7027] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 708.687907] RBP: 00007fb529a2f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 708.688773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 708.689639] R13: 00007ffc74fb936f R14: 00007fb529a2f300 R15: 0000000000022000 [ 708.690623] socket: no more sockets [ 708.729778] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 721.886866] FAULT_INJECTION: forcing a failure. [ 721.886866] name failslab, interval 1, probability 0, space 0, times 0 [ 721.888471] CPU: 0 PID: 5701 Comm: syz-executor.7 Not tainted 5.10.229 #1 [ 721.889354] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 721.890426] Call Trace: [ 721.890780] dump_stack+0x107/0x167 [ 721.891263] should_fail.cold+0x5/0xa [ 721.891763] ? __d_alloc+0x2a/0x990 [ 721.892496] should_failslab+0x5/0x20 [ 721.893001] kmem_cache_alloc+0x5b/0x310 [ 721.893530] ? expand_files+0x635/0xb30 [ 721.894058] __d_alloc+0x2a/0x990 [ 721.894511] ? alloc_fd+0x2e7/0x670 [ 721.894996] d_alloc_pseudo+0x19/0x70 [ 721.895504] alloc_file_pseudo+0xce/0x250 [ 721.896047] ? alloc_file+0x5a0/0x5a0 [ 721.896568] ? do_raw_spin_unlock+0x4f/0x220 [ 721.897142] ? _raw_spin_unlock+0x1a/0x30 [ 721.897682] ? alloc_fd+0x2e7/0x670 [ 721.898167] sock_alloc_file+0x4f/0x1a0 [ 721.898692] __sys_socket+0x13d/0x200 [ 721.899187] ? fput_many+0x2f/0x1a0 [ 721.899665] ? move_addr_to_kernel+0x70/0x70 [ 721.900257] ? ksys_write+0x1a9/0x260 [ 721.900761] ? __ia32_sys_read+0xb0/0xb0 [ 721.901309] __x64_sys_socket+0x6f/0xb0 [ 721.901833] ? syscall_enter_from_user_mode+0x1d/0x50 [ 721.902304] FAULT_INJECTION: forcing a failure. [ 721.902304] name failslab, interval 1, probability 0, space 0, times 0 [ 721.902495] do_syscall_64+0x33/0x40 [ 721.904300] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 721.904946] RIP: 0033:0x7efdae489b19 [ 721.905404] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 721.907682] RSP: 002b:00007efdab9ff188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 721.908645] RAX: ffffffffffffffda RBX: 00007efdae59cf60 RCX: 00007efdae489b19 [ 721.909509] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 721.910370] RBP: 00007efdab9ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 721.911234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 721.912125] R13: 00007ffcb1bed99f R14: 00007efdab9ff300 R15: 0000000000022000 [ 721.913054] CPU: 1 PID: 5705 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 721.913949] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 721.915030] Call Trace: [ 721.915380] dump_stack+0x107/0x167 [ 721.915862] should_fail.cold+0x5/0xa [ 721.916305] FAULT_INJECTION: forcing a failure. [ 721.916305] name failslab, interval 1, probability 0, space 0, times 0 [ 721.916382] ? create_object.isra.0+0x3a/0xa20 [ 721.918235] should_failslab+0x5/0x20 [ 721.918703] kmem_cache_alloc+0x5b/0x310 [ 721.919205] create_object.isra.0+0x3a/0xa20 [ 721.919738] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 721.920382] kmem_cache_alloc_trace+0x151/0x320 [ 721.920957] snd_seq_fifo_new+0x3f/0x270 [ 721.921455] snd_seq_open+0x4bc/0x610 [ 721.921922] ? snd_seq_create_kernel_client+0x3b0/0x3b0 [ 721.922575] snd_open+0x215/0x420 [ 721.923002] ? snd_request_card+0x80/0x80 [ 721.923511] chrdev_open+0x268/0x6e0 [ 721.923969] ? __unregister_chrdev+0x110/0x110 [ 721.924549] ? fsnotify_perm.part.0+0x22d/0x620 [ 721.925128] do_dentry_open+0x4b7/0x1090 [ 721.925626] ? __unregister_chrdev+0x110/0x110 [ 721.926180] ? may_open+0x1e4/0x400 [ 721.926629] path_openat+0x19ba/0x2770 [ 721.927115] ? path_lookupat+0x860/0x860 [ 721.927616] ? find_held_lock+0x2c/0x110 [ 721.928133] do_filp_open+0x190/0x3e0 [ 721.928603] ? may_open_dev+0xf0/0xf0 [ 721.929075] ? do_raw_spin_lock+0x121/0x260 [ 721.929602] ? rwlock_bug.part.0+0x90/0x90 [ 721.930126] ? _raw_spin_unlock+0x1a/0x30 [ 721.930632] ? alloc_fd+0x2e7/0x670 [ 721.931087] do_sys_openat2+0x171/0x4d0 [ 721.931577] ? build_open_flags+0x6f0/0x6f0 [ 721.932111] ? __mutex_unlock_slowpath+0xe1/0x600 [ 721.932707] ? wait_for_completion_io+0x270/0x270 [ 721.933307] __x64_sys_openat+0x13f/0x1f0 [ 721.933815] ? __ia32_sys_open+0x1c0/0x1c0 [ 721.934330] ? ksys_write+0x1a9/0x260 [ 721.934804] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 721.935443] ? syscall_enter_from_user_mode+0x1d/0x50 [ 721.940099] do_syscall_64+0x33/0x40 [ 721.940562] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 721.941184] RIP: 0033:0x7f848b0d7b19 [ 721.941642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 721.943877] RSP: 002b:00007f848864d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 721.944822] RAX: ffffffffffffffda RBX: 00007f848b1eaf60 RCX: 00007f848b0d7b19 [ 721.945696] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffff9c [ 721.946562] RBP: 00007f848864d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 721.947428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 721.948315] R13: 00007fffbbddff5f R14: 00007f848864d300 R15: 0000000000022000 [ 721.949208] CPU: 0 PID: 5706 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 721.950092] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 721.951161] Call Trace: [ 721.951510] dump_stack+0x107/0x167 [ 721.951991] should_fail.cold+0x5/0xa [ 721.952513] ? create_object.isra.0+0x3a/0xa20 [ 721.953110] should_failslab+0x5/0x20 [ 721.953608] kmem_cache_alloc+0x5b/0x310 [ 721.954148] create_object.isra.0+0x3a/0xa20 [ 721.954255] FAULT_INJECTION: forcing a failure. [ 721.954255] name failslab, interval 1, probability 0, space 0, times 0 [ 721.954687] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 721.954706] kmem_cache_alloc_trace+0x151/0x320 [ 721.954728] io_uring_setup+0x258/0x2980 [ 721.957690] ? __mutex_unlock_slowpath+0xe1/0x600 [ 721.958279] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 721.958897] ? wait_for_completion_io+0x270/0x270 [ 721.959500] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 721.960151] ? syscall_enter_from_user_mode+0x1d/0x50 [ 721.960783] do_syscall_64+0x33/0x40 [ 721.961237] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 721.961859] RIP: 0033:0x7f0ba9f97b19 [ 721.962310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 721.964551] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 721.965467] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 721.966323] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 721.967179] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 721.968040] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 721.968937] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 721.969820] CPU: 1 PID: 5709 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 721.970703] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 721.971791] Call Trace: [ 721.972155] dump_stack+0x107/0x167 [ 721.972599] should_fail.cold+0x5/0xa [ 721.973061] ? create_object.isra.0+0x3a/0xa20 [ 721.973622] should_failslab+0x5/0x20 [ 721.974082] kmem_cache_alloc+0x5b/0x310 [ 721.974579] create_object.isra.0+0x3a/0xa20 [ 721.975110] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 721.975728] kmem_cache_alloc+0x159/0x310 [ 721.976290] security_inode_alloc+0x34/0x160 [ 721.976865] inode_init_always+0xa4e/0xd10 [ 721.977433] alloc_inode+0x84/0x240 [ 721.977911] new_inode_pseudo+0x14/0xe0 [ 721.978438] sock_alloc+0x3c/0x270 [ 721.978910] __sock_create+0xbd/0x7f0 [ 721.979406] ? wait_for_completion_io+0x270/0x270 [ 721.980037] __sys_socket+0xef/0x200 [ 721.980528] ? fput_many+0x2f/0x1a0 [ 721.981003] ? move_addr_to_kernel+0x70/0x70 [ 721.981579] ? ksys_write+0x1a9/0x260 [ 721.982082] ? __ia32_sys_read+0xb0/0xb0 [ 721.982624] __x64_sys_socket+0x6f/0xb0 [ 721.983148] ? syscall_enter_from_user_mode+0x1d/0x50 [ 721.983828] do_syscall_64+0x33/0x40 [ 721.984339] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 721.985012] RIP: 0033:0x7fb52c4dab19 [ 721.985504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 721.987906] RSP: 002b:00007fb529a2f188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 721.988913] RAX: ffffffffffffffda RBX: 00007fb52c5ee020 RCX: 00007fb52c4dab19 [ 721.989838] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 721.990772] RBP: 00007fb529a2f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 721.991702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 721.992656] R13: 00007ffc74fb936f R14: 00007fb529a2f300 R15: 0000000000022000 11:10:47 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 3) 11:10:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) (fail_nth: 13) 11:10:47 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:10:47 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x128}, 0x1, 0x0, 0x0, 0x4000001}, 0x40004) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="280000001000010000000000000000000000000005000000000000000c00008008000400", @ANYRES32, @ANYBLOB="f7aca34feadb4379364c590b87b0379e06c8a204edff21c832b0e6d34acf95d3e80004000000000000229187a288b57f5be09c426970dd95bab79984ef6768da1fc8643eb058ecb1402f0900acea213aee4813d0808ee5b88db4faf0902d4ad2fa10ebb1ea2c07babbc7a2101e5302e39b9b1eb21c7365477c3b7101549e0427547f6e756d09170000000000"], 0x28}}, 0x0) 11:10:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) 11:10:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 13) 11:10:47 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 4) 11:10:47 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:10:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 14) [ 722.021838] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2568 sclass=netlink_route_socket pid=5712 comm=syz-executor.6 [ 722.035285] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2568 sclass=netlink_route_socket pid=5712 comm=syz-executor.6 [ 722.036247] FAULT_INJECTION: forcing a failure. [ 722.036247] name failslab, interval 1, probability 0, space 0, times 0 [ 722.045500] CPU: 0 PID: 5714 Comm: syz-executor.7 Not tainted 5.10.229 #1 [ 722.046394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 722.047480] Call Trace: [ 722.047835] dump_stack+0x107/0x167 [ 722.052346] should_fail.cold+0x5/0xa [ 722.052855] ? create_object.isra.0+0x3a/0xa20 [ 722.053455] should_failslab+0x5/0x20 [ 722.053955] kmem_cache_alloc+0x5b/0x310 [ 722.054488] create_object.isra.0+0x3a/0xa20 [ 722.055066] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 722.055732] kmem_cache_alloc+0x159/0x310 [ 722.056325] ? expand_files+0x635/0xb30 [ 722.056851] __d_alloc+0x2a/0x990 [ 722.057306] ? alloc_fd+0x2e7/0x670 [ 722.057785] d_alloc_pseudo+0x19/0x70 [ 722.058284] alloc_file_pseudo+0xce/0x250 [ 722.058828] ? alloc_file+0x5a0/0x5a0 [ 722.059328] ? do_raw_spin_unlock+0x4f/0x220 [ 722.059905] ? _raw_spin_unlock+0x1a/0x30 [ 722.061033] ? alloc_fd+0x2e7/0x670 [ 722.062146] sock_alloc_file+0x4f/0x1a0 [ 722.063382] __sys_socket+0x13d/0x200 [ 722.063898] ? fput_many+0x2f/0x1a0 [ 722.064382] ? move_addr_to_kernel+0x70/0x70 [ 722.064971] ? ksys_write+0x1a9/0x260 [ 722.065470] ? __ia32_sys_read+0xb0/0xb0 [ 722.066011] __x64_sys_socket+0x6f/0xb0 [ 722.066529] ? syscall_enter_from_user_mode+0x1d/0x50 [ 722.067201] do_syscall_64+0x33/0x40 [ 722.067689] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 722.068397] RIP: 0033:0x7efdae489b19 [ 722.068891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 722.071285] RSP: 002b:00007efdab9ff188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 722.072303] RAX: ffffffffffffffda RBX: 00007efdae59cf60 RCX: 00007efdae489b19 [ 722.073234] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 722.074164] RBP: 00007efdab9ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 722.075083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 722.075993] R13: 00007ffcb1bed99f R14: 00007efdab9ff300 R15: 0000000000022000 11:10:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) 11:10:47 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:10:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) (fail_nth: 14) [ 722.174330] FAULT_INJECTION: forcing a failure. [ 722.174330] name failslab, interval 1, probability 0, space 0, times 0 [ 722.175890] CPU: 0 PID: 5721 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 722.176790] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 722.177856] Call Trace: [ 722.178205] dump_stack+0x107/0x167 [ 722.179287] should_fail.cold+0x5/0xa [ 722.180469] ? snd_seq_pool_new+0x40/0x240 [ 722.181824] should_failslab+0x5/0x20 [ 722.183048] kmem_cache_alloc_trace+0x55/0x320 [ 722.184558] snd_seq_pool_new+0x40/0x240 [ 722.185849] snd_seq_fifo_new+0x57/0x270 [ 722.187145] snd_seq_open+0x4bc/0x610 [ 722.188400] ? snd_seq_create_kernel_client+0x3b0/0x3b0 [ 722.190103] snd_open+0x215/0x420 [ 722.191210] ? snd_request_card+0x80/0x80 [ 722.192573] chrdev_open+0x268/0x6e0 [ 722.193757] ? __unregister_chrdev+0x110/0x110 [ 722.195220] ? fsnotify_perm.part.0+0x22d/0x620 [ 