscall_enter_from_user_mode+0x1d/0x50 [ 526.307648] do_syscall_64+0x33/0x40 [ 526.308131] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 526.309920] RIP: 0033:0x7f932fac1b19 [ 526.310433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 526.312856] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 526.313802] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 526.314740] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 526.315670] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 526.316601] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 526.321038] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:56:11 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 14) [ 526.406345] Process accounting resumed 08:56:11 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 31) [ 526.473945] FAULT_INJECTION: forcing a failure. [ 526.473945] name failslab, interval 1, probability 0, space 0, times 0 [ 526.475395] CPU: 1 PID: 5116 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 526.476224] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 526.477251] Call Trace: [ 526.477580] dump_stack+0x107/0x167 [ 526.478023] should_fail.cold+0x5/0xa [ 526.478489] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 526.479168] should_failslab+0x5/0x20 [ 526.479637] kmem_cache_alloc_trace+0x55/0x320 [ 526.480195] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 526.484922] io_uring_setup+0x14f6/0x2980 [ 526.485433] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 526.486058] ? wait_for_completion_io+0x270/0x270 [ 526.486662] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 526.487302] ? syscall_enter_from_user_mode+0x1d/0x50 [ 526.500945] do_syscall_64+0x33/0x40 [ 526.501401] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 526.502029] RIP: 0033:0x7f932fac1b19 [ 526.502488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 526.504722] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 526.509663] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 526.510529] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 526.511392] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 526.512254] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 526.517147] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:56:11 executing program 4: ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000000480)={'sit0\x00', &(0x7f0000000cc0)={'syztnl0\x00', 0x0, 0x29, 0x1, 0xf9, 0x2, 0x11, @local, @private0, 0x7897, 0x7, 0x400, 0x2993}}) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') r2 = syz_open_dev$sg(0x0, 0x0, 0x2001) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f00000004c0)={0x0, 0x0, {0x0, @usage, 0x0}, {0x0, @struct}, {0x0, @struct}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f00000008c0)={r3, 0x5, 0x80000001}) r4 = syz_open_dev$sg(0x0, 0x0, 0x2001) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002740), 0xffffffffffffffff) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000002800)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x34, r5, 0x1, 0x0, 0x0, {0x8}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @ETHTOOL_A_EEE_MODES_OURS={0x14, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x34}}, 0x0) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x11, 0x4, r9, 0x1, 0x0, 0x6, @link_local}, 0x14) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000e00)={{{@in=@private, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@broadcast}, 0x0, @in6=@private0}}, &(0x7f0000000f00)=0xe8) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r1, 0x89f7, &(0x7f0000001180)={'ip6_vti0\x00', &(0x7f0000001100)={'syztnl2\x00', 0x0, 0x29, 0x37, 0xe0, 0x7, 0x20, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @dev={0xfe, 0x80, '\x00', 0xa}, 0x7800, 0x20, 0x401, 0x7}}) sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000001680)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001640)={&(0x7f00000016c0)=ANY=[@ANYBLOB="78040000", @ANYRES16=r5, @ANYBLOB="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", @ANYRES32=r9, @ANYBLOB="1400020073797a6b616c6c657230000000000000080003000000000008000100", @ANYRES32=r0, @ANYBLOB="1400020076657468315f746f5f627269646765004c00018008000100", @ANYRES32=r10, @ANYBLOB="08000300050000001400020077673200000000000000000000000000140002007663616e300000000000000000000000080003000300000008000300000000002c0001801400020069703665727370616e3000000000000014000200687372300000000000000000000000000c00018008000100", @ANYRES32=r11, @ANYBLOB], 0x478}, 0x1, 0x0, 0x0, 0x86895}, 0x4010000) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f00000004c0)={0x0, 0x0, {0x0, @usage, 0x0}, {0x0, @struct}, {0x0, @struct}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r4, 0xc400941d, &(0x7f00000008c0)={r12, 0x5, 0x80000001}) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000000080)={0x10, 0xc, {0x8, @usage=0x1, r3, 0x6, 0x9, 0x400, 0x10000, 0x1, 0x404, @struct={0x2, 0xc3ea886}, 0x4, 0x1, [0x7, 0x4, 0x4, 0xffff, 0x650cfdae, 0xffffffff]}, {0x3, @usage=0x81, 0x0, 0x6, 0x5, 0x3, 0x8000, 0x7, 0x10, @usage=0x1, 0xfffffffd, 0x3800000, [0x9, 0xffffffffffff7fff, 0x1, 0x1, 0x7, 0x40]}, {0x9, @usage=0xffffffffffffffff, r12, 0x7, 0x7d63, 0xef6, 0x2, 0x9, 0x43, @struct={0x9}, 0x0, 0x1, [0x7, 0x3, 0x8, 0x29, 0x3, 0x6]}, {0x9, 0x80, 0x8}}) [ 526.536433] FAULT_INJECTION: forcing a failure. [ 526.536433] name failslab, interval 1, probability 0, space 0, times 0 [ 526.537839] CPU: 1 PID: 5121 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 526.538667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 526.539680] Call Trace: [ 526.540007] dump_stack+0x107/0x167 [ 526.540451] should_fail.cold+0x5/0xa [ 526.540941] should_failslab+0x5/0x20 [ 526.541409] __kmalloc_track_caller+0x79/0x370 [ 526.541967] ? kstrdup_const+0x53/0x80 [ 526.542446] kstrdup+0x36/0x70 [ 526.542839] kstrdup_const+0x53/0x80 [ 526.543296] alloc_vfsmnt+0xb5/0x680 [ 526.543752] clone_mnt+0x6c/0xce0 [ 526.544177] copy_tree+0x3b0/0xa60 [ 526.544618] copy_mnt_ns+0x144/0xa00 [ 526.545093] ? kmem_cache_alloc+0x2a6/0x310 [ 526.545623] create_new_namespaces+0xd6/0xb20 [ 526.546175] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 526.546774] ksys_unshare+0x449/0x8a0 [ 526.547238] ? unshare_fd+0x1c0/0x1c0 [ 526.547701] ? fput_many+0x2f/0x1a0 [ 526.548147] ? ksys_write+0x1a9/0x260 [ 526.548618] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 526.567920] __x64_sys_unshare+0x2d/0x40 [ 526.568419] do_syscall_64+0x33/0x40 [ 526.568947] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 526.569571] RIP: 0033:0x7fc7d3fdfb19 [ 526.570034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 526.572263] RSP: 002b:00007fc7d1534188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 526.573237] RAX: ffffffffffffffda RBX: 00007fc7d40f3020 RCX: 00007fc7d3fdfb19 [ 526.574104] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 526.574976] RBP: 00007fc7d15341d0 R08: 0000000000000000 R09: 0000000000000000 [ 526.575841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 526.576707] R13: 00007ffd9825f31f R14: 00007fc7d1534300 R15: 0000000000022000 08:56:11 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 15) [ 526.631050] Process accounting resumed [ 526.678431] Process accounting resumed [ 526.730699] Process accounting resumed [ 526.758435] FAULT_INJECTION: forcing a failure. [ 526.758435] name failslab, interval 1, probability 0, space 0, times 0 [ 526.759830] CPU: 0 PID: 5125 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 526.760653] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 526.761675] Call Trace: [ 526.762002] dump_stack+0x107/0x167 [ 526.762446] should_fail.cold+0x5/0xa [ 526.762911] ? create_object.isra.0+0x3a/0xa20 [ 526.763470] should_failslab+0x5/0x20 [ 526.763934] kmem_cache_alloc+0x5b/0x310 [ 526.764539] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 526.765300] create_object.isra.0+0x3a/0xa20 [ 526.765836] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 526.766458] kmem_cache_alloc_trace+0x151/0x320 [ 526.767031] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 526.767694] io_uring_setup+0x14f6/0x2980 [ 526.768204] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 526.768837] ? wait_for_completion_io+0x270/0x270 [ 526.769448] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 526.770088] ? syscall_enter_from_user_mode+0x1d/0x50 [ 526.770720] do_syscall_64+0x33/0x40 [ 526.771175] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 526.771803] RIP: 0033:0x7f932fac1b19 [ 526.772262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 526.774527] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 526.775457] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 526.776327] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 526.777213] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 526.778088] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 526.778961] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:56:24 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:24 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 539.906400] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 539.934425] FAULT_INJECTION: forcing a failure. [ 539.934425] name failslab, interval 1, probability 0, space 0, times 0 [ 539.938004] CPU: 1 PID: 5131 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 539.940083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 539.942673] Call Trace: [ 539.943461] dump_stack+0x107/0x167 [ 539.944573] should_fail.cold+0x5/0xa [ 539.945777] ? create_object.isra.0+0x3a/0xa20 [ 539.947172] should_failslab+0x5/0x20 [ 539.948293] kmem_cache_alloc+0x5b/0x310 [ 539.949473] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 539.951191] create_object.isra.0+0x3a/0xa20 [ 539.952439] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 539.953986] kmem_cache_alloc_trace+0x151/0x320 [ 539.955431] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 539.955723] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 539.956984] io_uring_setup+0x14f6/0x2980 [ 539.957006] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 539.957021] ? wait_for_completion_io+0x270/0x270 [ 539.957052] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 539.963843] ? syscall_enter_from_user_mode+0x1d/0x50 [ 539.965341] do_syscall_64+0x33/0x40 [ 539.966408] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 539.967880] RIP: 0033:0x7f932fac1b19 [ 539.968946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 539.974425] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 539.976657] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 539.978739] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 539.980783] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 539.982850] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 539.984893] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 539.987144] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 540.008394] FAULT_INJECTION: forcing a failure. [ 540.008394] name failslab, interval 1, probability 0, space 0, times 0 [ 540.011174] CPU: 1 PID: 5146 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 540.013337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 540.015961] Call Trace: [ 540.016358] dump_stack+0x107/0x167 [ 540.017504] should_fail.cold+0x5/0xa [ 540.018723] ? create_object.isra.0+0x3a/0xa20 [ 540.019821] should_failslab+0x5/0x20 [ 540.020282] kmem_cache_alloc+0x5b/0x310 [ 540.020776] ? mark_held_locks+0x9e/0xe0 [ 540.021267] create_object.isra.0+0x3a/0xa20 [ 540.021814] kmemleak_alloc_percpu+0xa0/0x100 [ 540.022358] pcpu_alloc+0x4e2/0x1240 [ 540.022820] alloc_vfsmnt+0xfd/0x680 [ 540.023276] clone_mnt+0x6c/0xce0 [ 540.023707] copy_tree+0x3b0/0xa60 [ 540.024146] copy_mnt_ns+0x144/0xa00 [ 540.024602] ? kmem_cache_alloc+0x2a6/0x310 [ 540.025130] create_new_namespaces+0xd6/0xb20 [ 540.025715] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 540.026316] ksys_unshare+0x449/0x8a0 [ 540.026784] ? unshare_fd+0x1c0/0x1c0 [ 540.027269] ? ksys_write+0x1a9/0x260 [ 540.027736] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 540.028375] __x64_sys_unshare+0x2d/0x40 [ 540.028866] do_syscall_64+0x33/0x40 [ 540.029339] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 540.029982] RIP: 0033:0x7fc7d3fdfb19 [ 540.030440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 540.032676] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 540.049637] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 540.050503] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 540.051367] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 540.052230] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 540.053099] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 540.056621] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 540.060314] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:56:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 16) 08:56:24 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:24 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x8) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r0, &(0x7f0000000240)=""/83, 0x53, 0x200000048) fallocate(r0, 0x7, 0x3, 0x8) perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0xd0, 0x8, 0x1, 0x6, 0x0, 0x4, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000000c0), 0x1}, 0x9071, 0x1, 0x2, 0x5, 0x72f1a579, 0x5, 0x81, 0x0, 0x8, 0x0, 0xffff}, 0x0, 0x5, r0, 0x1) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2080, 0x82) 08:56:24 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 32) 08:56:24 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:56:24 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:25 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048) ioctl$CDROMCLOSETRAY(r1, 0x5319) acct(&(0x7f0000000040)='./file0\x00') ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_RX_RING(r4, 0x10e, 0x6, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r3, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000140)={&(0x7f0000000080), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r3, 0x8, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x3e}, @void, @void}}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x20040080) mkdirat(r1, &(0x7f0000000180)='./file0\x00', 0x80) [ 540.119103] Process accounting resumed [ 540.165519] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. 08:56:25 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 33) [ 540.187036] Process accounting resumed 08:56:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 17) [ 540.219556] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 540.250686] FAULT_INJECTION: forcing a failure. [ 540.250686] name failslab, interval 1, probability 0, space 0, times 0 [ 540.255255] CPU: 0 PID: 5155 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 540.257224] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 540.259851] Call Trace: [ 540.260680] dump_stack+0x107/0x167 [ 540.261859] should_fail.cold+0x5/0xa [ 540.263068] ? create_object.isra.0+0x3a/0xa20 [ 540.264518] should_failslab+0x5/0x20 [ 540.265743] kmem_cache_alloc+0x5b/0x310 [ 540.267033] create_object.isra.0+0x3a/0xa20 [ 540.268445] kmemleak_alloc_percpu+0xa0/0x100 [ 540.269893] pcpu_alloc+0x4e2/0x1240 [ 540.271084] ? io_async_queue_proc+0x80/0x80 [ 540.272473] percpu_ref_init+0x31/0x3d0 [ 540.273752] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 540.275472] io_uring_setup+0x14f6/0x2980 [ 540.276787] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 540.278331] ? wait_for_completion_io+0x270/0x270 [ 540.279728] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 540.281240] ? syscall_enter_from_user_mode+0x1d/0x50 [ 540.286912] do_syscall_64+0x33/0x40 [ 540.288090] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 540.289720] RIP: 0033:0x7f932fac1b19 [ 540.290908] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 540.296774] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 540.299204] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 540.301491] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 540.303758] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 540.306033] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 540.308310] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 540.330153] FAULT_INJECTION: forcing a failure. [ 540.330153] name failslab, interval 1, probability 0, space 0, times 0 [ 540.333782] CPU: 0 PID: 5156 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 540.335873] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 540.342432] Call Trace: [ 540.343249] dump_stack+0x107/0x167 [ 540.344363] should_fail.cold+0x5/0xa [ 540.345563] ? create_object.isra.0+0x3a/0xa20 [ 540.346921] should_failslab+0x5/0x20 [ 540.348039] kmem_cache_alloc+0x5b/0x310 [ 540.349357] create_object.isra.0+0x3a/0xa20 [ 540.350708] kmemleak_alloc_percpu+0xa0/0x100 [ 540.352125] pcpu_alloc+0x4e2/0x1240 [ 540.353334] alloc_vfsmnt+0xfd/0x680 [ 540.354538] clone_mnt+0x6c/0xce0 [ 540.355598] copy_tree+0x3b0/0xa60 [ 540.356688] copy_mnt_ns+0x144/0xa00 [ 540.357865] ? kmem_cache_alloc+0x2a6/0x310 [ 540.359286] create_new_namespaces+0xd6/0xb20 [ 540.360819] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 540.362435] ksys_unshare+0x449/0x8a0 [ 540.363695] ? unshare_fd+0x1c0/0x1c0 [ 540.364925] ? fput_many+0x2f/0x1a0 [ 540.366155] ? ksys_write+0x1a9/0x260 [ 540.367445] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 540.369164] __x64_sys_unshare+0x2d/0x40 [ 540.370688] do_syscall_64+0x33/0x40 [ 540.371973] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 540.373694] RIP: 0033:0x7fc7d3fdfb19 [ 540.374968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 540.386726] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 540.389241] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 540.391603] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 540.393964] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 540.396290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 540.398551] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 540.406644] Process accounting resumed 08:56:25 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x4) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0x10001, 0x7fff}) r1 = syz_open_dev$sg(&(0x7f00000000c0), 0xdf, 0x80) fcntl$dupfd(r1, 0x0, r0) acct(&(0x7f0000000040)='./file0\x00') mount$9p_tcp(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x2e47b2091c227586, &(0x7f00000001c0)={'trans=tcp,', {'port', 0x3d, 0x4e24}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, 0xee00}}, {@loose}], [{@subj_type={'subj_type', 0x3d, '&^-'}}, {@obj_role={'obj_role', 0x3d, '-@'}}]}}) [ 540.500831] Process accounting resumed [ 540.572196] Process accounting resumed 08:56:25 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 18) 08:56:25 executing program 4: syz_genetlink_get_family_id$SEG6(&(0x7f0000000180), 0xffffffffffffffff) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x1) sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000000906010300000000000000000a00000005000100070000000500010007000000050001000700000053a704dc7e4d51e03cbc2abc9b880cd086371125dc4e65fc309fbfb141917b00707620693efa2d357965744a69e31083b81106ddce94f2fc51ef0ed9d696ab6a753e2e78aae5b83ced00a4ef5f3b5115b47d692eb0ffb755a48f84606a4c7377afc645307acc251d5a474247511bbda7c55ae1b9c4d2f0268f0c45cbecfd80eeeb07f8a256db3c34a012311dc2bbd176838a2ce42da0fae9440beb50be464d411fc50138f3f01cea6529462e47335069dbdb2ead20202ab149f23077b443c29adb0cb8bd3ec9c6fb9b84bc1412b3cb579b56d84edbedde930fbc59f1176a431dae8d129e82"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x40000c0) acct(&(0x7f0000000040)='./file0\x00') ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000140)={0x6, 0x9, 0x1}) setxattr$security_selinux(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), &(0x7f0000000100)='system_u:object_r:initrc_exec_t:s0\x00', 0x23, 0x0) [ 540.644288] FAULT_INJECTION: forcing a failure. [ 540.644288] name failslab, interval 1, probability 0, space 0, times 0 [ 540.647601] CPU: 0 PID: 5166 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 540.649622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 540.651901] Call Trace: [ 540.652645] dump_stack+0x107/0x167 [ 540.653750] should_fail.cold+0x5/0xa [ 540.654848] ? percpu_ref_init+0xd8/0x3d0 [ 540.656039] should_failslab+0x5/0x20 [ 540.657134] kmem_cache_alloc_trace+0x55/0x320 [ 540.658629] ? io_async_queue_proc+0x80/0x80 [ 540.659851] percpu_ref_init+0xd8/0x3d0 [ 540.660939] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 540.662616] io_uring_setup+0x14f6/0x2980 [ 540.663750] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 540.665123] ? wait_for_completion_io+0x270/0x270 [ 540.666769] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 540.668225] ? syscall_enter_from_user_mode+0x1d/0x50 [ 540.669739] do_syscall_64+0x33/0x40 [ 540.670812] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 540.672307] RIP: 0033:0x7f932fac1b19 [ 540.673390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 540.678756] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 540.680909] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 540.683253] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 540.685189] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 540.687579] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 540.689449] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 540.703513] Process accounting resumed [ 540.721342] Process accounting resumed 08:56:25 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 34) [ 540.780076] Process accounting resumed 08:56:25 executing program 4: ioctl$SNDRV_TIMER_IOCTL_TREAD(0xffffffffffffffff, 0x40045402, &(0x7f0000000080)) creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 540.850871] FAULT_INJECTION: forcing a failure. [ 540.850871] name failslab, interval 1, probability 0, space 0, times 0 [ 540.852357] CPU: 0 PID: 5170 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 540.853251] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 540.854357] Call Trace: [ 540.854716] dump_stack+0x107/0x167 [ 540.855196] should_fail.cold+0x5/0xa [ 540.855716] ? create_object.isra.0+0x3a/0xa20 [ 540.856309] should_failslab+0x5/0x20 [ 540.856814] kmem_cache_alloc+0x5b/0x310 [ 540.857352] ? find_held_lock+0x2c/0x110 [ 540.857890] create_object.isra.0+0x3a/0xa20 [ 540.858462] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 540.859125] kmem_cache_alloc+0x159/0x310 [ 540.859674] alloc_vfsmnt+0x23/0x680 [ 540.860181] clone_mnt+0x6c/0xce0 [ 540.860638] copy_tree+0x3b0/0xa60 [ 540.861111] copy_mnt_ns+0x144/0xa00 [ 540.861623] ? kmem_cache_alloc+0x2a6/0x310 [ 540.862206] create_new_namespaces+0xd6/0xb20 [ 540.862800] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 540.863467] ksys_unshare+0x449/0x8a0 [ 540.863965] ? unshare_fd+0x1c0/0x1c0 [ 540.864478] ? ksys_write+0x1a9/0x260 [ 540.864989] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 540.865699] __x64_sys_unshare+0x2d/0x40 [ 540.866225] do_syscall_64+0x33/0x40 [ 540.866711] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 540.867381] RIP: 0033:0x7fc7d3fdfb19 [ 540.867882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 540.870308] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 540.871299] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 540.872238] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 540.873178] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 540.874134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 540.875070] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 540.885278] Process accounting resumed [ 540.955661] Process accounting resumed [ 541.020538] Process accounting resumed [ 556.110310] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 556.115025] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 556.123420] FAULT_INJECTION: forcing a failure. [ 556.123420] name failslab, interval 1, probability 0, space 0, times 0 [ 556.125940] CPU: 0 PID: 5180 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 556.126797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 556.127822] Call Trace: [ 556.128153] dump_stack+0x107/0x167 [ 556.128608] should_fail.cold+0x5/0xa [ 556.129086] ? create_object.isra.0+0x3a/0xa20 [ 556.129658] should_failslab+0x5/0x20 [ 556.130151] kmem_cache_alloc+0x5b/0x310 [ 556.130656] create_object.isra.0+0x3a/0xa20 [ 556.131198] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 556.131831] kmem_cache_alloc_trace+0x151/0x320 [ 556.132415] ? io_async_queue_proc+0x80/0x80 [ 556.132967] percpu_ref_init+0xd8/0x3d0 [ 556.133466] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 556.134746] io_uring_setup+0x14f6/0x2980 [ 556.135262] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 556.135884] ? wait_for_completion_io+0x270/0x270 [ 556.136497] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 556.137146] ? syscall_enter_from_user_mode+0x1d/0x50 [ 556.137778] do_syscall_64+0x33/0x40 [ 556.142789] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 556.146252] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 556.146262] RIP: 0033:0x7f932fac1b19 [ 556.146279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 556.146285] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 556.155615] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 556.156489] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 556.157349] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 556.162294] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 556.163170] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:56:41 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 35) 08:56:41 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:56:41 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:41 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 19) 08:56:41 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x169) acct(&(0x7f0000000040)='./file0\x00') r1 = syz_mount_image$nfs4(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x0, &(0x7f00000002c0), 0x1048084, &(0x7f00000004c0)={[{'h\x82\xc88n\xbeS\xdd\xd5\x17\x16C\xc9F\xbb\xdf\xfb\x9f@\x94p\xe79\x86U\x19\xcdI\x0e\xba\x14\xf0\x8f\xf4\xf5\'\x14\xd5\xd8\xa2\x19\x8d\xedM\x89>\xa2o\xac\x9f\x8c\xa2\x9fh\xfd\xba\"\x84*\xc5\xb2B\xefl=\x13\xeb\"\xd8\xa0\xb6\x02\xff\xce\x1d\xc3)X\xc3\"\v\x04y\n\xed\xa1*\xf4p\xc6[w\x99K_S\x8ac\x05\x1frv\xb1Fk\xf7\xa8\xcf\xa5\x14\x17\xc2\xb0\x9c\x85i\xd7[\xc4\xd1(b\xcb\x02\x1e\xe6\xfe\xc690$\xe3X\xa5a\x9c\xf0\x00\xbc\xac\xa7\xe0\xd0\xdc\xc7\x1bp\x84\x12\x13\xb1\xf5\x86\x80\x84\x8e`\xd4@[s\xf9\x8d\xf2[\xe7M'}, {')@'}, {}, {}, {}, {'-'}, {'&}$[!#)\x1a\x7f\xbcg\xb6i\x8f\x86X+\xbe\x8dZ\x06W\xfde(\x1d\x01\xd6\xb1\x1b\xa1F8\x91\xdc\xd3\xd8UB\xcc&\x8d\x16\x12\x17~4v@\xceD\x1d\x1e?\x7f`p\xf6\xbd\xa5\xb9\xa8\xca\x15\xf5\x9d\v\xc3\xf2\xc4h\x12)3r\xd8\xa5:Kh\xec\x90\x06\xdcX\xb4T\x90Qt\xc9\x9e?\x8f6D\tU\xac\x7f\v\xc1\xee+\xde\x1bB\xe1\x1b\xa3!}\x18kz\x04\xebX\xa6\xb7<.\xb6C[\xb1CU\nH\xe0\xf7?\x1et-\xd3_\xd1\xdf\xff\xe2l\xcdB\x7f\xe4r\x19\x1c\xcb\xc8\x84\xb5J\x81\x89F\xe8]?\x89\xb06\xdcC\x92\xb2\xaa\x84\x88\xfc\xa1\xce\x93\f\x940\xa2wq\xa5\xe9a\xe7\xed\x88\x87\x89zp\xc9\xff\x1a\xb036\x82)\xb5Vp\x86\xb4(\xfd\xb5\x83\x91\x9c'}, {'\\.$|-:}-*\'!\''}, {}, {':'}], [{@dont_hash}]}) openat(r1, &(0x7f0000000380)='./file0\x00', 0x484040, 0xae) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) 08:56:41 executing program 5: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048) ioctl$CDROMCLOSETRAY(r1, 0x5319) acct(&(0x7f0000000040)='./file0\x00') ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_RX_RING(r4, 0x10e, 0x6, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r3, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000140)={&(0x7f0000000080), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r3, 0x8, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x3e}, @void, @void}}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x20040080) mkdirat(r1, &(0x7f0000000180)='./file0\x00', 0x80) 08:56:41 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:41 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 556.191362] FAULT_INJECTION: forcing a failure. [ 556.191362] name failslab, interval 1, probability 0, space 0, times 0 [ 556.192776] CPU: 1 PID: 5192 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 556.193609] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 556.194677] Call Trace: [ 556.195005] dump_stack+0x107/0x167 [ 556.195450] should_fail.cold+0x5/0xa [ 556.195921] should_failslab+0x5/0x20 [ 556.196387] __kmalloc_track_caller+0x79/0x370 [ 556.196944] ? kstrdup_const+0x53/0x80 [ 556.197421] kstrdup+0x36/0x70 [ 556.197814] kstrdup_const+0x53/0x80 [ 556.198296] alloc_vfsmnt+0xb5/0x680 [ 556.198751] clone_mnt+0x6c/0xce0 [ 556.199176] copy_tree+0x3b0/0xa60 [ 556.199617] copy_mnt_ns+0x144/0xa00 [ 556.200071] ? kmem_cache_alloc+0x2a6/0x310 [ 556.200615] create_new_namespaces+0xd6/0xb20 [ 556.201167] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 556.201772] ksys_unshare+0x449/0x8a0 [ 556.202251] ? unshare_fd+0x1c0/0x1c0 [ 556.202721] ? ksys_write+0x1a9/0x260 [ 556.203193] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 556.203840] __x64_sys_unshare+0x2d/0x40 [ 556.204335] do_syscall_64+0x33/0x40 [ 556.204789] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 556.205420] RIP: 0033:0x7fc7d3fdfb19 [ 556.205913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 556.208157] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 556.209091] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 556.209984] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 556.210856] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 556.211514] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 556.211727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 556.211735] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 556.236908] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 556.243860] Process accounting resumed 08:56:41 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 20) [ 556.271069] FAULT_INJECTION: forcing a failure. [ 556.271069] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 556.272655] CPU: 0 PID: 5205 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 556.273480] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 556.274523] Call Trace: [ 556.274853] dump_stack+0x107/0x167 [ 556.275300] should_fail.cold+0x5/0xa [ 556.275770] _copy_to_user+0x2e/0x180 [ 556.275864] Process accounting resumed [ 556.276242] io_uring_setup+0x11b5/0x2980 [ 556.277247] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 556.277877] ? wait_for_completion_io+0x270/0x270 [ 556.278493] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 556.279137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 556.279765] do_syscall_64+0x33/0x40 [ 556.279962] Process accounting resumed [ 556.280218] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 556.280227] RIP: 0033:0x7f932fac1b19 [ 556.280239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 556.280251] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 556.284964] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 556.285836] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 556.286722] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 556.287598] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 556.288468] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 556.315292] Process accounting resumed 08:56:54 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 36) 08:56:54 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:54 executing program 7: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x169) acct(&(0x7f0000000040)='./file0\x00') r1 = syz_mount_image$nfs4(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x0, &(0x7f00000002c0), 0x1048084, &(0x7f00000004c0)={[{'h\x82\xc88n\xbeS\xdd\xd5\x17\x16C\xc9F\xbb\xdf\xfb\x9f@\x94p\xe79\x86U\x19\xcdI\x0e\xba\x14\xf0\x8f\xf4\xf5\'\x14\xd5\xd8\xa2\x19\x8d\xedM\x89>\xa2o\xac\x9f\x8c\xa2\x9fh\xfd\xba\"\x84*\xc5\xb2B\xefl=\x13\xeb\"\xd8\xa0\xb6\x02\xff\xce\x1d\xc3)X\xc3\"\v\x04y\n\xed\xa1*\xf4p\xc6[w\x99K_S\x8ac\x05\x1frv\xb1Fk\xf7\xa8\xcf\xa5\x14\x17\xc2\xb0\x9c\x85i\xd7[\xc4\xd1(b\xcb\x02\x1e\xe6\xfe\xc690$\xe3X\xa5a\x9c\xf0\x00\xbc\xac\xa7\xe0\xd0\xdc\xc7\x1bp\x84\x12\x13\xb1\xf5\x86\x80\x84\x8e`\xd4@[s\xf9\x8d\xf2[\xe7M'}, {')@'}, {}, {}, {}, {'-'}, {'&}$[!