722.196761] do_dentry_open+0x4b7/0x1090 [ 722.198078] ? __unregister_chrdev+0x110/0x110 [ 722.199537] ? may_open+0x1e4/0x400 [ 722.200731] path_openat+0x19ba/0x2770 [ 722.201981] ? path_lookupat+0x860/0x860 [ 722.203274] ? lock_acquire+0x197/0x470 [ 722.204579] ? find_held_lock+0x2c/0x110 [ 722.205888] do_filp_open+0x190/0x3e0 [ 722.207105] ? may_open_dev+0xf0/0xf0 [ 722.208364] ? do_raw_spin_lock+0x121/0x260 [ 722.209764] ? rwlock_bug.part.0+0x90/0x90 [ 722.211128] ? _raw_spin_unlock+0x1a/0x30 [ 722.212480] ? alloc_fd+0x2e7/0x670 [ 722.213649] do_sys_openat2+0x171/0x4d0 [ 722.214915] ? build_open_flags+0x6f0/0x6f0 [ 722.216331] ? __mutex_unlock_slowpath+0xe1/0x600 [ 722.217877] ? wait_for_completion_io+0x270/0x270 [ 722.219450] __x64_sys_openat+0x13f/0x1f0 [ 722.220749] ? __ia32_sys_open+0x1c0/0x1c0 [ 722.221952] ? ksys_write+0x1a9/0x260 [ 722.223037] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 722.224574] ? syscall_enter_from_user_mode+0x1d/0x50 [ 722.226045] do_syscall_64+0x33/0x40 [ 722.227108] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 722.232679] RIP: 0033:0x7f848b0d7b19 11:10:47 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 4) [ 722.233893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 722.249310] RSP: 002b:00007f848864d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 722.250236] RAX: ffffffffffffffda RBX: 00007f848b1eaf60 RCX: 00007f848b0d7b19 [ 722.251101] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffff9c [ 722.251966] RBP: 00007f848864d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 722.252849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 722.253714] R13: 00007fffbbddff5f R14: 00007f848864d300 R15: 0000000000022000 11:10:47 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) r2 = syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYRESOCT, @ANYRES16=r2, @ANYBLOB="2dcadbce1e98ace8da0b4dfec1f216461337bcd377ae8319be7dd63193f293a9864d5901d97776f5aea393a769f386f38fdcf7b5cae7ca2d1efcf542964995b5ec193128d1578333cb4d78d81441041bc4cbc14e5e8a001ccada686954329b7ec11f6967b95ff93274f1fdec7205b0f379bca9e23c137f904794ddacb808b5844bf86ac331e67c3bd6c1036702a1e873350d52d3a48437a0a395d0f1c34f6a71aedc6a2fb40409d04523d5a010cda5"], 0x100}, 0x1, 0x0, 0x0, 0x4044084}, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000180), 0xc, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="c3aa41bfb6b7d89fb28f573ffd71e2f9a37be484bb9e8668ea157da82683d7516859c5bec91077ad38aa5db721d86067f2dc03c73e67f16594aeb3bf4ed386f1b4b6181deade992066ee125ae9113594d460d1f919b3bb2e4d8cea2604de90a10751660027989df3004881568a7b33d09e482dbe4ceb8b41d315c45d09de56db08afcf62d1da0c2b", @ANYRES16=r2, @ANYBLOB="100027bd7000fedbdf250c0000000800050005000000080005000100000008000600a19700004000028005000d000000000007ff0d000000000014000100ac1414bb000000000000000000000000060002004e23000006000b00020000000800080003000000"], 0x6c}, 0x1, 0x0, 0x0, 0x800}, 0x20040841) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r3, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2d0000cfe107d79fba60ac5501b7f250a1f9750cc79a296f46226e7e9ba246735c3e559400492da4c9af90a3942171772f640d0aba07d0ef66104fc02e150f94e8ed1542c6ff544ca6f07d00008ef5660dee6142edf28ac7321d9774b2158dd4465dedad5418ff283190682705355a351cea41a5e26258e83c5af154e3434b00878babb25783b054576fd2b9a935cc86b455b14a25e9703d334e88", @ANYRES16=0x0, @ANYRES16=r3, @ANYRES32=0x0, @ANYBLOB="0c00990040000000000000008c0f4866fb167c93b743eed51601e624f27fdbcffb61adf87dbae4ca603d7b01fee3019f26bf1481d17178e8bd4286b7e310e7e0228f660f4fe2a3fb24b95136371b56668f73740ed754358ef7974f048ec92b4619c1cbe90bdb40acd60c2192c72e20219be3227d577759d13e7d593b909dfa03fbcfc70dd79a313b6b5530b9f805b5cf8e08008a183cf91804d14b1279f8f0f66f81ef"], 0x30}}, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) r4 = fork() ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x3d) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x2e, 0x8, 0x70bd28, 0x25dfdbfb, {0x18}, [@typed={0x14, 0x25, 0x0, 0x0, @ipv6=@loopback}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000008}, 0x80) ptrace$setregset(0x4205, r4, 0x4, &(0x7f0000000280)={0x0}) recvmsg$unix(r1, &(0x7f0000000580)={&(0x7f00000001c0)=@abs, 0x6e, 0x0, 0x0, &(0x7f0000000540)=[@cred={{0x1c}}], 0x20}, 0x2002) [ 722.276171] FAULT_INJECTION: forcing a failure. [ 722.276171] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 722.277692] CPU: 1 PID: 5724 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 722.278516] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 722.279519] Call Trace: [ 722.279842] dump_stack+0x107/0x167 [ 722.280346] should_fail.cold+0x5/0xa [ 722.280816] __alloc_pages_nodemask+0x182/0x600 [ 722.281384] ? lock_release+0x680/0x680 [ 722.281868] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 722.282603] ? lock_downgrade+0x6d0/0x6d0 [ 722.283116] alloc_pages_current+0x187/0x280 [ 722.283653] kmalloc_order+0x35/0x160 [ 722.284156] kmalloc_order_trace+0x14/0xa0 [ 722.284701] io_uring_setup+0x33c/0x2980 [ 722.285196] ? __mutex_unlock_slowpath+0xe1/0x600 [ 722.285778] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 722.286390] ? wait_for_completion_io+0x270/0x270 [ 722.286985] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 722.287618] ? syscall_enter_from_user_mode+0x1d/0x50 [ 722.288304] do_syscall_64+0x33/0x40 [ 722.288759] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 722.289378] RIP: 0033:0x7f0ba9f97b19 [ 722.289829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 722.292057] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 722.293050] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 722.293917] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 722.294783] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 722.295647] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 722.296565] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 722.310424] FAULT_INJECTION: forcing a failure. [ 722.310424] name failslab, interval 1, probability 0, space 0, times 0 [ 722.311998] CPU: 0 PID: 5729 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 722.312842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 722.313845] Call Trace: [ 722.314171] dump_stack+0x107/0x167 [ 722.314615] should_fail.cold+0x5/0xa [ 722.315084] ? create_object.isra.0+0x3a/0xa20 [ 722.315643] should_failslab+0x5/0x20 11:10:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) (fail_nth: 15) 11:10:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) [ 722.316126] kmem_cache_alloc+0x5b/0x310 [ 722.316628] create_object.isra.0+0x3a/0xa20 [ 722.317160] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 722.317775] kmem_cache_alloc_trace+0x151/0x320 [ 722.318339] snd_seq_pool_new+0x40/0x240 [ 722.318828] snd_seq_fifo_new+0x57/0x270 [ 722.320472] snd_seq_open+0x4bc/0x610 [ 722.320944] ? snd_seq_create_kernel_client+0x3b0/0x3b0 [ 722.321593] snd_open+0x215/0x420 [ 722.322018] ? snd_request_card+0x80/0x80 [ 722.322521] chrdev_open+0x268/0x6e0 [ 722.322973] ? __unregister_chrdev+0x110/0x110 [ 722.323531] ? fsnotify_perm.part.0+0x22d/0x620 [ 722.324115] do_dentry_open+0x4b7/0x1090 [ 722.324616] ? __unregister_chrdev+0x110/0x110 [ 722.325173] ? may_open+0x1e4/0x400 [ 722.325615] path_openat+0x19ba/0x2770 [ 722.325732] netlink: 'syz-executor.6': attribute type 19 has an invalid length. [ 722.326093] ? path_lookupat+0x860/0x860 [ 722.326109] ? lock_acquire+0x197/0x470 [ 722.327951] ? find_held_lock+0x2c/0x110 [ 722.328466] do_filp_open+0x190/0x3e0 [ 722.328929] ? may_open_dev+0xf0/0xf0 [ 722.329396] ? do_raw_spin_lock+0x121/0x260 [ 722.329923] ? rwlock_bug.part.0+0x90/0x90 [ 722.330443] ? _raw_spin_unlock+0x1a/0x30 [ 722.330947] ? alloc_fd+0x2e7/0x670 [ 722.331397] do_sys_openat2+0x171/0x4d0 [ 722.331882] ? build_open_flags+0x6f0/0x6f0 [ 722.332420] ? __mutex_unlock_slowpath+0xe1/0x600 [ 722.333008] ? wait_for_completion_io+0x270/0x270 [ 722.333598] __x64_sys_openat+0x13f/0x1f0 [ 722.334100] ? __ia32_sys_open+0x1c0/0x1c0 [ 722.334611] ? ksys_write+0x1a9/0x260 [ 722.335077] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 722.335710] ? syscall_enter_from_user_mode+0x1d/0x50 [ 722.336356] do_syscall_64+0x33/0x40 [ 722.336808] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 722.337431] RIP: 0033:0x7f848b0d7b19 [ 722.337886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 722.340127] RSP: 002b:00007f848864d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 722.341052] RAX: ffffffffffffffda RBX: 00007f848b1eaf60 RCX: 00007f848b0d7b19 [ 722.341917] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffff9c [ 722.342779] RBP: 00007f848864d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 722.343640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 722.348527] R13: 00007fffbbddff5f R14: 00007f848864d300 R15: 0000000000022000 11:11:01 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 15) 11:11:01 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) r2 = syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)=ANY=[@ANYRESOCT, @ANYRES16=r2, @ANYBLOB="2dcadbce1e98ace8da0b4dfec1f216461337bcd377ae8319be7dd63193f293a9864d5901d97776f5aea393a769f386f38fdcf7b5cae7ca2d1efcf542964995b5ec193128d1578333cb4d78d81441041bc4cbc14e5e8a001ccada686954329b7ec11f6967b95ff93274f1fdec7205b0f379bca9e23c137f904794ddacb808b5844bf86ac331e67c3bd6c1036702a1e873350d52d3a48437a0a395d0f1c34f6a71aedc6a2fb40409d04523d5a010cda5"], 0x100}, 0x1, 0x0, 0x0, 0x4044084}, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000180), 0xc, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="c3aa41bfb6b7d89fb28f573ffd71e2f9a37be484bb9e8668ea157da82683d7516859c5bec91077ad38aa5db721d86067f2dc03c73e67f16594aeb3bf4ed386f1b4b6181deade992066ee125ae9113594d460d1f919b3bb2e4d8cea2604de90a10751660027989df3004881568a7b33d09e482dbe4ceb8b41d315c45d09de56db08afcf62d1da0c2b", @ANYRES16=r2, @ANYBLOB="100027bd7000fedbdf250c0000000800050005000000080005000100000008000600a19700004000028005000d000000000007ff0d000000000014000100ac1414bb000000000000000000000000060002004e23000006000b00020000000800080003000000"], 0x6c}, 0x1, 0x0, 0x0, 0x800}, 0x20040841) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r3, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2d0000cfe107d79fba60ac5501b7f250a1f9750cc79a296f46226e7e9ba246735c3e559400492da4c9af90a3942171772f640d0aba07d0ef66104fc02e150f94e8ed1542c6ff544ca6f07d00008ef5660dee6142edf28ac7321d9774b2158dd4465dedad5418ff283190682705355a351cea41a5e26258e83c5af154e3434b00878babb25783b054576fd2b9a935cc86b455b14a25e9703d334e88", @ANYRES16=0x0, @ANYRES16=r3, @ANYRES32=0x0, @ANYBLOB="0c00990040000000000000008c0f4866fb167c93b743eed51601e624f27fdbcffb61adf87dbae4ca603d7b01fee3019f26bf1481d17178e8bd4286b7e310e7e0228f660f4fe2a3fb24b95136371b56668f73740ed754358ef7974f048ec92b4619c1cbe90bdb40acd60c2192c72e20219be3227d577759d13e7d593b909dfa03fbcfc70dd79a313b6b5530b9f805b5cf8e08008a183cf91804d14b1279f8f0f66f81ef"], 0x30}}, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) r4 = fork() ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x3d) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x2e, 0x8, 0x70bd28, 0x25dfdbfb, {0x18}, [@typed={0x14, 0x25, 0x0, 0x0, @ipv6=@loopback}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000008}, 0x80) ptrace$setregset(0x4205, r4, 0x4, &(0x7f0000000280)={0x0}) recvmsg$unix(r1, &(0x7f0000000580)={&(0x7f00000001c0)=@abs, 0x6e, 0x0, 0x0, &(0x7f0000000540)=[@cred={{0x1c}}], 0x20}, 0x2002) 11:11:01 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:11:01 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 5) 11:11:01 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:01 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:11:01 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 5) [ 735.992176] FAULT_INJECTION: forcing a failure. [ 735.992176] name failslab, interval 1, probability 0, space 0, times 0 [ 735.995542] CPU: 0 PID: 5750 Comm: syz-executor.7 Not tainted 5.10.229 #1 [ 735.997469] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 735.999776] Call Trace: [ 736.000503] dump_stack+0x107/0x167 [ 736.001521] should_fail.cold+0x5/0xa [ 736.002592] ? __alloc_file+0x21/0x320 [ 736.003667] should_failslab+0x5/0x20 [ 736.004741] kmem_cache_alloc+0x5b/0x310 [ 736.005871] __alloc_file+0x21/0x320 [ 736.006905] alloc_empty_file+0x6d/0x170 [ 736.008039] alloc_file+0x5e/0x5a0 [ 736.009142] alloc_file_pseudo+0x16a/0x250 [ 736.010326] ? alloc_file+0x5a0/0x5a0 [ 736.011384] ? do_raw_spin_unlock+0x4f/0x220 [ 736.012608] ? _raw_spin_unlock+0x1a/0x30 [ 736.013763] ? alloc_fd+0x2e7/0x670 [ 736.014769] sock_alloc_file+0x4f/0x1a0 [ 736.015876] __sys_socket+0x13d/0x200 [ 736.016934] ? fput_many+0x2f/0x1a0 [ 736.017943] ? move_addr_to_kernel+0x70/0x70 [ 736.019155] ? ksys_write+0x1a9/0x260 [ 736.020211] ? __ia32_sys_read+0xb0/0xb0 [ 736.021345] __x64_sys_socket+0x6f/0xb0 [ 736.022448] do_syscall_64+0x33/0x40 [ 736.023469] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.024910] RIP: 0033:0x7efdae489b19 [ 736.025935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 736.031104] RSP: 002b:00007efdab9ff188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 736.033218] RAX: ffffffffffffffda RBX: 00007efdae59cf60 RCX: 00007efdae489b19 [ 736.035214] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 736.037214] RBP: 00007efdab9ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 736.039204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 736.041195] R13: 00007ffcb1bed99f R14: 00007efdab9ff300 R15: 0000000000022000 [ 736.046134] FAULT_INJECTION: forcing a failure. [ 736.046134] name failslab, interval 1, probability 0, space 0, times 0 [ 736.049704] CPU: 0 PID: 5755 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 736.051170] FAULT_INJECTION: forcing a failure. [ 736.051170] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 736.051778] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 736.051783] Call Trace: [ 736.051797] dump_stack+0x107/0x167 [ 736.051811] should_fail.cold+0x5/0xa [ 736.051826] ? sk_prot_alloc+0x5f/0x2c0 [ 736.051841] should_failslab+0x5/0x20 [ 736.051857] kmem_cache_alloc+0x5b/0x310 [ 736.063171] sk_prot_alloc+0x5f/0x2c0 [ 736.064263] sk_alloc+0x30/0x350 [ 736.065265] inet6_create+0x347/0x1070 [ 736.066386] __sock_create+0x358/0x7f0 [ 736.067521] __sys_socket+0xef/0x200 [ 736.068599] ? fput_many+0x2f/0x1a0 [ 736.069661] ? move_addr_to_kernel+0x70/0x70 [ 736.070935] ? ksys_write+0x1a9/0x260 [ 736.072041] ? __ia32_sys_read+0xb0/0xb0 [ 736.073220] __x64_sys_socket+0x6f/0xb0 [ 736.074369] do_syscall_64+0x33/0x40 [ 736.075436] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.076959] RIP: 0033:0x7fb52c4dab19 [ 736.078022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 736.083391] RSP: 002b:00007fb529a2f188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 736.085601] RAX: ffffffffffffffda RBX: 00007fb52c5ee020 RCX: 00007fb52c4dab19 [ 736.087680] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 736.089758] RBP: 00007fb529a2f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 736.091845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 736.093924] R13: 00007ffc74fb936f R14: 00007fb529a2f300 R15: 0000000000022000 [ 736.096020] CPU: 1 PID: 5752 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 736.097011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 736.098190] Call Trace: [ 736.098574] dump_stack+0x107/0x167 [ 736.099102] should_fail.cold+0x5/0xa [ 736.099658] __alloc_pages_nodemask+0x182/0x600 [ 736.100331] ? lock_acquire+0x197/0x470 [ 736.100912] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 736.101784] ? kmem_cache_alloc_trace+0x151/0x320 [ 736.102473] kmalloc_large_node+0x55/0x1a0 [ 736.103081] ? mark_held_locks+0x9e/0xe0 [ 736.104287] __kmalloc_node+0x30d/0x420 [ 736.104901] kvmalloc_node+0xc0/0x170 [ 736.106092] snd_seq_pool_init+0x8a/0x310 [ 736.106727] snd_seq_fifo_new+0x8f/0x270 [ 736.108019] snd_seq_open+0x4bc/0x610 [ 736.108595] ? snd_seq_create_kernel_client+0x3b0/0x3b0 [ 736.109385] snd_open+0x215/0x420 [ 736.110448] ? snd_request_card+0x80/0x80 [ 736.111443] chrdev_open+0x268/0x6e0 [ 736.112311] ? __unregister_chrdev+0x110/0x110 [ 736.113443] ? fsnotify_perm.part.0+0x22d/0x620 [ 736.114645] do_dentry_open+0x4b7/0x1090 [ 736.115591] ? __unregister_chrdev+0x110/0x110 [ 736.116703] ? may_open+0x1e4/0x400 [ 736.117571] path_openat+0x19ba/0x2770 [ 736.118504] ? path_lookupat+0x860/0x860 [ 736.119476] ? lock_acquire+0x197/0x470 [ 736.120420] ? find_held_lock+0x2c/0x110 [ 736.121592] do_filp_open+0x190/0x3e0 [ 736.122057] ? may_open_dev+0xf0/0xf0 [ 736.122527] ? do_raw_spin_lock+0x121/0x260 [ 736.123046] ? rwlock_bug.part.0+0x90/0x90 [ 736.123560] ? _raw_spin_unlock+0x1a/0x30 [ 736.124058] ? alloc_fd+0x2e7/0x670 [ 736.124504] do_sys_openat2+0x171/0x4d0 [ 736.125057] ? build_open_flags+0x6f0/0x6f0 [ 736.125578] ? __mutex_unlock_slowpath+0xe1/0x600 [ 736.126161] ? wait_for_completion_io+0x270/0x270 [ 736.126745] __x64_sys_openat+0x13f/0x1f0 [ 736.127243] ? __ia32_sys_open+0x1c0/0x1c0 [ 736.127749] ? ksys_write+0x1a9/0x260 [ 736.128213] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 736.129234] ? syscall_enter_from_user_mode+0x1d/0x50 [ 736.129861] do_syscall_64+0x33/0x40 [ 736.130310] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.130926] RIP: 0033:0x7f848b0d7b19 [ 736.131374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 736.135055] RSP: 002b:00007f848864d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 736.135975] RAX: ffffffffffffffda RBX: 00007f848b1eaf60 RCX: 00007f848b0d7b19 [ 736.136842] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffff9c [ 736.137698] RBP: 00007f848864d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 736.138553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 736.139409] R13: 00007fffbbddff5f R14: 00007f848864d300 R15: 0000000000022000 11:11:01 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) (fail_nth: 16) [ 736.166193] netlink: 'syz-executor.6': attribute type 19 has an invalid length. [ 736.188187] FAULT_INJECTION: forcing a failure. [ 736.188187] name failslab, interval 1, probability 0, space 0, times 0 [ 736.190482] CPU: 1 PID: 5760 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 736.192465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 736.194774] Call Trace: [ 736.195497] dump_stack+0x107/0x167 [ 736.196492] should_fail.cold+0x5/0xa [ 736.197555] ? create_object.isra.0+0x3a/0xa20 [ 736.198813] should_failslab+0x5/0x20 [ 736.199861] kmem_cache_alloc+0x5b/0x310 [ 736.200449] create_object.isra.0+0x3a/0xa20 [ 736.201681] ? kasan_unpoison_shadow+0x33/0x50 [ 736.202347] kmalloc_order+0xfe/0x160 [ 736.203404] kmalloc_order_trace+0x14/0xa0 [ 736.204029] io_uring_setup+0x33c/0x2980 [ 736.205165] ? __mutex_unlock_slowpath+0xe1/0x600 [ 736.205864] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 736.207264] ? wait_for_completion_io+0x270/0x270 [ 736.207986] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 736.209448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 736.210199] do_syscall_64+0x33/0x40 [ 736.211229] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.211978] RIP: 0033:0x7f0ba9f97b19 [ 736.213042] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 736.215662] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 736.217871] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 736.219850] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 736.221845] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 736.223813] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 736.225806] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 736.331422] FAULT_INJECTION: forcing a failure. [ 736.331422] name fail_page_alloc, interval 1, probability 0, space 0, times 0 11:11:01 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:01 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) (fail_nth: 17) [ 736.335519] CPU: 0 PID: 5767 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 736.345295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 736.346459] Call Trace: [ 736.346844] dump_stack+0x107/0x167 [ 736.347371] should_fail.cold+0x5/0xa [ 736.347920] __alloc_pages_nodemask+0x182/0x600 [ 736.348593] ? lock_acquire+0x197/0x470 [ 736.349164] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 736.350025] ? kmem_cache_alloc_trace+0x151/0x320 [ 736.350713] kmalloc_large_node+0x55/0x1a0 [ 736.351313] ? mark_held_locks+0x9e/0xe0 [ 736.351894] __kmalloc_node+0x30d/0x420 [ 736.352972] kvmalloc_node+0xc0/0x170 [ 736.353525] snd_seq_pool_init+0x8a/0x310 [ 736.354673] snd_seq_fifo_new+0x8f/0x270 [ 736.355262] snd_seq_open+0x4bc/0x610 [ 736.356313] ? snd_seq_create_kernel_client+0x3b0/0x3b0 [ 736.357089] snd_open+0x215/0x420 [ 736.358047] ? snd_request_card+0x80/0x80 [ 736.358650] chrdev_open+0x268/0x6e0 [ 736.359683] ? __unregister_chrdev+0x110/0x110 [ 736.360343] ? fsnotify_perm.part.0+0x22d/0x620 [ 736.361089] do_dentry_open+0x4b7/0x1090 [ 736.361585] ? __unregister_chrdev+0x110/0x110 [ 736.362142] ? may_open+0x1e4/0x400 [ 736.362585] path_openat+0x19ba/0x2770 [ 736.363066] ? path_lookupat+0x860/0x860 [ 736.363561] ? lock_acquire+0x197/0x470 [ 736.364042] ? find_held_lock+0x2c/0x110 [ 736.364543] do_filp_open+0x190/0x3e0 [ 736.365019] ? may_open_dev+0xf0/0xf0 [ 736.365488] ? do_raw_spin_lock+0x121/0x260 [ 736.366010] ? rwlock_bug.part.0+0x90/0x90 [ 736.366529] ? _raw_spin_unlock+0x1a/0x30 [ 736.367032] ? alloc_fd+0x2e7/0x670 [ 736.367483] do_sys_openat2+0x171/0x4d0 [ 736.367968] ? build_open_flags+0x6f0/0x6f0 [ 736.368488] ? __mutex_unlock_slowpath+0xe1/0x600 [ 736.369167] ? wait_for_completion_io+0x270/0x270 [ 736.369859] __x64_sys_openat+0x13f/0x1f0 [ 736.370441] ? __ia32_sys_open+0x1c0/0x1c0 [ 736.371044] ? ksys_write+0x1a9/0x260 [ 736.371587] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 736.372337] ? syscall_enter_from_user_mode+0x1d/0x50 [ 736.373106] do_syscall_64+0x33/0x40 [ 736.373665] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 736.374436] RIP: 0033:0x7f848b0d7b19 [ 736.375011] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 736.381733] RSP: 002b:00007f848864d188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 736.382894] RAX: ffffffffffffffda RBX: 00007f848b1eaf60 RCX: 00007f848b0d7b19 [ 736.383978] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: ffffffffffffff9c [ 736.384975] RBP: 00007f848864d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 736.385837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 736.386696] R13: 00007fffbbddff5f R14: 00007f848864d300 R15: 0000000000022000 11:11:14 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:14 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 16) 11:11:14 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:11:14 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:11:14 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 6) 11:11:14 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 749.566011] FAULT_INJECTION: forcing a failure. [ 749.566011] name failslab, interval 1, probability 0, space 0, times 0 [ 749.567425] CPU: 0 PID: 5778 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 749.568260] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 749.569620] Call Trace: [ 749.570239] dump_stack+0x107/0x167 [ 749.571091] should_fail.cold+0x5/0xa [ 749.571991] ? create_object.isra.0+0x3a/0xa20 [ 749.573107] should_failslab+0x5/0x20 [ 749.574184] kmem_cache_alloc+0x5b/0x310 [ 749.575170] create_object.isra.0+0x3a/0xa20 [ 749.576253] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 749.577300] kmem_cache_alloc+0x159/0x310 [ 749.577821] sk_prot_alloc+0x5f/0x2c0 [ 749.577855] FAULT_INJECTION: forcing a failure. [ 749.577855] name failslab, interval 1, probability 0, space 0, times 0 [ 749.578293] sk_alloc+0x30/0x350 [ 749.580196] inet6_create+0x347/0x1070 [ 749.580680] __sock_create+0x358/0x7f0 [ 749.581367] __sys_socket+0xef/0x200 [ 749.582265] ? fput_many+0x2f/0x1a0 [ 749.583159] ? move_addr_to_kernel+0x70/0x70 [ 749.584219] ? ksys_write+0x1a9/0x260 [ 749.585166] ? __ia32_sys_read+0xb0/0xb0 [ 749.586155] __x64_sys_socket+0x6f/0xb0 [ 749.587090] do_syscall_64+0x33/0x40 [ 749.587970] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 749.589238] RIP: 0033:0x7fb52c4dab19 [ 749.590137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 749.595034] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 749.596831] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 749.597838] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 749.598710] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 749.599581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 749.600453] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 [ 749.601375] CPU: 1 PID: 5780 Comm: syz-executor.7 Not tainted 5.10.229 #1 [ 749.602297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 749.603388] Call Trace: [ 749.603742] dump_stack+0x107/0x167 [ 749.604229] should_fail.cold+0x5/0xa [ 749.604733] ? create_object.isra.0+0x3a/0xa20 [ 749.605373] should_failslab+0x5/0x20 [ 749.605881] kmem_cache_alloc+0x5b/0x310 [ 749.606420] create_object.isra.0+0x3a/0xa20 [ 749.607000] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 749.607675] kmem_cache_alloc+0x159/0x310 [ 749.608228] __alloc_file+0x21/0x320 [ 749.608721] alloc_empty_file+0x6d/0x170 [ 749.613286] alloc_file+0x5e/0x5a0 [ 749.613755] alloc_file_pseudo+0x16a/0x250 [ 749.614313] ? alloc_file+0x5a0/0x5a0 [ 749.614809] ? do_raw_spin_unlock+0x4f/0x220 [ 749.615147] FAULT_INJECTION: forcing a failure. [ 749.615147] name failslab, interval 1, probability 0, space 0, times 0 [ 749.615384] ? _raw_spin_unlock+0x1a/0x30 [ 749.615397] ? alloc_fd+0x2e7/0x670 [ 749.615416] sock_alloc_file+0x4f/0x1a0 [ 749.618271] __sys_socket+0x13d/0x200 [ 749.618767] ? fput_many+0x2f/0x1a0 [ 749.619246] ? move_addr_to_kernel+0x70/0x70 [ 749.619842] ? ksys_write+0x1a9/0x260 [ 749.620347] ? __ia32_sys_read+0xb0/0xb0 [ 749.620885] __x64_sys_socket+0x6f/0xb0 [ 749.621423] do_syscall_64+0x33/0x40 [ 749.621914] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 749.622589] RIP: 0033:0x7efdae489b19 [ 749.623083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 749.625516] RSP: 002b:00007efdab9ff188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 749.626518] RAX: ffffffffffffffda RBX: 00007efdae59cf60 RCX: 00007efdae489b19 [ 749.627459] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 749.628397] RBP: 00007efdab9ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 749.629356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 749.630296] R13: 00007ffcb1bed99f R14: 00007efdab9ff300 R15: 0000000000022000 [ 749.631257] CPU: 0 PID: 5786 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 749.632103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 749.633150] Call Trace: [ 749.633473] dump_stack+0x107/0x167 [ 749.633921] should_fail.cold+0x5/0xa [ 749.634391] ? io_uring_setup+0x40b/0x2980 [ 749.634912] should_failslab+0x5/0x20 [ 749.635394] kmem_cache_alloc_trace+0x55/0x320 [ 749.635972] io_uring_setup+0x40b/0x2980 [ 749.636485] ? __mutex_unlock_slowpath+0xe1/0x600 [ 749.637101] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 749.637737] ? wait_for_completion_io+0x270/0x270 [ 749.638352] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 749.638998] ? syscall_enter_from_user_mode+0x1d/0x50 [ 749.639637] do_syscall_64+0x33/0x40 [ 749.640091] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 749.640726] RIP: 0033:0x7f0ba9f97b19 [ 749.641203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 749.643443] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 749.644372] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 749.649207] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 749.650066] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 749.650922] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 749.651780] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 749.656393] FAULT_INJECTION: forcing a failure. [ 749.656393] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 749.658567] CPU: 1 PID: 5785 Comm: syz-executor.2 Not tainted 5.10.229 #1 [ 749.659477] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 749.660597] Call Trace: [ 749.660946] dump_stack+0x107/0x167 [ 749.661466] should_fail.cold+0x5/0xa [ 749.661977] _copy_to_user+0x2e/0x180 [ 749.662489] simple_read_from_buffer+0xcc/0x160 [ 749.663111] proc_fail_nth_read+0x198/0x230 [ 749.663687] ? proc_sessionid_read+0x230/0x230 [ 749.664301] ? security_file_permission+0xb1/0xe0 [ 749.664948] ? proc_sessionid_read+0x230/0x230 [ 749.665577] vfs_read+0x228/0x620 [ 749.666044] ksys_read+0x12d/0x260 [ 749.666516] ? vfs_write+0xb10/0xb10 [ 749.667018] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 749.667712] ? syscall_enter_from_user_mode+0x1d/0x50 [ 749.668400] do_syscall_64+0x33/0x40 [ 749.668894] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 749.669759] RIP: 0033:0x7f848b08a69c [ 749.670253] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 749.672689] RSP: 002b:00007f848864d170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 749.673721] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007f848b08a69c [ 749.674673] RDX: 000000000000000f RSI: 00007f848864d1e0 RDI: 0000000000000004 [ 749.675622] RBP: 00007f848864d1d0 R08: 0000000000000000 R09: 0000000000000000 [ 749.676575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 749.677537] R13: 00007fffbbddff5f R14: 00007f848864d300 R15: 0000000000022000 [ 749.791822] FAULT_INJECTION: forcing a failure. [ 749.791822] name failslab, interval 1, probability 0, space 0, times 0 [ 749.793462] CPU: 0 PID: 5794 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 749.801861] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 749.803825] Call Trace: [ 749.804434] dump_stack+0x107/0x167 [ 749.805364] should_fail.cold+0x5/0xa [ 749.806277] ? create_object.isra.0+0x3a/0xa20 [ 749.807380] should_failslab+0x5/0x20 [ 749.808300] kmem_cache_alloc+0x5b/0x310 [ 749.809343] create_object.isra.0+0x3a/0xa20 [ 749.810372] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 749.811565] kmem_cache_alloc_trace+0x151/0x320 [ 749.812659] io_uring_setup+0x40b/0x2980 [ 749.813742] ? __mutex_unlock_slowpath+0xe1/0x600 [ 749.814903] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 749.816128] ? wait_for_completion_io+0x270/0x270 [ 749.817356] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 749.818586] ? syscall_enter_from_user_mode+0x1d/0x50 [ 749.819795] do_syscall_64+0x33/0x40 [ 749.820664] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 749.822080] RIP: 0033:0x7f0ba9f97b19 [ 749.822974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 749.827935] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 749.829896] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 749.831656] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 749.833267] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 749.834140] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 749.835026] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 749.855084] FAULT_INJECTION: forcing a failure. [ 749.855084] name failslab, interval 1, probability 0, space 0, times 0 [ 749.861963] CPU: 0 PID: 5799 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 749.862793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 749.863791] Call Trace: [ 749.864109] dump_stack+0x107/0x167 [ 749.864549] should_fail.cold+0x5/0xa [ 749.865015] ? selinux_sk_alloc_security+0x8b/0x1b0 [ 749.865642] ? selinux_sk_alloc_security+0x8b/0x1b0 [ 749.866244] should_failslab+0x5/0x20 [ 749.866708] kmem_cache_alloc_trace+0x55/0x320 [ 749.867266] selinux_sk_alloc_security+0x8b/0x1b0 [ 749.867852] security_sk_alloc+0x56/0xb0 [ 749.868350] sk_prot_alloc+0xa5/0x2c0 [ 749.868814] sk_alloc+0x30/0x350 [ 749.869257] inet6_create+0x347/0x1070 [ 749.869741] __sock_create+0x358/0x7f0 [ 749.870215] __sys_socket+0xef/0x200 [ 749.870667] ? fput_many+0x2f/0x1a0 [ 749.871108] ? move_addr_to_kernel+0x70/0x70 [ 749.871643] ? ksys_write+0x1a9/0x260 [ 749.872106] ? __ia32_sys_read+0xb0/0xb0 [ 749.872601] __x64_sys_socket+0x6f/0xb0 [ 749.873092] do_syscall_64+0x33/0x40 [ 749.873552] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 749.874173] RIP: 0033:0x7fb52c4dab19 [ 749.874626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 749.876852] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 749.877800] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 749.878668] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 749.879527] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 749.880391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 749.881273] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 [ 749.926112] FAULT_INJECTION: forcing a failure. [ 749.926112] name failslab, interval 1, probability 0, space 0, times 0 [ 749.934839] CPU: 0 PID: 5802 Comm: syz-executor.7 Not tainted 5.10.229 #1 [ 749.935671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 749.942014] Call Trace: [ 749.942349] dump_stack+0x107/0x167 [ 749.942816] should_fail.cold+0x5/0xa [ 749.943297] ? security_file_alloc+0x34/0x170 [ 749.943867] should_failslab+0x5/0x20 [ 749.944328] kmem_cache_alloc+0x5b/0x310 [ 749.944825] security_file_alloc+0x34/0x170 [ 749.945391] __alloc_file+0xb7/0x320 [ 749.945851] alloc_empty_file+0x6d/0x170 [ 749.946344] alloc_file+0x5e/0x5a0 [ 749.946779] alloc_file_pseudo+0x16a/0x250 [ 749.947292] ? alloc_file+0x5a0/0x5a0 [ 749.947756] ? do_raw_spin_unlock+0x4f/0x220 [ 749.948289] ? _raw_spin_unlock+0x1a/0x30 [ 749.948800] ? alloc_fd+0x2e7/0x670 [ 749.949267] sock_alloc_file+0x4f/0x1a0 [ 749.949752] __sys_socket+0x13d/0x200 [ 749.950214] ? fput_many+0x2f/0x1a0 [ 749.950658] ? move_addr_to_kernel+0x70/0x70 [ 749.951192] ? ksys_write+0x1a9/0x260 [ 749.951656] ? __ia32_sys_read+0xb0/0xb0 [ 749.952157] __x64_sys_socket+0x6f/0xb0 [ 749.952639] do_syscall_64+0x33/0x40 [ 749.953105] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 749.953744] RIP: 0033:0x7efdae489b19 [ 749.954199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 749.956432] RSP: 002b:00007efdab9ff188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 749.957375] RAX: ffffffffffffffda RBX: 00007efdae59cf60 RCX: 00007efdae489b19 [ 749.958240] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 749.959105] RBP: 00007efdab9ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 749.959971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 749.960841] R13: 00007ffcb1bed99f R14: 00007efdab9ff300 R15: 0000000000022000 11:11:14 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) (fail_nth: 18) 11:11:14 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 6) 11:11:15 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:15 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 7) 11:11:15 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 7) 11:11:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x14, 0x20, 0xc21, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 11:11:15 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:15 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 17) 11:11:15 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:15 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:11:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x14, 0x20, 0xc21, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 11:11:28 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:11:28 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:11:28 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:28 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 18) 11:11:28 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 8) 11:11:28 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 8) 11:11:28 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffffc8, &(0x7f00000002c0), 0x0) 11:11:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x14, 0x20, 0xc21, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) [ 763.099060] FAULT_INJECTION: forcing a failure. [ 763.099060] name failslab, interval 1, probability 0, space 0, times 0 [ 763.100469] CPU: 1 PID: 5824 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 763.101300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.101666] FAULT_INJECTION: forcing a failure. [ 763.101666] name failslab, interval 1, probability 0, space 0, times 0 [ 763.103400] Call Trace: [ 763.103418] dump_stack+0x107/0x167 [ 763.103436] should_fail.cold+0x5/0xa [ 763.107437] ? create_object.isra.0+0x3a/0xa20 [ 763.108537] should_failslab+0x5/0x20 [ 763.109449] kmem_cache_alloc+0x5b/0x310 [ 763.110611] create_object.isra.0+0x3a/0xa20 [ 763.111662] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 763.112879] kmem_cache_alloc_trace+0x151/0x320 [ 763.114095] selinux_sk_alloc_security+0x8b/0x1b0 [ 763.115255] security_sk_alloc+0x56/0xb0 [ 763.116229] sk_prot_alloc+0xa5/0x2c0 [ 763.117140] sk_alloc+0x30/0x350 [ 763.118043] inet6_create+0x347/0x1070 [ 763.118979] __sock_create+0x358/0x7f0 [ 763.119914] __sys_socket+0xef/0x200 [ 763.120803] ? fput_many+0x2f/0x1a0 [ 763.121717] ? move_addr_to_kernel+0x70/0x70 [ 763.122767] ? ksys_write+0x1a9/0x260 [ 763.123676] ? __ia32_sys_read+0xb0/0xb0 [ 763.124656] __x64_sys_socket+0x6f/0xb0 [ 763.125662] do_syscall_64+0x33/0x40 [ 763.126555] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.127789] RIP: 0033:0x7fb52c4dab19 [ 763.128681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.133846] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 763.135685] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 763.137409] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 763.139431] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 763.141155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 763.142240] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 [ 763.143130] CPU: 0 PID: 5825 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 763.143976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.144977] Call Trace: [ 763.145303] dump_stack+0x107/0x167 [ 763.145780] should_fail.cold+0x5/0xa [ 763.146248] ? create_object.isra.0+0x3a/0xa20 [ 763.146804] should_failslab+0x5/0x20 [ 763.147265] kmem_cache_alloc+0x5b/0x310 [ 763.147760] create_object.isra.0+0x3a/0xa20 [ 763.148297] kmemleak_alloc_percpu+0xa0/0x100 [ 763.148848] pcpu_alloc+0x4e2/0x1240 [ 763.149305] ? io_tctx_exit_cb+0xf0/0xf0 [ 763.149842] percpu_ref_init+0x31/0x3d0 [ 