#)\x1a\x7f\xbcg\xb6i\x8f\x86X+\xbe\x8dZ\x06W\xfde(\x1d\x01\xd6\xb1\x1b\xa1F8\x91\xdc\xd3\xd8UB\xcc&\x8d\x16\x12\x17~4v@\xceD\x1d\x1e?\x7f`p\xf6\xbd\xa5\xb9\xa8\xca\x15\xf5\x9d\v\xc3\xf2\xc4h\x12)3r\xd8\xa5:Kh\xec\x90\x06\xdcX\xb4T\x90Qt\xc9\x9e?\x8f6D\tU\xac\x7f\v\xc1\xee+\xde\x1bB\xe1\x1b\xa3!}\x18kz\x04\xebX\xa6\xb7<.\xb6C[\xb1CU\nH\xe0\xf7?\x1et-\xd3_\xd1\xdf\xff\xe2l\xcdB\x7f\xe4r\x19\x1c\xcb\xc8\x84\xb5J\x81\x89F\xe8]?\x89\xb06\xdcC\x92\xb2\xaa\x84\x88\xfc\xa1\xce\x93\f\x940\xa2wq\xa5\xe9a\xe7\xed\x88\x87\x89zp\xc9\xff\x1a\xb036\x82)\xb5Vp\x86\xb4(\xfd\xb5\x83\x91\x9c'}, {'\\.$|-:}-*\'!\''}, {}, {':'}], [{@dont_hash}]}) openat(r1, &(0x7f0000000380)='./file0\x00', 0x484040, 0xae) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) 08:56:54 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 21) 08:56:54 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:54 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x2, 0x0, &(0x7f0000000180)) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x3902, @private0, 0x5dc2}, 0x1c) getsockopt$inet6_tcp_int(r1, 0x6, 0x2, 0x0, &(0x7f0000000180)) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x0, 0xfffffffa, @mcast2, 0xffffffff}, 0x1c) write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0', [{}, {0x20, '*$@\'(%^/'}, {0x20, '}'}, {0x20, ']'}, {0x20, '#{-%/^'}], 0xa, "a22839a00a96b7f7bca5328f601b76541d633cdc63ee0e423683f4708b34e997a769b0b69fb1c7c8fb771f2582166c0d5b3b80fc3c636a13e1dc9e044214654e76fa099b10826603da69f8484fa5a7b98717bfd5ac4dda4081075f7912745e3723aed3c70b2b191347c6aad51b0d1587d6da67"}, 0x93) 08:56:54 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:54 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 569.805382] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 569.810072] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 569.816190] FAULT_INJECTION: forcing a failure. [ 569.816190] name failslab, interval 1, probability 0, space 0, times 0 [ 569.819591] CPU: 1 PID: 5223 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 569.821547] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 569.823960] Call Trace: [ 569.824713] dump_stack+0x107/0x167 [ 569.825745] should_fail.cold+0x5/0xa [ 569.826846] ? __d_alloc+0x2a/0x990 [ 569.827887] should_failslab+0x5/0x20 [ 569.828975] kmem_cache_alloc+0x5b/0x310 [ 569.830139] __d_alloc+0x2a/0x990 [ 569.831142] ? find_held_lock+0x2c/0x110 [ 569.832310] d_alloc_pseudo+0x19/0x70 [ 569.833401] alloc_file_pseudo+0xce/0x250 [ 569.834589] ? trace_hardirqs_on+0x5b/0x180 [ 569.835818] ? alloc_file+0x5a0/0x5a0 [ 569.836905] anon_inode_getfile+0xc8/0x1f0 [ 569.838111] io_uring_setup+0x138b/0x2980 [ 569.839322] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 569.840790] ? wait_for_completion_io+0x270/0x270 [ 569.842175] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 569.842897] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 569.847745] ? syscall_enter_from_user_mode+0x1d/0x50 [ 569.847759] do_syscall_64+0x33/0x40 [ 569.847771] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 569.847780] RIP: 0033:0x7f932fac1b19 [ 569.847801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 569.847808] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 569.847821] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 569.847828] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 569.847835] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 569.847842] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 569.847849] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 569.870291] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 569.873986] FAULT_INJECTION: forcing a failure. [ 569.873986] name failslab, interval 1, probability 0, space 0, times 0 [ 569.875592] CPU: 0 PID: 5219 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 569.876557] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 569.877738] Call Trace: [ 569.878126] dump_stack+0x107/0x167 [ 569.878665] should_fail.cold+0x5/0xa [ 569.879223] ? create_object.isra.0+0x3a/0xa20 [ 569.879890] should_failslab+0x5/0x20 [ 569.880454] kmem_cache_alloc+0x5b/0x310 [ 569.881065] create_object.isra.0+0x3a/0xa20 [ 569.881709] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 569.886470] __kmalloc_track_caller+0x177/0x370 [ 569.887136] ? kstrdup_const+0x53/0x80 [ 569.887695] kstrdup+0x36/0x70 [ 569.888149] kstrdup_const+0x53/0x80 [ 569.888669] alloc_vfsmnt+0xb5/0x680 [ 569.889200] clone_mnt+0x6c/0xce0 [ 569.889695] copy_tree+0x3b0/0xa60 [ 569.890197] copy_mnt_ns+0x144/0xa00 [ 569.890737] ? kmem_cache_alloc+0x2a6/0x310 [ 569.891341] create_new_namespaces+0xd6/0xb20 [ 569.891976] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 569.892665] ksys_unshare+0x449/0x8a0 [ 569.893781] ? unshare_fd+0x1c0/0x1c0 [ 569.894354] ? ksys_write+0x1a9/0x260 [ 569.894923] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 569.895693] __x64_sys_unshare+0x2d/0x40 [ 569.896291] do_syscall_64+0x33/0x40 [ 569.896845] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 569.897590] RIP: 0033:0x7fc7d3fdfb19 [ 569.898139] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 569.900784] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 569.901778] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 569.902658] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 569.903528] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 569.904400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 569.905271] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:56:54 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 22) [ 569.932780] Process accounting resumed 08:56:54 executing program 7: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x169) acct(&(0x7f0000000040)='./file0\x00') r1 = syz_mount_image$nfs4(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x0, &(0x7f00000002c0), 0x1048084, &(0x7f00000004c0)={[{'h\x82\xc88n\xbeS\xdd\xd5\x17\x16C\xc9F\xbb\xdf\xfb\x9f@\x94p\xe79\x86U\x19\xcdI\x0e\xba\x14\xf0\x8f\xf4\xf5\'\x14\xd5\xd8\xa2\x19\x8d\xedM\x89>\xa2o\xac\x9f\x8c\xa2\x9fh\xfd\xba\"\x84*\xc5\xb2B\xefl=\x13\xeb\"\xd8\xa0\xb6\x02\xff\xce\x1d\xc3)X\xc3\"\v\x04y\n\xed\xa1*\xf4p\xc6[w\x99K_S\x8ac\x05\x1frv\xb1Fk\xf7\xa8\xcf\xa5\x14\x17\xc2\xb0\x9c\x85i\xd7[\xc4\xd1(b\xcb\x02\x1e\xe6\xfe\xc690$\xe3X\xa5a\x9c\xf0\x00\xbc\xac\xa7\xe0\xd0\xdc\xc7\x1bp\x84\x12\x13\xb1\xf5\x86\x80\x84\x8e`\xd4@[s\xf9\x8d\xf2[\xe7M'}, {')@'}, {}, {}, {}, {'-'}, {'&}$[!#)\x1a\x7f\xbcg\xb6i\x8f\x86X+\xbe\x8dZ\x06W\xfde(\x1d\x01\xd6\xb1\x1b\xa1F8\x91\xdc\xd3\xd8UB\xcc&\x8d\x16\x12\x17~4v@\xceD\x1d\x1e?\x7f`p\xf6\xbd\xa5\xb9\xa8\xca\x15\xf5\x9d\v\xc3\xf2\xc4h\x12)3r\xd8\xa5:Kh\xec\x90\x06\xdcX\xb4T\x90Qt\xc9\x9e?\x8f6D\tU\xac\x7f\v\xc1\xee+\xde\x1bB\xe1\x1b\xa3!}\x18kz\x04\xebX\xa6\xb7<.\xb6C[\xb1CU\nH\xe0\xf7?\x1et-\xd3_\xd1\xdf\xff\xe2l\xcdB\x7f\xe4r\x19\x1c\xcb\xc8\x84\xb5J\x81\x89F\xe8]?\x89\xb06\xdcC\x92\xb2\xaa\x84\x88\xfc\xa1\xce\x93\f\x940\xa2wq\xa5\xe9a\xe7\xed\x88\x87\x89zp\xc9\xff\x1a\xb036\x82)\xb5Vp\x86\xb4(\xfd\xb5\x83\x91\x9c'}, {'\\.$|-:}-*\'!\''}, {}, {':'}], [{@dont_hash}]}) openat(r1, &(0x7f0000000380)='./file0\x00', 0x484040, 0xae) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) [ 569.942462] Process accounting resumed [ 569.949665] FAULT_INJECTION: forcing a failure. [ 569.949665] name failslab, interval 1, probability 0, space 0, times 0 [ 569.952304] CPU: 0 PID: 5232 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 569.953287] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 569.954507] Call Trace: [ 569.954901] dump_stack+0x107/0x167 [ 569.955437] should_fail.cold+0x5/0xa [ 569.955999] ? create_object.isra.0+0x3a/0xa20 [ 569.956667] should_failslab+0x5/0x20 [ 569.957222] kmem_cache_alloc+0x5b/0x310 [ 569.957819] create_object.isra.0+0x3a/0xa20 [ 569.958468] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 569.959205] kmem_cache_alloc+0x159/0x310 [ 569.959816] __d_alloc+0x2a/0x990 [ 569.960324] ? find_held_lock+0x2c/0x110 [ 569.960919] d_alloc_pseudo+0x19/0x70 [ 569.961480] alloc_file_pseudo+0xce/0x250 [ 569.962093] ? trace_hardirqs_on+0x5b/0x180 [ 569.962737] ? alloc_file+0x5a0/0x5a0 [ 569.963307] anon_inode_getfile+0xc8/0x1f0 [ 569.963934] io_uring_setup+0x138b/0x2980 [ 569.964545] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 569.965276] ? wait_for_completion_io+0x270/0x270 [ 569.965895] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 569.966551] ? syscall_enter_from_user_mode+0x1d/0x50 [ 569.967183] do_syscall_64+0x33/0x40 [ 569.967640] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 569.968269] RIP: 0033:0x7f932fac1b19 [ 569.968729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 569.970990] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 569.971929] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 569.972807] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 569.973685] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 569.974887] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 569.976958] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:56:54 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x1e0) acct(&(0x7f0000000040)='./file0\x00') 08:56:55 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 23) [ 570.071115] FAULT_INJECTION: forcing a failure. [ 570.071115] name failslab, interval 1, probability 0, space 0, times 0 [ 570.074570] CPU: 1 PID: 5242 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 570.076527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 570.078940] Call Trace: [ 570.079699] dump_stack+0x107/0x167 [ 570.080755] should_fail.cold+0x5/0xa [ 570.081852] ? __alloc_file+0x21/0x320 [ 570.082997] should_failslab+0x5/0x20 [ 570.084102] kmem_cache_alloc+0x5b/0x310 [ 570.085268] __alloc_file+0x21/0x320 [ 570.086336] alloc_empty_file+0x6d/0x170 [ 570.087551] alloc_file+0x5e/0x5a0 [ 570.088579] alloc_file_pseudo+0x16a/0x250 [ 570.089790] ? alloc_file+0x5a0/0x5a0 [ 570.090920] anon_inode_getfile+0xc8/0x1f0 [ 570.092146] io_uring_setup+0x138b/0x2980 [ 570.093355] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 570.094967] ? wait_for_completion_io+0x270/0x270 [ 570.096374] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 570.097895] ? syscall_enter_from_user_mode+0x1d/0x50 [ 570.099401] do_syscall_64+0x33/0x40 [ 570.100482] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 570.101965] RIP: 0033:0x7f932fac1b19 [ 570.103057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 570.108491] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 570.109136] Process accounting resumed [ 570.110698] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 570.110715] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 570.110725] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 570.110741] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 570.110756] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 570.138084] Process accounting resumed 08:56:55 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:56:55 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x19) r1 = openat$cgroup_pressure(r0, &(0x7f0000000080)='memory.pressure\x00', 0x2, 0x0) flock(r1, 0xe) acct(&(0x7f0000000040)='./file0\x00') fstat(r1, &(0x7f0000000140)) ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f0000000100)=0x5) [ 570.195631] Process accounting resumed [ 570.207473] Process accounting resumed [ 570.221917] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. 08:56:55 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 24) [ 570.277041] Process accounting resumed 08:56:55 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') lsetxattr$trusted_overlay_opaque(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100), 0x2, 0x3) [ 570.307714] FAULT_INJECTION: forcing a failure. [ 570.307714] name failslab, interval 1, probability 0, space 0, times 0 [ 570.309291] CPU: 0 PID: 5249 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 570.310261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 570.311443] Call Trace: [ 570.311819] dump_stack+0x107/0x167 [ 570.312333] should_fail.cold+0x5/0xa [ 570.312885] ? create_object.isra.0+0x3a/0xa20 [ 570.313569] should_failslab+0x5/0x20 [ 570.314109] kmem_cache_alloc+0x5b/0x310 [ 570.314673] create_object.isra.0+0x3a/0xa20 [ 570.315209] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 570.315832] kmem_cache_alloc+0x159/0x310 [ 570.316343] __alloc_file+0x21/0x320 [ 570.316799] alloc_empty_file+0x6d/0x170 [ 570.317295] alloc_file+0x5e/0x5a0 [ 570.317732] alloc_file_pseudo+0x16a/0x250 [ 570.318248] ? alloc_file+0x5a0/0x5a0 [ 570.318745] anon_inode_getfile+0xc8/0x1f0 [ 570.319267] io_uring_setup+0x138b/0x2980 [ 570.319778] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 570.320406] ? wait_for_completion_io+0x270/0x270 [ 570.321010] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 570.321656] ? syscall_enter_from_user_mode+0x1d/0x50 [ 570.322287] do_syscall_64+0x33/0x40 [ 570.322769] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 570.323400] RIP: 0033:0x7f932fac1b19 [ 570.323868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 570.326108] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 570.327060] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 570.327933] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 570.328803] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 570.329678] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 570.330567] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:56:55 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 37) [ 570.397412] Process accounting resumed [ 570.518261] FAULT_INJECTION: forcing a failure. [ 570.518261] name failslab, interval 1, probability 0, space 0, times 0 [ 570.519747] CPU: 0 PID: 5255 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 570.520610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 570.521650] Call Trace: [ 570.522009] dump_stack+0x107/0x167 [ 570.522515] should_fail.cold+0x5/0xa [ 570.523018] ? create_object.isra.0+0x3a/0xa20 [ 570.523613] should_failslab+0x5/0x20 [ 570.524113] kmem_cache_alloc+0x5b/0x310 [ 570.524651] create_object.isra.0+0x3a/0xa20 [ 570.525234] kmemleak_alloc_percpu+0xa0/0x100 [ 570.525820] pcpu_alloc+0x4e2/0x1240 [ 570.526327] alloc_vfsmnt+0xfd/0x680 [ 570.526810] clone_mnt+0x6c/0xce0 [ 570.527239] copy_tree+0x3b0/0xa60 [ 570.527684] copy_mnt_ns+0x144/0xa00 [ 570.528141] ? kmem_cache_alloc+0x2a6/0x310 [ 570.528672] create_new_namespaces+0xd6/0xb20 [ 570.529225] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 570.529827] ksys_unshare+0x449/0x8a0 [ 570.530293] ? unshare_fd+0x1c0/0x1c0 [ 570.530784] ? ksys_write+0x1a9/0x260 [ 570.531256] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 570.531898] __x64_sys_unshare+0x2d/0x40 [ 570.532392] do_syscall_64+0x33/0x40 [ 570.532849] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 570.533474] RIP: 0033:0x7fc7d3fdfb19 [ 570.533936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 570.536197] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 570.537135] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 570.538006] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 570.538891] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 570.539762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 570.540639] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 570.548957] Process accounting resumed 08:56:55 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 25) 08:56:55 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) setxattr$trusted_overlay_nlink(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)={'L-', 0x1f}, 0x16, 0x2) acct(&(0x7f0000000040)='./file0\x00') 08:56:55 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 570.639678] FAULT_INJECTION: forcing a failure. [ 570.639678] name failslab, interval 1, probability 0, space 0, times 0 [ 570.642762] CPU: 1 PID: 5259 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 570.644423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 570.646444] Call Trace: [ 570.646783] dump_stack+0x107/0x167 [ 570.647232] should_fail.cold+0x5/0xa [ 570.647710] ? security_file_alloc+0x34/0x170 [ 570.648264] should_failslab+0x5/0x20 [ 570.648733] kmem_cache_alloc+0x5b/0x310 [ 570.649233] security_file_alloc+0x34/0x170 [ 570.649764] __alloc_file+0xb7/0x320 [ 570.650220] alloc_empty_file+0x6d/0x170 [ 570.651210] alloc_file+0x5e/0x5a0 [ 570.652303] alloc_file_pseudo+0x16a/0x250 [ 570.653399] ? alloc_file+0x5a0/0x5a0 [ 570.654420] anon_inode_getfile+0xc8/0x1f0 [ 570.655657] io_uring_setup+0x138b/0x2980 [ 570.656654] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 570.657874] ? wait_for_completion_io+0x270/0x270 [ 570.659237] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 570.660912] ? syscall_enter_from_user_mode+0x1d/0x50 [ 570.662363] do_syscall_64+0x33/0x40 [ 570.663496] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 570.664726] RIP: 0033:0x7f932fac1b19 [ 570.665613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 570.668286] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 570.669220] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 570.670092] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 570.672045] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 570.673762] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 570.675766] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 570.703986] Process accounting resumed [ 570.708602] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 570.717728] Process accounting resumed [ 570.781450] Process accounting resumed 08:56:55 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 38) 08:56:55 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000080)='./file0/file0\x00') 08:56:55 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 570.950163] FAULT_INJECTION: forcing a failure. [ 570.950163] name failslab, interval 1, probability 0, space 0, times 0 [ 570.951632] CPU: 1 PID: 5267 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 570.952458] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 570.953463] Call Trace: [ 570.953790] dump_stack+0x107/0x167 [ 570.954234] should_fail.cold+0x5/0xa [ 570.954734] ? create_object.isra.0+0x3a/0xa20 [ 570.955290] should_failslab+0x5/0x20 [ 570.955753] kmem_cache_alloc+0x5b/0x310 [ 570.956247] ? mark_held_locks+0x9e/0xe0 [ 570.956742] create_object.isra.0+0x3a/0xa20 [ 570.957281] kmemleak_alloc_percpu+0xa0/0x100 [ 570.957831] pcpu_alloc+0x4e2/0x1240 [ 570.958295] alloc_vfsmnt+0xfd/0x680 [ 570.958391] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 570.958768] clone_mnt+0x6c/0xce0 [ 570.958784] copy_tree+0x3b0/0xa60 [ 570.958803] copy_mnt_ns+0x144/0xa00 [ 570.958816] ? kmem_cache_alloc+0x2a6/0x310 [ 570.958835] create_new_namespaces+0xd6/0xb20 [ 570.962208] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 570.962817] ksys_unshare+0x449/0x8a0 [ 570.963282] ? unshare_fd+0x1c0/0x1c0 [ 570.963750] ? ksys_write+0x1a9/0x260 [ 570.964226] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 570.964872] __x64_sys_unshare+0x2d/0x40 [ 570.965368] do_syscall_64+0x33/0x40 [ 570.965827] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 570.966459] RIP: 0033:0x7fc7d3fdfb19 [ 570.966922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 570.969163] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 570.970094] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 570.970973] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 570.971851] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 570.972728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 570.973599] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 571.069396] Process accounting resumed 08:57:08 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:08 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 583.977362] Process accounting resumed [ 583.983776] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. 08:57:08 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:08 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 26) 08:57:08 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:08 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, 0x0, 0x0) sendmsg$NL80211_CMD_JOIN_OCB(r0, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x28, 0x0, 0x2, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7, 0x8}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x4) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), r1) sendmsg$TIPC_CMD_GET_LINKS(r1, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r2, 0x1, 0x70bd26, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0x1}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000840}, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000300)={'ip6_vti0\x00', &(0x7f0000000280)={'syztnl1\x00', 0x0, 0x4, 0x15, 0x0, 0xb12, 0x41, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, 0x1, 0x8000, 0x7fffffff, 0x401}}) sendmsg$ETHTOOL_MSG_STRSET_GET(r1, &(0x7f0000000540)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000500)={&(0x7f0000000340)={0x1b4, 0x0, 0x0, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x50, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}, @ETHTOOL_A_STRSET_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}]}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x30, 0x2, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0xbc, 0x2, 0x0, 0x1, [{0x4}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0xa}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x1b4}}, 0x0) openat(r1, &(0x7f0000000680)='./file0\x00', 0x10100, 0x0) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r4, 0x6, 0x15, &(0x7f00000000c0)=0x7f, 0x4) 08:57:08 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 39) 08:57:08 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 583.995558] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 583.996679] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 584.002495] FAULT_INJECTION: forcing a failure. [ 584.002495] name failslab, interval 1, probability 0, space 0, times 0 [ 584.003988] CPU: 1 PID: 5293 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 584.004167] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 584.004814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.004818] Call Trace: [ 584.004836] dump_stack+0x107/0x167 [ 584.004849] should_fail.cold+0x5/0xa [ 584.008079] ? create_object.isra.0+0x3a/0xa20 [ 584.008639] should_failslab+0x5/0x20 [ 584.009105] kmem_cache_alloc+0x5b/0x310 [ 584.009603] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 584.010274] create_object.isra.0+0x3a/0xa20 [ 584.010808] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 584.011438] kmem_cache_alloc+0x159/0x310 [ 584.011951] security_file_alloc+0x34/0x170 [ 584.012476] __alloc_file+0xb7/0x320 [ 584.012930] alloc_empty_file+0x6d/0x170 [ 584.013425] alloc_file+0x5e/0x5a0 [ 584.013860] alloc_file_pseudo+0x16a/0x250 [ 584.014373] ? alloc_file+0x5a0/0x5a0 [ 584.014854] anon_inode_getfile+0xc8/0x1f0 [ 584.015392] io_uring_setup+0x138b/0x2980 [ 584.015902] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 584.016524] ? wait_for_completion_io+0x270/0x270 [ 584.017124] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.017764] ? syscall_enter_from_user_mode+0x1d/0x50 [ 584.018395] do_syscall_64+0x33/0x40 [ 584.018856] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.019499] RIP: 0033:0x7f932fac1b19 [ 584.019958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.022194] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 584.023148] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 584.024016] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 584.024889] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 584.025758] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 584.026624] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 584.032338] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 584.042403] FAULT_INJECTION: forcing a failure. [ 584.042403] name failslab, interval 1, probability 0, space 0, times 0 [ 584.043872] CPU: 1 PID: 5292 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 584.044697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.045694] Call Trace: [ 584.046013] dump_stack+0x107/0x167 [ 584.046455] should_fail.cold+0x5/0xa [ 584.046938] ? alloc_vfsmnt+0x23/0x680 [ 584.047412] should_failslab+0x5/0x20 [ 584.047872] kmem_cache_alloc+0x5b/0x310 [ 584.048361] ? copy_tree+0x61a/0xa60 [ 584.048814] alloc_vfsmnt+0x23/0x680 [ 584.049266] clone_mnt+0x6c/0xce0 [ 584.049689] copy_tree+0x3b0/0xa60 [ 584.050126] copy_mnt_ns+0x144/0xa00 [ 584.050580] ? kmem_cache_alloc+0x2a6/0x310 [ 584.055138] create_new_namespaces+0xd6/0xb20 [ 584.055688] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 584.056284] ksys_unshare+0x449/0x8a0 [ 584.056745] ? unshare_fd+0x1c0/0x1c0 [ 584.057208] ? ksys_write+0x1a9/0x260 [ 584.057674] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.058310] __x64_sys_unshare+0x2d/0x40 [ 584.058802] do_syscall_64+0x33/0x40 [ 584.059279] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.059904] RIP: 0033:0x7fc7d3fdfb19 [ 584.060359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.062583] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 584.063523] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 584.064388] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 584.065256] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 584.066120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 584.067001] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:57:09 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 27) [ 584.080886] Process accounting resumed [ 584.100070] Process accounting resumed 08:57:09 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 40) [ 584.136975] FAULT_INJECTION: forcing a failure. [ 584.136975] name failslab, interval 1, probability 0, space 0, times 0 [ 584.138391] CPU: 0 PID: 5301 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 584.139235] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.140238] Call Trace: [ 584.140564] dump_stack+0x107/0x167 [ 584.141008] should_fail.cold+0x5/0xa [ 584.141474] ? io_uring_alloc_task_context+0x99/0x6a0 [ 584.142102] should_failslab+0x5/0x20 [ 584.142568] kmem_cache_alloc_trace+0x55/0x320 [ 584.143152] io_uring_alloc_task_context+0x99/0x6a0 [ 584.143763] ? io_import_iovec+0x1120/0x1120 [ 584.144299] ? lock_downgrade+0x6d0/0x6d0 [ 584.144804] ? do_raw_spin_lock+0x121/0x260 [ 584.145329] ? rwlock_bug.part.0+0x90/0x90 [ 584.145848] __io_uring_add_tctx_node+0x2c6/0x520 [ 584.146435] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 584.151100] ? alloc_fd+0x2e7/0x670 [ 584.151549] io_uring_setup+0x1fbb/0x2980 [ 584.152057] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 584.152675] ? wait_for_completion_io+0x270/0x270 [ 584.153272] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.153905] ? syscall_enter_from_user_mode+0x1d/0x50 [ 584.154531] do_syscall_64+0x33/0x40 [ 584.155002] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.155624] RIP: 0033:0x7f932fac1b19 [ 584.156082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.158318] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 584.159259] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 584.160125] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 584.160990] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 584.161861] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 584.162728] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 584.214402] FAULT_INJECTION: forcing a failure. [ 584.214402] name failslab, interval 1, probability 0, space 0, times 0 [ 584.219849] CPU: 0 PID: 5303 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 584.220675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.221673] Call Trace: [ 584.221997] dump_stack+0x107/0x167 [ 584.222438] should_fail.cold+0x5/0xa [ 584.222913] ? create_object.isra.0+0x3a/0xa20 [ 584.223474] should_failslab+0x5/0x20 [ 584.223937] kmem_cache_alloc+0x5b/0x310 [ 584.224430] ? find_held_lock+0x2c/0x110 [ 584.224925] create_object.isra.0+0x3a/0xa20 [ 584.225457] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 584.226075] kmem_cache_alloc+0x159/0x310 [ 584.226583] alloc_vfsmnt+0x23/0x680 [ 584.227062] clone_mnt+0x6c/0xce0 [ 584.227487] copy_tree+0x3b0/0xa60 [ 584.227924] copy_mnt_ns+0x144/0xa00 [ 584.228375] ? kmem_cache_alloc+0x2a6/0x310 [ 584.228901] create_new_namespaces+0xd6/0xb20 [ 584.229449] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 584.230044] ksys_unshare+0x449/0x8a0 [ 584.230504] ? unshare_fd+0x1c0/0x1c0 [ 584.230990] ? ksys_write+0x1a9/0x260 [ 584.231457] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.232094] __x64_sys_unshare+0x2d/0x40 [ 584.232586] do_syscall_64+0x33/0x40 [ 584.233038] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.233658] RIP: 0033:0x7fc7d3fdfb19 [ 584.234115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.236361] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 584.237282] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 584.238145] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 584.239022] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 584.239886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 584.240754] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:57:09 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 28) [ 584.294133] FAULT_INJECTION: forcing a failure. [ 584.294133] name failslab, interval 1, probability 0, space 0, times 0 [ 584.295668] CPU: 0 PID: 5306 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 584.296496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.297506] Call Trace: [ 584.297835] dump_stack+0x107/0x167 [ 584.298284] should_fail.cold+0x5/0xa [ 584.298755] ? create_object.isra.0+0x3a/0xa20 [ 584.307323] should_failslab+0x5/0x20 [ 584.307788] kmem_cache_alloc+0x5b/0x310 [ 584.308290] create_object.isra.0+0x3a/0xa20 [ 584.308822] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 584.309442] kmem_cache_alloc_trace+0x151/0x320 [ 584.310011] io_uring_alloc_task_context+0x99/0x6a0 [ 584.310618] ? io_import_iovec+0x1120/0x1120 [ 584.311173] ? lock_downgrade+0x6d0/0x6d0 [ 584.311677] ? do_raw_spin_lock+0x121/0x260 [ 584.312200] ? rwlock_bug.part.0+0x90/0x90 [ 584.312717] __io_uring_add_tctx_node+0x2c6/0x520 [ 584.313303] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 584.313939] ? alloc_fd+0x2e7/0x670 [ 584.314389] io_uring_setup+0x1fbb/0x2980 [ 584.314904] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 584.315528] ? wait_for_completion_io+0x270/0x270 [ 584.316128] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.316765] ? syscall_enter_from_user_mode+0x1d/0x50 [ 584.317392] do_syscall_64+0x33/0x40 [ 584.317844] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.318469] RIP: 0033:0x7f932fac1b19 [ 584.318937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.321177] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 584.322103] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 584.322983] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 584.323848] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 584.324713] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 584.325577] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 584.349067] Process accounting resumed 08:57:09 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 29) 08:57:09 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 41) [ 584.483545] FAULT_INJECTION: forcing a failure. [ 584.483545] name failslab, interval 1, probability 0, space 0, times 0 [ 584.484965] CPU: 0 PID: 5310 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 584.485792] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.486801] Call Trace: [ 584.487149] dump_stack+0x107/0x167 [ 584.487600] should_fail.cold+0x5/0xa [ 584.488068] ? create_object.isra.0+0x3a/0xa20 [ 584.488628] should_failslab+0x5/0x20 [ 584.489095] kmem_cache_alloc+0x5b/0x310 [ 584.489591] create_object.isra.0+0x3a/0xa20 [ 584.490131] kmemleak_alloc_percpu+0xa0/0x100 [ 584.490684] pcpu_alloc+0x4e2/0x1240 [ 584.491167] __percpu_counter_init+0x10d/0x2d0 [ 584.491723] io_uring_alloc_task_context+0xcc/0x6a0 [ 584.492329] ? io_import_iovec+0x1120/0x1120 [ 584.492864] ? lock_downgrade+0x6d0/0x6d0 [ 584.493367] ? do_raw_spin_lock+0x121/0x260 [ 584.493889] ? rwlock_bug.part.0+0x90/0x90 [ 584.494405] __io_uring_add_tctx_node+0x2c6/0x520 [ 584.499009] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 584.499641] ? alloc_fd+0x2e7/0x670 [ 584.500089] io_uring_setup+0x1fbb/0x2980 [ 584.500599] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 584.501210] ? wait_for_completion_io+0x270/0x270 [ 584.501805] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.502440] ? syscall_enter_from_user_mode+0x1d/0x50 [ 584.503082] do_syscall_64+0x33/0x40 [ 584.503534] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.504155] RIP: 0033:0x7f932fac1b19 [ 584.504611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.506838] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 584.507777] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 584.508643] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 584.509507] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 584.510370] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 584.511247] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 584.517454] FAULT_INJECTION: forcing a failure. [ 584.517454] name failslab, interval 1, probability 0, space 0, times 0 [ 584.518844] CPU: 0 PID: 5311 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 584.523688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.524684] Call Trace: [ 584.525003] dump_stack+0x107/0x167 [ 584.525443] should_fail.cold+0x5/0xa [ 584.525907] should_failslab+0x5/0x20 [ 584.526366] __kmalloc_track_caller+0x79/0x370 [ 584.526929] ? kstrdup_const+0x53/0x80 [ 584.527407] kstrdup+0x36/0x70 [ 584.527796] kstrdup_const+0x53/0x80 [ 584.528246] alloc_vfsmnt+0xb5/0x680 [ 584.528697] clone_mnt+0x6c/0xce0 [ 584.529119] copy_tree+0x3b0/0xa60 [ 584.529555] copy_mnt_ns+0x144/0xa00 [ 584.530006] ? kmem_cache_alloc+0x2a6/0x310 [ 584.530532] create_new_namespaces+0xd6/0xb20 [ 584.531090] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 584.531688] ksys_unshare+0x449/0x8a0 [ 584.532148] ? unshare_fd+0x1c0/0x1c0 [ 584.532612] ? ksys_write+0x1a9/0x260 [ 584.533080] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.533718] __x64_sys_unshare+0x2d/0x40 [ 584.534208] do_syscall_64+0x33/0x40 [ 584.534661] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.535295] RIP: 0033:0x7fc7d3fdfb19 [ 584.535755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.537983] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 584.538927] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 584.539796] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 584.540660] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 584.541525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 584.542389] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 584.583315] Process accounting resumed 08:57:09 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 42) 08:57:09 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 30) [ 584.640155] FAULT_INJECTION: forcing a failure. [ 584.640155] name failslab, interval 1, probability 0, space 0, times 0 [ 584.641578] CPU: 0 PID: 5314 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 584.642401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.647405] Call Trace: [ 584.647732] dump_stack+0x107/0x167 [ 584.648173] should_fail.cold+0x5/0xa [ 584.648639] should_failslab+0x5/0x20 [ 584.649101] __kmalloc_track_caller+0x79/0x370 [ 584.649652] ? kstrdup_const+0x53/0x80 [ 584.650126] kstrdup+0x36/0x70 [ 584.650519] kstrdup_const+0x53/0x80 [ 584.650991] alloc_vfsmnt+0xb5/0x680 [ 584.651442] clone_mnt+0x6c/0xce0 [ 584.651871] copy_tree+0x3b0/0xa60 [ 584.652309] copy_mnt_ns+0x144/0xa00 [ 584.652762] ? kmem_cache_alloc+0x2a6/0x310 [ 584.653290] create_new_namespaces+0xd6/0xb20 [ 584.653841] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 584.654438] ksys_unshare+0x449/0x8a0 [ 584.654907] ? unshare_fd+0x1c0/0x1c0 [ 584.655379] ? ksys_write+0x1a9/0x260 [ 584.655847] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.656485] __x64_sys_unshare+0x2d/0x40 [ 584.656978] do_syscall_64+0x33/0x40 [ 584.657430] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.658051] RIP: 0033:0x7fc7d3fdfb19 [ 584.658508] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.660755] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 584.661674] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 584.662535] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 584.663417] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 584.664280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 584.665144] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 584.677474] FAULT_INJECTION: forcing a failure. [ 584.677474] name failslab, interval 1, probability 0, space 0, times 0 [ 584.678880] CPU: 0 PID: 5315 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 584.679726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.680734] Call Trace: [ 584.681058] dump_stack+0x107/0x167 [ 584.681502] should_fail.cold+0x5/0xa [ 584.681968] ? create_object.isra.0+0x3a/0xa20 [ 584.682526] should_failslab+0x5/0x20 [ 584.683036] kmem_cache_alloc+0x5b/0x310 [ 584.683532] create_object.isra.0+0x3a/0xa20 [ 584.684070] kmemleak_alloc_percpu+0xa0/0x100 [ 584.684616] pcpu_alloc+0x4e2/0x1240 [ 584.685079] __percpu_counter_init+0x10d/0x2d0 [ 584.685636] io_uring_alloc_task_context+0xcc/0x6a0 [ 584.686241] ? io_import_iovec+0x1120/0x1120 [ 584.686784] ? lock_downgrade+0x6d0/0x6d0 [ 584.687304] ? do_raw_spin_lock+0x121/0x260 [ 584.687829] ? rwlock_bug.part.0+0x90/0x90 [ 584.688348] __io_uring_add_tctx_node+0x2c6/0x520 [ 584.688937] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 584.689574] ? alloc_fd+0x2e7/0x670 [ 584.690026] io_uring_setup+0x1fbb/0x2980 [ 584.690535] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 584.691169] ? wait_for_completion_io+0x270/0x270 [ 584.691769] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.692407] ? syscall_enter_from_user_mode+0x1d/0x50 [ 584.693041] do_syscall_64+0x33/0x40 [ 584.693496] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.694121] RIP: 0033:0x7f932fac1b19 [ 584.694578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.696827] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 584.697751] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 584.698617] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 584.699495] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 584.700361] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 584.701225] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 584.746396] Process accounting resumed 08:57:09 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 31) [ 584.788436] FAULT_INJECTION: forcing a failure. [ 584.788436] name failslab, interval 1, probability 0, space 0, times 0 [ 584.790027] CPU: 0 PID: 5317 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 584.790866] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 584.791926] Call Trace: [ 584.792254] dump_stack+0x107/0x167 [ 584.792701] should_fail.cold+0x5/0xa [ 584.793171] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 584.793816] should_failslab+0x5/0x20 [ 584.794281] kmem_cache_alloc_trace+0x55/0x320 [ 584.794843] io_uring_alloc_task_context+0x4a3/0x6a0 [ 584.795478] ? io_import_iovec+0x1120/0x1120 [ 584.796017] ? lock_downgrade+0x6d0/0x6d0 [ 584.796522] ? do_raw_spin_lock+0x121/0x260 [ 584.797048] ? rwlock_bug.part.0+0x90/0x90 [ 584.797568] __io_uring_add_tctx_node+0x2c6/0x520 [ 584.798162] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 584.798801] ? alloc_fd+0x2e7/0x670 [ 584.799266] io_uring_setup+0x1fbb/0x2980 [ 584.799777] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 584.800400] ? wait_for_completion_io+0x270/0x270 [ 584.801001] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 584.801638] ? syscall_enter_from_user_mode+0x1d/0x50 [ 584.802267] do_syscall_64+0x33/0x40 [ 584.802720] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 584.803362] RIP: 0033:0x7f932fac1b19 [ 584.803818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 584.806048] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 584.806984] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 584.807851] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 584.808718] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 584.809585] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 584.810459] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:57:23 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:23 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 43) 08:57:23 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) [ 598.441468] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. 08:57:23 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 32) 08:57:23 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:23 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:23 executing program 4: ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000740)=ANY=[@ANYRES64, @ANYBLOB="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"]) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005a880)={0x0, 0x0, "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", "6da6c13d87b3ffc0d06bbe6be4a2d1c0904c003270cdf4f900d31d98fa33cf53c40a8fb58f782b5bf5b7204ea23ade9bbb146648ae0e4af228ed5c0dd36ead9eee4651d1ad03d7a54ecdbd8cd4f85d2e6cf91bf94d5bfd55779d766ec271db8c0dd7cd9f57655ff48b331b096ff42d9459ab55606345abb66e88842216b62fe084cbd9c5656813af506f1b1b9430f68176d2ddbd95f8493805ad8e03ccf41948c6030c7a4770591fa1271d8ed96c36b63bdd110c4134f33a155cc4f222f36447dceab9a5391bd4dd731ce6afb245b0ae84cc4ddffcf8ad50c7e2d6ab1bddd1403ccbf374e5e5a1775280c072044d6fba668a83db831eb4ad96b55c57e4b3e137a756229eefdc246fc3e4548e35004962f40425534b50d41cb8493fef19cc0481569b7dbafac3d3448bd744fe754697f7b3fdc8b8a72fb160b0486fce191151610fe3b3a0a61d39c33aba5fb9398248961fb67566ef9bf18761f15a94d29e189bda3b54332c7e4f8b66110abfa002977d96a8fb4f3d97975f343ff7728988701953b6e5abb0b00cf9e5ded3e201b040ad4cf90d895d4ae6dc423e3de7fbefcb720984294e140f2f4421e628f6e5df2f70e2283034bb2b172f4ba07f7d099bdae11da2873307f6b0f01cf8c8396f7562280754e27a75231c474efd9f3d37e77084de0a84e6b5e180c7fbfffb44dd295a0789b227934d6b9cc9c3446b21d618bbe226812c7357447f4a43bbbd6c7aa421a5bae404d52b7449454390bf1b7aded03ae0e19f5dc241b8de2ffe2781c5cddb09d17bbf16467f3e833419b0c92e122f8a2c55e2938dff535ea9ab944fe9c146a62bf54df15e64901fc9ccf85eeab2c3b53de0f3fd1aef5bc2f21f5c3e36a45ea9e8da6ec50020784f5f83a905f270555b87265d8bc768f28c17548e99ad68242c2dbafe94b9fba335e741eca651ae4f2ff49ecbba8d34f035aaffcb11df591d386b257e76a91165a7e19754eb67c06b3c48b0c787991b1fa36266aaef713630348d7302ea79b3ad1f78a01adfef9f55e7f4e11948e388d36db76918346e2d68e757bbc81adffe1a85758a03c839f771210b952d6f03a78b3df1e0d2448d0ccff7c0388e6ea84b7e95a608addf60deecfe90738a3df10052bd612a3f71602b8c54062dc09c556f927fc005a9435e970d18d5c5f0a5fbe7f79004f48cb4169dcd9515af3166b142adea1406037903cbf9eefc4e943ccd83d353031e5b2d5f3415b7ba63333f4eee0b130b320e760b3b25b54566956988d3650326a4811f4c8a68095950de05ba79c9a3d58723a8aafeca340fe05aa5b1f3beddf046fb252899456ee56a05bb557fbb512704939eb0f8f4f874bf58abf5f99dcbb8ec57f5edff3d02e444ff051e307b53e35ad83478e25084eb731eb39b85ac92fe4b821c8f304da2e1016b7692ca6515abf45013243aa0726b800adc290f423b6c9d80e8a7686754493bcae89a1bd7d6de705edbe068eeec9a476b9664583b9b8d6f421d54c207f45273eeff610d48a0bb01677759d0b06b5e8a14767dd5378d7fbc4a866cb99f96cafd583d1197b1bad4701562cdd280f317422389aa318cf1a5d1737d1d2571b4d20023bfb117c816e4c339d60c2f6ef69959c0f58106cc3b1132b4d443e645f730047cdbe8c757991dd76db0317b15955f3ce46c040ed7724e69d60c6af1a4f62a5dd1b909421288a9e8a5e5d8ec4e824ed9671faab041ae718443ca420ea2ddd3e28458cc6d48fc4e62f24a66435bc52842cfc76d11bd92a872f4859c9c0e7d3ee907d7ae3ebb94d4eaf2d3cbde604141acbcf8aa83000f157606306c41720b97eaf7b4ed8eb724d3c188e8a812a4b00411c36304b9be3a3c8860d012109d7c5f9c32e5491278b33ca84e32bcaaaafbd56bbbd287357bff0ad335d6a5c2b7072626a5f474985bac188285837ededaaa2bf76c5ce59cd5a29ba7b5a36f9cca402ba5b0ccd429c733f953b0d35c092302275c3e15bf03d5294024349a019983752459f5156513868d40bb75136b50ff1bbc20aa77c3df575c8da98c844dfe102b4490a295aeb1f8eb7952e2dad763e0a044be9a9f3cdc9515a60416041aeea408e58219b50eb6c44ce080fa4e0667c3e743684b0d2c31716ea0d0813ed4ce4db41607478a4037b49219cb1a9f8366d01e5e998fb9ca6c1cabdbcf101a6c104d46ab4668127866d42714a914b628613ae6caf095ecad8a5a6f112ab676e8e61489f40317e1947f0da29415bcd8b3629488ef7d4fce6af6a476ffbec4de63094d8bfd40e14e9cec4b26f45be75a10453423883102ce04b7d3c749996a2cebe63224e5f6e00778bc72b313f983950c5d886488973b15250fc554a33c70059663fd7575165ba02307a4902ba89c8e6bb204e20038cf73eb9da1054a8a41e2cc0ae7ca18155ebb0f759a2ccca30c5957cdf2286d681a4dc73aa39ebdeccf00ff4917b2a1687d4bb704f37ad8e0db223388e43d62a5789abcdbf1d67f94543e354b5ff4ecbf4434d484ca8e460e80b3baea63adf0fa734c9818aa03fcf0d88490285cfa7b305398fbddf5c69380b4e907bb939c20136512c3b91446ab587456c5ca3e0dc94f486159f587a8d203741dba43ac3dcbc3cb85f35211b614889a5974c2e0d372f755fe0d268a7860f19290bdc34b8e38ba398cd19cfc609cfb8b539c8250cc0d7fe5f05dbbdca688d282133f90963636a95ae4c137f6af3c74c995a6a9d9e801bb7c85279dc301fdf26e2db0405fd3e130e8e3d59e07af64617e415022ba2b09a52d440b4649ba87cf0ec0c0a7b513c285724457e41835d381477bf5210e1ecd1e35ee778e6e9cf16ebf2c0a224b3f0fe07d3d4f8d2e349f0d7adcbbb7fd089757bbdead42693291f5a8c08f34671b15963707132ce05838d292ceb1cb15a83e929021fe91042355dfcaafe870c9a1b915d08f7591f29bcaa984cfd7acc4791f39c874c98706f5c7a6a67abe89b18176155d7592ca642879534249eb08f7c244134d0bbca8e52b812e271ec045e03e6d01b0206b29d16547710cffa10a09f6d5a1ccb1f2a6c41109b1b2b3b5d6691bbca26c927ab82aedd13f486afa54198a3a4d8aee63ced98bc5f94c7cf83a31c9665189e77bcc13c2c0c2d0d136fecc5d13c37e85cf20c4fb0a4bbb8e868546425c0c7431fcdf0e9253f2fcf9a6f3cb9b09a28cea00ca982c2e571653d97e8696b509335afd3ce311d96273558f0798c0556a80a045f31e5adc3b9be58fbf9afe4167cba67b4f48b3bdd3d874cb76fe7f307352467cae59acfc442be99ca4f3831158e0585ca12fc11025dfc9f900236a0936618794690bcb7ca5ccb857bbea261e97d3844fba5e868a1ce4dbc61e7d9d41ba4932f95d59aa36f906fc334fb5e8bdb75fe62366abe21b59b3b8471c405c6ec099abfd60ef65e6fc5a14bb34a629093bb48f6b07ec6f697e08777ef3e4326b0504c6870260fcf1455c03ada691e44e05d27e417585ee146052c13fd80ea3c1bb4f960d064474b452528d95818d05174d4f5021cc8161f6959f5711d75253c241fcd2ecd8869765d6053b893c2a024463874d22f77ad4a0f8ecbdfcb3668752318f5bf7c13ee003488f2496efdb7af13e4e563f4ca282bb5b7cec084aeaa3a36eabd6edc409cf83cb93991c8089c004a2b7aa2b94e32d2d43bf210baac2c1a1464657e6cb3e212fcf51e9ec443f324a8774b015c39daad9f682876f55c4817eda7681c7b9edf07b32dc74102d39923478c15d5fd9b6917cc9c7b8c749f8f37b4dd95d77288a01c1e6099b2910bef9723f500f3df0fcba0f6acb32c07fadc562d2af7d1772fdb4150ff8c70030755b47c87b9791ec2ada50348e480ba569d5f89c118f2627a1061d3b7f12061f167ca472dbbbc0de6c8ce5c052f3989e7862a6e3fe42f6e5de8b13a849542e7af20ef62fd3778a17c657d6ad40008fa2c7644fcf52eb1cfb823fceec75e5f72e7cccd9db190a270b83fea3d41ac622624cee3d70c31e760348adcd76ea03714f8c47af179fa8b6fc575dc27fc5398ce81b9363908db874c3c012844496989f914177cbd5a04494cadc1783a325e1f18504959dcb27b9a4331d7ae674dc1247095305e84981f2d00f6daac354a7a8ea0ead6a0686bf3e0bb886b2d6a8b2635cbbcc094c5ba536fea7e99a26a0af029b4c7ac730d3c6e47848bc7860db2223edaaa6cc5d3657ff3875f887d0faebbfe57eceb71590fb75f4eb9660d35730c298c08d268d578235f5d209bd60d0f4c62f477b853c3e1ed91baf44528940d50d283fc7829d5a736a4ae35547091b20c84812ad5d14faf65b79eb13b89c33b0eea621871569224d9361a1ea97a021adb4bd06d13e88287226106c803851f562af48b067643b8cc0e5eaf8653f436dcefcdac3a34f88ace98b803c93bc33c8bb4e76b6ea5ff6eaddafb0ef98600a7101934b061993a95a319805d2abe05f12c8bbd1ccfff6d4eb21670647b5d8d66261e55c32adf77394206eb7d9dff07657edc32874cfb10dbe30ead3eee5b4f596c9bd0e1e7c6e4f92b38c013cc81969788a9c47db7fc54ea483dca816f3956fe3639279b12c24a7d4b71fb8256574baad6efbec1f11022fd7ed5a4faa7d132a9b10f80b90b4087466b4fa5d7fd3caa3696b1ed6ed40edc48d4d5bc9176a53bd5572958cd6052a554dd78adc47976b5701e321f8be6df52690918748a3c564ec2b7cbc930ff67fb27ab173ba02a707d31f33b4d4d48276b064e332057df966f9a3e9fa4dc0120e483acfb7cac88378e78cc2fc77cdd2997f5c2373a247936a6a73c84bf13d1a3a2e48d6faab332f664d8056f9c1c8d3f26fc26459a489d04eb479d9ea1e1dbb3c669709986b4ef4834fc066d234e9795c0e133cd66b0e36a1703b9179ab430733429a77a5ad93006af98b2e694f4f964744f0d74757de544bbc8f5a7c214b711c91765e280fc591da0a4bf5ab9cccb6146e28c6872e26d029c86155590a9a891889ef16f913d55d53bbdcff6cb3d8990164199cb3a14619fa6b536c076b51b571c18b71c6a48690cb2ee079604032a26360ac4c0f00d5ce686542c0c9a0c675838621058673df0498bb1dee157c213683d734b0a745c3bf08d7c7e563fb4f5abfb4cf3dffe24acf83a6ceb1113a1543b068bba4199a20108c9408550b0e242be69475b89c5eb600309e1b616f6c7953845c7cdc379b96cacf87fb34140092075c1be1e975c524c121441629219b8681f7c9267cf490d08d37f11dbc4195d7390209f89ebd12fecb6a692c8a073096a3fe1d204a279545f40bdbfb1f7a6f68e33fa17588dc1a02beb35d844b2b4820414507b3dd646fc59e673d6b3152dd49c42aa98e977d610d174680b5257dceda4b96d7b9d9e9e7f98a52e9849a0d8b3046e9"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={0x0, 0x0, "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", "7374bf600a2dbb0a10a4446998c60bc654676f080ecee8672b9b990319e9f34b4c45be9b1cbb8fbe1f4541599e2a8deeedad6067575d671432b4ba4028542704ab850b2cd326bd5a16431e3e06cbefba068d34f999e863befaed31fe2f898bdfe4043148f4d1cc27af274cc202dd9cd92b1891ba85c4048baa5cf0aa7a3d5dbef19adb89a7123a5c5cf1f42650df4c63aa25c0c5f606a072b8c1910206999409a39439cacd824f129adb4177e14f533050e77cfd6b9e760c12899b047feb4c8e5b746e5570db48fc8fafeccf98bad6d99a585091b403666ded97ce43cdf6dd1791052bc149861ea2585dfb28b538cc9fe6ffc5e07182615951fd668085ed124af574a07e3495491f19b1aa2a3b69028ccacd78524d988b224ab17ed905da0b840b4a9939e2af6efdf4221126075a8964d904883db014031e0924681a4ef3795071b256b75002a7df298c87c565b1d8a331e7d0c1000e1d707100917dfe107f87ebea9dca1b708b01cacf1c9f348c0d0fd64aa64193637c7169264d06f613c41be60f39b0cc9d813ae5fca2222832f86f2ae87e883efd48df36d16e6c1ca5c378f6ff0fbace91eb3099d744b16171fcc1ab7d5456392f0878ecf27e8caad7386663de490c3044eed7e7cb83e675716eda0cc09f219aadddd814c88048a7c6cefe69a79f2f7a234cfffbf19ac7a9f6ef59faf2776ac3d636904ec1bda09b1c9d8caeafa918983215d866f5cb6f1088e7e99a43425913d258a3dc8550fcbca3e0bec47503e24d709dd1fd1bb3cd92837d10387a0eebb98aab27950a2a66dc0b9bad3e4ef6393036d64949931ffe6479073790b3b885ac8563d4018e9227d644864c17f048daefbb192d15b56a2a440ad6d4ef5af2ac9904d8b69c64d2368928d7595594e6c3fd23229cb6aa80ec308301b1c94777900d34b1b3eea03dca765036a3f5351551affb585f22541074380b60ca062bf8a8a2324fe61ecad5733aec51e0c5ddc648280556b8a038b5816947b1637ef598cfd134cf9833d875fd23d22f5f74e74a4634d50a3ac908eed128f4297924296d95361b9504c08df4a0603eff93ee34bd45ed12e8d06b8f399fefef4ced732aad15b70f3e276101fa4b5a5c17435d0999b3345ccfe853c955e8b7927c7a171506b8e5b4de8a68cb5e80c3709a0e15643b5772d82d04859133e09fa8ab81ac042e67bc918f2847af14a4eb77c3fcac3132ec1af5a57d85acb9ce91d9d15019904396737ade63df938e6f054f8ee21e8994d45b0801ccd8ae8bda90128cb05eddd297d800412bc01fc5cfdfa9d473641fffc793b513da3f7565a27c4ff3678ac6f71560cc6cc95fb4d20f85b7934cb4a4f614182d331ab53b6a09ff47fc272b6c1f5aaca477bfdfed3fac942d639773b7a5656c526eb595d6fa9d301c425947f37088447cb4400c37750b76eb6c1f7933e43b27224c2fdc053e55125d00ab11428af674f58bd5c3ea1ce4762856afccbd37dd59a5e726f2e5e770bcc8372304fc2a33611234e3b0d411fcae8691e621b64581dc32b3d97c02920877b2c995018dcfff2da8687bc64332cffc3d355931561dc799d169f61d121f242dd3605e3fef8a46bf73998202d6a87671719896c61d729006104bdb7e926020f28260c75c2c754e5f073097d7031567e62cbfcbff541702cdaf498bbfe01e2948e6e164271ca4ab4df68a1569d29d3ce7029c0b58d2a1e6d179fa817ec9df17195c8b83a7a7508f18f0e3d07e8871f331d7a151bc11301c7dce402e6a5fda6f3096df2ddfeb48b3991e055c55d2a071ed66bf378e5c451f849cdbd7951cacad16d6b5734b71db866e77086bfab1797942633ec688d78bb2fccaae2b0e796b852b278bd4a4648d0811293e1bfe68e30b42eb27ac0a4e435e086b4cfeeb9fa539f0d800b6108e4c7b9d7237746770a3f3477646b7c9bfd2bc111679d40bffe221be492ba984df6cd4d7d8f9cbf7185e79804416be68d8a2bfa28e5bec4b57bf5f08eeecafabccd55744e49bb4a7dd1324908d91762b9884e7268d0bb6290be3b51091ae6ccf2ebbd4945dd7913bd38509a00ce38d955909bfa1f3740fc123a12e15b853b59b9b691460afdcda150d39e566a83eaa0c3b7bac9819bdbc7e0a620206be87ff2f8ea8091dbffa014d2f2eb919040a434cdeb3db68adf845d2ba751dc0e1ce4afd8672a5ecf0653b8c672c3265aa236a174185f4b4a291bda664bb79c13f8b6932a831385773898d194d2500b38fbfff8c4acafa5a80dfd3f1f906132885446f9f7ad787dbbdab593661ab1c255df879eaf4ca739deaa11379a5c6b650472257fa54b646b29ceb3dbe27e3584914f9f766bbbcc67abeffebb0df881a42b8671bba930b04d1d7710cc15d546ee69ad40e66f04eb28af8bd17b739e68ad75a239303fb97b18f8f08d2f95bdae0f245ebdfc3ecf555a6fd53f5a35af8b2dd016b227d209fc8323a7576e66a9913a0ad4f19d30d2b6f25ac8b5b6c762e2c68c76f9bd7818adbb3c9b194c09471482ec6898754469076b8674ab9e26b5977a0fa693160f18a01d2f2c362186ff75c205cec261d9e6c431ee672e4056b7e458ef02dca1167d09de5977210461758ed506290477a63c5af0698a1f4edf3bc569692bc9febd5fd641860dd34a6926af47ae7bdd3cce59a5b24b6944075e30ec2f2dbd043ebc57a39eaa5559bc4f21f08198e0daa2e8506b21160c8f9b629ad0e80d5e99e5cf4c4ceefb8d9fe5493ebcb066a647269fef2146f1ed55dac66974446e650e49db26ceb24c16c24885a2d2d011d11ec52d5b7a9c8096314d1dc7c992a1dee70be2fc0cc2d9fc94b0d02d479f6f4bfd3fa20df42568e27c0cea6caa1028d5dfbe6a9657053c06132387f9abfbaf93d9b335b69b168bf7fdaa0a44981dadc3358b50f1b24d390f8858d6775fa838388ff8a69b02bf446028485ba9e0c15731288c186b3cdf2fbc088f13f50e5eecc9b3a058d1369b7a254f11aa81a5fabd862bfd5226ce26e0199ef241badd55ba0d6087e9eb1661111a6afef1caf2bd54832bb5a3e8b864c8af220a8a115746c1646e78471ba2edb7c63fcff7f6be047a5f740525fbe5e259beee146dc2a609d3fd576e826ee1e4fce8ccbf75aa713514bda04ed4086cdd11a770cbe5782bca23f5f3ad8682609d5c5d4e5ca4e117d7423740b41081c6945b446223bb435c6ae2314552b7bf53a8b2c8a7a2a961d17315e0f7a660624b119c89ae81d2214b03cd79bc3eb355bf06811d7186b1f0a7219dd8d4096cb0df940719279357b853bc7c5bcf645aa65c12227859ce0851953fcefa6051f2a31e3666abde9ef1ece3eba658de696edf5d87a7d562dfe1f6bb9ac5e6773bc9069c732683715868cf14825345fb60665982549b9bb7c5b7d934ed0c4d136fa089f8459d473bf1ee678cf88c26f4f5ac681aa6dbe6ef78c26e7a3649ae0574f550f9fc64e8caa14586cbc43d8ec72a3170fc4f6c78fdbd40332c1f35adfc04be68a067f2c03325d624e21fa0e1fa6ea879caa84665bedefcd19759872824a0053a110af2b6099d8ea572b0c81cea39147bb2dca0eaefd4be8c3b59b98c27049f04ae5f3652ade0e1561238296d17979581b93d0ee26464fb5675b968cbc397558207fb1d5365f73994c0c8f2bcae0164e74d602a4856355b214af58b6357b2505779260ec73929eb4fe1047bbc2a125ff6c88718d2b8b8fb9c0d1cb1760748ffc5e4998dbaf8fad99df26b2eaf99bce2541d287b243d7b9cf0ecb25588d14c6228a6cb5413f48e3d07817d258c45ca0ab3494ca5b59f87abdf38e439b4a31d60d9474a52e465f36dd0cd56f00d4e5e563bfc6421b40a7522eb71894a698c19510fa7dc690b6b3f782d88e61ca635d5efd4c9c1725dbf24e0c8e246a2dc979e4750de8347687038f0441858bdf5a06bcba827d8d1327601943ca9fd004c121034fa6e1c8b9eff5da764961f5700eab97380e99b37f302239b528b36f5c9bbebaff25edae48fbe59dd272099af5c695a19b62f64485ba01ae8416c02f04360be933b8ba8a49c6c1188a78c3d36d0c61f61b4002bfeb669e29bbcb306f573528a749b085500c7649aea469fca867da4ca9eaecc75a70f41baeb80bf803402a9066dc1e8243192b78533e0ad590e14fd2bf2ce3ac943ade1fcefd247406785ee387d18e9afe8845481748fbadf4d081e01ecce50ef1fc5b457fa296b833d77390764e2af12f7930c6334476dc4cf45d9f272e364336810c11318bd0a95233005d66fe81a5708ae5fad8c7db17e6d97d2340651f7aa7a36e132a77a7a6206b36a95ccb5a48cb19bd3bb886ff0e77bc76653912149ca85895c4f80c373cbbd4305a91213e8ec5b7b18d8587d723c18f02854556aaaa540935eab2b7470a7c1c40c7e843ac1221a51e92eb05af2342fea7c853a46182c8384612aadb40145b95de565140003468eaca74b38bdf4dc640d0af80c3dd81747652c5fe15ffff8965a150a4ca6a9d9c91d067b4fac49b23cd2041dfdab22126c97d812b67ed638cc65d75d836bf439807cd7cd3cd0e6b30c81983e3f45a00282a14d401d81ac7c5544510dc7d157eeaa18b09df5ec949a22d7342b5b720b2a47251e995410f9b35d90824c1b19beb8575c9efe2aaa2a2011790a1099a924c01ca835fb7cc561eb2310a5331d4d9c4a9ee03a5f1364c17a7f4511c0c1b929c630cc110696f9e94b4107d0b75338fda2c5e0b8d46d19b98071e328f57debd56b4a0a9009913ac41518a08e6fa533edf20db0dc5eff43cd3ead623fc826ac03925490537d6b6a47f27031faa17f9852a3cb72d2088f33d35846a40758e60dab4b3980d032adc3e4faa61ff8aaea6b08bc9705cf097701e9af550fa43ec06c0ae2257927eebcbbbf4a05ad8097597943d6aed8a950ba32bc0d19827539019397e2fffa5f7379ffd7ec266f0c1cd947aab0c9e73c2796bd4c32fa0a0effbc84570efdebd3ac1eb57cc89cdbed91ed43a64cccfeba427a017a07d84acc850a45e2f26639598ed061ea81b60fb1873983591d446129ba8b27a4aef3311292017e3cbc00533824888ef80ef1a85c86a370dc11694d2f455e04ceb8811afa53aac77c65b38703d18167aedcc077c988dd9832ee1999a82c8752b921bceae484c19cee6828eef373c979b5c3f208080c8dcb38c53e384bebed6c41c3b9d6958bd2b952d82d17b262dbf30f90ab5c5d197ccee9f6b6525928b0100ffdeace644e159500495ff5a0ea7df7b9ab63617e3879818e25341e97d839beefdf248222cadd61a5d76b1ff34704bb78656afef7994904da269f973598217edc3be93157185aa15ef225f6471d7786a5e28d0f145b96566e101bf46723486867b9aa90f9eb4d1f5612d4950160c1504a367daf984"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x7, [{}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {0x0, r4}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {r2}], 0x4, "9755154351ac9a"}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f000005b880)={{0x0, 0x3, 0x7, 0x7, 0x8, 0x401, 0x4, 0x7fff, 0x7fff, 0x0, 0xa52, 0x9, 0x10000, 0x2, 0x6}, 0x38, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000740)=ANY=[@ANYRES64=r7, @ANYBLOB="c0ff1aabf8df75ec92d819597ab6ffffffffffff090000000000000009000000000000000000361500000000010000000000000500000000000000040000007747000004000000e0ffffff0001000000000000050000000000000009000000000000000700000000000f002000000000000000000000000000000000000000000000000000000000000000000000000000000026ce72f95122e1e5718ab9767043cec498378c5f3a110bac716943ed974f09bb5c81356b79cad7187434ed0f03edd2bf35a3425198f760b623001e33a67fc36d60f172be312829f18654b38c76a337563e83668e2891c106e2c23fe48c3795a1c96a2843e074a38b61bcafe683f164010b4dc97f1b5e1221e677d1982255fa5032d32ff104a259bbd9d08c92382752ceb9662f9708b6f3ce3b939e51340470e2580d4931d7cf665dd5473b364457526e0f30ec19273ba1b7fa0515409dc3e30b8d0726ec8283022decf5eeafc4e224b4a46675053e501f171ce1c03ea5386aacfb0983dfe94cb97554988426309a679ef63320944c965932ae2f06316275cce4b42b894d9106e3fa17ac0792e81fb69a1f77ebe6d4962b12b0aa9989f4163214ea91e5da"]) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x7, [{}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {0x0, r11}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}, {r9}], 0x4, "9755154351ac9a"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000740)=ANY=[@ANYRES64=r13, @ANYBLOB="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"]) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f000005b940)={{0x0, 0x100, 0x2, 0x5, 0x9, 0x5, 0xccc5, 0x1, 0x3ff, 0x3f, 0x1, 0x3ff, 0x5, 0x4, 0xfffffffffffffffe}, 0x50, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000009640)={0x0, ""/256, 0x0, 0x0}) [ 598.486429] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 598.490051] FAULT_INJECTION: forcing a failure. [ 598.490051] name failslab, interval 1, probability 0, space 0, times 0 [ 598.497077] CPU: 0 PID: 5337 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 598.497967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 598.499035] Call Trace: [ 598.499406] dump_stack+0x107/0x167 [ 598.499884] should_fail.cold+0x5/0xa [ 598.500391] ? create_object.isra.0+0x3a/0xa20 [ 598.500995] should_failslab+0x5/0x20 [ 598.501493] kmem_cache_alloc+0x5b/0x310 [ 598.502033] create_object.isra.0+0x3a/0xa20 [ 598.502607] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 598.503278] kmem_cache_alloc_trace+0x151/0x320 [ 598.509049] Process accounting resumed [ 598.511884] io_uring_alloc_task_context+0x4a3/0x6a0 [ 598.511901] ? io_import_iovec+0x1120/0x1120 [ 598.511916] ? lock_downgrade+0x6d0/0x6d0 [ 598.511930] ? do_raw_spin_lock+0x121/0x260 [ 598.514656] ? rwlock_bug.part.0+0x90/0x90 [ 598.515219] __io_uring_add_tctx_node+0x2c6/0x520 [ 598.515876] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 598.516553] ? alloc_fd+0x2e7/0x670 [ 598.517040] io_uring_setup+0x1fbb/0x2980 [ 598.517585] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 598.518243] ? wait_for_completion_io+0x270/0x270 [ 598.518886] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 598.523575] ? syscall_enter_from_user_mode+0x1d/0x50 [ 598.524261] do_syscall_64+0x33/0x40 [ 598.524749] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 598.525420] RIP: 0033:0x7f932fac1b19 [ 598.525913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 598.528316] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 598.529322] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 598.530266] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 598.531205] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 598.532181] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 598.533090] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 598.537966] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000000aa40)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000002e00)={0x7, [{}, {}, {0x0, r17}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r18}, {}, {}, {}, {}, {}, {}, {}, {}, {r19}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r19}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r17}, {0x0, r18}, {}, {}, {}, {}, {0x0, r18}, {}, {}, {}, {0x0, r18}, {}, {}, {}, {}, {}, {}, {}, {0x0, r18}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r17}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {0x0, r18}, {}, {}, {r19}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r17}, {}, {}, {}, {}, {}, {0x0, r17}, {}, {}, {}, {}, {}, {}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r18}, {}, {}, {}, {}, {0x0, r17}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r19}, {r16}], 0x4, "9755154351ac9a"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005ba00)={0x400, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r0, r3}, {r6}, {r7, r10}, {r13}, {}, {r14}, {}, {0x0, r17}], 0x40, "6f4b03576d459c"}) creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') 08:57:23 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 