763.150325] io_uring_setup+0x47a/0x2980 [ 763.150824] ? __mutex_unlock_slowpath+0xe1/0x600 [ 763.151404] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 763.157992] ? wait_for_completion_io+0x270/0x270 [ 763.158591] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 763.159228] ? syscall_enter_from_user_mode+0x1d/0x50 [ 763.159850] do_syscall_64+0x33/0x40 [ 763.160299] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.160916] RIP: 0033:0x7f0ba9f97b19 [ 763.161363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.166850] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 763.167770] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 763.168638] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 763.169500] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 763.174382] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 763.175243] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 763.190345] FAULT_INJECTION: forcing a failure. [ 763.190345] name failslab, interval 1, probability 0, space 0, times 0 [ 763.191735] CPU: 0 PID: 5827 Comm: syz-executor.7 Not tainted 5.10.229 #1 [ 763.192559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.193576] Call Trace: [ 763.197870] dump_stack+0x107/0x167 [ 763.198312] should_fail.cold+0x5/0xa [ 763.198774] ? security_file_alloc+0x34/0x170 [ 763.199319] should_failslab+0x5/0x20 [ 763.199781] kmem_cache_alloc+0x5b/0x310 [ 763.200276] security_file_alloc+0x34/0x170 [ 763.200801] __alloc_file+0xb7/0x320 [ 763.201252] alloc_empty_file+0x6d/0x170 [ 763.201765] alloc_file+0x5e/0x5a0 [ 763.202199] alloc_file_pseudo+0x16a/0x250 [ 763.202713] ? alloc_file+0x5a0/0x5a0 [ 763.203173] ? do_raw_spin_unlock+0x4f/0x220 [ 763.203708] ? _raw_spin_unlock+0x1a/0x30 [ 763.204212] ? alloc_fd+0x2e7/0x670 [ 763.204661] sock_alloc_file+0x4f/0x1a0 [ 763.205145] __sys_socket+0x13d/0x200 [ 763.205635] ? fput_many+0x2f/0x1a0 [ 763.206082] ? move_addr_to_kernel+0x70/0x70 [ 763.206622] ? ksys_write+0x1a9/0x260 [ 763.207091] ? __ia32_sys_read+0xb0/0xb0 [ 763.207588] __x64_sys_socket+0x6f/0xb0 [ 763.208072] do_syscall_64+0x33/0x40 [ 763.208526] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.209156] RIP: 0033:0x7efdae489b19 [ 763.209642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.211892] RSP: 002b:00007efdab9ff188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 763.212818] RAX: ffffffffffffffda RBX: 00007efdae59cf60 RCX: 00007efdae489b19 [ 763.213722] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 763.214588] RBP: 00007efdab9ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 763.215457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 763.216321] R13: 00007ffcb1bed99f R14: 00007efdab9ff300 R15: 0000000000022000 11:11:28 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 9) 11:11:28 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 763.264901] FAULT_INJECTION: forcing a failure. 11:11:28 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x2) [ 763.264901] name failslab, interval 1, probability 0, space 0, times 0 [ 763.270334] CPU: 0 PID: 5831 Comm: syz-executor.3 Not tainted 5.10.229 #1 11:11:28 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 9) [ 763.271157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.282111] Call Trace: [ 763.282433] dump_stack+0x107/0x167 [ 763.282873] should_fail.cold+0x5/0xa [ 763.283340] ? selinux_netlbl_sock_genattr+0xb0/0x4b0 [ 763.283976] should_failslab+0x5/0x20 [ 763.284448] kmem_cache_alloc_trace+0x55/0x320 [ 763.285020] selinux_netlbl_sock_genattr+0xb0/0x4b0 [ 763.285655] selinux_netlbl_socket_post_create+0x77/0x160 [ 763.286335] selinux_socket_post_create+0x2e2/0x7f0 [ 763.286954] ? selinux_add_mnt_opt+0x2e0/0x2e0 [ 763.287520] ? tcp_init_sock+0x7ee/0x9e0 [ 763.288025] ? __raw_spin_lock_init+0x36/0x110 [ 763.288602] ? tcp_v6_init_sock+0x11/0x80 [ 763.289130] security_socket_post_create+0x6a/0xd0 [ 763.289767] __sock_create+0x6cc/0x7f0 [ 763.290258] __sys_socket+0xef/0x200 [ 763.290715] ? fput_many+0x2f/0x1a0 [ 763.291173] ? move_addr_to_kernel+0x70/0x70 [ 763.291723] ? ksys_write+0x1a9/0x260 [ 763.292194] ? __ia32_sys_read+0xb0/0xb0 [ 763.292704] __x64_sys_socket+0x6f/0xb0 [ 763.293193] do_syscall_64+0x33/0x40 [ 763.293688] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.294315] RIP: 0033:0x7fb52c4dab19 [ 763.294783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.297029] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 763.297994] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 763.298873] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 763.299743] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 763.300614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 11:11:28 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 19) [ 763.301487] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 11:11:28 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:28 executing program 4: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) [ 763.375662] FAULT_INJECTION: forcing a failure. [ 763.375662] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 763.377111] CPU: 0 PID: 5837 Comm: syz-executor.7 Not tainted 5.10.229 #1 [ 763.377958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.378962] Call Trace: [ 763.379284] dump_stack+0x107/0x167 [ 763.379743] should_fail.cold+0x5/0xa [ 763.380209] _copy_to_user+0x2e/0x180 [ 763.380685] simple_read_from_buffer+0xcc/0x160 [ 763.385776] proc_fail_nth_read+0x198/0x230 [ 763.386314] ? proc_sessionid_read+0x230/0x230 [ 763.386872] ? security_file_permission+0xb1/0xe0 [ 763.387474] ? proc_sessionid_read+0x230/0x230 [ 763.388038] vfs_read+0x228/0x620 [ 763.388468] ksys_read+0x12d/0x260 [ 763.388903] ? vfs_write+0xb10/0xb10 [ 763.389363] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 763.390020] ? syscall_enter_from_user_mode+0x1d/0x50 [ 763.390657] do_syscall_64+0x33/0x40 [ 763.391115] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.391741] RIP: 0033:0x7efdae43c69c [ 763.392204] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 763.394465] RSP: 002b:00007efdab9ff170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 763.395391] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007efdae43c69c [ 763.396259] RDX: 000000000000000f RSI: 00007efdab9ff1e0 RDI: 0000000000000004 [ 763.397127] RBP: 00007efdab9ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 763.398005] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 763.398872] R13: 00007ffcb1bed99f R14: 00007efdab9ff300 R15: 0000000000022000 [ 763.402458] FAULT_INJECTION: forcing a failure. [ 763.402458] name failslab, interval 1, probability 0, space 0, times 0 [ 763.403893] CPU: 0 PID: 5838 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 763.404719] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.409744] Call Trace: [ 763.410063] dump_stack+0x107/0x167 [ 763.410505] should_fail.cold+0x5/0xa [ 763.410968] ? create_object.isra.0+0x3a/0xa20 [ 763.411530] should_failslab+0x5/0x20 [ 763.411992] kmem_cache_alloc+0x5b/0x310 [ 763.412494] create_object.isra.0+0x3a/0xa20 [ 763.413033] kmemleak_alloc_percpu+0xa0/0x100 [ 763.413607] pcpu_alloc+0x4e2/0x1240 [ 763.414085] ? io_tctx_exit_cb+0xf0/0xf0 [ 763.414584] percpu_ref_init+0x31/0x3d0 [ 763.415070] io_uring_setup+0x47a/0x2980 [ 763.415571] ? __mutex_unlock_slowpath+0xe1/0x600 [ 763.416156] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 763.416768] ? wait_for_completion_io+0x270/0x270 [ 763.417365] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 763.418036] ? syscall_enter_from_user_mode+0x1d/0x50 [ 763.418670] do_syscall_64+0x33/0x40 [ 763.419120] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.419739] RIP: 0033:0x7f0ba9f97b19 [ 763.420192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.422452] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 763.423374] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 763.424236] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 763.425102] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 763.425998] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 763.426861] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:11:28 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 10) [ 763.530029] FAULT_INJECTION: forcing a failure. [ 763.530029] name failslab, interval 1, probability 0, space 0, times 0 [ 763.531508] CPU: 0 PID: 5846 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 763.532337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 763.533340] Call Trace: [ 763.533807] dump_stack+0x107/0x167 [ 763.534706] should_fail.cold+0x5/0xa [ 763.535774] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 763.536494] ? create_object.isra.0+0x3a/0xa20 [ 763.537125] should_failslab+0x5/0x20 [ 763.537681] kmem_cache_alloc+0x5b/0x310 [ 763.538240] create_object.isra.0+0x3a/0xa20 [ 763.538836] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 763.539531] kmem_cache_alloc_trace+0x151/0x320 [ 763.540172] selinux_netlbl_sock_genattr+0xb0/0x4b0 [ 763.540861] selinux_netlbl_socket_post_create+0x77/0x160 [ 763.545638] selinux_socket_post_create+0x2e2/0x7f0 [ 763.546323] ? selinux_add_mnt_opt+0x2e0/0x2e0 [ 763.546944] ? tcp_init_sock+0x7ee/0x9e0 [ 763.547499] ? __raw_spin_lock_init+0x36/0x110 [ 763.548125] ? tcp_v6_init_sock+0x11/0x80 [ 763.548691] security_socket_post_create+0x6a/0xd0 [ 763.549363] __sock_create+0x6cc/0x7f0 [ 763.549910] __sys_socket+0xef/0x200 [ 763.550415] ? fput_many+0x2f/0x1a0 [ 763.550915] ? move_addr_to_kernel+0x70/0x70 [ 763.551511] ? ksys_write+0x1a9/0x260 [ 763.552031] ? __ia32_sys_read+0xb0/0xb0 [ 763.552586] __x64_sys_socket+0x6f/0xb0 [ 763.553127] do_syscall_64+0x33/0x40 [ 763.557660] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 763.558362] RIP: 0033:0x7fb52c4dab19 [ 763.558877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 763.564141] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 763.566265] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 763.568325] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 763.570402] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 763.572494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 763.574555] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 11:11:42 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:11:42 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:42 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 10) [ 776.761191] FAULT_INJECTION: forcing a failure. [ 776.761191] name failslab, interval 1, probability 0, space 0, times 0 [ 776.762685] CPU: 1 PID: 5854 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 776.763540] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 776.764541] Call Trace: [ 776.764871] dump_stack+0x107/0x167 [ 776.765314] should_fail.cold+0x5/0xa [ 776.765779] ? percpu_ref_init+0xd8/0x3d0 [ 776.766307] should_failslab+0x5/0x20 [ 776.766776] kmem_cache_alloc_trace+0x55/0x320 [ 776.767334] ? io_tctx_exit_cb+0xf0/0xf0 [ 776.767837] percpu_ref_init+0xd8/0x3d0 [ 776.768330] io_uring_setup+0x47a/0x2980 [ 776.768832] ? __mutex_unlock_slowpath+0xe1/0x600 [ 776.769432] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 776.770065] ? wait_for_completion_io+0x270/0x270 [ 776.770689] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 776.771350] ? syscall_enter_from_user_mode+0x1d/0x50 [ 776.771995] do_syscall_64+0x33/0x40 [ 776.772459] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 776.773099] RIP: 0033:0x7f0ba9f97b19 11:11:42 executing program 4: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) [ 776.773568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 776.779946] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 776.780877] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 776.781743] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 776.782637] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 776.783506] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 776.784375] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:11:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x3) 11:11:42 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:11:42 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 11) 11:11:42 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 776.830149] FAULT_INJECTION: forcing a failure. [ 776.830149] name failslab, interval 1, probability 0, space 0, times 0 [ 776.831710] CPU: 1 PID: 5863 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 776.832543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 776.833623] Call Trace: [ 776.833951] dump_stack+0x107/0x167 [ 776.834408] should_fail.cold+0x5/0xa [ 776.834956] should_failslab+0x5/0x20 [ 776.835417] __kmalloc_track_caller+0x79/0x370 [ 776.836022] ? security_netlbl_sid_to_secattr+0x1d4/0x4d0 [ 776.836744] kstrdup+0x36/0x70 [ 776.837136] security_netlbl_sid_to_secattr+0x1d4/0x4d0 [ 776.837833] selinux_netlbl_sock_genattr+0xf0/0x4b0 [ 776.838459] selinux_netlbl_socket_post_create+0x77/0x160 [ 776.839199] selinux_socket_post_create+0x2e2/0x7f0 [ 776.839855] ? selinux_add_mnt_opt+0x2e0/0x2e0 [ 776.840408] ? tcp_init_sock+0x7ee/0x9e0 [ 776.840946] ? __raw_spin_lock_init+0x36/0x110 [ 776.841501] ? tcp_v6_init_sock+0x11/0x80 [ 776.842065] security_socket_post_create+0x6a/0xd0 [ 776.842745] __sock_create+0x6cc/0x7f0 [ 776.843222] __sys_socket+0xef/0x200 [ 776.843722] ? fput_many+0x2f/0x1a0 [ 776.844164] ? move_addr_to_kernel+0x70/0x70 [ 776.844748] ? ksys_write+0x1a9/0x260 [ 776.845211] ? __ia32_sys_read+0xb0/0xb0 [ 776.845755] __x64_sys_socket+0x6f/0xb0 [ 776.846260] do_syscall_64+0x33/0x40 [ 776.846786] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 776.847407] RIP: 0033:0x7fb52c4dab19 [ 776.847912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 776.850246] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 776.851238] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 776.852153] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 776.853067] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 776.854004] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 776.871516] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 11:11:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x4) 11:11:42 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 11) 11:11:42 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:11:42 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x2, 0x1, 0x0) 11:11:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x5) 11:11:42 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 12) 11:11:42 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 777.041390] FAULT_INJECTION: forcing a failure. [ 777.041390] name failslab, interval 1, probability 0, space 0, times 0 [ 777.042869] CPU: 1 PID: 5881 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 777.043703] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 777.044716] Call Trace: [ 777.045043] dump_stack+0x107/0x167 [ 777.045492] should_fail.cold+0x5/0xa [ 777.045961] ? create_object.isra.0+0x3a/0xa20 [ 777.046539] should_failslab+0x5/0x20 [ 777.047004] kmem_cache_alloc+0x5b/0x310 [ 777.047502] create_object.isra.0+0x3a/0xa20 [ 777.048035] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 777.048657] kmem_cache_alloc_trace+0x151/0x320 [ 777.049225] ? io_tctx_exit_cb+0xf0/0xf0 [ 777.049722] percpu_ref_init+0xd8/0x3d0 [ 777.050223] io_uring_setup+0x47a/0x2980 [ 777.050721] ? __mutex_unlock_slowpath+0xe1/0x600 [ 777.051309] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 777.051923] ? wait_for_completion_io+0x270/0x270 [ 777.052524] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 777.053161] ? syscall_enter_from_user_mode+0x1d/0x50 [ 777.053790] do_syscall_64+0x33/0x40 [ 777.054258] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 777.054883] RIP: 0033:0x7f0ba9f97b19 [ 777.055340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 777.057580] RSP: 002b:00007f0ba74ec108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 777.058524] RAX: ffffffffffffffda RBX: 00007f0baa0ab020 RCX: 00007f0ba9f97b19 [ 777.059392] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 777.060261] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 777.061129] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 777.061996] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:11:42 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x5, 0x1, 0x0) [ 777.093611] FAULT_INJECTION: forcing a failure. [ 777.093611] name failslab, interval 1, probability 0, space 0, times 0 [ 777.095041] CPU: 0 PID: 5882 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 777.095874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 777.096884] Call Trace: [ 777.097214] dump_stack+0x107/0x167 [ 777.097675] should_fail.cold+0x5/0xa [ 777.098162] ? create_object.isra.0+0x3a/0xa20 [ 777.098730] should_failslab+0x5/0x20 [ 777.099196] kmem_cache_alloc+0x5b/0x310 [ 777.099696] ? security_netlbl_sid_to_secattr+0x74/0x4d0 [ 777.100357] create_object.isra.0+0x3a/0xa20 [ 777.100894] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 777.101515] __kmalloc_track_caller+0x177/0x370 [ 777.102090] ? security_netlbl_sid_to_secattr+0x1d4/0x4d0 [ 777.102771] kstrdup+0x36/0x70 [ 777.103166] security_netlbl_sid_to_secattr+0x1d4/0x4d0 [ 777.103820] selinux_netlbl_sock_genattr+0xf0/0x4b0 [ 777.104433] selinux_netlbl_socket_post_create+0x77/0x160 [ 777.105105] selinux_socket_post_create+0x2e2/0x7f0 [ 777.105713] ? selinux_add_mnt_opt+0x2e0/0x2e0 [ 777.106293] ? tcp_init_sock+0x7ee/0x9e0 [ 777.106793] ? __raw_spin_lock_init+0x36/0x110 [ 777.107351] ? tcp_v6_init_sock+0x11/0x80 [ 777.107863] security_socket_post_create+0x6a/0xd0 [ 777.108468] __sock_create+0x6cc/0x7f0 [ 777.108949] __sys_socket+0xef/0x200 [ 777.109403] ? fput_many+0x2f/0x1a0 [ 777.109855] ? move_addr_to_kernel+0x70/0x70 [ 777.110410] ? ksys_write+0x1a9/0x260 [ 777.110877] ? __ia32_sys_read+0xb0/0xb0 [ 777.111378] __x64_sys_socket+0x6f/0xb0 [ 777.111866] do_syscall_64+0x33/0x40 [ 777.112322] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 777.112949] RIP: 0033:0x7fb52c4dab19 [ 777.113408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 777.115676] RSP: 002b:00007fb529a2f188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 777.116603] RAX: ffffffffffffffda RBX: 00007fb52c5ee020 RCX: 00007fb52c4dab19 [ 777.117471] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 777.118355] RBP: 00007fb529a2f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 777.119231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 777.120102] R13: 00007ffc74fb936f R14: 00007fb529a2f300 R15: 0000000000022000 [ 777.178261] perf: interrupt took too long (10098 > 9867), lowering kernel.perf_event_max_sample_rate to 19000 11:11:55 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 13) 11:11:55 executing program 4: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:11:55 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:11:55 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:11:55 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x6) [ 790.628061] FAULT_INJECTION: forcing a failure. [ 790.628061] name failslab, interval 1, probability 0, space 0, times 0 [ 790.629571] CPU: 0 PID: 5898 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 790.630394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 790.631412] Call Trace: [ 790.631739] dump_stack+0x107/0x167 [ 790.632181] should_fail.cold+0x5/0xa [ 790.632648] ? __d_alloc+0x2a/0x990 [ 790.633092] should_failslab+0x5/0x20 [ 790.633555] kmem_cache_alloc+0x5b/0x310 [ 790.634045] ? expand_files+0x635/0xb30 11:11:55 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xf, 0x1, 0x0) 11:11:55 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 12) [ 790.634534] __d_alloc+0x2a/0x990 [ 790.634961] ? alloc_fd+0x2e7/0x670 [ 790.635403] d_alloc_pseudo+0x19/0x70 [ 790.635866] alloc_file_pseudo+0xce/0x250 [ 790.636366] ? alloc_file+0x5a0/0x5a0 [ 790.636830] ? do_raw_spin_unlock+0x4f/0x220 [ 790.637364] ? _raw_spin_unlock+0x1a/0x30 11:11:55 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 790.637867] ? alloc_fd+0x2e7/0x670 [ 790.642749] sock_alloc_file+0x4f/0x1a0 [ 790.643232] __sys_socket+0x13d/0x200 [ 790.643689] ? fput_many+0x2f/0x1a0 [ 790.644128] ? move_addr_to_kernel+0x70/0x70 [ 790.650949] ? ksys_write+0x1a9/0x260 [ 790.651413] ? __ia32_sys_read+0xb0/0xb0 [ 790.651913] __x64_sys_socket+0x6f/0xb0 [ 790.652410] do_syscall_64+0x33/0x40 [ 790.652870] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 790.653494] RIP: 0033:0x7fb52c4dab19 [ 790.658959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 790.661204] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 790.662140] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 790.663031] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 790.663902] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 790.664772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 790.665640] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 11:11:55 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x7) [ 790.674790] FAULT_INJECTION: forcing a failure. [ 790.674790] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 790.680020] CPU: 0 PID: 5906 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 790.680861] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 790.681868] Call Trace: [ 790.682188] dump_stack+0x107/0x167 [ 790.682652] should_fail.cold+0x5/0xa [ 790.683121] __alloc_pages_nodemask+0x182/0x600 [ 790.683695] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 790.684434] ? cap_capable+0x1cd/0x230 [ 790.684914] alloc_pages_current+0x187/0x280 [ 790.685460] __get_free_pages+0xc/0xa0 [ 790.685935] io_uring_setup+0xe27/0x2980 [ 790.686435] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 790.691083] ? wait_for_completion_io+0x270/0x270 [ 790.691687] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 790.692326] ? syscall_enter_from_user_mode+0x1d/0x50 [ 790.692955] do_syscall_64+0x33/0x40 [ 790.693413] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 790.694037] RIP: 0033:0x7f0ba9f97b19 [ 790.694496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 790.700762] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 790.701695] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 790.702584] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 790.703455] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 790.704322] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 790.705188] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:11:56 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 14) 11:11:56 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 13) 11:11:56 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x10, 0x1, 0x0) 11:11:56 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x8) 11:11:56 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 790.898360] FAULT_INJECTION: forcing a failure. [ 790.898360] name failslab, interval 1, probability 0, space 0, times 0 [ 790.903919] CPU: 0 PID: 5919 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 790.904748] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 790.905747] Call Trace: [ 790.906070] dump_stack+0x107/0x167 [ 790.906514] should_fail.cold+0x5/0xa [ 790.910857] ? create_object.isra.0+0x3a/0xa20 [ 790.911419] should_failslab+0x5/0x20 [ 790.911888] kmem_cache_alloc+0x5b/0x310 [ 790.912390] create_object.isra.0+0x3a/0xa20 [ 790.912924] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 790.913542] kmem_cache_alloc+0x159/0x310 [ 790.914045] ? expand_files+0x635/0xb30 [ 790.914550] __d_alloc+0x2a/0x990 [ 790.914987] ? alloc_fd+0x2e7/0x670 [ 790.915435] d_alloc_pseudo+0x19/0x70 [ 790.915909] alloc_file_pseudo+0xce/0x250 [ 790.916413] ? alloc_file+0x5a0/0x5a0 [ 790.916881] ? do_raw_spin_unlock+0x4f/0x220 [ 790.917418] ? _raw_spin_unlock+0x1a/0x30 [ 790.917923] ? alloc_fd+0x2e7/0x670 11:11:56 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x11, 0x1, 0x0) [ 790.918379] sock_alloc_file+0x4f/0x1a0 [ 790.923028] __sys_socket+0x13d/0x200 [ 790.923490] ? fput_many+0x2f/0x1a0 [ 790.923935] ? move_addr_to_kernel+0x70/0x70 [ 790.924469] ? ksys_write+0x1a9/0x260 [ 790.924938] ? __ia32_sys_read+0xb0/0xb0 [ 790.925445] __x64_sys_socket+0x6f/0xb0 [ 790.925930] do_syscall_64+0x33/0x40 [ 790.926389] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 790.927059] RIP: 0033:0x7fb52c4dab19 [ 790.927519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 790.929772] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 790.930730] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 790.931596] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 790.932473] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 790.933348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 790.934213] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 [ 790.940602] FAULT_INJECTION: forcing a failure. [ 790.940602] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 790.942107] CPU: 0 PID: 5921 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 790.946909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 790.947917] Call Trace: [ 790.948234] dump_stack+0x107/0x167 [ 790.948674] should_fail.cold+0x5/0xa [ 790.949138] __alloc_pages_nodemask+0x182/0x600 [ 790.949706] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 790.950443] ? cap_capable+0x1cd/0x230 [ 790.950938] alloc_pages_current+0x187/0x280 [ 790.951480] __get_free_pages+0xc/0xa0 [ 790.951961] io_uring_setup+0xf9a/0x2980 [ 790.952461] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 790.953084] ? wait_for_completion_io+0x270/0x270 [ 790.953692] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 