598.540297] FAULT_INJECTION: forcing a failure. [ 598.540297] name failslab, interval 1, probability 0, space 0, times 0 [ 598.541798] CPU: 0 PID: 5326 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 598.542730] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 598.543866] Call Trace: [ 598.544215] dump_stack+0x107/0x167 [ 598.544712] should_fail.cold+0x5/0xa [ 598.545237] ? create_object.isra.0+0x3a/0xa20 [ 598.545860] should_failslab+0x5/0x20 [ 598.546387] kmem_cache_alloc+0x5b/0x310 [ 598.546946] create_object.isra.0+0x3a/0xa20 [ 598.551583] kmemleak_alloc_percpu+0xa0/0x100 [ 598.552182] pcpu_alloc+0x4e2/0x1240 [ 598.552726] alloc_vfsmnt+0xfd/0x680 [ 598.553221] clone_mnt+0x6c/0xce0 [ 598.553716] copy_tree+0x3b0/0xa60 [ 598.554189] copy_mnt_ns+0x144/0xa00 [ 598.554714] ? kmem_cache_alloc+0x2a6/0x310 [ 598.555285] create_new_namespaces+0xd6/0xb20 [ 598.559952] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 598.560664] ksys_unshare+0x449/0x8a0 [ 598.561224] ? unshare_fd+0x1c0/0x1c0 [ 598.561772] ? ksys_write+0x1a9/0x260 [ 598.562295] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 598.562994] __x64_sys_unshare+0x2d/0x40 [ 598.567544] do_syscall_64+0x33/0x40 [ 598.568044] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 598.568722] RIP: 0033:0x7fc7d3fdfb19 [ 598.569230] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 598.571655] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 598.572663] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 598.573604] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 08:57:23 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 598.574557] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 598.575511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 598.576438] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 598.580306] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 598.582438] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 598.627661] Process accounting resumed 08:57:23 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 33) [ 598.689732] Process accounting resumed [ 598.737236] FAULT_INJECTION: forcing a failure. [ 598.737236] name failslab, interval 1, probability 0, space 0, times 0 [ 598.738677] CPU: 0 PID: 5348 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 598.739600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 598.740622] Call Trace: [ 598.740955] dump_stack+0x107/0x167 [ 598.741401] should_fail.cold+0x5/0xa [ 598.741904] ? io_wq_create+0xeb/0xc00 [ 598.742420] should_failslab+0x5/0x20 [ 598.742923] __kmalloc+0x72/0x390 [ 598.743353] io_wq_create+0xeb/0xc00 [ 598.743870] io_uring_alloc_task_context+0x1f1/0x6a0 [ 598.744532] ? io_import_iovec+0x1120/0x1120 [ 598.745122] ? io_apoll_task_func+0x2d0/0x2d0 [ 598.745708] ? __io_req_find_next+0x300/0x300 [ 598.746292] ? do_raw_spin_lock+0x121/0x260 [ 598.746824] ? rwlock_bug.part.0+0x90/0x90 [ 598.747402] __io_uring_add_tctx_node+0x2c6/0x520 [ 598.748010] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 598.748726] ? alloc_fd+0x2e7/0x670 [ 598.749216] io_uring_setup+0x1fbb/0x2980 [ 598.749764] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 598.750417] ? wait_for_completion_io+0x270/0x270 [ 598.751074] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 598.751775] ? syscall_enter_from_user_mode+0x1d/0x50 [ 598.752408] do_syscall_64+0x33/0x40 [ 598.752934] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 598.753606] RIP: 0033:0x7f932fac1b19 [ 598.754078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 598.756491] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 598.757467] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 598.758405] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 598.759328] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 598.760265] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 598.761207] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:57:23 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 44) [ 598.855993] FAULT_INJECTION: forcing a failure. [ 598.855993] name failslab, interval 1, probability 0, space 0, times 0 [ 598.857477] CPU: 0 PID: 5350 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 598.858367] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 598.859506] Call Trace: [ 598.859862] dump_stack+0x107/0x167 [ 598.860342] should_fail.cold+0x5/0xa [ 598.860847] ? create_object.isra.0+0x3a/0xa20 [ 598.861450] should_failslab+0x5/0x20 [ 598.861952] kmem_cache_alloc+0x5b/0x310 [ 598.862486] ? mark_held_locks+0x9e/0xe0 [ 598.863024] create_object.isra.0+0x3a/0xa20 [ 598.863636] kmemleak_alloc_percpu+0xa0/0x100 [ 598.864227] pcpu_alloc+0x4e2/0x1240 [ 598.864734] alloc_vfsmnt+0xfd/0x680 [ 598.865228] clone_mnt+0x6c/0xce0 [ 598.865697] copy_tree+0x3b0/0xa60 [ 598.866153] copy_mnt_ns+0x144/0xa00 [ 598.866610] ? kmem_cache_alloc+0x2a6/0x310 [ 598.867142] create_new_namespaces+0xd6/0xb20 [ 598.867723] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 598.868324] ksys_unshare+0x449/0x8a0 [ 598.868789] ? unshare_fd+0x1c0/0x1c0 [ 598.869256] ? ksys_write+0x1a9/0x260 [ 598.869729] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 598.870369] __x64_sys_unshare+0x2d/0x40 [ 598.870863] do_syscall_64+0x33/0x40 [ 598.871317] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 598.871968] RIP: 0033:0x7fc7d3fdfb19 [ 598.872427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 598.874652] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 598.875601] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 598.876462] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 598.877327] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 598.878191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 598.879055] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:57:23 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 34) [ 598.941330] FAULT_INJECTION: forcing a failure. [ 598.941330] name failslab, interval 1, probability 0, space 0, times 0 [ 598.942823] CPU: 1 PID: 5352 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 598.943735] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 598.944834] Call Trace: [ 598.945190] dump_stack+0x107/0x167 [ 598.945682] should_fail.cold+0x5/0xa [ 598.946195] ? create_object.isra.0+0x3a/0xa20 [ 598.946801] should_failslab+0x5/0x20 [ 598.947307] kmem_cache_alloc+0x5b/0x310 [ 598.947880] create_object.isra.0+0x3a/0xa20 [ 598.948469] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 598.983486] __kmalloc+0x16e/0x390 [ 598.983960] io_wq_create+0xeb/0xc00 [ 598.984455] io_uring_alloc_task_context+0x1f1/0x6a0 [ 598.985116] ? io_import_iovec+0x1120/0x1120 [ 598.991673] ? io_apoll_task_func+0x2d0/0x2d0 [ 598.992255] ? __io_req_find_next+0x300/0x300 [ 598.992833] ? do_raw_spin_lock+0x121/0x260 [ 598.993382] ? rwlock_bug.part.0+0x90/0x90 [ 598.993943] __io_uring_add_tctx_node+0x2c6/0x520 [ 598.994580] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 598.995273] ? alloc_fd+0x2e7/0x670 [ 599.003764] io_uring_setup+0x1fbb/0x2980 [ 599.004274] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 599.004890] ? wait_for_completion_io+0x270/0x270 [ 599.005489] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 599.006124] ? syscall_enter_from_user_mode+0x1d/0x50 [ 599.006751] do_syscall_64+0x33/0x40 [ 599.007203] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 599.007867] RIP: 0033:0x7f932fac1b19 [ 599.008326] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 599.010548] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 599.011510] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 599.019762] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 599.020698] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 599.021650] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 599.022578] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:57:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 35) [ 599.087395] FAULT_INJECTION: forcing a failure. [ 599.087395] name failslab, interval 1, probability 0, space 0, times 0 [ 599.088941] CPU: 0 PID: 5355 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 599.089789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 599.090830] Call Trace: [ 599.091171] dump_stack+0x107/0x167 [ 599.091655] should_fail.cold+0x5/0xa [ 599.092142] ? create_object.isra.0+0x3a/0xa20 [ 599.092720] should_failslab+0x5/0x20 [ 599.093211] kmem_cache_alloc+0x5b/0x310 [ 599.093724] create_object.isra.0+0x3a/0xa20 [ 599.094277] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 599.094916] __kmalloc+0x16e/0x390 [ 599.095373] io_wq_create+0xeb/0xc00 [ 599.099879] io_uring_alloc_task_context+0x1f1/0x6a0 [ 599.100519] ? io_import_iovec+0x1120/0x1120 [ 599.101072] ? io_apoll_task_func+0x2d0/0x2d0 [ 599.101637] ? __io_req_find_next+0x300/0x300 [ 599.102204] ? do_raw_spin_lock+0x121/0x260 [ 599.102750] ? rwlock_bug.part.0+0x90/0x90 [ 599.103283] __io_uring_add_tctx_node+0x2c6/0x520 [ 599.103918] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 599.104578] ? alloc_fd+0x2e7/0x670 [ 599.105046] io_uring_setup+0x1fbb/0x2980 [ 599.105576] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 599.106218] ? wait_for_completion_io+0x270/0x270 [ 599.106841] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 599.107513] ? syscall_enter_from_user_mode+0x1d/0x50 [ 599.108169] do_syscall_64+0x33/0x40 [ 599.108635] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 599.109282] RIP: 0033:0x7f932fac1b19 [ 599.109757] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 599.112085] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 599.113045] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 599.113940] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 599.114834] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 599.115748] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 599.116642] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 599.158843] Process accounting resumed 08:57:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 36) 08:57:24 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 45) [ 599.210107] FAULT_INJECTION: forcing a failure. [ 599.210107] name failslab, interval 1, probability 0, space 0, times 0 [ 599.211756] CPU: 1 PID: 5357 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 599.212611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 599.213655] Call Trace: [ 599.213992] dump_stack+0x107/0x167 [ 599.214453] should_fail.cold+0x5/0xa [ 599.214936] ? create_object.isra.0+0x3a/0xa20 [ 599.215661] should_failslab+0x5/0x20 [ 599.216728] kmem_cache_alloc+0x5b/0x310 [ 599.217865] ? io_wq_create+0x114/0xc00 [ 599.218986] create_object.isra.0+0x3a/0xa20 [ 599.220549] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 599.222047] kmem_cache_alloc_node_trace+0x16d/0x340 [ 599.223563] io_wq_create+0x6ef/0xc00 [ 599.224621] io_uring_alloc_task_context+0x1f1/0x6a0 [ 599.225917] ? io_import_iovec+0x1120/0x1120 [ 599.227061] ? io_apoll_task_func+0x2d0/0x2d0 [ 599.227814] ? __io_req_find_next+0x300/0x300 [ 599.228388] ? do_raw_spin_lock+0x121/0x260 [ 599.228959] ? rwlock_bug.part.0+0x90/0x90 [ 599.229530] __io_uring_add_tctx_node+0x2c6/0x520 [ 599.230155] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 599.230845] ? alloc_fd+0x2e7/0x670 [ 599.231334] io_uring_setup+0x1fbb/0x2980 [ 599.231925] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 599.232467] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 599.233144] ? tick_program_event+0xa8/0x140 [ 599.233737] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 599.234416] ? syscall_enter_from_user_mode+0x1d/0x50 [ 599.235089] do_syscall_64+0x33/0x40 [ 599.235609] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 599.236249] RIP: 0033:0x7f932fac1b19 [ 599.236741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 599.239084] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 599.240105] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 599.241016] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 599.241953] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 599.242836] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 599.243822] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 599.343332] FAULT_INJECTION: forcing a failure. [ 599.343332] name failslab, interval 1, probability 0, space 0, times 0 [ 599.344860] CPU: 0 PID: 5359 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 599.345752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 599.346825] Call Trace: [ 599.347176] dump_stack+0x107/0x167 [ 599.347678] should_fail.cold+0x5/0xa [ 599.348179] ? create_object.isra.0+0x3a/0xa20 [ 599.348784] should_failslab+0x5/0x20 [ 599.349279] kmem_cache_alloc+0x5b/0x310 [ 599.349796] ? mark_held_locks+0x9e/0xe0 [ 599.350296] create_object.isra.0+0x3a/0xa20 [ 599.350862] kmemleak_alloc_percpu+0xa0/0x100 [ 599.351456] pcpu_alloc+0x4e2/0x1240 [ 599.351969] alloc_vfsmnt+0xfd/0x680 [ 599.352457] clone_mnt+0x6c/0xce0 [ 599.352921] copy_tree+0x3b0/0xa60 [ 599.353398] copy_mnt_ns+0x144/0xa00 [ 599.353886] ? kmem_cache_alloc+0x2a6/0x310 [ 599.354456] create_new_namespaces+0xd6/0xb20 [ 599.355057] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 599.355718] ksys_unshare+0x449/0x8a0 [ 599.356219] ? unshare_fd+0x1c0/0x1c0 [ 599.356714] ? ksys_write+0x1a9/0x260 [ 599.357231] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 599.357910] __x64_sys_unshare+0x2d/0x40 [ 599.358413] do_syscall_64+0x33/0x40 [ 599.358872] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 599.359516] RIP: 0033:0x7fc7d3fdfb19 [ 599.359975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 599.362194] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 599.363118] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 599.364000] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 599.364865] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 599.365728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 599.366591] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:57:24 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 37) [ 599.454014] FAULT_INJECTION: forcing a failure. [ 599.454014] name failslab, interval 1, probability 0, space 0, times 0 [ 599.455454] CPU: 1 PID: 5361 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 599.456367] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 599.457436] Call Trace: [ 599.457789] dump_stack+0x107/0x167 [ 599.458267] should_fail.cold+0x5/0xa [ 599.458777] ? __io_uring_add_tctx_node+0x15c/0x520 [ 599.459450] should_failslab+0x5/0x20 [ 599.459990] kmem_cache_alloc_trace+0x55/0x320 [ 599.460587] __io_uring_add_tctx_node+0x15c/0x520 [ 599.461215] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 599.461905] ? alloc_fd+0x2e7/0x670 [ 599.462395] io_uring_setup+0x1fbb/0x2980 [ 599.462953] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 599.463680] ? wait_for_completion_io+0x270/0x270 [ 599.464332] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 599.465010] ? syscall_enter_from_user_mode+0x1d/0x50 [ 599.465680] do_syscall_64+0x33/0x40 [ 599.466172] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 599.466839] RIP: 0033:0x7f932fac1b19 [ 599.467331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 599.469723] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 599.470725] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 599.471669] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 599.472607] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 599.473536] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 599.474456] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 599.528161] Process accounting resumed [ 612.596129] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 612.611505] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 612.621307] FAULT_INJECTION: forcing a failure. [ 612.621307] name failslab, interval 1, probability 0, space 0, times 0 [ 612.622587] Process accounting resumed [ 612.622685] CPU: 0 PID: 5368 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 612.623962] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 612.632687] Call Trace: [ 612.633012] dump_stack+0x107/0x167 [ 612.633453] should_fail.cold+0x5/0xa [ 612.633916] ? create_object.isra.0+0x3a/0xa20 [ 612.634468] should_failslab+0x5/0x20 [ 612.634927] kmem_cache_alloc+0x5b/0x310 [ 612.635422] ? find_held_lock+0x2c/0x110 [ 612.635927] create_object.isra.0+0x3a/0xa20 [ 612.636459] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 612.636857] Process accounting resumed [ 612.637080] kmem_cache_alloc+0x159/0x310 [ 612.638046] alloc_vfsmnt+0x23/0x680 [ 612.638501] clone_mnt+0x6c/0xce0 [ 612.638927] copy_tree+0x3b0/0xa60 [ 612.639368] copy_mnt_ns+0x144/0xa00 [ 612.639821] ? kmem_cache_alloc+0x2a6/0x310 [ 612.640360] create_new_namespaces+0xd6/0xb20 [ 612.640913] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 612.641509] ksys_unshare+0x449/0x8a0 [ 612.641971] ? unshare_fd+0x1c0/0x1c0 [ 612.642437] ? ksys_write+0x1a9/0x260 [ 612.642591] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 612.642903] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 612.644548] __x64_sys_unshare+0x2d/0x40 [ 612.645038] do_syscall_64+0x33/0x40 [ 612.645489] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 612.646109] RIP: 0033:0x7fc7d3fdfb19 [ 612.652263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 612.654477] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 612.655398] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 612.656273] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 612.657137] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 612.658011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 612.658875] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:57:37 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:37 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:37 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 46) 08:57:37 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) 08:57:37 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:37 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:37 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 38) 08:57:37 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000100)={0x20, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x20}}, 0x0) syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), r2) sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, 0x0, 0x1, 0x70bd2a, 0x25dfdbfc, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_RX_RING(r3, 0x10e, 0x6, 0x0, 0x0) sendmsg$TIPC_NL_PUBL_GET(r3, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2011980}, 0xc, &(0x7f00000003c0)={&(0x7f0000000200)={0x198, 0x0, 0x20, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x101}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x800}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x10000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x80000000}]}, @TIPC_NLA_MEDIA={0x90, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}]}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xf1dc}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}]}, @TIPC_NLA_SOCK={0x28, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xb7}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2}]}, @TIPC_NLA_BEARER={0x60, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}]}]}]}, 0x198}, 0x1, 0x0, 0x0, 0x80}, 0x24084081) acct(&(0x7f0000000040)='./file0\x00') [ 612.664117] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 612.669146] FAULT_INJECTION: forcing a failure. [ 612.669146] name failslab, interval 1, probability 0, space 0, times 0 [ 612.670531] CPU: 1 PID: 5378 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 612.671356] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 612.672412] Call Trace: [ 612.672736] dump_stack+0x107/0x167 [ 612.673264] should_fail.cold+0x5/0xa [ 612.673727] ? create_object.isra.0+0x3a/0xa20 [ 612.674283] should_failslab+0x5/0x20 [ 612.674743] kmem_cache_alloc+0x5b/0x310 [ 612.675238] create_object.isra.0+0x3a/0xa20 [ 612.675770] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 612.676432] kmem_cache_alloc_trace+0x151/0x320 [ 612.677006] __io_uring_add_tctx_node+0x15c/0x520 [ 612.677591] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 612.678259] ? alloc_fd+0x2e7/0x670 [ 612.678707] io_uring_setup+0x1fbb/0x2980 [ 612.679215] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 612.679848] ? wait_for_completion_io+0x270/0x270 [ 612.680473] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 612.681114] ? syscall_enter_from_user_mode+0x1d/0x50 [ 612.681743] do_syscall_64+0x33/0x40 [ 612.682196] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 612.682818] RIP: 0033:0x7f932fac1b19 [ 612.683270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 612.685601] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 612.686527] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 612.687394] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 612.688272] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 612.689150] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 612.690018] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 612.691352] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:57:37 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') getpeername(r0, &(0x7f0000000080)=@caif=@dbg, &(0x7f0000000100)=0x80) [ 612.766531] Process accounting resumed [ 612.778319] Process accounting resumed 08:57:37 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 39) 08:57:37 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 47) [ 612.820761] Process accounting resumed [ 612.857215] FAULT_INJECTION: forcing a failure. [ 612.857215] name failslab, interval 1, probability 0, space 0, times 0 [ 612.858951] CPU: 1 PID: 5392 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 612.859888] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 612.861063] Call Trace: [ 612.861428] dump_stack+0x107/0x167 [ 612.861931] should_fail.cold+0x5/0xa [ 612.862455] ? xas_alloc+0x336/0x440 [ 612.862972] should_failslab+0x5/0x20 [ 612.863504] kmem_cache_alloc+0x5b/0x310 [ 612.864122] ? stack_trace_consume_entry+0x160/0x160 [ 612.864828] xas_alloc+0x336/0x440 [ 612.865318] xas_create+0x34a/0x10d0 [ 612.865838] ? kernel_text_address+0xf2/0x120 [ 612.866457] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 612.867182] xas_store+0x8c/0x1c40 [ 612.867680] __xa_store+0x164/0x2d0 [ 612.868194] ? xa_delete_node+0x280/0x280 [ 612.868770] ? trace_hardirqs_on+0x5b/0x180 [ 612.869369] xa_store+0x31/0x50 [ 612.869826] __io_uring_add_tctx_node+0x1cf/0x520 [ 612.870489] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 612.871212] ? alloc_fd+0x2e7/0x670 [ 612.871718] io_uring_setup+0x1fbb/0x2980 [ 612.872298] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 612.873005] ? wait_for_completion_io+0x270/0x270 [ 612.873682] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 612.874404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 612.875281] do_syscall_64+0x33/0x40 [ 612.875894] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 612.876762] RIP: 0033:0x7f932fac1b19 [ 612.877279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 612.879822] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 612.880764] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 612.881631] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 612.882492] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 612.883353] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 612.884262] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:57:37 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x2, 0x0, &(0x7f0000000180)) ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0xfffffffffffffffe) r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') name_to_handle_at(r1, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)=@FILEID_UDF_WITHOUT_PARENT={0xc, 0x51, {0x20, 0x6f, 0x9, 0x6}}, &(0x7f0000000100), 0x400) lsetxattr$security_evm(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0)=@md5={0x1, "f5e116a919711cc12baabb948388c15b"}, 0x11, 0x2) [ 612.896772] FAULT_INJECTION: forcing a failure. [ 612.896772] name failslab, interval 1, probability 0, space 0, times 0 [ 612.898388] CPU: 1 PID: 5393 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 612.899327] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 612.900510] Call Trace: [ 612.900873] dump_stack+0x107/0x167 [ 612.901372] should_fail.cold+0x5/0xa [ 612.901905] should_failslab+0x5/0x20 [ 612.902427] __kmalloc_track_caller+0x79/0x370 [ 612.903053] ? kstrdup_const+0x53/0x80 [ 612.903590] kstrdup+0x36/0x70 [ 612.904042] kstrdup_const+0x53/0x80 [ 612.904703] alloc_vfsmnt+0xb5/0x680 [ 612.905213] clone_mnt+0x6c/0xce0 [ 612.905692] copy_tree+0x3b0/0xa60 [ 612.906186] copy_mnt_ns+0x144/0xa00 [ 612.906698] ? kmem_cache_alloc+0x2a6/0x310 [ 612.907295] create_new_namespaces+0xd6/0xb20 [ 612.907921] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 612.908598] ksys_unshare+0x449/0x8a0 [ 612.909119] ? unshare_fd+0x1c0/0x1c0 [ 612.909647] ? ksys_write+0x1a9/0x260 [ 612.910174] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 612.910898] __x64_sys_unshare+0x2d/0x40 [ 612.911460] do_syscall_64+0x33/0x40 [ 612.911976] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 612.912597] RIP: 0033:0x7fc7d3fdfb19 [ 612.913054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 612.915278] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 612.916213] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 612.917076] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 612.917937] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 612.918799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 612.919662] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 612.933904] Process accounting resumed [ 612.992625] Process accounting resumed 08:57:37 executing program 4: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x11b) acct(&(0x7f0000000040)='./file2\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048) renameat2(r0, &(0x7f0000000180)='\x00', r2, &(0x7f00000001c0)='./file1\x00', 0x5) getsockname$unix(r1, &(0x7f00000000c0)=@abs, &(0x7f0000000140)=0x6e) 08:57:38 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 40) [ 613.030159] Process accounting resumed 08:57:38 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 48) 08:57:38 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000080)='./file0\x00') [ 613.114480] FAULT_INJECTION: forcing a failure. [ 613.114480] name failslab, interval 1, probability 0, space 0, times 0 [ 613.116840] CPU: 0 PID: 5405 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 613.117673] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 613.118679] Call Trace: [ 613.119010] dump_stack+0x107/0x167 [ 613.119454] should_fail.cold+0x5/0xa [ 613.119932] ? create_object.isra.0+0x3a/0xa20 [ 613.120501] should_failslab+0x5/0x20 [ 613.120968] kmem_cache_alloc+0x5b/0x310 [ 613.121468] create_object.isra.0+0x3a/0xa20 [ 613.122004] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 613.122628] kmem_cache_alloc+0x159/0x310 [ 613.123140] xas_alloc+0x336/0x440 [ 613.123577] xas_create+0x34a/0x10d0 [ 613.124089] ? kernel_text_address+0xf2/0x120 [ 613.124640] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 613.125281] xas_store+0x8c/0x1c40 [ 613.125724] __xa_store+0x164/0x2d0 [ 613.126170] ? xa_delete_node+0x280/0x280 [ 613.126682] ? trace_hardirqs_on+0x5b/0x180 [ 613.127215] xa_store+0x31/0x50 [ 613.127622] __io_uring_add_tctx_node+0x1cf/0x520 [ 613.128246] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 613.128886] ? alloc_fd+0x2e7/0x670 [ 613.129376] io_uring_setup+0x1fbb/0x2980 [ 613.129888] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 613.130509] ? wait_for_completion_io+0x270/0x270 [ 613.131113] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 613.131772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 613.132469] do_syscall_64+0x33/0x40 [ 613.132926] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 613.133553] RIP: 0033:0x7f932fac1b19 [ 613.134015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 613.136770] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 613.137708] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 613.138583] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 613.139455] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 613.140864] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 613.142666] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 613.153890] FAULT_INJECTION: forcing a failure. [ 613.153890] name failslab, interval 1, probability 0, space 0, times 0 [ 613.156771] CPU: 0 PID: 5404 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 613.158472] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 613.160585] Call Trace: [ 613.161234] dump_stack+0x107/0x167 [ 613.162140] should_fail.cold+0x5/0xa [ 613.163084] ? create_object.isra.0+0x3a/0xa20 [ 613.164234] should_failslab+0x5/0x20 [ 613.165182] kmem_cache_alloc+0x5b/0x310 [ 613.166197] create_object.isra.0+0x3a/0xa20 [ 613.167281] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 613.168610] __kmalloc_track_caller+0x177/0x370 [ 613.169780] ? kstrdup_const+0x53/0x80 [ 613.170750] kstrdup+0x36/0x70 [ 613.171535] kstrdup_const+0x53/0x80 [ 613.172196] alloc_vfsmnt+0xb5/0x680 [ 613.172652] clone_mnt+0x6c/0xce0 [ 613.173077] copy_tree+0x3b0/0xa60 [ 613.173515] copy_mnt_ns+0x144/0xa00 [ 613.173971] ? kmem_cache_alloc+0x2a6/0x310 [ 613.174502] create_new_namespaces+0xd6/0xb20 [ 613.175054] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 613.175655] ksys_unshare+0x449/0x8a0 [ 613.176204] ? unshare_fd+0x1c0/0x1c0 [ 613.176671] ? ksys_write+0x1a9/0x260 [ 613.177140] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 613.177778] __x64_sys_unshare+0x2d/0x40 [ 613.178271] do_syscall_64+0x33/0x40 [ 613.178726] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 613.179351] RIP: 0033:0x7fc7d3fdfb19 [ 613.179811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 613.182153] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 613.183075] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 613.183970] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 613.184832] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 613.185696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 613.186562] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 613.227473] Process accounting resumed [ 613.270885] Process accounting resumed [ 626.405573] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 626.415156] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 08:57:51 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:57:51 executing program 4: socket$nl_generic(0x10, 0x3, 0x10) creat(&(0x7f0000000000)='./file0\x00', 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) socket$inet6(0xa, 0x6, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r1, 0x6, 0x2, 0x0, &(0x7f0000000180)) getsockopt$inet6_tcp_int(r1, 0x6, 0x2, 0x0, &(0x7f0000000080)) syz_open_dev$tty20(0xc, 0x4, 0x1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r2, 0x6, 0x2, 0x0, &(0x7f0000000180)) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f00000003c0)) acct(&(0x7f0000000040)='./file0\x00') 08:57:51 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 41) 08:57:51 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 49) 08:57:51 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) 08:57:51 executing program 7: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x11b) acct(&(0x7f0000000040)='./file2\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048) renameat2(r0, &(0x7f0000000180)='\x00', r2, &(0x7f00000001c0)='./file1\x00', 0x5) getsockname$unix(r1, &(0x7f00000000c0)=@abs, &(0x7f0000000140)=0x6e) 08:57:51 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:57:51 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 626.424513] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 626.433594] audit: type=1400 audit(1731229071.419:18): avc: denied { create } for pid=5420 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 [ 626.438653] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 626.448153] FAULT_INJECTION: forcing a failure. [ 626.448153] name failslab, interval 1, probability 0, space 0, times 0 [ 626.449640] CPU: 0 PID: 5424 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 626.449929] FAULT_INJECTION: forcing a failure. [ 626.449929] name failslab, interval 1, probability 0, space 0, times 0 [ 626.450475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 626.452854] Call Trace: [ 626.453182] dump_stack+0x107/0x167 [ 626.453630] should_fail.cold+0x5/0xa [ 626.454100] ? xas_alloc+0x336/0x440 [ 626.454559] should_failslab+0x5/0x20 [ 626.455027] kmem_cache_alloc+0x5b/0x310 [ 626.455528] xas_alloc+0x336/0x440 [ 626.455967] xas_create+0x34a/0x10d0 [ 626.456440] ? kernel_text_address+0xf2/0x120 [ 626.456996] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 626.457639] xas_store+0x8c/0x1c40 [ 626.458084] __xa_store+0x164/0x2d0 [ 626.458530] ? xa_delete_node+0x280/0x280 [ 626.459043] ? trace_hardirqs_on+0x5b/0x180 [ 626.459576] xa_store+0x31/0x50 [ 626.459983] __io_uring_add_tctx_node+0x1cf/0x520 [ 626.460593] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 626.461235] ? alloc_fd+0x2e7/0x670 [ 626.461688] io_uring_setup+0x1fbb/0x2980 [ 626.462200] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 626.462824] ? wait_for_completion_io+0x270/0x270 [ 626.463429] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 626.464071] ? syscall_enter_from_user_mode+0x1d/0x50 [ 626.464729] do_syscall_64+0x33/0x40 [ 626.465185] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 626.465812] RIP: 0033:0x7f932fac1b19 [ 626.466274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 626.468554] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 626.469479] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 626.470351] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 626.471221] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 626.472091] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 626.472987] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 626.473882] CPU: 1 PID: 5413 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 626.474722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 626.475726] Call Trace: [ 626.476054] dump_stack+0x107/0x167 [ 626.476519] should_fail.cold+0x5/0xa [ 626.476996] ? create_object.isra.0+0x3a/0xa20 [ 626.477559] should_failslab+0x5/0x20 [ 626.478022] kmem_cache_alloc+0x5b/0x310 [ 626.478518] create_object.isra.0+0x3a/0xa20 [ 626.479057] kmemleak_alloc_percpu+0xa0/0x100 [ 626.479603] pcpu_alloc+0x4e2/0x1240 [ 626.480068] alloc_vfsmnt+0xfd/0x680 [ 626.480542] clone_mnt+0x6c/0xce0 [ 626.480968] copy_tree+0x3b0/0xa60 [ 626.481409] copy_mnt_ns+0x144/0xa00 [ 626.481864] ? kmem_cache_alloc+0x2a6/0x310 [ 626.482517] create_new_namespaces+0xd6/0xb20 [ 626.482536] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 626.482550] ksys_unshare+0x449/0x8a0 [ 626.482561] ? unshare_fd+0x1c0/0x1c0 [ 626.482576] ? ksys_write+0x1a9/0x260 [ 626.482595] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 626.482610] __x64_sys_unshare+0x2d/0x40 [ 626.482620] do_syscall_64+0x33/0x40 [ 626.482632] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 626.482640] RIP: 0033:0x7fc7d3fdfb19 [ 626.482653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 626.482659] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 08:57:51 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 626.482673] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 626.482680] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 626.482687] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 626.482694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 626.482702] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:57:51 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 42) [ 626.556126] Process accounting resumed [ 626.577630] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. 08:57:51 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 50) [ 626.640810] Process accounting resumed [ 626.647362] FAULT_INJECTION: forcing a failure. [ 626.647362] name failslab, interval 1, probability 0, space 0, times 0 [ 626.650254] CPU: 1 PID: 5437 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 626.651088] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 626.652101] Call Trace: [ 626.652465] dump_stack+0x107/0x167 [ 626.652913] should_fail.cold+0x5/0xa [ 626.653380] ? create_object.isra.0+0x3a/0xa20 [ 626.653941] should_failslab+0x5/0x20 [ 626.654408] kmem_cache_alloc+0x5b/0x310 [ 626.654905] ? mark_held_locks+0x9e/0xe0 [ 626.655403] create_object.isra.0+0x3a/0xa20 [ 626.655937] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 626.656582] kmem_cache_alloc+0x159/0x310 [ 626.657092] xas_alloc+0x336/0x440 [ 626.657532] xas_create+0x34a/0x10d0 [ 626.657993] ? kernel_text_address+0xf2/0x120 [ 626.658544] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 626.659186] xas_store+0x8c/0x1c40 [ 626.659630] __xa_store+0x164/0x2d0 [ 626.660078] ? xa_delete_node+0x280/0x280 [ 626.660607] ? trace_hardirqs_on+0x5b/0x180 [ 626.661140] xa_store+0x31/0x50 [ 626.661546] __io_uring_add_tctx_node+0x1cf/0x520 [ 626.662134] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 626.662774] ? alloc_fd+0x2e7/0x670 [ 626.663226] io_uring_setup+0x1fbb/0x2980 [ 626.663737] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 626.664359] ? wait_for_completion_io+0x270/0x270 [ 626.664977] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 626.665616] ? syscall_enter_from_user_mode+0x1d/0x50 [ 626.666246] do_syscall_64+0x33/0x40 [ 626.666701] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 626.667324] RIP: 0033:0x7f932fac1b19 [ 626.667785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 626.670043] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 626.670971] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 626.671840] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 626.672727] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 626.673596] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 626.674464] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 626.722754] FAULT_INJECTION: forcing a failure. [ 626.722754] name failslab, interval 1, probability 0, space 0, times 0 [ 626.724161] CPU: 1 PID: 5440 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 626.725056] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 626.726058] Call Trace: [ 626.726381] dump_stack+0x107/0x167 [ 626.726825] should_fail.cold+0x5/0xa [ 626.727289] ? create_object.isra.0+0x3a/0xa20 [ 626.727847] should_failslab+0x5/0x20 [ 626.728310] kmem_cache_alloc+0x5b/0x310 [ 626.728828] ? mark_held_locks+0x9e/0xe0 [ 626.729323] create_object.isra.0+0x3a/0xa20 [ 626.729862] kmemleak_alloc_percpu+0xa0/0x100 [ 626.730408] pcpu_alloc+0x4e2/0x1240 [ 626.730878] alloc_vfsmnt+0xfd/0x680 [ 626.731333] clone_mnt+0x6c/0xce0 [ 626.731763] copy_tree+0x3b0/0xa60 [ 626.732208] copy_mnt_ns+0x144/0xa00 [ 626.732680] ? kmem_cache_alloc+0x2a6/0x310 [ 626.733214] create_new_namespaces+0xd6/0xb20 [ 626.733768] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 626.734371] ksys_unshare+0x449/0x8a0 [ 626.734837] ? unshare_fd+0x1c0/0x1c0 [ 626.735305] ? ksys_write+0x1a9/0x260 [ 626.735775] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 626.736425] __x64_sys_unshare+0x2d/0x40 [ 626.736922] do_syscall_64+0x33/0x40 [ 626.737379] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 626.738005] RIP: 0033:0x7fc7d3fdfb19 [ 626.738465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 626.740726] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 626.741655] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 626.742526] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 626.743397] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 626.744269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 626.745155] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:57:51 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 43) [ 626.819442] Process accounting resumed [ 626.827607] FAULT_INJECTION: forcing a failure. [ 626.827607] name failslab, interval 1, probability 0, space 0, times 0 [ 626.829009] CPU: 0 PID: 5444 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 626.829859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 626.830889] Call Trace: [ 626.831230] dump_stack+0x107/0x167 [ 626.831697] should_fail.cold+0x5/0xa [ 626.832187] ? xas_alloc+0x336/0x440 [ 626.836693] should_failslab+0x5/0x20 [ 626.837171] kmem_cache_alloc+0x5b/0x310 [ 626.837679] xas_alloc+0x336/0x440 [ 626.838119] xas_create+0x34a/0x10d0 [ 626.838595] ? kernel_text_address+0xf2/0x120 [ 626.839157] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 626.839809] xas_store+0x8c/0x1c40 [ 626.840268] __xa_store+0x164/0x2d0 [ 626.840742] ? xa_delete_node+0x280/0x280 [ 626.841272] ? trace_hardirqs_on+0x5b/0x180 [ 626.841811] xa_store+0x31/0x50 [ 626.842219] __io_uring_add_tctx_node+0x1cf/0x520 [ 626.842821] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 626.843468] ? alloc_fd+0x2e7/0x670 [ 626.843930] io_uring_setup+0x1fbb/0x2980 [ 626.844459] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 626.845009] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 626.845642] ? tick_program_event+0xa8/0x140 [ 626.846209] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 626.846870] ? syscall_enter_from_user_mode+0x1d/0x50 [ 626.847517] do_syscall_64+0x33/0x40 [ 626.847995] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 626.848652] RIP: 0033:0x7f932fac1b19 [ 626.849131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 626.851394] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 626.852343] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 626.853247] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 626.854132] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 626.855017] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 626.855899] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:57:51 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x18601, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r3, 0x6, 0x2, 0x0, &(0x7f0000000180)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, 0x0, &(0x7f0000000180)) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f00000001c0)={0x8001, 0x7, 0x6, 0x5, 0x1}, 0x14) setsockopt$inet6_tcp_int(r4, 0x6, 0x1b, &(0x7f0000000040)=0x82, 0x4) getsockopt$inet6_tcp_int(r4, 0x6, 0x2, 0x0, &(0x7f0000000180)) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r5, 0x6, 0x2, 0x0, &(0x7f0000000180)) r6 = socket$inet_udplite(0x2, 0x2, 0x88) r7 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000140), 0x80, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000100)={0x3, 0x0, &(0x7f00000000c0)=[r2, r3, r0, r4, 0xffffffffffffffff, r7, r0, r5, r6, r0]}, 0xa) acct(&(0x7f0000000040)='./file0\x00') [ 626.878850] Process accounting resumed 08:57:51 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 44) 08:57:51 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 51) [ 626.936815] Process accounting resumed [ 626.965756] Process accounting resumed [ 626.981678] FAULT_INJECTION: forcing a failure. [ 626.981678] name failslab, interval 1, probability 0, space 0, times 0 [ 626.983061] CPU: 1 PID: 5450 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 626.983897] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 626.984952] Call Trace: [ 626.985282] dump_stack+0x107/0x167 [ 626.985728] should_fail.cold+0x5/0xa [ 626.986198] ? create_object.isra.0+0x3a/0xa20 [ 626.986760] should_failslab+0x5/0x20 [ 626.987227] kmem_cache_alloc+0x5b/0x310 [ 626.987726] ? mark_held_locks+0x9e/0xe0 [ 626.988225] create_object.isra.0+0x3a/0xa20 [ 626.988781] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 626.989403] kmem_cache_alloc+0x159/0x310 [ 626.989913] xas_alloc+0x336/0x440 [ 626.990352] xas_create+0x34a/0x10d0 [ 626.990816] ? kernel_text_address+0xf2/0x120 [ 626.991365] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 626.992005] xas_store+0x8c/0x1c40 [ 626.992460] __xa_store+0x164/0x2d0 [ 626.992910] ? xa_delete_node+0x280/0x280 [ 626.993422] ? trace_hardirqs_on+0x5b/0x180 [ 626.993970] xa_store+0x31/0x50 [ 626.994375] __io_uring_add_tctx_node+0x1cf/0x520 [ 626.994963] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 626.995601] ? alloc_fd+0x2e7/0x670 [ 626.996054] io_uring_setup+0x1fbb/0x2980 [ 626.996584] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 626.997206] ? wait_for_completion_io+0x270/0x270 [ 626.997808] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 626.998447] ? syscall_enter_from_user_mode+0x1d/0x50 [ 626.999080] do_syscall_64+0x33/0x40 [ 626.999536] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 627.000157] RIP: 0033:0x7f932fac1b19 [ 627.000633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 627.002872] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 627.003801] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 627.004690] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 627.005559] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 627.006430] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 627.007298] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:57:51 executing program 4: r0 = socket$packet(0x11, 0x2, 0x300) recvfrom(r0, &(0x7f0000000080)=""/255, 0xff, 0x40012002, &(0x7f0000000180)=@tipc=@id={0x1e, 0x3, 0x6, {0x4e22, 0x3}}, 0x80) creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 627.034732] FAULT_INJECTION: forcing a failure. [ 627.034732] name failslab, interval 1, probability 0, space 0, times 0 [ 627.036223] CPU: 0 PID: 5451 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 627.037081] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 627.038085] Call Trace: [ 627.038418] dump_stack+0x107/0x167 [ 627.038863] should_fail.cold+0x5/0xa [ 627.039332] ? alloc_vfsmnt+0x23/0x680 [ 627.039810] should_failslab+0x5/0x20 [ 627.040275] kmem_cache_alloc+0x5b/0x310 [ 627.044798] ? copy_tree+0x61a/0xa60 [ 627.045253] alloc_vfsmnt+0x23/0x680 [ 627.045707] clone_mnt+0x6c/0xce0 [ 627.046130] copy_tree+0x3b0/0xa60 [ 627.046572] copy_mnt_ns+0x144/0xa00 [ 627.047026] ? kmem_cache_alloc+0x2a6/0x310 [ 627.047565] create_new_namespaces+0xd6/0xb20 [ 627.048117] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 627.048739] ksys_unshare+0x449/0x8a0 [ 627.049202] ? unshare_fd+0x1c0/0x1c0 [ 627.049671] ? ksys_write+0x1a9/0x260 [ 627.050143] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 627.050788] __x64_sys_unshare+0x2d/0x40 [ 627.051282] do_syscall_64+0x33/0x40 [ 627.051739] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 627.052367] RIP: 0033:0x7fc7d3fdfb19 [ 627.052844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 627.055090] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 627.056028] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 627.056916] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 627.057793] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 627.058667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 627.059540] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 627.065155] Process accounting resumed [ 627.106146] Process accounting resumed [ 627.120223] Process accounting resumed [ 640.287498] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 640.289872] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 640.299829] FAULT_INJECTION: forcing a failure. [ 640.299829] name failslab, interval 1, probability 0, space 0, times 0 [ 640.301212] CPU: 1 PID: 5467 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 640.302036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 640.302996] Process accounting resumed [ 640.303041] Call Trace: 08:58:05 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:58:05 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:05 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = openat2(r0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0xc7, 0x1}, 0x18) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x4, 0xff, 0x9, 0x3, 0x0, 0xb, 0x10000, 0x9, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x2, 0xfffffffe}, 0x2062, 0x4, 0x3, 0x9, 0x5, 0x7, 0x4, 0x0, 0x4ab, 0x0, 0x7f800000000000}, 0xffffffffffffffff, 0x2, r1, 0x1) acct(&(0x7f0000000040)='./file0\x00') lsetxattr$trusted_overlay_origin(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200), 0x2, 0x2) perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x5, 0xff, 0x8, 0x1, 0x0, 0xdcb0, 0x2004, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0xc588, 0x1, @perf_config_ext={0xffff, 0xff}, 0x180, 0x8001, 0xfffe0000, 0x6, 0x6, 0x698, 0x7ff, 0x0, 0x8, 0x0, 0xc8}, 0x0, 0xf, 0xffffffffffffffff, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x6440, 0x0) openat(r2, &(0x7f0000000280)='./file0\x00', 0x400640, 0x10d) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000002c0)) 08:58:05 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 45) 08:58:05 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 52) 08:58:05 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:58:05 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:05 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 640.303062] dump_stack+0x107/0x167 [ 640.312845] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 640.316996] should_fail.cold+0x5/0xa [ 640.317010] ? xas_alloc+0x336/0x440 [ 640.317025] should_failslab+0x5/0x20 [ 640.317038] kmem_cache_alloc+0x5b/0x310 [ 640.317052] xas_alloc+0x336/0x440 [ 640.317066] xas_create+0x34a/0x10d0 [ 640.317083] ? kernel_text_address+0xf2/0x120 [ 640.317098] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 640.317111] xas_store+0x8c/0x1c40 [ 640.317131] __xa_store+0x164/0x2d0 [ 640.317144] ? xa_delete_node+0x280/0x280 [ 640.317161] ? trace_hardirqs_on+0x5b/0x180 [ 640.317176] xa_store+0x31/0x50 [ 640.317190] __io_uring_add_tctx_node+0x1cf/0x520 [ 640.317202] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 640.317213] ? alloc_fd+0x2e7/0x670 [ 640.317232] io_uring_setup+0x1fbb/0x2980 [ 640.317248] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 640.317261] ? wait_for_completion_io+0x270/0x270 [ 640.317287] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 640.328070] FAULT_INJECTION: forcing a failure. [ 640.328070] name failslab, interval 1, probability 0, space 0, times 0 [ 640.328184] ? syscall_enter_from_user_mode+0x1d/0x50 [ 640.335466] do_syscall_64+0x33/0x40 [ 640.335923] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 640.336543] RIP: 0033:0x7f932fac1b19 [ 640.337030] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 640.339255] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 640.340175] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 640.345058] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 640.345920] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 640.346781] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 640.347643] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 640.348527] CPU: 0 PID: 5474 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 640.349386] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 640.350391] Call Trace: [ 640.350713] dump_stack+0x107/0x167 [ 640.351157] should_fail.cold+0x5/0xa [ 640.351622] ? create_object.isra.0+0x3a/0xa20 [ 640.352178] should_failslab+0x5/0x20 [ 640.352640] kmem_cache_alloc+0x5b/0x310 [ 640.353147] ? find_held_lock+0x2c/0x110 [ 640.353644] create_object.isra.0+0x3a/0xa20 [ 640.354176] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 640.354796] kmem_cache_alloc+0x159/0x310 [ 640.355304] alloc_vfsmnt+0x23/0x680 [ 640.355759] clone_mnt+0x6c/0xce0 [ 640.356184] copy_tree+0x3b0/0xa60 [ 640.356623] copy_mnt_ns+0x144/0xa00 [ 640.357091] ? kmem_cache_alloc+0x2a6/0x310 [ 640.357619] create_new_namespaces+0xd6/0xb20 [ 640.358174] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 640.365232] ksys_unshare+0x449/0x8a0 [ 640.365693] ? unshare_fd+0x1c0/0x1c0 [ 640.366157] ? ksys_write+0x1a9/0x260 [ 640.366621] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 640.367255] __x64_sys_unshare+0x2d/0x40 [ 640.367743] do_syscall_64+0x33/0x40 [ 640.368193] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 640.368810] RIP: 0033:0x7fc7d3fdfb19 [ 640.369280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 640.371493] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 640.372410] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 640.373128] Process accounting resumed [ 640.373286] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 640.373296] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 640.375470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 640.376329] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 640.381074] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 08:58:05 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 46) [ 640.385091] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 640.408313] FAULT_INJECTION: forcing a failure. [ 640.408313] name failslab, interval 1, probability 0, space 0, times 0 [ 640.410776] CPU: 0 PID: 5478 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 640.411622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 640.412782] Call Trace: [ 640.417176] dump_stack+0x107/0x167 [ 640.417687] should_fail.cold+0x5/0xa [ 640.418220] ? create_object.isra.0+0x3a/0xa20 [ 640.418813] should_failslab+0x5/0x20 [ 640.419277] kmem_cache_alloc+0x5b/0x310 [ 640.420412] ? mark_held_locks+0x9e/0xe0 [ 640.425527] create_object.isra.0+0x3a/0xa20 [ 640.426780] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 640.428234] kmem_cache_alloc+0x159/0x310 [ 640.429445] xas_alloc+0x336/0x440 [ 640.430462] xas_create+0x34a/0x10d0 [ 640.431530] ? kernel_text_address+0xf2/0x120 [ 640.432809] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 640.434320] xas_store+0x8c/0x1c40 [ 640.435344] __xa_store+0x164/0x2d0 [ 640.436380] ? xa_delete_node+0x280/0x280 [ 640.437576] ? trace_hardirqs_on+0x5b/0x180 [ 640.438793] xa_store+0x31/0x50 [ 640.439565] __io_uring_add_tctx_node+0x1cf/0x520 [ 640.440695] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 640.441508] ? alloc_fd+0x2e7/0x670 [ 640.442022] io_uring_setup+0x1fbb/0x2980 [ 640.442574] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 640.443197] ? wait_for_completion_io+0x270/0x270 [ 640.443884] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 640.444610] ? syscall_enter_from_user_mode+0x1d/0x50 [ 640.445339] do_syscall_64+0x33/0x40 [ 640.445860] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 640.446582] RIP: 0033:0x7f932fac1b19 [ 640.447106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 640.450409] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 640.452587] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 640.454657] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 640.456742] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 640.458847] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 640.460931] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 640.463664] Process accounting resumed 08:58:05 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x14, r2, 0xd8499488957a772f}, 0x14}}, 0x0) sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r2, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000050}, 0x200008c1) creat(&(0x7f0000000000)='./file0\x00', 0x0) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r3) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000100)={0x20, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x20}}, 0x0) sendmsg$IEEE802154_SCAN_REQ(r5, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, 0x0, 0x100, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x9}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0xa}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x10) acct(&(0x7f0000000040)='./file0\x00') 08:58:05 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 47) 08:58:05 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 53) [ 640.568223] FAULT_INJECTION: forcing a failure. [ 640.568223] name failslab, interval 1, probability 0, space 0, times 0 [ 640.571322] CPU: 1 PID: 5487 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 640.573048] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 640.575438] Call Trace: [ 640.576189] dump_stack+0x107/0x167 [ 640.577249] should_fail.cold+0x5/0xa [ 640.578340] ? xas_alloc+0x336/0x440 [ 640.579386] should_failslab+0x5/0x20 [ 640.580301] kmem_cache_alloc+0x5b/0x310 [ 640.581439] xas_alloc+0x336/0x440 [ 640.582273] xas_create+0x34a/0x10d0 [ 640.583151] ? kernel_text_address+0xf2/0x120 [ 640.584209] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 640.585593] xas_store+0x8c/0x1c40 [ 640.586455] __xa_store+0x164/0x2d0 [ 640.587330] ? xa_delete_node+0x280/0x280 [ 640.588332] ? trace_hardirqs_on+0x5b/0x180 [ 640.589491] xa_store+0x31/0x50 [ 640.590266] __io_uring_add_tctx_node+0x1cf/0x520 [ 640.591399] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 640.592636] ? alloc_fd+0x2e7/0x670 [ 640.593649] io_uring_setup+0x1fbb/0x2980 [ 640.594653] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 640.595878] ? wait_for_completion_io+0x270/0x270 [ 640.597002] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 640.597642] ? syscall_enter_from_user_mode+0x1d/0x50 [ 640.598272] do_syscall_64+0x33/0x40 [ 640.598726] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 640.599348] RIP: 0033:0x7f932fac1b19 [ 640.599807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 640.603677] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 640.605616] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 640.607342] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 640.609129] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 640.610808] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 640.612491] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 640.640250] FAULT_INJECTION: forcing a failure. [ 640.640250] name failslab, interval 1, probability 0, space 0, times 0 [ 640.643242] CPU: 1 PID: 5489 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 640.644851] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 640.646061] Call Trace: [ 640.646452] dump_stack+0x107/0x167 [ 640.646898] should_fail.cold+0x5/0xa [ 640.647364] ? create_object.isra.0+0x3a/0xa20 [ 640.647919] should_failslab+0x5/0x20 [ 640.648381] kmem_cache_alloc+0x5b/0x310 [ 640.648881] ? find_held_lock+0x2c/0x110 [ 640.649432] create_object.isra.0+0x3a/0xa20 [ 640.649963] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 640.650582] kmem_cache_alloc+0x159/0x310 [ 640.651132] alloc_vfsmnt+0x23/0x680 [ 640.651591] clone_mnt+0x6c/0xce0 [ 640.652021] copy_tree+0x3b0/0xa60 [ 640.652469] copy_mnt_ns+0x144/0xa00 [ 640.653014] ? kmem_cache_alloc+0x2a6/0x310 [ 640.654033] create_new_namespaces+0xd6/0xb20 [ 640.655097] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 640.656262] ksys_unshare+0x449/0x8a0 [ 640.657266] ? unshare_fd+0x1c0/0x1c0 [ 640.658337] ? ksys_write+0x1a9/0x260 [ 640.659234] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 640.660470] __x64_sys_unshare+0x2d/0x40 [ 640.661632] do_syscall_64+0x33/0x40 [ 640.662527] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 640.663768] RIP: 0033:0x7fc7d3fdfb19 [ 640.664670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 640.670021] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 640.671825] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 640.673782] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 640.675513] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 640.677325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 640.679012] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 640.698960] Process accounting resumed 08:58:05 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 640.719485] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 08:58:05 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 640.805249] Process accounting resumed [ 640.806370] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 08:58:05 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 54) 08:58:05 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f00000013c0)='./file0/file0\x00') setxattr$trusted_overlay_origin(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), &(0x7f00000002c0), 0x2, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r2, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r3, &(0x7f0000000240)=""/83, 0x53, 0x200000048) renameat2(r2, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000100)='./file0\x00', 0x5) r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') setsockopt$inet6_tcp_int(r1, 0x6, 0x3, &(0x7f0000000380), 0x4) pread64(r4, &(0x7f0000000240)=""/83, 0x53, 0x200000048) fsconfig$FSCONFIG_SET_PATH(r4, 0x3, &(0x7f0000000300)='net/udplite6\x00', &(0x7f0000000340)='./file0\x00', r2) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000140)={r0, 0x80, 0x4, 0xe55}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f00000008c0)={0x0, 0x5, 0x80000001}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000001400)={{r0}, 0x0, 0x0, @inherit={0x88, &(0x7f00000004c0)=ANY=[@ANYBLOB="000100000000000008000000000000000500000000000000001000000000000001000000000000000400000000000000d50e00000900000000e9ff000900000000000000c49f1a3300000000b20a000000000000e009020000000000ffffffffffffffff0800020000000000fe030000000000000100000000000000ffe17d0000000000000000001d0e889a2d13f337850c621925c189d1517637c30792d6b1714464b02f09accadc8c57aa798573080eb4008c3e57048a13847195e832ccf2d9dff5178a"]}, @name="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"}) io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r1, 0x6, 0x2, 0x0, &(0x7f0000000180)) sendfile(r1, r0, &(0x7f0000000080)=0x8, 0x0) [ 640.891967] FAULT_INJECTION: forcing a failure. [ 640.891967] name failslab, interval 1, probability 0, space 0, times 0 [ 640.893400] CPU: 1 PID: 5500 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 640.894225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 640.895226] Call Trace: [ 640.895551] dump_stack+0x107/0x167 [ 640.895993] should_fail.cold+0x5/0xa [ 640.896457] ? create_object.isra.0+0x3a/0xa20 [ 640.897062] should_failslab+0x5/0x20 [ 640.897526] kmem_cache_alloc+0x5b/0x310 [ 640.898022] create_object.isra.0+0x3a/0xa20 [ 640.898554] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 640.899176] __kmalloc_track_caller+0x177/0x370 [ 640.899738] ? kstrdup_const+0x53/0x80 [ 640.900215] kstrdup+0x36/0x70 [ 640.900608] kstrdup_const+0x53/0x80 [ 640.901077] alloc_vfsmnt+0xb5/0x680 [ 640.901532] clone_mnt+0x6c/0xce0 [ 640.901957] copy_tree+0x3b0/0xa60 [ 640.902398] copy_mnt_ns+0x144/0xa00 [ 640.902853] ? kmem_cache_alloc+0x2a6/0x310 [ 640.903383] create_new_namespaces+0xd6/0xb20 [ 640.903935] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 640.904534] ksys_unshare+0x449/0x8a0 [ 640.905048] ? unshare_fd+0x1c0/0x1c0 [ 640.905512] ? ksys_write+0x1a9/0x260 [ 640.905983] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 640.906621] __x64_sys_unshare+0x2d/0x40 [ 640.907114] do_syscall_64+0x33/0x40 [ 640.907568] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 640.908190] RIP: 0033:0x7fc7d3fdfb19 [ 640.908649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 640.910918] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 640.911844] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 640.912711] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 640.913595] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 640.914463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 640.915333] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 640.999760] Process accounting resumed [ 653.913841] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 653.926725] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 653.937336] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 653.946290] FAULT_INJECTION: forcing a failure. [ 653.946290] name failslab, interval 1, probability 0, space 0, times 0 [ 653.948134] CPU: 1 PID: 5509 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 653.949212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 653.950482] Call Trace: [ 653.950894] dump_stack+0x107/0x167 [ 653.951487] should_fail.cold+0x5/0xa [ 653.952073] ? create_object.isra.0+0x3a/0xa20 [ 653.952791] should_failslab+0x5/0x20 [ 653.953406] kmem_cache_alloc+0x5b/0x310 [ 653.954555] ? mark_held_locks+0x9e/0xe0 [ 653.955629] create_object.isra.0+0x3a/0xa20 [ 653.956786] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 653.958291] kmem_cache_alloc+0x159/0x310 [ 653.959388] xas_alloc+0x336/0x440 [ 653.960323] xas_create+0x34a/0x10d0 [ 653.961309] ? kernel_text_address+0xf2/0x120 [ 653.962722] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 653.964095] xas_store+0x8c/0x1c40 [ 653.965043] __xa_store+0x164/0x2d0 [ 653.966144] ? xa_delete_node+0x280/0x280 [ 653.967237] ? trace_hardirqs_on+0x5b/0x180 [ 653.968372] xa_store+0x31/0x50 [ 653.969244] __io_uring_add_tctx_node+0x1cf/0x520 [ 653.969944] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 653.970630] ? alloc_fd+0x2e7/0x670 [ 653.971106] io_uring_setup+0x1fbb/0x2980 [ 653.971658] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 653.972306] ? wait_for_completion_io+0x270/0x270 [ 653.972952] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 653.973670] ? syscall_enter_from_user_mode+0x1d/0x50 [ 653.974329] do_syscall_64+0x33/0x40 [ 653.974821] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 653.975486] RIP: 0033:0x7f932fac1b19 [ 653.975968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 653.978357] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 653.979345] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 653.980267] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 653.981191] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 653.982143] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 653.983067] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:58:18 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:58:18 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 48) [ 653.990906] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 08:58:18 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:18 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:18 executing program 4: getresuid(&(0x7f00000000c0), &(0x7f0000000100)=0x0, &(0x7f0000000140)) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001500)=[{{&(0x7f00000008c0), 0x6e, &(0x7f00000009c0)=[{&(0x7f0000000940)=""/78, 0x4e}], 0x1, &(0x7f0000000a00)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}}, {{&(0x7f0000000a40), 0x6e, &(0x7f0000000e80)=[{&(0x7f0000000ac0)=""/82, 0x52}, {&(0x7f0000000b40)=""/4, 0x4}, {&(0x7f0000000b80)=""/192, 0xc0}, {&(0x7f0000000c40)=""/126, 0x7e}, {&(0x7f0000000cc0)=""/183, 0xb7}, {&(0x7f0000000d80)=""/131, 0x83}, {&(0x7f0000000e40)=""/29, 0x1d}], 0x7, &(0x7f0000000f00)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x90}}, {{&(0x7f0000000fc0)=@abs, 0x6e, &(0x7f00000010c0)=[{&(0x7f0000001040)=""/80, 0x50}], 0x1, &(0x7f0000001100)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @cred={{0x1c}}], 0x150}}, {{&(0x7f0000001280)=@abs, 0x6e, &(0x7f0000001400)=[{&(0x7f0000001300)=""/234, 0xea}], 0x1, &(0x7f0000001440)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x98}}], 0x4, 0x1, &(0x7f0000001600)) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r2, 0x0) syz_mount_image$ext4(&(0x7f0000000400)='ext3\x00', &(0x7f0000000440)='./file0\x00', 0x4, 0x6, &(0x7f0000000800)=[{&(0x7f0000000480)="8b76edad73f1a6ac66327608da8381ec63def2493f23bf32c104813255b089df93ea8d0ba7711c86b3c4797bcd4612047c05fb66258f19a7bd66ef70c5b23558058d423c68dbbe369d29405af844e69ad48270fe9b7d4494903b649e6a7d9e25c4655cf589e74df7c5bd91257824eaec020200124a90007990507f6849c9", 0x7e, 0x100}, {&(0x7f0000000500)="60425730097ad337", 0x8}, {&(0x7f0000000540)="c7890186a1140644772fcd282a8b00061dca941091e49167a553e339dd47fdb74bc92046af10e6975d997d1542c87875e2c0ea3847eb14a1681e6c79ab081c4cc266bdc240105ac99e28d92bc95d7f599fae7258d12836ea691dc2e8a7b516c63168890981adc8359f986fedb69999f0723bfaef55dada3cf94a8e8d51dc37e74b1bb154cd71ea681c5f0a54c69a6cb633e57e56cdd8392b6e99d32533dcaa683bdb15171d19b19c9c88a7e69f4b2fa2ac4a9a420220eeae62401c54dc97cdc964e21fd2227d35207ac5cbe102b738388ee80ceb731346259cf8faf4d63fb74071a6de14512981279778877b9678e4643cfa65e4ecd840ab5d", 0xf9, 0x7fffffff}, {&(0x7f0000000640)="cf172c7edfe56669ce276a707db9", 0xe, 0x4ff9a351}, {&(0x7f0000000680)="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", 0xfd, 0x100}, {&(0x7f0000000780)="bf414b17e0f7ed01ac465a2bb0e16deafddaf0f441fdbab5259add3cf29aa2f19ab00c5a3787978f38a463735c83efc562dbdf4f39b333e7ce87ed42544fb1fa4290efb981bfc4fef12732689a", 0x4d, 0x1}], 0x1200000, &(0x7f0000001640)={[{@abort}, {@i_version}, {@commit={'commit', 0x3d, 0x3}}, {@quota}, {@noblock_validity}, {@data_err_ignore}, {@bh}, {@nobarrier}], [{@context={'context', 0x3d, 'staff_u'}}, {@euid_gt={'euid>', r1}}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x64, 0x34, 0x33, 0x63, 0x35, 0x35, 0x1], 0x2d, [0x53, 0x31, 0x31, 0x39], 0x2d, [0x31, 0x36, 0x64, 0x35], 0x2d, [0x39, 0x64, 0x64, 0x64], 0x2d, [0x66, 0x31, 0x38, 0x62, 0x38, 0x66, 0x37, 0x33]}}}, {@obj_user}, {@fowner_lt={'fowner<', r2}}]}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000380)={&(0x7f0000000180)={0x1ec, 0x35, 0x400, 0x70bd26, 0x25dfdbfb, {0x12}, [@generic="c52d00c13cbfdc8695af6008d61d00e1247390b9db358e59cf286b922c38aeb555097760ee9116478e126c031b28585df67165860d01c290fdd723d18423f7102f414ffc756140c96a59fc06287ba4645020fc8e8d8917b80393bdfdeabedd00b5481075ccdb64a7ff3c3bbb96a3bbbf4d3cec2e2ebca8ea7399b542acf43b26e10e41982e464ee6350d3ebb2c4d093bba74c74a879018dbd2b1e7f67400f7ebf86fbdba15", @typed={0x8, 0x6c, 0x0, 0x0, @uid=r0}, @nested={0xde, 0x69, 0x0, 0x1, [@typed={0xc, 0x8e, 0x0, 0x0, @u64=0x200}, @typed={0x8, 0x5f, 0x0, 0x0, @u32=0x2}, @typed={0x8, 0x33, 0x0, 0x0, @u32=0x3}, @typed={0x8, 0x8e, 0x0, 0x0, @fd}, @generic="04ee9afbe18e98dd1df0e7a8237710254c95c85707d5be0ff492484e9fc1c9bf8e64589f35cf5676a36a9950c87d1d31f2849c317de9b00bc34f4f5590618924e834f93ddb2735de300d7f46399d11a3785b37afa8ba1f5ad43071e2c2b78a59e74f94985caf738d9b789378d119abf9eb549c59", @typed={0x8, 0x4d, 0x0, 0x0, @u32=0x401}, @generic="3c7b29363e5d76efd83ad5a369ce68ffcf94f33100943bb947ea37baf28a466f2c597a5314c3d1a60e63ad32ad4de3c5cc1eeca9a2ed5c869711"]}, @generic="abe153f447e6e7b83b3b745960df036fee42f7e3289a70916fb95b737c2232e7146610fb6a7e39900f2ad00d58845e8c587e2a933dc35f0ea761b55dbf9ff3bb315975ed933dcacb183e"]}, 0x1ec}, 0x1, 0x0, 0x0, 0x8040}, 0x3000c001) creat(&(0x7f0000000080)='./file0\x00', 0xa) acct(&(0x7f0000000040)='./file0\x00') lsetxattr$trusted_overlay_redirect(&(0x7f0000001740)='./file0\x00', &(0x7f0000001780), &(0x7f00000017c0)='./file0\x00', 0x8, 0x1) 08:58:18 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 55) 08:58:18 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:18 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) [ 654.004396] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 654.017249] EXT4-fs (loop4): VFS: Can't find ext4 filesystem 08:58:19 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 654.046848] FAULT_INJECTION: forcing a failure. [ 654.046848] name failslab, interval 1, probability 0, space 0, times 0 [ 654.048306] CPU: 0 PID: 5516 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 654.049173] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 654.054211] Call Trace: [ 654.054562] dump_stack+0x107/0x167 [ 654.055036] should_fail.cold+0x5/0xa [ 654.055529] ? create_object.isra.0+0x3a/0xa20 [ 654.056117] should_failslab+0x5/0x20 [ 654.056610] kmem_cache_alloc+0x5b/0x310 [ 654.057134] create_object.isra.0+0x3a/0xa20 [ 654.057725] kmemleak_alloc_percpu+0xa0/0x100 [ 654.058300] pcpu_alloc+0x4e2/0x1240 [ 654.058766] alloc_vfsmnt+0xfd/0x680 [ 654.059222] clone_mnt+0x6c/0xce0 [ 654.059647] copy_tree+0x3b0/0xa60 [ 654.060085] copy_mnt_ns+0x144/0xa00 [ 654.060542] ? kmem_cache_alloc+0x2a6/0x310 [ 654.061071] create_new_namespaces+0xd6/0xb20 [ 654.061641] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 654.062240] ksys_unshare+0x449/0x8a0 [ 654.062705] ? unshare_fd+0x1c0/0x1c0 [ 654.063171] ? ksys_write+0x1a9/0x260 [ 654.063643] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 654.064282] __x64_sys_unshare+0x2d/0x40 [ 654.064775] do_syscall_64+0x33/0x40 08:58:19 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) creat(0xfffffffffffffffc, 0x40) acct(&(0x7f0000000040)='./file0\x00') [ 654.065229] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 654.065873] RIP: 0033:0x7fc7d3fdfb19 [ 654.066331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 654.073916] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 654.074844] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 654.075711] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 654.076576] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 654.077463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 654.078331] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 654.094350] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 654.109664] Process accounting resumed 08:58:19 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 654.165569] Process accounting resumed 08:58:19 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 49) 08:58:19 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = syz_mount_image$nfs4(&(0x7f0000002940), &(0x7f0000002980)='./file0\x00', 0x7, 0x4, &(0x7f0000003b80)=[{&(0x7f00000029c0)="b2d1f133fdcc7538e43df326159a244124b5d4f3a778dc007860b0936fbbc4eb1b7b5b95564c22db3eea47628df9b8d0bc5b140f9f45ce36439d73d41d16e66718848666f24c5561efb05f5129df892236457024510756825794f3a71944b984e9b0b60d00493ac33db710d706234496816ac94805176416fde32906cc79382c4c2893809656009efce1256272f222c45ee79d34c03a88da8015ea46d60e98c0550c96654cfbe2eb8c6d63e6982327cc244cc9d430476ff701b685d087b4da844cd77a4776a88635f0ac97b3d474ffa64a6199ae84c2badafc82aeb16f6de20b0c64a16cfde1001dd9580bf2966dac819759b7456a56976e1085b9cfacc44ea09e48ff7cb14e80fd2c2516f0db86691cc972d7041b47a22c041908fc25998266fac62bfdda81d1d1b7f8d2b5b5b4235ab40fc4713c4b8b1e76e187193f6b933b8d7fdf8ba9fdd14a609ca023bdc668415d3b958c3c1c02fca8ab13d554f86f3415b36614ff757829d7bea21be51ffb92ba728fe83f985e8abf6e8148edcab029aa88b89e53d4b87ce4bcabae4febd233f0dd966695be66c68232b46ae2a04687c71156d02476e3b7eb82329005a28d46ee42c7c5938095da75f8d97169ab103d5a18c6178f4e89a3632a42f0d6c361163bba86fbb3af49b82db0fc4060ca801c41bfa5fb2a9037e97115cc0d457b6f128b6c7d6096f9cb6dfae07e2441c88f8b715eaabf75a4f94e3086da634e23659d8d8d9bdf56d5184e786a03fcd048c9d068e7006b0d7656b09034c1b6a36cfda5bce09789ca756491f4d2ff76cf5c10c98371455d2fad706e33af01291a9de3d26905e3edf6ae4c18037cced8d3048d1a124e6f9358b255e73a9cd1286f783994eae9a60e8ddb76f189885111d6a90b170e1607e63462739d7406d00e42a69a6c85bf9758e3210afc195790c9c53653eab8764388b3ea205577e284dd496cc27dcd3836a7d77af93b4bde294bd5bf2776f6a44fc80ece44d29286d0df95ae4192a72361cb2ff36587878c300f6a0ff0ae3fcf3b1d52b34d459953136f32838fdf03dff36635b26bb8fe5b5ba21bdd3cc51e21d2c95b78e557da5ec717486994b3d73a33da06e59bfa04b657611728a8b17507d51288dc0a09fa101dd771d0ee14320296842dc85053333ee63124867709095e4c956acb933ee9ffc595e47cdea8223bb6afb4c61c81f3ec7eadee683d811a6982953c77ab783e1a6ca95e3c21568de9528adafade5a014298f6c2f2de335a16e781905eac2de95b3e07c5fa04bf27d2874331c080ea7efb20107ad6e128ec654a4156b46b6a99b97a4d8f2d77b0264e037fa5b5e7c9008bb7d8d5b8a1d831344d351d50a4d1faeef90e6bd151e1e9868d8f616c58034113cebdaa45d8ec1a60c1b49fe86f4943333a80fb3c43e08bd536d1dcb87acf784dbdf50f790b57f05ab017dd196a563a31ec6145a9242a07e6e7664af1535a50b4d031c259a6efcc9d52c2299088fe2447a62d25783fe46cfc0388c1d19538baf7507ea2f1ec30d3d8fdc01565b1c168ff4c2cac9398037687bee38f36388d1f6824075e73074f07ccfa2c54ad154c07cd4fccd15406cb0fb648d86a55c624e342163df1270d8a3e8d55600130ab6f8fc2f93b62bf979b14f1a0b2f7f4efa000e8d10e63d6c387306c30b6f1a22eb3997f253aae5da84b2ed05341efa2cd6fe667914e521c4889fe95e15b32fb9d2165d2b327500f4c8cc2d842da1093412d5a4bffd0b876e860f7f16cc2f1d409cc0a1222116344b25dabb2b8a5d6aae488a1d4fc00b64e26fb57ce5ee9bbfd0ef2b1fc2b0761d1f7d99026018892d655b634647cc1206d201bcf57aff5348fc3e5e0209465e003eb4e122d6982b58e17108a5556113d15267fb3a719553c0f172e8bcd66830232d0f010c63e3273811db01dc3a2680ae958b7254851195c748e13ece67f6c70f327df8a3aa70111efa719035f2e67f579067cd2e5c9d0b5755ec1340119870de03c408cd41283285184dfad76f31ec1dac9a1f960870b7d8a33d9a0c67eb58a427fe6c2e71ce47d0e2321a0182d14a3ecdfc3b4b0658fb89b1b0b895311f08a7373d5735120bb5610569e64fec876192f42a7a3a959d239bcc12a899852c5cabc360f327f359d8371be88c82a229ce8456d9ec2f6f40e5942147d421c218b2e2eff4d495a4e039fa3c60f7d69d500c002aa280ddd5b1ed836a84fa42e73e793724e0aa15de610628c9305f9afde3eaab8ef06afd4e2096a24d85a43c5d5524d80f6b254ea79f60db6df907c49c275fd0d89c14ac0de1b4bded758e20925e8112e14609e0cae9c0aafcedfc8bc1842c617e2f47dddfcd0919aedcc60a98d53df355e7278d56e8ba24aad18b88580bc79fa100f188a9527e9da12ecdffaa2a0b15add3f29b7441641b6185242c5cddc29929186b3bd147092935a2befefe5ff68aab7ef79fc89d0e47ec0ff4d9f90031898feb163c9b221ec027fe5615d392b36b1ca5798435c51c7285dc1135aa6b69c8e44667b6335263fb1255708ed65d1fa90909b6e1537e4b127b1fbe4d46a74a876b8fde32ab680ff3cc42ce1319026100d8f6c014fb86bb21964029ba4ff2b5e7bd245fb0d1fd8e56c599d171bc042835c169bb96879b8b34ead7a2e3fc58ca0747b4e80b2d335f31ca8918da8502447f4e619e84c4870f2a0940cbc5ecb4555324ae3b84d02e22bce95af005c21f845b166f521e65fb25fa8aa7822b7bbca6906b4111a922aaa9aba7938e61f0982ee4aeb21d657bc08a8068b2fb08162ac8a0a1103887ad1a08bd0ca0439c1323ed051721cc15abe265f3aac5e8a1d56da796e2689d443cd3e454340f50167279ee354d88a85754dda7370e12d5b547bfb05ff52c3b7204ed9dbfa02fd88921031f81b75074e9847b33463d3c570350108bdd954444bd4a5f07fcc323b4ff6c4f5e81b4c2c4f03e60c9155db282aaaa7a95553b432165b22f1287344ed9aed6acae8948a05c531aba24aa4f421c83ab8a887f0fbd992ad77d3fac8ccef9650caf3bb9fc2c5a9ceb673d8ba2b26fa62a81027f21df4f6436b21a79af0393b2f465eb7a43ceb419f5e646fbed38e5ede9bccb035b816c903efcad63803ed3df80a094a60b808fb93883861794af681a8940690780b36e1b57208e6805e6d39d56a74db9e6baf0f3616db4f5aaf92c05103f856b245effabe2b50c04d060d0817713610d7e19f5f42ce7089f35cf87a8124a099f464f1141a9d36b5855cc028fef52d55e33e7c7bfc379090f34d44c3556e3ac38aa228c46208da468f8ec2b555346ab274c9ce41d4a4896f3fcc80dae0f9dc8de6ccaff60125d20e103b3c8664d5dd5a1faa4d7572ace91a8635574841a406582cfb0668fb58eb546ffcfc0f2d0bb239178c69efc99128faacc3b0c300c4726a739da5f05f4fb5b09ce60d578a88b91eb65f1e43aeaf1d3a0b9d8bde3a5ba5d98aea37f9607743d0c95cebaa1e211f29c6d1717e43bca31883b2322d0384aa7dc6ae39bbcfc87c540a0ad79ed2cddcfb7691f3822a2665a97b8d1acc041bc0a7258123fc111941aae509afefe24949aabda767d659708af96bc529c5c3e1db3dc5e8fb328aed682a022b4217830413eb84153b48d123463c41b50d428aab7f3866e6c6f64c9cc2615af88606f5943e8b35a7638383886814f3ee18e00c30add8d9fe9d110f13eaccaf35cde8027edc316671522543dc9842f03e9790025fdaddade3616dc44c87e41c84bdea59729c21cd334a9fb0ae8c4e28356c321135c88c8e5cd73e94b911f52de713a788f5ac8db7a0eda8d66ce00b8bc511b7ff34dd0cd2e8757966a0d8917ff837794804433a648faf69a403c1e7c4eb242563c7a910249f631ff517b76be5734883f7f7404a3f8b57087142a1368030053947e3f4ce186a8837ee4bcdff99b4c94a1262d364e311c3c25b7589007d73678e8baffa7f62d3716bc52447c3fd590321cfcc2c3bf6cee48fbac34ee274f9adebac8a948bf6baf7f0bbda0ac79baeefe3adff871da316f6fd0c27ec1c11edb9d80aedeaf1d125a122aed449b61b01f63052434085ba785de0df7f9cdd29a8af4e0ca317d19558866cc379921e9fb06695862fb5be1c295e5da555dd7b3161471359933627c4f6f8ada88af51cdcebeac1677ce83c555c9dace21d2951c1aec2f3a06583925a6796efcea87af146c74b758cdd8ffdb6205ee82550ba5ec7d740791d4e5d6f356bf7aac18f5831e3c1fa51301501c19c8e8e2db01e12632f963749476a61b4e8e47bb65726f23d1d8d8790c20001aa2d37ae37e70c86d99c249303a6b83c5d4e1b0b24399e46525c691e86b0aad8c150d451b527693dca752f8606a67a4af2e92f89b458371858ed4c977fb889850a1cea3d211720838555b67bf3fe6da6ad9fc61207174ed2d126c0dd9b215397a79938fbfb9239cdb57b44c7b9122d81056db6aae8cd48a99f096bbf3352208e9ce6d1a057900ab6d3d4adf2f14105671ca4e220aafa67b63873b8673ca7981f6cce287a7c36119fe90af5ccf7f11555c23af36dacbfcdead8868e96c4717d96ea03ac8cd9cb67eb6b2fdd584dd567ba3ce0188d2235ad34d6e284c199ebba702ba3800aa7594ede816650f30c87f8a28f1d73cc23e7c2133f4b433dbf3ff4f81854d68d512237317e032e4486c49f0cd493a3b114d7bf9d05d1d49ddb08e9f2a0ecfd84b027fb860a3e808e814e59bafd60b4f446ccded5223dbdb37efde6c5897d4137faf7f96d9889f285de63ac579e75a4212b6de5201d3a1e018e55d1d18abf62886e7da04f50458d4f684b1cd3fa7a0aa4c11fd9fccb0e7f6696853e6977d3524565ab1b2a1e98b7566cbde7ab8556dec25b329ad15282c3909ff1c8230a329ae02cd2e684c7252c9072299289f0916f4a29507fc7baeb01251e3a329a0f3b98d34d2c5cab148035dda368894e2c43891950535d858a1b9673de7d8b25d6663f7532771228663829981a2d22e134219b2db3314e6aba6c51115a887035f8ecba20af411013d4ee0d36dd25c387527feac55cfa9d2878454ea3d164539dc2f4f18cd765911e64dc124dbb296659280ce4a74540802c6acc39d1be974f1b568befe1a564de4205b87507fae85f9aae6ef9f88f21ea378a26108247df645785d624dc0937f3bebd42cd22a746922e20a5ca86c20cc3f3abb96314001223dd24cfccbfcb2a5ca472fb95850c11cf3053a75d079e9dc374176a30370ff542f2c76f94ffd97cb6202608fdb78e0d9876c3d145a2f77ba4b7aa8802c8b2c5c13922298c6bdd621e3543ffb2ba374cbc3808c5e680a195d6fcb47f406830c3f62635fde3e1aa5a0a315a370e88b5e4e5a7cab986ea709a2e4a9c1e9f653fb24c8eb05c9b1863c4d03875af3848036fdd3270eb5967e07c2be9996385d2a85bbbae8aff0cc491c3e50858569d9c79391e907eda8214c184996801e99dac39759a91fca8178b00931e0292babf4558b739df38ca5713c867781e8d48f53446eee077ee84fc4a1ac653683ab96a9747e7eb39ea298739b3c8d5f89092e0a92a9138331b1e2a7aaebd93ce312c47e5625acc203ed8c3138caa007ee230ae1382f2d759ae94df57fe980a5cfd0af00e9abb4de1676c91bf6dbe9cd35a450a8b0d5fdf2235265ab31f97caf4fc38d86a13ce99bbb42dcd4e8ab75fe944c265494076b5330c5a0b4c2cbdbff4946bd6ad26176f7b7d13bf3f13442c5cb31dc7ae797d08f0da6599b3bc561ff570c8ae118fd23b3d1f20a7c4", 0x1000, 0xfff}, {&(0x7f00000039c0)="3509ec6d09bfa6933d273f6acf40293a32a9e8f114195d17ee496f24efca7b1a045ff4f7bd50b48bd4adffa02a81b7da5b57cfb398d5cabd4ffed86ee4cc1acec9ed32cbf3eb0754d97a4d0d9a7ed3590a7633f7d9495945b8efcbad895d3cfb9b84ad2ddcb55e9e45e739d5a3df9bd290ea603fffc56fba2fe9fd9a6afd067cb27523", 0x83, 0x10001}, {&(0x7f0000003a80)}, {&(0x7f0000003ac0)="c8a88c6e78e8cf95820e8d38edff13d2b78c499af7607c59162867b1d19f8dffc7ffad1cc0e38a76ad604dd87d36abbd8b80ec9979e75bd1e4d947715a0fa708db6962a9e9ef31d75fc4a2e5a2690937eb111399bcca645265b0d455bb11f3cbc11f08902e610dca7e729160d7500c5e67ac8b84278718cf8bd5310da33f6e12b25489613b", 0x85, 0x3}], 0x4001, &(0x7f0000003c00)={[{}, {'\\\\O(@#/^!-\x8a'}, {'\\'}, {}, {'/+*,}H*#}'}, {}, {}, {'}{@--]}%\'*\\:]\\\xa7\\#/\'\xc5$}\x92.]#'}, {'\xa32,5\xd3\t'}], [{@fsname={'fsname', 0x3d, '-'}}, {@dont_hash}, {@appraise}, {@appraise_type}, {@hash}, {@smackfsdef={'smackfsdef', 0x3d, '][:\x98'}}, {@permit_directio}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/\'[:)-'}}, {@mask={'mask', 0x3d, 'MAY_WRITE'}}]}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000003d00)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_TREE_SEARCH(r2, 0xd0009411, &(0x7f0000004d00)={{r3, 0x3, 0x6, 0x8000, 0x7, 0x7, 0x20, 0x80000, 0x4, 0xffffffe1, 0x8, 0x824, 0x3, 0x9, 0x9}}) sendmmsg(r1, &(0x7f0000002900)=[{{&(0x7f0000000080)=@generic={0x21, "fad5136180682fd4de3ef314851c05d55dbb93920b5d85da21fdc1acbf13bf7e102cf9e00a53932a6eca2f950f27ad5d61b971795632a6132d66f6913fb9e2c7433a14310d87c1b2677ac09d18c468c9701b85e2a550c99802af86099d8a1af26913d422574fc2027151c463f3cc2a4da028db8d63dc489ec07edc94ebb0"}, 0x80, &(0x7f0000002700)=[{&(0x7f0000000100)="62836e9dd81ddd5321bafde532e9efef6f3df375914209935588a771d2ba70246388fa39b233e932c7102bbfce4703b88a5eec60a722635f8c6ec37d504725789601fa3d12448385fe3baac3b7914945016f672a8cce8244fcdf12042b2f88b9a7b262c388460d326e65c7a4b8d1e694ddfb4a8392b350229366c10b6d71d3f72059e139dc21b290da5c08845d3726b5833c0ffd66917518c2234241777bcfb13997973e32cefdfea8c4453a76810ce367d7b838f71579638dbce0d2b2d3c43a3c5293f02cc0e9cb512166b31eed09f7dc6282ae082f4ea78a41547820b59485ed5c5b6eb0c361d9ded448a0", 0xec}, {&(0x7f0000000200)="e152a2cde677b180a0871ec3f1290e3dc9d1aa545b41f9b16479cff43514bb636b067dd8235d798b881bdc2fac55a79684ef257692f60f625cd623fbe213d5d5d65168a4c78cb568af894118e5990fc8f236f5f67329ad6e8a224435641bd5093108a222b96b2b2115efbd9be26bc9a85ce4cdb952574e88ebb57ea8bfb8785962624d19d6fbffa70c9550e2", 0x8c}, {&(0x7f00000002c0)="0273ed3fe8877040041cc9451a0bfbfc5ba01514bf0ec974e9be51ccbdb95c33c42aec656e496fb25b321ff3e295593f2b0b888aa51b5d3c8cc2d135b09dd63e21cb471cc76db2a1ab9000854efd5cdf8a7776aa3cec9aafed4d", 0x5a}, {&(0x7f0000000340)="fdaef3006a784491568c4622622ca6472ad6db4926914ae13590ae840d99f293c7b1c0716deca636f85541e115b0aecb2152e380b71f04516889a7ef42a433b2bc794ed094788d3f8a8bd83928a1e044f81c702d78293fef0e95a6966bf9613ded4c27a9f82da02ba738dd7acba3556b6586c1ea5555123e9434a78a0275d28521593ac16cb5763ffad7487e42cfeca3cecc5bb9179ad8424b9460e2de745cef", 0xa0}, {&(0x7f0000000400)="9dbceb5c86cc0ae4326f1cc10fb126d8138cd1da9f8fa9d49f908a8dc26b522175f1a21051d2524cfa", 0x29}, {&(0x7f0000000440)="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", 0xfb}, {&(0x7f0000000540)="d5bff1de405c537e93c4cabcfd7462e9a594defc3ff3025d9254a6e7489fddacd6baf1b0871e455b21d7c2492e0976054c0a78aec47130c03daf19119a25208e8412cd8cb8cacfecbf9066ad8df70b91946777e031f8ff95e915d0b1aa44347ed7680441fed2b1150c6344e750914f7e63827b03486a89eaf50c1392cfb960a6f4208edd5d7f8e9467469e8f2c17bf2841040894c4abedbef28951c88edc3cac69b2203040f7d68665b6ba3e4e57031966d309b391d745f6a3d0f3dce43ace2fb0", 0xc1}, {&(0x7f0000000640)="79f57baac05113f7267e28b137842782e8ae511f5529182675ad8b737b63f7b568a2db09e82c1e00e0f162b61a3f5c8b2afa472e8f50365cf1fb3e38111c992c6bab45205cc05d8271c71ad4945ae14b1901c808f5d3bfa1057bb731d64862aa57f80b9c36d59f3a472b7e5109c6356bd924db30b8a8a3cc2e607893c65cbc9f86d7fe029bdd3fc2e63ab6aa1b477d1fae2dbc72fd1062b9fa", 0x99}, {&(0x7f0000000700)="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", 0x1000}, {&(0x7f0000001700)="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", 0x1000}], 0xa, &(0x7f00000027c0)=ANY=[@ANYBLOB="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"], 0x128}}], 0x1, 0x40) [ 654.229487] nfs4: Unknown parameter '\\O(@#/^!-Š' [ 654.247563] Process accounting resumed [ 654.248335] FAULT_INJECTION: forcing a failure. [ 654.248335] name failslab, interval 1, probability 0, space 0, times 0 [ 654.249988] CPU: 1 PID: 5537 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 654.250887] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 654.251976] Call Trace: [ 654.252327] dump_stack+0x107/0x167 [ 654.252694] nfs4: Unknown parameter '\\O(@#/^!-Š' [ 654.252823] should_fail.cold+0x5/0xa [ 654.253935] ? xas_alloc+0x336/0x440 [ 654.254433] should_failslab+0x5/0x20 [ 654.254940] kmem_cache_alloc+0x5b/0x310 [ 654.255488] xas_alloc+0x336/0x440 [ 654.255957] xas_create+0x34a/0x10d0 [ 654.256470] ? kernel_text_address+0xf2/0x120 [ 654.257058] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 654.257799] xas_store+0x8c/0x1c40 [ 654.258275] __xa_store+0x164/0x2d0 [ 654.258767] ? xa_delete_node+0x280/0x280 [ 654.259312] ? trace_hardirqs_on+0x5b/0x180 [ 654.259894] xa_store+0x31/0x50 [ 654.260327] __io_uring_add_tctx_node+0x1cf/0x520 [ 654.260968] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 654.261689] ? alloc_fd+0x2e7/0x670 [ 654.262173] io_uring_setup+0x1fbb/0x2980 [ 654.262735] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 654.263393] ? wait_for_completion_io+0x270/0x270 [ 654.264057] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 654.264754] ? syscall_enter_from_user_mode+0x1d/0x50 [ 654.265449] do_syscall_64+0x33/0x40 [ 654.265948] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 654.266633] RIP: 0033:0x7f932fac1b19 [ 654.267120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 654.269529] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 654.270530] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 654.271465] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 654.272388] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 654.273323] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 654.274270] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 654.279271] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 654.315332] Process accounting resumed [ 654.333057] Process accounting resumed 08:58:19 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') 08:58:19 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:58:19 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 50) [ 654.399955] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 654.400410] Process accounting resumed [ 654.450809] FAULT_INJECTION: forcing a failure. [ 654.450809] name failslab, interval 1, probability 0, space 0, times 0 [ 654.452436] CPU: 1 PID: 5548 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 654.453334] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 654.454584] Call Trace: [ 654.454932] dump_stack+0x107/0x167 [ 654.455403] should_fail.cold+0x5/0xa [ 654.455921] ? create_object.isra.0+0x3a/0xa20 [ 654.456538] should_failslab+0x5/0x20 [ 654.457040] kmem_cache_alloc+0x5b/0x310 [ 654.457606] ? mark_held_locks+0x9e/0xe0 [ 654.458138] create_object.isra.0+0x3a/0xa20 [ 654.458719] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 654.459377] kmem_cache_alloc+0x159/0x310 [ 654.459935] xas_alloc+0x336/0x440 [ 654.460399] xas_create+0x34a/0x10d0 [ 654.460928] ? kernel_text_address+0xf2/0x120 [ 654.461547] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 654.462228] xas_store+0x8c/0x1c40 [ 654.462718] __xa_store+0x164/0x2d0 [ 654.463190] ? xa_delete_node+0x280/0x280 [ 654.463747] ? trace_hardirqs_on+0x5b/0x180 [ 654.464310] xa_store+0x31/0x50 [ 654.464769] __io_uring_add_tctx_node+0x1cf/0x520 [ 654.465439] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 654.466171] ? alloc_fd+0x2e7/0x670 [ 654.466671] io_uring_setup+0x1fbb/0x2980 [ 654.467221] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 654.467895] ? wait_for_completion_io+0x270/0x270 [ 654.468566] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 654.469250] ? syscall_enter_from_user_mode+0x1d/0x50 [ 654.469953] do_syscall_64+0x33/0x40 [ 654.470445] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 654.471115] RIP: 0033:0x7f932fac1b19 [ 654.471619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 654.474035] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 654.475032] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 654.475969] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 654.476927] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 654.477881] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 654.478813] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:58:32 executing program 4: sync() creat(&(0x7f0000000000)='./file0\x00', 0x3) acct(&(0x7f0000000040)='./file0\x00') 08:58:32 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:58:32 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:32 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:58:32 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 56) 08:58:32 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 51) 08:58:32 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:32 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 667.858873] FAULT_INJECTION: forcing a failure. [ 667.858873] name failslab, interval 1, probability 0, space 0, times 0 [ 667.860306] CPU: 0 PID: 5562 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 667.861140] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 667.862164] Call Trace: [ 667.862491] dump_stack+0x107/0x167 [ 667.862682] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 667.862939] should_fail.cold+0x5/0xa [ 667.864426] ? xas_alloc+0x336/0x440 [ 667.864884] should_failslab+0x5/0x20 [ 667.865352] kmem_cache_alloc+0x5b/0x310 [ 667.865857] xas_alloc+0x336/0x440 [ 667.866300] xas_create+0x34a/0x10d0 [ 667.866762] ? kernel_text_address+0xf2/0x120 [ 667.867313] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 667.867963] xas_store+0x8c/0x1c40 [ 667.868407] __xa_store+0x164/0x2d0 [ 667.868852] ? xa_delete_node+0x280/0x280 [ 667.869362] ? trace_hardirqs_on+0x5b/0x180 [ 667.869904] xa_store+0x31/0x50 [ 667.870322] __io_uring_add_tctx_node+0x1cf/0x520 [ 667.870687] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 667.870918] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 667.872562] ? alloc_fd+0x2e7/0x670 [ 667.873013] io_uring_setup+0x1fbb/0x2980 [ 667.873532] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 667.874162] ? wait_for_completion_io+0x270/0x270 [ 667.874764] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 667.875403] ? syscall_enter_from_user_mode+0x1d/0x50 [ 667.876032] do_syscall_64+0x33/0x40 [ 667.876486] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 667.877109] RIP: 0033:0x7f932fac1b19 [ 667.877568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 667.880401] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 667.881339] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 667.886267] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 667.887135] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 667.888015] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 667.888882] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 667.893652] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 667.903443] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 667.905247] FAULT_INJECTION: forcing a failure. [ 667.905247] name failslab, interval 1, probability 0, space 0, times 0 [ 667.910811] CPU: 1 PID: 5570 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 667.911666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 667.912690] Call Trace: [ 667.913032] dump_stack+0x107/0x167 [ 667.913501] should_fail.cold+0x5/0xa [ 667.914000] ? create_object.isra.0+0x3a/0xa20 [ 667.914587] should_failslab+0x5/0x20 [ 667.915080] kmem_cache_alloc+0x5b/0x310 [ 667.915609] ? mark_held_locks+0x9e/0xe0 [ 667.916131] create_object.isra.0+0x3a/0xa20 [ 667.916692] kmemleak_alloc_percpu+0xa0/0x100 [ 667.917256] pcpu_alloc+0x4e2/0x1240 [ 667.917728] alloc_vfsmnt+0xfd/0x680 [ 667.918199] clone_mnt+0x6c/0xce0 [ 667.918626] copy_tree+0x3b0/0xa60 [ 667.919065] copy_mnt_ns+0x144/0xa00 [ 667.919520] ? kmem_cache_alloc+0x2a6/0x310 [ 667.920050] create_new_namespaces+0xd6/0xb20 [ 667.920601] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 667.921202] ksys_unshare+0x449/0x8a0 [ 667.921665] ? unshare_fd+0x1c0/0x1c0 [ 667.922144] ? ksys_write+0x1a9/0x260 [ 667.922613] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 667.923253] __x64_sys_unshare+0x2d/0x40 [ 667.923745] do_syscall_64+0x33/0x40 [ 667.924198] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 667.924823] RIP: 0033:0x7fc7d3fdfb19 [ 667.925281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 667.927560] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 667.928491] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 667.929358] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 667.930238] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 667.931103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 667.931968] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:58:32 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 52) [ 667.982380] FAULT_INJECTION: forcing a failure. [ 667.982380] name failslab, interval 1, probability 0, space 0, times 0 [ 667.983774] CPU: 1 PID: 5574 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 667.984603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 667.985615] Call Trace: [ 667.985976] dump_stack+0x107/0x167 [ 667.986421] should_fail.cold+0x5/0xa [ 667.986887] ? create_object.isra.0+0x3a/0xa20 [ 667.987446] should_failslab+0x5/0x20 [ 667.987911] kmem_cache_alloc+0x5b/0x310 [ 667.988405] ? mark_held_locks+0x9e/0xe0 [ 667.988908] create_object.isra.0+0x3a/0xa20 [ 667.989441] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 668.002017] kmem_cache_alloc+0x159/0x310 [ 668.002524] xas_alloc+0x336/0x440 [ 668.013952] xas_create+0x34a/0x10d0 [ 668.014409] ? kernel_text_address+0xf2/0x120 [ 668.014959] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 668.015595] xas_store+0x8c/0x1c40 [ 668.016036] __xa_store+0x164/0x2d0 [ 668.016481] ? xa_delete_node+0x280/0x280 [ 668.016988] ? trace_hardirqs_on+0x5b/0x180 [ 668.017513] xa_store+0x31/0x50 [ 668.017930] __io_uring_add_tctx_node+0x1cf/0x520 [ 668.018518] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 668.019153] ? alloc_fd+0x2e7/0x670 [ 668.019602] io_uring_setup+0x1fbb/0x2980 [ 668.020108] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 668.020723] ? wait_for_completion_io+0x270/0x270 [ 668.021321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 668.021967] ? syscall_enter_from_user_mode+0x1d/0x50 [ 668.022591] do_syscall_64+0x33/0x40 [ 668.023044] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 668.023668] RIP: 0033:0x7f932fac1b19 [ 668.024124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 668.026374] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 668.027296] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 668.028160] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 668.029021] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 668.029901] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 668.030772] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 668.032129] Process accounting resumed 08:58:33 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 668.062662] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. 08:58:33 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 57) [ 668.120343] FAULT_INJECTION: forcing a failure. [ 668.120343] name failslab, interval 1, probability 0, space 0, times 0 [ 668.121783] CPU: 0 PID: 5581 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 668.122657] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 668.123679] Call Trace: [ 668.124006] dump_stack+0x107/0x167 [ 668.124450] should_fail.cold+0x5/0xa [ 668.124918] ? alloc_vfsmnt+0x23/0x680 [ 668.125393] should_failslab+0x5/0x20 [ 668.125866] kmem_cache_alloc+0x5b/0x310 [ 668.126364] ? copy_tree+0x61a/0xa60 [ 668.126820] alloc_vfsmnt+0x23/0x680 [ 668.127273] clone_mnt+0x6c/0xce0 [ 668.127700] copy_tree+0x3b0/0xa60 [ 668.128142] copy_mnt_ns+0x144/0xa00 [ 668.128599] ? kmem_cache_alloc+0x2a6/0x310 [ 668.129130] create_new_namespaces+0xd6/0xb20 [ 668.129682] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 668.130299] ksys_unshare+0x449/0x8a0 [ 668.130765] ? unshare_fd+0x1c0/0x1c0 [ 668.131233] ? ksys_write+0x1a9/0x260 [ 668.131706] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 668.132350] __x64_sys_unshare+0x2d/0x40 [ 668.132847] do_syscall_64+0x33/0x40 [ 668.133302] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 668.133945] RIP: 0033:0x7fc7d3fdfb19 [ 668.134407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 668.136654] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 668.137585] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 668.138476] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 668.139347] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 668.140217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 668.141088] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 668.171950] Process accounting resumed 08:58:33 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 58) 08:58:33 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 53) [ 668.241295] FAULT_INJECTION: forcing a failure. [ 668.241295] name failslab, interval 1, probability 0, space 0, times 0 [ 668.242739] CPU: 1 PID: 5585 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 668.243567] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 668.244571] Call Trace: [ 668.244899] dump_stack+0x107/0x167 [ 668.245343] should_fail.cold+0x5/0xa [ 668.245809] ? create_object.isra.0+0x3a/0xa20 [ 668.250390] should_failslab+0x5/0x20 [ 668.250852] kmem_cache_alloc+0x5b/0x310 [ 668.251341] ? find_held_lock+0x2c/0x110 [ 668.251834] create_object.isra.0+0x3a/0xa20 [ 668.252360] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 668.252974] kmem_cache_alloc+0x159/0x310 [ 668.253483] alloc_vfsmnt+0x23/0x680 [ 668.253955] clone_mnt+0x6c/0xce0 [ 668.254379] copy_tree+0x3b0/0xa60 [ 668.254817] copy_mnt_ns+0x144/0xa00 [ 668.255270] ? kmem_cache_alloc+0x2a6/0x310 [ 668.255797] create_new_namespaces+0xd6/0xb20 [ 668.256345] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 668.256943] ksys_unshare+0x449/0x8a0 [ 668.257405] ? unshare_fd+0x1c0/0x1c0 [ 668.257876] ? ksys_write+0x1a9/0x260 [ 668.258353] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 668.259007] __x64_sys_unshare+0x2d/0x40 [ 668.259521] do_syscall_64+0x33/0x40 [ 668.259999] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 668.260623] RIP: 0033:0x7fc7d3fdfb19 [ 668.261079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 668.263327] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 668.264252] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 668.265117] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 668.265996] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 668.266861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 668.267729] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 668.303864] Process accounting resumed [ 668.306087] FAULT_INJECTION: forcing a failure. [ 668.306087] name failslab, interval 1, probability 0, space 0, times 0 [ 668.307557] CPU: 1 PID: 5587 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 668.308389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 668.309402] Call Trace: [ 668.309725] dump_stack+0x107/0x167 [ 668.310259] should_fail.cold+0x5/0xa [ 668.310726] ? xas_alloc+0x336/0x440 [ 668.311182] should_failslab+0x5/0x20 [ 668.311647] kmem_cache_alloc+0x5b/0x310 [ 668.312145] xas_alloc+0x336/0x440 [ 668.312582] xas_create+0x34a/0x10d0 [ 668.313042] ? kernel_text_address+0xf2/0x120 [ 668.313591] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 668.314288] xas_store+0x8c/0x1c40 [ 668.314731] __xa_store+0x164/0x2d0 [ 668.315247] ? xa_delete_node+0x280/0x280 [ 668.315765] ? trace_hardirqs_on+0x5b/0x180 [ 668.316296] xa_store+0x31/0x50 [ 668.316701] __io_uring_add_tctx_node+0x1cf/0x520 [ 668.317293] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 668.317980] ? alloc_fd+0x2e7/0x670 [ 668.318484] io_uring_setup+0x1fbb/0x2980 [ 668.319026] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 668.319644] ? wait_for_completion_io+0x270/0x270 [ 668.320249] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 668.320888] ? syscall_enter_from_user_mode+0x1d/0x50 [ 668.321517] do_syscall_64+0x33/0x40 [ 668.322025] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 668.322710] RIP: 0033:0x7f932fac1b19 [ 668.323167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 668.325408] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 668.326387] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 668.327273] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 668.328185] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 668.329088] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 668.329996] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:58:33 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 59) [ 668.453083] FAULT_INJECTION: forcing a failure. [ 668.453083] name failslab, interval 1, probability 0, space 0, times 0 [ 668.456311] CPU: 1 PID: 5590 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 668.458030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 668.460073] Call Trace: [ 668.460705] dump_stack+0x107/0x167 [ 668.461578] should_fail.cold+0x5/0xa [ 668.462729] should_failslab+0x5/0x20 [ 668.463646] __kmalloc_track_caller+0x79/0x370 [ 668.464750] ? kstrdup_const+0x53/0x80 [ 668.465690] kstrdup+0x36/0x70 [ 668.466201] kstrdup_const+0x53/0x80 [ 668.466661] alloc_vfsmnt+0xb5/0x680 [ 668.467117] clone_mnt+0x6c/0xce0 [ 668.467544] copy_tree+0x3b0/0xa60 [ 668.467986] copy_mnt_ns+0x144/0xa00 [ 668.468443] ? kmem_cache_alloc+0x2a6/0x310 [ 668.468975] create_new_namespaces+0xd6/0xb20 [ 668.469527] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 668.470270] ksys_unshare+0x449/0x8a0 [ 668.470743] ? unshare_fd+0x1c0/0x1c0 [ 668.471212] ? ksys_write+0x1a9/0x260 [ 668.471693] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 668.472364] __x64_sys_unshare+0x2d/0x40 [ 668.472882] do_syscall_64+0x33/0x40 [ 668.473352] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 668.474192] RIP: 0033:0x7fc7d3fdfb19 [ 668.475119] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 668.480034] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 668.481933] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 668.484094] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 668.485832] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 668.487927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 668.489693] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:58:33 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 54) [ 668.533595] FAULT_INJECTION: forcing a failure. [ 668.533595] name failslab, interval 1, probability 0, space 0, times 0 [ 668.535087] CPU: 0 PID: 5592 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 668.535933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 668.536956] Call Trace: [ 668.537297] dump_stack+0x107/0x167 [ 668.537754] should_fail.cold+0x5/0xa [ 668.538271] ? create_object.isra.0+0x3a/0xa20 [ 668.538845] should_failslab+0x5/0x20 [ 668.539319] kmem_cache_alloc+0x5b/0x310 [ 668.539703] Process accounting resumed [ 668.539834] ? mark_held_locks+0x9e/0xe0 [ 668.540797] create_object.isra.0+0x3a/0xa20 [ 668.541349] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 668.542002] kmem_cache_alloc+0x159/0x310 [ 668.542527] xas_alloc+0x336/0x440 [ 668.542981] xas_create+0x34a/0x10d0 [ 668.543452] ? kernel_text_address+0xf2/0x120 [ 668.544020] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 668.544680] xas_store+0x8c/0x1c40 [ 668.545137] __xa_store+0x164/0x2d0 [ 668.545591] ? xa_delete_node+0x280/0x280 [ 668.546140] ? trace_hardirqs_on+0x5b/0x180 [ 668.546686] xa_store+0x31/0x50 [ 668.547097] __io_uring_add_tctx_node+0x1cf/0x520 [ 668.547702] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 668.548358] ? alloc_fd+0x2e7/0x670 [ 668.548829] io_uring_setup+0x1fbb/0x2980 [ 668.549350] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 668.549997] ? wait_for_completion_io+0x270/0x270 [ 668.550615] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 668.551268] ? syscall_enter_from_user_mode+0x1d/0x50 [ 668.551912] do_syscall_64+0x33/0x40 [ 668.552376] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 668.553015] RIP: 0033:0x7f932fac1b19 [ 668.553494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 668.555772] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 668.556721] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 668.557606] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 668.558507] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 668.559380] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 668.560257] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:58:33 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 60) [ 668.601197] FAULT_INJECTION: forcing a failure. [ 668.601197] name failslab, interval 1, probability 0, space 0, times 0 [ 668.602624] CPU: 1 PID: 5594 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 668.603448] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 668.604451] Call Trace: [ 668.604780] dump_stack+0x107/0x167 [ 668.605221] should_fail.cold+0x5/0xa [ 668.605685] ? create_object.isra.0+0x3a/0xa20 [ 668.606258] should_failslab+0x5/0x20 [ 668.606721] kmem_cache_alloc+0x5b/0x310 [ 668.607216] create_object.isra.0+0x3a/0xa20 [ 668.607748] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 668.608366] __kmalloc_track_caller+0x177/0x370 [ 668.608938] ? kstrdup_const+0x53/0x80 [ 668.609416] kstrdup+0x36/0x70 [ 668.609810] kstrdup_const+0x53/0x80 [ 668.610352] alloc_vfsmnt+0xb5/0x680 [ 668.610853] clone_mnt+0x6c/0xce0 [ 668.611280] copy_tree+0x3b0/0xa60 [ 668.611721] copy_mnt_ns+0x144/0xa00 [ 668.612182] ? kmem_cache_alloc+0x2a6/0x310 [ 668.612714] create_new_namespaces+0xd6/0xb20 [ 668.613267] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 668.613879] ksys_unshare+0x449/0x8a0 [ 668.614402] ? unshare_fd+0x1c0/0x1c0 [ 668.614970] ? ksys_write+0x1a9/0x260 [ 668.615450] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 668.616153] __x64_sys_unshare+0x2d/0x40 [ 668.616648] do_syscall_64+0x33/0x40 [ 668.617104] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 668.617730] RIP: 0033:0x7fc7d3fdfb19 [ 668.618241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 668.620474] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 668.621399] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 668.622293] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 668.623317] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 668.624188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 668.625056] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 668.663580] Process accounting resumed [ 668.720059] Process accounting resumed [ 670.013811] Process accounting resumed 08:58:47 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:58:47 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 55) 08:58:47 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 61) [ 682.682844] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. 08:58:47 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:47 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:58:47 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:47 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:58:47 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r1, 0x0) fstat(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0}, &(0x7f00000001c0)=0xc) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r4, 0x0) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r5, 0x0) statx(r0, &(0x7f0000000200)='./file0\x00', 0x0, 0x1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000001880)={0x0, 0x0, 0x0}, &(0x7f00000018c0)=0xc) lsetxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000001900)={{}, {0x1, 0x7}, [{0x2, 0x4, r1}, {0x2, 0x2, r2}, {0x2, 0x0, r3}, {0x2, 0x5, r4}, {0x2, 0x0, r5}, {0x2, 0x0, r6}], {}, [{0x8, 0x6, r7}, {0x8, 0x6, 0xee01}], {0x10, 0x2}, {0x20, 0x6}}, 0x64, 0x2) [ 682.711522] FAULT_INJECTION: forcing a failure. [ 682.711522] name failslab, interval 1, probability 0, space 0, times 0 [ 682.712922] CPU: 0 PID: 5601 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 682.713773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 682.714795] Call Trace: [ 682.715123] dump_stack+0x107/0x167 [ 682.715569] should_fail.cold+0x5/0xa [ 682.716036] ? xas_alloc+0x336/0x440 [ 682.716493] should_failslab+0x5/0x20 [ 682.716960] kmem_cache_alloc+0x5b/0x310 [ 682.717458] xas_alloc+0x336/0x440 [ 682.717893] xas_create+0x34a/0x10d0 [ 682.718356] ? kernel_text_address+0xf2/0x120 [ 682.718927] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 682.719567] xas_store+0x8c/0x1c40 [ 682.720009] __xa_store+0x164/0x2d0 [ 682.720453] ? xa_delete_node+0x280/0x280 [ 682.720962] ? trace_hardirqs_on+0x5b/0x180 [ 682.721491] xa_store+0x31/0x50 [ 682.721895] __io_uring_add_tctx_node+0x1cf/0x520 [ 682.722505] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 682.723140] ? alloc_fd+0x2e7/0x670 [ 682.723592] io_uring_setup+0x1fbb/0x2980 [ 682.724103] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 682.724724] ? wait_for_completion_io+0x270/0x270 [ 682.725325] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 682.725963] ? syscall_enter_from_user_mode+0x1d/0x50 [ 682.726755] do_syscall_64+0x33/0x40 [ 682.727210] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 682.727833] RIP: 0033:0x7f932fac1b19 [ 682.728292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 682.730548] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 682.731477] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 682.732344] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 682.733212] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 682.734079] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 682.734957] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 682.745837] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 682.752663] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 682.757410] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 682.767206] FAULT_INJECTION: forcing a failure. [ 682.767206] name failslab, interval 1, probability 0, space 0, times 0 [ 682.768674] CPU: 0 PID: 5608 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 682.769554] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 682.770570] Call Trace: [ 682.770897] dump_stack+0x107/0x167 [ 682.771340] should_fail.cold+0x5/0xa [ 682.771803] ? create_object.isra.0+0x3a/0xa20 [ 682.772358] should_failslab+0x5/0x20 [ 682.772819] kmem_cache_alloc+0x5b/0x310 [ 682.773314] create_object.isra.0+0x3a/0xa20 [ 682.773852] kmemleak_alloc_percpu+0xa0/0x100 [ 682.774407] pcpu_alloc+0x4e2/0x1240 [ 682.774875] alloc_vfsmnt+0xfd/0x680 [ 682.775330] clone_mnt+0x6c/0xce0 [ 682.775758] copy_tree+0x3b0/0xa60 [ 682.776201] copy_mnt_ns+0x144/0xa00 [ 682.776658] ? kmem_cache_alloc+0x2a6/0x310 [ 682.777188] create_new_namespaces+0xd6/0xb20 [ 682.777741] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 682.778340] ksys_unshare+0x449/0x8a0 [ 682.778818] ? unshare_fd+0x1c0/0x1c0 [ 682.779285] ? ksys_write+0x1a9/0x260 [ 682.779757] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 682.780403] __x64_sys_unshare+0x2d/0x40 [ 682.780895] do_syscall_64+0x33/0x40 [ 682.781347] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 682.781969] RIP: 0033:0x7fc7d3fdfb19 08:58:47 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 56) [ 682.782429] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 682.784668] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 682.785728] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 682.786616] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 682.787487] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 682.788354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 682.789226] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 682.817838] Process accounting resumed [ 682.871711] FAULT_INJECTION: forcing a failure. [ 682.871711] name failslab, interval 1, probability 0, space 0, times 0 [ 682.874857] CPU: 0 PID: 5622 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 682.876526] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 682.878617] Call Trace: [ 682.879256] dump_stack+0x107/0x167 [ 682.880132] should_fail.cold+0x5/0xa [ 682.881050] ? xas_alloc+0x336/0x440 [ 682.881947] should_failslab+0x5/0x20 [ 682.882953] kmem_cache_alloc+0x5b/0x310 [ 682.883940] xas_alloc+0x336/0x440 [ 682.884798] xas_create+0x34a/0x10d0 [ 682.885702] ? kernel_text_address+0xf2/0x120 [ 682.886891] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 682.888170] xas_store+0x8c/0x1c40 [ 682.889034] __xa_store+0x164/0x2d0 [ 682.889908] ? xa_delete_node+0x280/0x280 [ 682.891027] ? trace_hardirqs_on+0x5b/0x180 [ 682.892073] xa_store+0x31/0x50 [ 682.892868] __io_uring_add_tctx_node+0x1cf/0x520 [ 682.894034] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 682.895497] ? alloc_fd+0x2e7/0x670 [ 682.896384] io_uring_setup+0x1fbb/0x2980 [ 682.897388] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 682.898581] ? wait_for_completion_io+0x270/0x270 [ 682.899192] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 682.899830] ? syscall_enter_from_user_mode+0x1d/0x50 [ 682.900460] do_syscall_64+0x33/0x40 [ 682.900915] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 682.901539] RIP: 0033:0x7f932fac1b19 [ 682.901999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 682.906949] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 682.908802] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 682.910586] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 682.912326] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 682.914065] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 682.916102] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 682.938257] Process accounting resumed 08:59:07 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x101}}, './file0\x00'}) 08:59:07 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 57) 08:59:07 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:59:07 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 702.289307] FAULT_INJECTION: forcing a failure. [ 702.289307] name failslab, interval 1, probability 0, space 0, times 0 [ 702.290751] CPU: 0 PID: 5631 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 702.291602] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 702.292612] Call Trace: [ 702.292939] dump_stack+0x107/0x167 [ 702.293386] should_fail.cold+0x5/0xa [ 702.293855] ? xas_alloc+0x336/0x440 [ 702.294316] should_failslab+0x5/0x20 [ 702.294783] kmem_cache_alloc+0x5b/0x310 [ 702.295299] xas_alloc+0x336/0x440 [ 702.295738] xas_create+0x34a/0x10d0 [ 702.296201] ? kernel_text_address+0xf2/0x120 [ 702.296752] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 702.297394] xas_store+0x8c/0x1c40 [ 702.297839] __xa_store+0x164/0x2d0 [ 702.298290] ? xa_delete_node+0x280/0x280 [ 702.298802] ? trace_hardirqs_on+0x5b/0x180 [ 702.299350] xa_store+0x31/0x50 [ 702.299757] __io_uring_add_tctx_node+0x1cf/0x520 [ 702.300346] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 702.300984] ? alloc_fd+0x2e7/0x670 [ 702.301437] io_uring_setup+0x1fbb/0x2980 [ 702.301949] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 702.302573] ? wait_for_completion_io+0x270/0x270 [ 702.303203] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 702.303425] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 702.303842] ? syscall_enter_from_user_mode+0x1d/0x50 [ 702.303857] do_syscall_64+0x33/0x40 [ 702.303876] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 702.306697] RIP: 0033:0x7f932fac1b19 [ 702.307175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 702.309434] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 702.310370] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 702.311255] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 702.312129] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 702.313006] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 702.313879] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:59:07 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:59:07 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:59:07 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:59:07 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 62) [ 702.334121] Process accounting resumed [ 702.345413] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 702.348978] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 08:59:07 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 58) [ 702.378790] FAULT_INJECTION: forcing a failure. [ 702.378790] name failslab, interval 1, probability 0, space 0, times 0 [ 702.380207] CPU: 0 PID: 5643 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 702.381036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 702.382040] Call Trace: [ 702.382363] dump_stack+0x107/0x167 [ 702.382808] should_fail.cold+0x5/0xa [ 702.387302] ? create_object.isra.0+0x3a/0xa20 [ 702.387857] should_failslab+0x5/0x20 [ 702.388317] kmem_cache_alloc+0x5b/0x310 [ 702.388808] ? mark_held_locks+0x9e/0xe0 [ 702.389300] create_object.isra.0+0x3a/0xa20 [ 702.389835] kmemleak_alloc_percpu+0xa0/0x100 [ 702.390387] pcpu_alloc+0x4e2/0x1240 [ 702.390851] alloc_vfsmnt+0xfd/0x680 [ 702.391323] clone_mnt+0x6c/0xce0 [ 702.391749] copy_tree+0x3b0/0xa60 [ 702.392189] copy_mnt_ns+0x144/0xa00 [ 702.392644] ? kmem_cache_alloc+0x2a6/0x310 [ 702.393173] create_new_namespaces+0xd6/0xb20 [ 702.393729] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 702.394327] ksys_unshare+0x449/0x8a0 [ 702.394790] ? unshare_fd+0x1c0/0x1c0 [ 702.395268] ? ksys_write+0x1a9/0x260 [ 702.395736] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 702.396375] __x64_sys_unshare+0x2d/0x40 [ 702.396867] do_syscall_64+0x33/0x40 [ 702.397319] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 702.397942] RIP: 0033:0x7fc7d3fdfb19 [ 702.398401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 702.400657] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 702.401580] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 702.402446] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 702.403329] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 702.404195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 702.405061] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 08:59:07 executing program 4: prctl$PR_SET_FPEMU(0xa, 0x3) creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 702.438078] Process accounting resumed [ 702.444179] FAULT_INJECTION: forcing a failure. [ 702.444179] name failslab, interval 1, probability 0, space 0, times 0 [ 702.445578] CPU: 0 PID: 5651 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 702.446410] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 702.451446] Call Trace: [ 702.451772] dump_stack+0x107/0x167 [ 702.452216] should_fail.cold+0x5/0xa [ 702.452682] ? create_object.isra.0+0x3a/0xa20 [ 702.453240] should_failslab+0x5/0x20 [ 702.453706] kmem_cache_alloc+0x5b/0x310 [ 702.454199] ? mark_held_locks+0x9e/0xe0 [ 702.454696] create_object.isra.0+0x3a/0xa20 [ 702.455247] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 702.455868] kmem_cache_alloc+0x159/0x310 [ 702.456380] xas_alloc+0x336/0x440 [ 702.456817] xas_create+0x34a/0x10d0 [ 702.457277] ? kernel_text_address+0xf2/0x120 [ 702.457827] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 702.458465] xas_store+0x8c/0x1c40 [ 702.458909] __xa_store+0x164/0x2d0 [ 702.459368] ? xa_delete_node+0x280/0x280 [ 702.459879] ? trace_hardirqs_on+0x5b/0x180 [ 702.460410] xa_store+0x31/0x50 [ 702.460816] __io_uring_add_tctx_node+0x1cf/0x520 [ 702.461402] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 702.462041] ? alloc_fd+0x2e7/0x670 [ 702.462496] io_uring_setup+0x1fbb/0x2980 [ 702.463007] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 702.463642] ? wait_for_completion_io+0x270/0x270 [ 702.464243] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 702.464882] ? syscall_enter_from_user_mode+0x1d/0x50 [ 702.465515] do_syscall_64+0x33/0x40 [ 702.465969] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 702.466594] RIP: 0033:0x7f932fac1b19 [ 702.467052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 702.469307] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 702.470234] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 702.471108] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 702.471979] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 702.472847] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 702.473715] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 702.513444] Process accounting resumed 08:59:07 executing program 4: creat(&(0x7f0000000080)='./file0\x00', 0x1a2) acct(&(0x7f0000000040)='./file0\x00') [ 702.540400] Process accounting resumed [ 702.636685] Process accounting resumed 08:59:21 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 63) [ 716.152659] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 08:59:21 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:59:21 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:59:21 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:59:21 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r0, &(0x7f0000000240)=""/83, 0x53, 0x200000048) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="5bfb0000000000002e2f66686c653000"]) 08:59:21 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 59) 08:59:21 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 716.163496] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 716.168148] FAULT_INJECTION: forcing a failure. [ 716.168148] name failslab, interval 1, probability 0, space 0, times 0 [ 716.170006] CPU: 1 PID: 5674 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 716.170840] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.171878] Call Trace: [ 716.172208] dump_stack+0x107/0x167 [ 716.172668] should_fail.cold+0x5/0xa [ 716.173132] ? alloc_vfsmnt+0x23/0x680 [ 716.173608] should_failslab+0x5/0x20 [ 716.174070] kmem_cache_alloc+0x5b/0x310 [ 716.174558] ? copy_tree+0x61a/0xa60 [ 716.175012] alloc_vfsmnt+0x23/0x680 [ 716.175466] clone_mnt+0x6c/0xce0 [ 716.175984] copy_tree+0x3b0/0xa60 [ 716.176422] copy_mnt_ns+0x144/0xa00 [ 716.176875] ? kmem_cache_alloc+0x2a6/0x310 [ 716.177404] create_new_namespaces+0xd6/0xb20 [ 716.177952] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 716.178545] ksys_unshare+0x449/0x8a0 [ 716.179003] ? unshare_fd+0x1c0/0x1c0 [ 716.179467] ? ksys_write+0x1a9/0x260 [ 716.179974] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.180611] __x64_sys_unshare+0x2d/0x40 [ 716.181104] do_syscall_64+0x33/0x40 [ 716.181558] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.182181] RIP: 0033:0x7fc7d3fdfb19 08:59:21 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 716.182641] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 716.189350] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 716.190277] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 716.191145] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 716.192672] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 716.193251] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 716.193552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 716.193560] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 716.197465] FAULT_INJECTION: forcing a failure. [ 716.197465] name failslab, interval 1, probability 0, space 0, times 0 [ 716.198837] CPU: 1 PID: 5666 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 716.211681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.212705] Call Trace: [ 716.213038] dump_stack+0x107/0x167 [ 716.213491] should_fail.cold+0x5/0xa [ 716.213960] ? xas_alloc+0x336/0x440 [ 716.214425] should_failslab+0x5/0x20 [ 716.214898] kmem_cache_alloc+0x5b/0x310 [ 716.219745] xas_alloc+0x336/0x440 [ 716.220192] xas_create+0x34a/0x10d0 [ 716.220664] ? kernel_text_address+0xf2/0x120 [ 716.221223] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 716.221877] xas_store+0x8c/0x1c40 [ 716.222325] __xa_store+0x164/0x2d0 [ 716.222778] ? xa_delete_node+0x280/0x280 [ 716.223294] ? trace_hardirqs_on+0x5b/0x180 [ 716.224765] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 716.231925] xa_store+0x31/0x50 [ 716.231942] __io_uring_add_tctx_node+0x1cf/0x520 [ 716.231954] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 716.231965] ? alloc_fd+0x2e7/0x670 [ 716.231984] io_uring_setup+0x1fbb/0x2980 [ 716.232001] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 716.232014] ? wait_for_completion_io+0x270/0x270 [ 716.232040] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.232052] ? syscall_enter_from_user_mode+0x1d/0x50 [ 716.232068] do_syscall_64+0x33/0x40 [ 716.238482] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.239113] RIP: 0033:0x7f932fac1b19 [ 716.247599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 716.249888] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 716.254605] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 716.255472] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 716.257352] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 716.258221] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 716.259086] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 716.263772] Process accounting resumed 08:59:21 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x210040, 0x87) acct(&(0x7f0000000040)='./file0\x00') r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2, 0x10, r0, 0x0) clock_gettime(0x0, &(0x7f00000000c0)) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) r2 = syz_io_uring_setup(0x1841, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000080)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r5}}, 0x0) r6 = syz_io_uring_setup(0x1841, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000080)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000140)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x3, 0x7, 0x0, 0x4, 0x0, 0x1, {0x0, r9}}, 0x3e3ed182) 08:59:21 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 64) [ 716.358153] FAULT_INJECTION: forcing a failure. [ 716.358153] name failslab, interval 1, probability 0, space 0, times 0 [ 716.359659] CPU: 0 PID: 5686 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 716.360532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.361565] Call Trace: [ 716.361921] dump_stack+0x107/0x167 [ 716.362398] should_fail.cold+0x5/0xa [ 716.362899] ? create_object.isra.0+0x3a/0xa20 [ 716.363494] should_failslab+0x5/0x20 [ 716.368020] kmem_cache_alloc+0x5b/0x310 [ 716.368546] ? find_held_lock+0x2c/0x110 [ 716.369073] create_object.isra.0+0x3a/0xa20 [ 716.369637] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 716.370280] kmem_cache_alloc+0x159/0x310 [ 716.370791] alloc_vfsmnt+0x23/0x680 [ 716.371247] clone_mnt+0x6c/0xce0 [ 716.371696] copy_tree+0x3b0/0xa60 [ 716.372141] copy_mnt_ns+0x144/0xa00 [ 716.372598] ? kmem_cache_alloc+0x2a6/0x310 [ 716.373131] create_new_namespaces+0xd6/0xb20 [ 716.373683] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 716.374285] ksys_unshare+0x449/0x8a0 [ 716.374748] ? unshare_fd+0x1c0/0x1c0 [ 716.375216] ? ksys_write+0x1a9/0x260 [ 716.375700] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.376342] __x64_sys_unshare+0x2d/0x40 [ 716.376837] do_syscall_64+0x33/0x40 [ 716.377292] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.377920] RIP: 0033:0x7fc7d3fdfb19 [ 716.378381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 716.380635] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 716.381566] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 716.382441] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 716.383311] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 716.384277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 716.385155] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 716.388628] Process accounting resumed [ 716.461835] Process accounting resumed 08:59:21 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x2, 0x0, &(0x7f0000000180)) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000000c0)=""/214, 0xd6}, {&(0x7f00000001c0)=""/29, 0x1d}, {&(0x7f00000005c0)=""/57, 0x39}, {&(0x7f0000000240)=""/15, 0xf}, {&(0x7f0000000280)=""/100, 0xfffffd6b}, {&(0x7f0000000300)=""/139, 0x8b}], 0x6, &(0x7f0000000440)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}, 0x40000000) syz_open_dev$evdev(&(0x7f0000000080), 0x78, 0x90080) acct(&(0x7f0000000040)='./file0\x00') r1 = socket$inet6_udp(0xa, 0x2, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r1, 0x80, &(0x7f0000000200)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0x9) openat(0xffffffffffffff9c, &(0x7f0000000500)='./file1\x00', 0x82800, 0x1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r2, 0x6, 0x2, 0x0, &(0x7f0000000180)) connect$inet6(r2, &(0x7f0000000540)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x10000}, 0x1c) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0xa, &(0x7f0000000600)=0x6dbe, 0x0) getsockopt$inet6_tcp_int(r3, 0x6, 0x2, 0x0, &(0x7f0000000180)) sendfile(r3, r2, 0x0, 0x7fffffff) [ 716.540125] Process accounting resumed 08:59:21 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 60) 08:59:21 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 65) [ 716.638469] FAULT_INJECTION: forcing a failure. [ 716.638469] name failslab, interval 1, probability 0, space 0, times 0 [ 716.645788] CPU: 0 PID: 5694 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 716.647789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.650216] Call Trace: [ 716.650972] dump_stack+0x107/0x167 [ 716.652040] should_fail.cold+0x5/0xa [ 716.653135] ? create_object.isra.0+0x3a/0xa20 [ 716.654442] should_failslab+0x5/0x20 [ 716.655536] kmem_cache_alloc+0x5b/0x310 [ 716.656694] ? mark_held_locks+0x9e/0xe0 [ 716.657651] create_object.isra.0+0x3a/0xa20 [ 716.658680] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 716.659897] kmem_cache_alloc+0x159/0x310 [ 716.660942] xas_alloc+0x336/0x440 [ 716.661955] xas_create+0x34a/0x10d0 [ 716.663024] ? kernel_text_address+0xf2/0x120 [ 716.664340] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 716.665844] xas_store+0x8c/0x1c40 [ 716.666632] __xa_store+0x164/0x2d0 [ 716.667668] ? xa_delete_node+0x280/0x280 [ 716.668834] ? trace_hardirqs_on+0x5b/0x180 [ 716.670074] xa_store+0x31/0x50 [ 716.671022] __io_uring_add_tctx_node+0x1cf/0x520 [ 716.672417] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 716.673915] ? alloc_fd+0x2e7/0x670 [ 716.674424] io_uring_setup+0x1fbb/0x2980 [ 716.675003] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 716.676403] ? wait_for_completion_io+0x270/0x270 [ 716.677251] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.677983] ? syscall_enter_from_user_mode+0x1d/0x50 [ 716.678698] do_syscall_64+0x33/0x40 [ 716.679213] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.680336] RIP: 0033:0x7f932fac1b19 [ 716.681217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 716.684002] RSP: 002b:00007f932d037108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 716.684987] RAX: ffffffffffffffda RBX: 00007f932fbd4f60 RCX: 00007f932fac1b19 [ 716.685971] RDX: 0000000020ffc000 RSI: 00000000200001c0 RDI: 0000000000003875 [ 716.686951] RBP: 00000000200001c0 R08: 0000000020000100 R09: 0000000020000100 [ 716.687913] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000100 [ 716.688781] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 716.696253] Process accounting resumed [ 716.726968] Process accounting resumed 08:59:21 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') lgetxattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='trusted.syz\x00', &(0x7f0000000100)=""/40, 0x28) setxattr$incfs_id(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0)={'0000000000000000000000000000000', 0x30}, 0x20, 0x2) 08:59:21 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 61) [ 716.811546] FAULT_INJECTION: forcing a failure. [ 716.811546] name failslab, interval 1, probability 0, space 0, times 0 [ 716.817057] CPU: 0 PID: 5699 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 716.819107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.820192] Call Trace: [ 716.820519] dump_stack+0x107/0x167 [ 716.820963] should_fail.cold+0x5/0xa [ 716.821433] should_failslab+0x5/0x20 [ 716.821900] __kmalloc_track_caller+0x79/0x370 [ 716.822457] ? kstrdup_const+0x53/0x80 [ 716.822934] kstrdup+0x36/0x70 [ 716.823327] kstrdup_const+0x53/0x80 [ 716.832111] alloc_vfsmnt+0xb5/0x680 [ 716.833184] clone_mnt+0x6c/0xce0 [ 716.834178] copy_tree+0x3b0/0xa60 [ 716.835200] copy_mnt_ns+0x144/0xa00 [ 716.836285] ? kmem_cache_alloc+0x2a6/0x310 [ 716.837525] create_new_namespaces+0xd6/0xb20 [ 716.838845] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 716.840277] ksys_unshare+0x449/0x8a0 [ 716.841364] ? unshare_fd+0x1c0/0x1c0 [ 716.842453] ? ksys_write+0x1a9/0x260 [ 716.843543] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.845080] __x64_sys_unshare+0x2d/0x40 [ 716.846238] do_syscall_64+0x33/0x40 [ 716.847329] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.848832] RIP: 0033:0x7fc7d3fdfb19 [ 716.849899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 716.855355] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 716.857557] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 716.859610] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 716.861721] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 716.863809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 716.865861] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 716.877075] Process accounting resumed [ 716.881523] FAULT_INJECTION: forcing a failure. [ 716.881523] name failslab, interval 1, probability 0, space 0, times 0 [ 716.884993] CPU: 0 PID: 5703 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 716.886956] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 716.889375] Call Trace: [ 716.890125] dump_stack+0x107/0x167 [ 716.891159] should_fail.cold+0x5/0xa [ 716.896283] ? vm_area_alloc+0x1c/0x110 [ 716.897422] should_failslab+0x5/0x20 [ 716.898510] kmem_cache_alloc+0x5b/0x310 [ 716.899680] vm_area_alloc+0x1c/0x110 [ 716.900767] mmap_region+0x819/0x1590 [ 716.901856] ? get_unmapped_area+0x2f0/0x420 [ 716.903111] do_mmap+0xcdb/0x11e0 [ 716.904135] vm_mmap_pgoff+0x198/0x1f0 [ 716.905254] ? randomize_page+0xb0/0xb0 [ 716.906396] ksys_mmap_pgoff+0x41c/0x560 [ 716.908260] ? find_mergeable_anon_vma+0x250/0x250 [ 716.909670] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 716.911183] ? syscall_enter_from_user_mode+0x1d/0x50 [ 716.912679] do_syscall_64+0x33/0x40 [ 716.913741] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 716.915212] RIP: 0033:0x7f932fac1b62 [ 716.916298] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 716.921649] RSP: 002b:00007f932d0370f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 716.923885] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f932fac1b62 [ 716.925937] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffe000 [ 716.932018] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 716.934076] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 716.936144] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 716.951677] Process accounting resumed [ 716.973150] Process accounting resumed 08:59:21 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 62) 08:59:21 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fstat(r0, &(0x7f00000000c0)) acct(&(0x7f0000000080)='./file0\x00') [ 717.036826] FAULT_INJECTION: forcing a failure. [ 717.036826] name failslab, interval 1, probability 0, space 0, times 0 [ 717.039499] CPU: 1 PID: 5707 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 717.041510] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 717.043905] Call Trace: [ 717.044648] dump_stack+0x107/0x167 [ 717.045672] should_fail.cold+0x5/0xa [ 717.046751] ? create_object.isra.0+0x3a/0xa20 [ 717.048075] should_failslab+0x5/0x20 [ 717.049155] kmem_cache_alloc+0x5b/0x310 [ 717.050314] create_object.isra.0+0x3a/0xa20 [ 717.051561] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 717.053022] kmem_cache_alloc+0x159/0x310 [ 717.054209] vm_area_alloc+0x1c/0x110 [ 717.055285] mmap_region+0x819/0x1590 [ 717.056392] ? get_unmapped_area+0x2f0/0x420 [ 717.057637] do_mmap+0xcdb/0x11e0 [ 717.058624] vm_mmap_pgoff+0x198/0x1f0 [ 717.059743] ? randomize_page+0xb0/0xb0 [ 717.060877] ksys_mmap_pgoff+0x41c/0x560 [ 717.062029] ? find_mergeable_anon_vma+0x250/0x250 [ 717.063425] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 717.064935] ? syscall_enter_from_user_mode+0x1d/0x50 [ 717.066403] do_syscall_64+0x33/0x40 [ 717.067455] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 717.068930] RIP: 0033:0x7f932fac1b62 [ 717.069985] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 717.075273] RSP: 002b:00007f932d0370f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 717.084408] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f932fac1b62 [ 717.085280] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffe000 [ 717.086142] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 717.087005] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 717.087911] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 717.104747] Process accounting resumed [ 717.141748] Process accounting resumed 08:59:37 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 66) 08:59:37 executing program 7: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:59:37 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 63) 08:59:37 executing program 1: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:59:37 executing program 6: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, 0xffffffffffffffff, 0x0) 08:59:37 executing program 5: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, 0x0, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) 08:59:37 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') lsetxattr$security_ima(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)=@sha1={0x1, "e72b3967d601594b526448956b1a3cf5d8cce74a"}, 0x15, 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r2, 0x6, 0x2, 0x0, &(0x7f0000000180)) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x10daa2, 0x0) getsockopt$inet6_tcp_int(r3, 0x6, 0x3, 0x0, &(0x7f0000000180)=0xfffffff1) getsockname(r1, &(0x7f00000001c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @private}}}, &(0x7f0000000140)=0x80) r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/udplite6\x00') pread64(r4, &(0x7f0000000240)=""/83, 0x53, 0x200000048) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f00000003c0)={'sit0\x00', &(0x7f0000000340)={'syztnl1\x00', 0x0, 0x29, 0x3f, 0x3, 0x94, 0xa, @mcast1, @mcast2, 0x7800, 0x1, 0x6, 0x6}}) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000280)=ANY=[@ANYBLOB="0100000000008db7c8479f1b75998ed3caeca7343fd6589c6263c538c7eeab15fa71231c0e0000224856f7d350dae43d5b157b79e71d3151105506ce2427e8922e4e23013a8627485c949d29b2cf2a9ffd99248f881357e3bb4a9f4f7ba023bcc398fd7fbb6e88dbf750ac9f9ac5f83d59a8a7501e00"/129, @ANYRES32=r0, @ANYBLOB="0000000000000000b381e43cdf9b91a9"]) openat(r5, &(0x7f0000000180)='./file0\x00', 0x2, 0x0) 08:59:37 executing program 0: sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(0x0, r0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r1, 0x301, 0x0, 0x0, {{0x5}, {@val={0xeac}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x20, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x40010) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r2, 0x0, 0x0, 0x1000002) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2000, 0x21) ftruncate(0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r2, 0x0) [ 732.690340] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.5'. [ 732.701989] Process accounting resumed [ 732.714446] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 732.715311] FAULT_INJECTION: forcing a failure. [ 732.715311] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 732.730880] CPU: 0 PID: 5725 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 732.731754] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 732.732829] Call Trace: [ 732.733183] dump_stack+0x107/0x167 [ 732.733657] should_fail.cold+0x5/0xa [ 732.734156] __alloc_pages_nodemask+0x182/0x600 [ 732.734758] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 732.735558] ? walk_mem_res+0x170/0x170 [ 732.736087] alloc_pages_current+0x187/0x280 [ 732.736688] pte_alloc_one+0x16/0x1a0 [ 732.737190] __pte_alloc+0x1d/0x330 [ 732.737677] remap_pfn_range_internal+0x9a3/0xf60 [ 732.738317] ? lookup_memtype+0x5b/0x200 [ 732.738855] ? apply_to_existing_page_range+0x40/0x40 [ 732.740257] remap_pfn_range+0xcd/0x160 [ 732.740790] ? remap_pfn_range_notrack+0x70/0x70 [ 732.741406] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 732.742090] io_uring_mmap+0x398/0x530 [ 732.742601] mmap_region+0xb5a/0x1590 [ 732.743111] do_mmap+0xcdb/0x11e0 [ 732.743579] vm_mmap_pgoff+0x198/0x1f0 [ 732.744096] ? randomize_page+0xb0/0xb0 [ 732.744609] ksys_mmap_pgoff+0x41c/0x560 [ 732.745116] ? find_mergeable_anon_vma+0x250/0x250 [ 732.745730] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 732.746380] ? syscall_enter_from_user_mode+0x1d/0x50 [ 732.746986] do_syscall_64+0x33/0x40 [ 732.747425] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 732.748025] RIP: 0033:0x7f932fac1b62 [ 732.748483] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 732.750637] RSP: 002b:00007f932d0370f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 732.751539] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f932fac1b62 [ 732.752396] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffe000 [ 732.753238] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 732.760179] Process accounting resumed [ 732.760744] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 732.760754] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 08:59:37 executing program 4: creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) getsockopt$inet6_tcp_int(r0, 0x6, 0x2, 0x0, &(0x7f0000000180)) write$binfmt_script(r0, &(0x7f0000000080)={'#! ', './file0', [{0x20, '*]}@:.\\&-'}, {0x20, ',#\xb7{.%'}, {0x20, '{:+'}, {0x20, ')-'}, {0x20, '%-/\xe5}[%\\'}, {0x20, '\xa1'}, {0x20, '^'}], 0xa, "1171058467843295745e183ac656a9a5a8637ae975df7085bc0710f3d5cea7bdc4b034584a45a4d923fa980e08ea79eaf1278cc5de8c1f88e37a3acee8d8f266517b978761676ea3264bb1e3642215c46dc654f89fd50597378079a9055f288d92c31e2923bf0bc457a0c8cd63dfae6af3f01b61d95c9673bb5ec7465314996c2524f30ea2b3aac181601e2dbb6842d361c8cbeefbc0a54a2864d0a172dd6eabb3a1ea0773e366b5412556832f9b1be25899fc64b4e680bf830b4f85f1029d2b18f08edb37efb24c07ae8c48"}, 0xfc) [ 732.772178] FAULT_INJECTION: forcing a failure. [ 732.772178] name failslab, interval 1, probability 0, space 0, times 0 [ 732.774850] ------------[ cut here ]------------ [ 732.777668] CPU: 0 PID: 5731 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 732.784769] WARNING: CPU: 1 PID: 5725 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 732.785537] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 732.785542] Call Trace: [ 732.785562] dump_stack+0x107/0x167 [ 732.785578] should_fail.cold+0x5/0xa [ 732.786623] Modules linked in: [ 732.787613] ? create_object.isra.0+0x3a/0xa20 [ 732.787630] should_failslab+0x5/0x20 [ 732.787648] kmem_cache_alloc+0x5b/0x310 [ 732.787948] [ 732.788398] ? find_held_lock+0x2c/0x110 [ 732.788416] create_object.isra.0+0x3a/0xa20 [ 732.788881] CPU: 1 PID: 5725 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 732.789245] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 732.789794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 732.790237] kmem_cache_alloc+0x159/0x310 [ 732.790732] RIP: 0010:get_pat_info+0x216/0x270 [ 732.790925] alloc_vfsmnt+0x23/0x680 [ 732.791427] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 01 88 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 ea 87 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 b5 7d 5a 00 e9 [ 732.792025] clone_mnt+0x6c/0xce0 [ 732.792044] copy_tree+0x3b0/0xa60 [ 732.792928] RSP: 0018:ffff88801b65f8b0 EFLAGS: 00010246 [ 732.793595] copy_mnt_ns+0x144/0xa00 [ 732.793613] ? kmem_cache_alloc+0x2a6/0x310 [ 732.794684] [ 732.795211] create_new_namespaces+0xd6/0xb20 [ 732.795794] RAX: 0000000000040000 RBX: ffff88801b34ca00 RCX: ffffc90001616000 [ 732.800245] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 732.800261] ksys_unshare+0x449/0x8a0 [ 732.800278] ? unshare_fd+0x1c0/0x1c0 [ 732.802476] RDX: 0000000000040000 RSI: ffffffff81123696 RDI: 0000000000000007 [ 732.802872] ? fput_many+0x2f/0x1a0 [ 732.802887] ? ksys_write+0x1a9/0x260 [ 732.802907] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 732.803318] RBP: ffff88801b65f968 R08: 0000000000000000 R09: ffff88801b65f838 [ 732.803949] __x64_sys_unshare+0x2d/0x40 [ 732.803968] do_syscall_64+0x33/0x40 [ 732.804419] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 732.804929] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 732.804939] RIP: 0033:0x7fc7d3fdfb19 [ 732.804955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 732.805149] R13: 1ffff110036cbf16 R14: 0000000000000000 R15: ffff88801b34ca50 [ 732.805670] RSP: 002b:00007fc7d1534188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 732.805685] RAX: ffffffffffffffda RBX: 00007fc7d40f3020 RCX: 00007fc7d3fdfb19 [ 732.805697] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 732.806563] FS: 00007f932d037700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 732.807119] RBP: 00007fc7d15341d0 R08: 0000000000000000 R09: 0000000000000000 [ 732.807130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 732.807598] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 732.808024] R13: 00007ffd9825f31f R14: 00007fc7d1534300 R15: 0000000000022000 [ 732.851647] CR2: 000055558ed91c58 CR3: 00000000455a2000 CR4: 0000000000350ee0 [ 732.852581] Call Trace: [ 732.852919] ? __warn+0xe2/0x1f0 [ 732.853336] ? get_pat_info+0x216/0x270 [ 732.853851] ? report_bug+0x1c1/0x210 [ 732.854322] ? handle_bug+0x41/0x90 [ 732.854796] ? exc_invalid_op+0x14/0x50 [ 732.855280] ? asm_exc_invalid_op+0x12/0x20 [ 732.855839] ? get_pat_info+0x216/0x270 [ 732.860388] ? get_pat_info+0x216/0x270 [ 732.860907] ? pgprot_writethrough+0xc0/0xc0 [ 732.861443] ? finish_task_switch+0x126/0x5d0 [ 732.862027] untrack_pfn+0xdc/0x240 [ 732.862480] ? track_pfn_insert+0x150/0x150 [ 732.863036] ? lock_downgrade+0x6d0/0x6d0 [ 732.863568] ? uprobe_munmap+0x1c/0x560 [ 732.864059] unmap_single_vma+0x1bc/0x300 [ 732.864623] zap_page_range_single+0x2ce/0x450 [ 732.865181] ? unmap_single_vma+0x300/0x300 [ 732.865735] ? remap_pfn_range_internal+0xc56/0xf60 [ 732.866369] ? lookup_memtype+0x5b/0x200 [ 732.866916] ? apply_to_existing_page_range+0x40/0x40 [ 732.867581] remap_pfn_range+0x139/0x160 [ 732.868087] ? remap_pfn_range_notrack+0x70/0x70 [ 732.868713] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 732.869362] io_uring_mmap+0x398/0x530 [ 732.869867] mmap_region+0xb5a/0x1590 [ 732.870351] do_mmap+0xcdb/0x11e0 [ 732.870809] vm_mmap_pgoff+0x198/0x1f0 [ 732.871297] ? randomize_page+0xb0/0xb0 [ 732.871817] ksys_mmap_pgoff+0x41c/0x560 [ 732.872332] ? find_mergeable_anon_vma+0x250/0x250 [ 732.872958] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 732.873622] ? syscall_enter_from_user_mode+0x1d/0x50 [ 732.874250] do_syscall_64+0x33/0x40 [ 732.874732] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 732.875362] RIP: 0033:0x7f932fac1b62 [ 732.875855] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 732.878147] RSP: 002b:00007f932d0370f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 732.879104] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f932fac1b62 [ 732.880004] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffe000 [ 732.880916] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 732.881809] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 732.882712] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 732.883607] irq event stamp: 1929 [ 732.884035] hardirqs last enabled at (1937): [] console_unlock+0x92d/0xb40 [ 732.885759] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. [ 732.889122] hardirqs last disabled at (1944): [] sysvec_apic_timer_interrupt+0xb/0xa0 [ 732.889137] softirqs last enabled at (1436): [] asm_call_irq_on_stack+0x12/0x20 [ 732.889151] softirqs last disabled at (1355): [] asm_call_irq_on_stack+0x12/0x20 [ 732.889165] ---[ end trace c3406ba1703de765 ]--- [ 732.928530] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 732.954057] Process accounting resumed [ 732.958290] Process accounting resumed 08:59:37 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) syz_io_uring_setup(0x3875, &(0x7f00000001c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000100)) (fail_nth: 64) 08:59:37 executing program 3: creat(&(0x7f0000000000)='./file0\x00', 0x0) unshare(0x28020600) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) (fail_nth: 67) 08:59:37 executing program 4: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) acct(&(0x7f0000000040)='./file0\x00') syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = openat(r0, &(0x7f0000000140)='./file0\x00', 0x20, 0xc1) openat(r1, &(0x7f0000000080)='./file0\x00', 0x26400, 0x10) setxattr$trusted_overlay_upper(&(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, &(0x7f0000000240)=ANY=[@ANYBLOB="003a8c515c9b4167c558a64af528885bbbc770e7d01de8c7bf5096aedcd053d6b943905708e9ba425725440cd23d06c79542be953a001139718e8f419cfb4f9666e6af41298a1be48f1e66b83539fe6690dcad856c52e73eb03c6326402e18d47e61911aa24d08423d07c97121619b4fd762b24647c3aaacbdbf9df42ab84e7f2712550874d1146bf66ad792bdaaf40cf4ea7b4d867022e2d5dcf9d1b98a53318685a158f4d584b78adfe2946a13578da86cc78ed46a5b350938c179c505253a0cd46921f7d6be5890e12168345603fd05632fefde04606fd462f996af8d"], 0x36, 0x0) openat(r0, &(0x7f00000000c0)='./file0\x00', 0x80103, 0x120) [ 733.057709] FAULT_INJECTION: forcing a failure. [ 733.057709] name failslab, interval 1, probability 0, space 0, times 0 [ 733.059191] CPU: 1 PID: 5746 Comm: syz-executor.2 Tainted: G W 5.10.229 #1 [ 733.060199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 733.065140] Call Trace: [ 733.065468] dump_stack+0x107/0x167 [ 733.065913] should_fail.cold+0x5/0xa [ 733.066380] ? ptlock_alloc+0x1d/0x70 [ 733.066845] should_failslab+0x5/0x20 [ 733.067310] kmem_cache_alloc+0x5b/0x310 [ 733.067827] ptlock_alloc+0x1d/0x70 [ 733.069999] Process accounting resumed [ 733.076292] pte_alloc_one+0x68/0x1a0 [ 733.076305] __pte_alloc+0x1d/0x330 [ 733.076320] remap_pfn_range_internal+0x9a3/0xf60 [ 733.076338] ? lookup_memtype+0x5b/0x200 [ 733.076359] ? apply_to_existing_page_range+0x40/0x40 [ 733.076379] remap_pfn_range+0xcd/0x160 [ 733.076392] ? remap_pfn_range_notrack+0x70/0x70 [ 733.076404] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 733.076423] io_uring_mmap+0x398/0x530 [ 733.076437] mmap_region+0xb5a/0x1590 [ 733.076458] do_mmap+0xcdb/0x11e0 [ 733.076475] vm_mmap_pgoff+0x198/0x1f0 [ 733.076489] ? randomize_page+0xb0/0xb0 [ 733.076510] ksys_mmap_pgoff+0x41c/0x560 [ 733.076522] ? find_mergeable_anon_vma+0x250/0x250 [ 733.076539] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 733.076552] ? syscall_enter_from_user_mode+0x1d/0x50 [ 733.076565] do_syscall_64+0x33/0x40 [ 733.076577] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 733.076586] RIP: 0033:0x7f932fac1b62 [ 733.076601] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 733.076607] RSP: 002b:00007f932d0370f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 733.076620] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f932fac1b62 [ 733.076627] RDX: 0000000000000003 RSI: 0000000000090140 RDI: 0000000020ffe000 [ 733.076633] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 733.076640] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000100 [ 733.076647] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 733.097153] FAULT_INJECTION: forcing a failure. [ 733.097153] name failslab, interval 1, probability 0, space 0, times 0 [ 733.099301] CPU: 1 PID: 5747 Comm: syz-executor.3 Tainted: G W 5.10.229 #1 [ 733.112697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 733.113728] Call Trace: [ 733.114059] dump_stack+0x107/0x167 [ 733.114512] should_fail.cold+0x5/0xa [ 733.114990] ? create_object.isra.0+0x3a/0xa20 [ 733.115556] should_failslab+0x5/0x20 [ 733.116030] kmem_cache_alloc+0x5b/0x310 [ 733.116567] create_object.isra.0+0x3a/0xa20 [ 733.117120] kmemleak_alloc_percpu+0xa0/0x100 [ 733.117681] pcpu_alloc+0x4e2/0x1240 [ 733.118157] alloc_vfsmnt+0xfd/0x680 [ 733.124609] clone_mnt+0x6c/0xce0 [ 733.125049] copy_tree+0x3b0/0xa60 [ 733.125498] copy_mnt_ns+0x144/0xa00 [ 733.125965] ? kmem_cache_alloc+0x2a6/0x310 [ 733.126510] create_new_namespaces+0xd6/0xb20 [ 733.127074] unshare_nsproxy_namespaces+0xbd/0x1f0 [ 733.127686] ksys_unshare+0x449/0x8a0 [ 733.128182] ? unshare_fd+0x1c0/0x1c0 [ 733.128668] ? ksys_write+0x1a9/0x260 [ 733.129148] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 733.129801] __x64_sys_unshare+0x2d/0x40 [ 733.130303] do_syscall_64+0x33/0x40 [ 733.130765] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 733.131404] RIP: 0033:0x7fc7d3fdfb19 [ 733.131872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 733.134177] RSP: 002b:00007fc7d1555188 EFLAGS: 00000246 ORIG_RAX: 0000000000000110 [ 733.135125] RAX: ffffffffffffffda RBX: 00007fc7d40f2f60 RCX: 00007fc7d3fdfb19 [ 733.136014] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000048020200 [ 733.136919] RBP: 00007fc7d15551d0 R08: 0000000000000000 R09: 0000000000000000 [ 733.137807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 733.138694] R13: 00007ffd9825f31f R14: 00007fc7d1555300 R15: 0000000000022000 [ 733.391405] Process accounting resumed VM DIAGNOSIS: 08:59:38 Registers: info registers vcpu 0 RAX=ffff888018310000 RBX=ffff88801830f1b8 RCX=ffff88801830f1b8 RDX=dffffc0000000000 RSI=ffff88801830f290 RDI=ffff88801830f290 RBP=ffff88801830f290 RSP=ffff88801830f060 R8 =ffffffff859ba08d R9 =ffff88801830f298 R10=0000000000032042 R11=1ffff11003061e1b R12=ffff88801830f170 R13=ffff888018308000 R14=1ffff11003061e1b R15=ffffffff859ba08c RIP=ffffffff81106b30 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb6cd1ef900 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb6cc94d0a0 CR3=000000000b326000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822dcf51 RDI=ffffffff879f1140 RBP=ffffffff879f1100 RSP=ffff88801b65f2c8 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000030 R13=0000000000000030 R14=ffffffff879f1100 R15=dffffc0000000000 RIP=ffffffff822dcfa8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f932d037700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055558ed91c58 CR3=00000000455a2000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004173cae000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000