790.954334] ? syscall_enter_from_user_mode+0x1d/0x50 [ 790.954997] do_syscall_64+0x33/0x40 [ 790.955455] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 790.956083] RIP: 0033:0x7f0ba9f97b19 [ 790.956540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 790.958804] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 790.959731] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 790.960601] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 790.961470] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 790.962342] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 790.963231] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:11:56 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 15) 11:11:56 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x2c, 0x1, 0x0) [ 791.141709] FAULT_INJECTION: forcing a failure. [ 791.141709] name failslab, interval 1, probability 0, space 0, times 0 [ 791.147151] CPU: 0 PID: 5931 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 791.162929] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 791.163947] Call Trace: [ 791.164272] dump_stack+0x107/0x167 [ 791.164715] should_fail.cold+0x5/0xa [ 791.165176] ? __alloc_file+0x21/0x320 [ 791.165651] should_failslab+0x5/0x20 [ 791.166117] kmem_cache_alloc+0x5b/0x310 [ 791.166642] __alloc_file+0x21/0x320 [ 791.167101] alloc_empty_file+0x6d/0x170 [ 791.167600] alloc_file+0x5e/0x5a0 [ 791.168033] alloc_file_pseudo+0x16a/0x250 [ 791.168545] ? alloc_file+0x5a0/0x5a0 [ 791.169007] ? do_raw_spin_unlock+0x4f/0x220 [ 791.169541] ? _raw_spin_unlock+0x1a/0x30 [ 791.170045] ? alloc_fd+0x2e7/0x670 [ 791.170495] sock_alloc_file+0x4f/0x1a0 [ 791.171010] __sys_socket+0x13d/0x200 [ 791.171471] ? fput_many+0x2f/0x1a0 [ 791.171912] ? move_addr_to_kernel+0x70/0x70 [ 791.172446] ? ksys_write+0x1a9/0x260 [ 791.172911] ? __ia32_sys_read+0xb0/0xb0 [ 791.173408] __x64_sys_socket+0x6f/0xb0 [ 791.173894] do_syscall_64+0x33/0x40 [ 791.174348] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 791.175005] RIP: 0033:0x7fb52c4dab19 [ 791.175465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 791.177703] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 791.178652] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 791.179524] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 791.180390] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 791.181258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 791.182130] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 11:12:09 executing program 4: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:12:09 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 804.466915] FAULT_INJECTION: forcing a failure. [ 804.466915] name failslab, interval 1, probability 0, space 0, times 0 [ 804.468369] CPU: 1 PID: 5944 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 804.469200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 804.470204] Call Trace: [ 804.470536] dump_stack+0x107/0x167 [ 804.470991] should_fail.cold+0x5/0xa [ 804.475481] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 804.476162] should_failslab+0x5/0x20 [ 804.476625] kmem_cache_alloc_trace+0x55/0x320 [ 804.477182] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 804.477839] io_uring_setup+0x14f6/0x2980 [ 804.478347] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 804.478964] ? wait_for_completion_io+0x270/0x270 [ 804.479581] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 804.480216] ? syscall_enter_from_user_mode+0x1d/0x50 [ 804.480844] do_syscall_64+0x33/0x40 [ 804.481294] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 804.481917] RIP: 0033:0x7f0ba9f97b19 [ 804.482372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 804.484656] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 804.485589] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 804.486455] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 804.487348] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 804.488228] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 804.489093] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:12:09 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x18) 11:12:09 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x2, 0x0) 11:12:09 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:09 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 16) 11:12:09 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 14) 11:12:09 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 804.505379] FAULT_INJECTION: forcing a failure. [ 804.505379] name failslab, interval 1, probability 0, space 0, times 0 [ 804.506780] CPU: 1 PID: 5950 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 804.507622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 804.508626] Call Trace: [ 804.508953] dump_stack+0x107/0x167 [ 804.509396] should_fail.cold+0x5/0xa [ 804.509864] ? create_object.isra.0+0x3a/0xa20 [ 804.510421] should_failslab+0x5/0x20 [ 804.510887] kmem_cache_alloc+0x5b/0x310 [ 804.511406] create_object.isra.0+0x3a/0xa20 [ 804.511942] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 804.512563] kmem_cache_alloc+0x159/0x310 [ 804.513077] __alloc_file+0x21/0x320 [ 804.513536] alloc_empty_file+0x6d/0x170 [ 804.514038] alloc_file+0x5e/0x5a0 [ 804.514472] alloc_file_pseudo+0x16a/0x250 [ 804.514987] ? alloc_file+0x5a0/0x5a0 [ 804.515468] ? do_raw_spin_unlock+0x4f/0x220 [ 804.516013] ? _raw_spin_unlock+0x1a/0x30 [ 804.516525] ? alloc_fd+0x2e7/0x670 [ 804.516974] sock_alloc_file+0x4f/0x1a0 [ 804.517459] __sys_socket+0x13d/0x200 [ 804.517925] ? fput_many+0x2f/0x1a0 [ 804.518372] ? move_addr_to_kernel+0x70/0x70 [ 804.518919] ? ksys_write+0x1a9/0x260 [ 804.519401] ? __ia32_sys_read+0xb0/0xb0 [ 804.519916] __x64_sys_socket+0x6f/0xb0 [ 804.520408] do_syscall_64+0x33/0x40 [ 804.520869] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 804.521507] RIP: 0033:0x7fb52c4dab19 [ 804.521978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 804.524248] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 804.525184] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 804.526053] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 804.526922] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 804.527810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 804.528675] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 11:12:09 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x3, 0x0) 11:12:09 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x48) 11:12:09 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:09 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 17) 11:12:09 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x4c) 11:12:09 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 15) [ 804.676883] FAULT_INJECTION: forcing a failure. [ 804.676883] name failslab, interval 1, probability 0, space 0, times 0 [ 804.684474] CPU: 0 PID: 5961 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 804.685331] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 804.686374] Call Trace: [ 804.686716] dump_stack+0x107/0x167 [ 804.687203] should_fail.cold+0x5/0xa [ 804.687699] ? security_file_alloc+0x34/0x170 [ 804.688281] should_failslab+0x5/0x20 [ 804.688778] kmem_cache_alloc+0x5b/0x310 [ 804.689305] security_file_alloc+0x34/0x170 [ 804.689857] __alloc_file+0xb7/0x320 [ 804.690346] alloc_empty_file+0x6d/0x170 [ 804.690872] alloc_file+0x5e/0x5a0 [ 804.691349] alloc_file_pseudo+0x16a/0x250 [ 804.691876] ? alloc_file+0x5a0/0x5a0 [ 804.692344] ? do_raw_spin_unlock+0x4f/0x220 [ 804.692890] ? _raw_spin_unlock+0x1a/0x30 [ 804.693394] ? alloc_fd+0x2e7/0x670 [ 804.693845] sock_alloc_file+0x4f/0x1a0 [ 804.694326] __sys_socket+0x13d/0x200 [ 804.694788] ? fput_many+0x2f/0x1a0 [ 804.695264] ? move_addr_to_kernel+0x70/0x70 [ 804.695382] FAULT_INJECTION: forcing a failure. [ 804.695382] name failslab, interval 1, probability 0, space 0, times 0 [ 804.695818] ? ksys_write+0x1a9/0x260 [ 804.695838] ? __ia32_sys_read+0xb0/0xb0 [ 804.695855] __x64_sys_socket+0x6f/0xb0 [ 804.698617] do_syscall_64+0x33/0x40 [ 804.699097] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 804.699743] RIP: 0033:0x7fb52c4dab19 [ 804.700219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 804.702453] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 804.703463] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 804.704362] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 804.705256] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 804.706148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 804.707022] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 [ 804.707919] CPU: 1 PID: 5965 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 804.708819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 804.709839] Call Trace: [ 804.710168] dump_stack+0x107/0x167 [ 804.710613] should_fail.cold+0x5/0xa [ 804.711099] ? create_object.isra.0+0x3a/0xa20 [ 804.711664] should_failslab+0x5/0x20 [ 804.712132] kmem_cache_alloc+0x5b/0x310 [ 804.712630] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 804.713366] create_object.isra.0+0x3a/0xa20 [ 804.713903] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 804.714526] kmem_cache_alloc_trace+0x151/0x320 [ 804.715319] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 804.716597] io_uring_setup+0x14f6/0x2980 [ 804.717578] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 804.718773] ? wait_for_completion_io+0x270/0x270 [ 804.720197] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 804.721677] ? syscall_enter_from_user_mode+0x1d/0x50 [ 804.722891] do_syscall_64+0x33/0x40 [ 804.723773] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 804.724980] RIP: 0033:0x7f0ba9f97b19 [ 804.725854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 804.730933] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 804.731941] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 804.732813] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 804.733682] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 804.734553] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 804.735451] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:12:10 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:23 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x68) [ 818.413240] FAULT_INJECTION: forcing a failure. [ 818.413240] name failslab, interval 1, probability 0, space 0, times 0 [ 818.414726] CPU: 1 PID: 5980 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 818.415622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 818.416686] Call Trace: [ 818.417035] dump_stack+0x107/0x167 [ 818.417513] should_fail.cold+0x5/0xa [ 818.418013] ? create_object.isra.0+0x3a/0xa20 [ 818.418615] should_failslab+0x5/0x20 [ 818.419115] kmem_cache_alloc+0x5b/0x310 [ 818.419666] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 818.420376] create_object.isra.0+0x3a/0xa20 [ 818.420943] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 818.421606] kmem_cache_alloc+0x159/0x310 [ 818.422151] security_file_alloc+0x34/0x170 [ 818.422717] __alloc_file+0xb7/0x320 [ 818.423203] alloc_empty_file+0x6d/0x170 [ 818.423763] alloc_file+0x5e/0x5a0 [ 818.424231] alloc_file_pseudo+0x16a/0x250 [ 818.424782] ? alloc_file+0x5a0/0x5a0 [ 818.425288] ? do_raw_spin_unlock+0x4f/0x220 [ 818.425867] ? _raw_spin_unlock+0x1a/0x30 [ 818.426417] ? alloc_fd+0x2e7/0x670 [ 818.426905] sock_alloc_file+0x4f/0x1a0 [ 818.427431] __sys_socket+0x13d/0x200 [ 818.427948] ? fput_many+0x2f/0x1a0 [ 818.428431] ? move_addr_to_kernel+0x70/0x70 [ 818.429015] ? ksys_write+0x1a9/0x260 [ 818.429517] ? __ia32_sys_read+0xb0/0xb0 [ 818.430060] __x64_sys_socket+0x6f/0xb0 [ 818.430583] do_syscall_64+0x33/0x40 11:12:23 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:23 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xf, 0x1, 0x0) 11:12:23 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 18) 11:12:23 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x5, 0x0) 11:12:23 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x3, 0x0) 11:12:23 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 16) 11:12:23 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 818.431072] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 818.431799] RIP: 0033:0x7fb52c4dab19 [ 818.432290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 818.434663] RSP: 002b:00007fb529a50188 EFLAGS: 00000246 ORIG_RAX: 0000000000000029 [ 818.435664] RAX: ffffffffffffffda RBX: 00007fb52c5edf60 RCX: 00007fb52c4dab19 [ 818.444227] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000000a [ 818.445151] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 818.446080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 818.446996] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 [ 818.454592] FAULT_INJECTION: forcing a failure. [ 818.454592] name failslab, interval 1, probability 0, space 0, times 0 [ 818.456092] CPU: 0 PID: 5989 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 818.456917] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 818.457920] Call Trace: [ 818.458243] dump_stack+0x107/0x167 [ 818.458690] should_fail.cold+0x5/0xa [ 818.459154] ? create_object.isra.0+0x3a/0xa20 [ 818.459754] should_failslab+0x5/0x20 [ 818.460245] kmem_cache_alloc+0x5b/0x310 [ 818.460776] create_object.isra.0+0x3a/0xa20 [ 818.461374] kmemleak_alloc_percpu+0xa0/0x100 [ 818.461962] pcpu_alloc+0x4e2/0x1240 [ 818.462460] ? io_async_queue_proc+0x80/0x80 [ 818.463039] percpu_ref_init+0x31/0x3d0 [ 818.463587] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 818.464304] io_uring_setup+0x14f6/0x2980 [ 818.464856] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 818.465519] ? wait_for_completion_io+0x270/0x270 [ 818.466176] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 818.466851] ? syscall_enter_from_user_mode+0x1d/0x50 [ 818.467541] do_syscall_64+0x33/0x40 [ 818.468001] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 818.468621] RIP: 0033:0x7f0ba9f97b19 [ 818.469077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 818.471295] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 818.472294] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 818.473215] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 818.474135] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 818.475055] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 818.476658] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:12:23 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:23 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:12:23 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x6c) 11:12:23 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x6, 0x0) 11:12:23 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:23 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 17) 11:12:23 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) (fail_nth: 19) [ 818.670421] audit: type=1400 audit(1731237143.985:14): avc: denied { create } for pid=6002 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 [ 818.719969] FAULT_INJECTION: forcing a failure. [ 818.719969] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 818.721460] CPU: 0 PID: 6007 Comm: syz-executor.3 Not tainted 5.10.229 #1 [ 818.722285] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 818.723285] Call Trace: [ 818.727646] dump_stack+0x107/0x167 [ 818.728131] should_fail.cold+0x5/0xa [ 818.728768] _copy_to_user+0x2e/0x180 [ 818.729279] simple_read_from_buffer+0xcc/0x160 [ 818.729904] proc_fail_nth_read+0x198/0x230 [ 818.730472] ? proc_sessionid_read+0x230/0x230 [ 818.731082] ? security_file_permission+0xb1/0xe0 [ 818.731738] ? proc_sessionid_read+0x230/0x230 [ 818.732350] vfs_read+0x228/0x620 [ 818.732816] ksys_read+0x12d/0x260 [ 818.733302] ? vfs_write+0xb10/0xb10 [ 818.733797] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 818.734495] ? syscall_enter_from_user_mode+0x1d/0x50 [ 818.735186] do_syscall_64+0x33/0x40 [ 818.735699] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 818.736382] RIP: 0033:0x7fb52c48d69c [ 818.736867] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 818.739250] RSP: 002b:00007fb529a50170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 818.740260] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fb52c48d69c [ 818.741193] RDX: 000000000000000f RSI: 00007fb529a501e0 RDI: 0000000000000004 [ 818.742131] RBP: 00007fb529a501d0 R08: 0000000000000000 R09: 0000000000000000 [ 818.743067] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 818.744020] R13: 00007ffc74fb936f R14: 00007fb529a50300 R15: 0000000000022000 [ 818.751217] FAULT_INJECTION: forcing a failure. [ 818.751217] name failslab, interval 1, probability 0, space 0, times 0 [ 818.752782] CPU: 0 PID: 6009 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 818.753668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 818.754729] Call Trace: [ 818.755041] dump_stack+0x107/0x167 [ 818.759856] should_fail.cold+0x5/0xa [ 818.760357] ? create_object.isra.0+0x3a/0xa20 [ 818.760964] should_failslab+0x5/0x20 [ 818.761462] kmem_cache_alloc+0x5b/0x310 [ 818.762003] create_object.isra.0+0x3a/0xa20 [ 818.762585] kmemleak_alloc_percpu+0xa0/0x100 [ 818.763177] pcpu_alloc+0x4e2/0x1240 [ 818.763720] ? io_async_queue_proc+0x80/0x80 [ 818.764302] percpu_ref_init+0x31/0x3d0 [ 818.764826] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 818.765543] io_uring_setup+0x14f6/0x2980 [ 818.766093] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 818.766750] ? wait_for_completion_io+0x270/0x270 [ 818.767400] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 818.768120] ? syscall_enter_from_user_mode+0x1d/0x50 [ 818.768801] do_syscall_64+0x33/0x40 [ 818.769297] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 818.769968] RIP: 0033:0x7f0ba9f97b19 [ 818.770466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 818.772881] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 818.773882] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 11:12:24 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x74) [ 818.774818] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 818.775784] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 818.776734] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 818.777695] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:12:24 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:24 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:12:24 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 1) 11:12:24 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x7, 0x0) 11:12:24 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:24 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x7a) [ 818.956097] FAULT_INJECTION: forcing a failure. [ 818.956097] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 818.961121] CPU: 1 PID: 6022 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 818.961979] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 818.963052] Call Trace: [ 818.963418] dump_stack+0x107/0x167 [ 818.963934] should_fail.cold+0x5/0xa [ 818.964445] _copy_from_user+0x2e/0x1b0 [ 818.964990] __copy_msghdr_from_user+0x91/0x4b0 [ 818.965611] ? __ia32_sys_shutdown+0x80/0x80 [ 818.966188] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 818.966872] ? SOFTIRQ_verbose+0x10/0x10 [ 818.967421] ? __lock_acquire+0xbb1/0x5b00 [ 818.968025] sendmsg_copy_msghdr+0xa1/0x160 [ 818.968590] ? do_recvmmsg+0x6d0/0x6d0 [ 818.969103] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 818.969790] ? SOFTIRQ_verbose+0x10/0x10 [ 818.970330] ? lock_downgrade+0x6d0/0x6d0 [ 818.970879] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 818.971582] ? SOFTIRQ_verbose+0x10/0x10 [ 818.972134] ___sys_sendmsg+0xc6/0x170 [ 818.972655] ? sendmsg_copy_msghdr+0x160/0x160 [ 818.973261] ? __fget_files+0x2cf/0x520 [ 818.973790] ? lock_downgrade+0x6d0/0x6d0 [ 818.974341] ? find_held_lock+0x2c/0x110 [ 818.974884] ? __fget_files+0x2f8/0x520 [ 818.975417] ? __fget_light+0xea/0x290 [ 818.975971] __sys_sendmsg+0xe5/0x1b0 [ 818.976477] ? __sys_sendmsg_sock+0x40/0x40 [ 818.977038] ? rcu_read_lock_any_held+0x75/0xa0 [ 818.977652] ? fput_many+0x2f/0x1a0 [ 818.978135] ? ksys_write+0x1a9/0x260 [ 818.978635] ? __ia32_sys_read+0xb0/0xb0 [ 818.979166] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 818.979886] ? syscall_enter_from_user_mode+0x1d/0x50 [ 818.980567] do_syscall_64+0x33/0x40 [ 818.981057] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 818.981738] RIP: 0033:0x7f6059340b19 [ 818.982249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 818.988666] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 818.989687] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 818.990623] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 818.991554] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 818.992498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 818.993435] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 11:12:24 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 2) [ 819.120323] FAULT_INJECTION: forcing a failure. [ 819.120323] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 819.121932] CPU: 0 PID: 6031 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 819.122843] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 819.123964] Call Trace: [ 819.124322] dump_stack+0x107/0x167 [ 819.124810] should_fail.cold+0x5/0xa [ 819.125337] _copy_from_user+0x2e/0x1b0 [ 819.125849] iovec_from_user+0x141/0x400 [ 819.126430] __import_iovec+0x67/0x590 [ 819.126951] ? __ia32_sys_shutdown+0x80/0x80 [ 819.127583] import_iovec+0x83/0xb0 [ 819.128095] sendmsg_copy_msghdr+0x131/0x160 [ 819.128702] ? do_recvmmsg+0x6d0/0x6d0 [ 819.129247] ? SOFTIRQ_verbose+0x10/0x10 [ 819.129812] ? SOFTIRQ_verbose+0x10/0x10 [ 819.130375] ___sys_sendmsg+0xc6/0x170 [ 819.130914] ? sendmsg_copy_msghdr+0x160/0x160 [ 819.131556] ? __fget_files+0x2cf/0x520 [ 819.132107] ? lock_downgrade+0x6d0/0x6d0 [ 819.132679] ? find_held_lock+0x2c/0x110 [ 819.133249] ? __fget_files+0x2f8/0x520 [ 819.133820] ? __fget_light+0xea/0x290 [ 819.134356] __sys_sendmsg+0xe5/0x1b0 [ 819.134885] ? __sys_sendmsg_sock+0x40/0x40 [ 819.135462] ? rcu_read_lock_any_held+0x75/0xa0 [ 819.136131] ? fput_many+0x2f/0x1a0 [ 819.136622] ? ksys_write+0x1a9/0x260 [ 819.137172] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 819.137879] ? syscall_enter_from_user_mode+0x1d/0x50 [ 819.138580] do_syscall_64+0x33/0x40 [ 819.139092] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 819.139800] RIP: 0033:0x7f6059340b19 [ 819.140311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 819.142737] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 819.143799] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 819.144768] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 819.145710] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 819.146681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 819.147661] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 [ 832.401406] FAULT_INJECTION: forcing a failure. [ 832.401406] name failslab, interval 1, probability 0, space 0, times 0 [ 832.402878] CPU: 1 PID: 6044 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 832.403722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 832.404781] Call Trace: [ 832.405128] dump_stack+0x107/0x167 [ 832.405599] should_fail.cold+0x5/0xa [ 832.406095] ? percpu_ref_init+0xd8/0x3d0 [ 832.406614] should_failslab+0x5/0x20 [ 832.407087] kmem_cache_alloc_trace+0x55/0x320 [ 832.407676] ? io_async_queue_proc+0x80/0x80 [ 832.408261] percpu_ref_init+0xd8/0x3d0 [ 832.408786] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 832.409486] io_uring_setup+0x14f6/0x2980 [ 832.410022] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 832.410649] ? wait_for_completion_io+0x270/0x270 [ 832.411290] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 832.411966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 832.412638] do_syscall_64+0x33/0x40 [ 832.413125] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 832.413772] RIP: 0033:0x7f0ba9f97b19 [ 832.414240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 832.420615] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 832.421590] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 832.422485] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b 11:12:37 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 18) 11:12:37 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:12:37 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x8, 0x0) 11:12:37 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:37 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0xbf) 11:12:37 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:12:37 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x2, 0x1, 0x0) 11:12:37 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 3) [ 832.423380] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 832.428310] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 832.429208] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 832.448043] FAULT_INJECTION: forcing a failure. [ 832.448043] name failslab, interval 1, probability 0, space 0, times 0 [ 832.449493] CPU: 1 PID: 6054 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 832.450353] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 832.451396] Call Trace: [ 832.451743] dump_stack+0x107/0x167 [ 832.452226] should_fail.cold+0x5/0xa [ 832.452725] ? __alloc_skb+0x6d/0x5b0 [ 832.453224] should_failslab+0x5/0x20 [ 832.453698] kmem_cache_alloc_node+0x55/0x330 [ 832.454282] __alloc_skb+0x6d/0x5b0 [ 832.454762] netlink_sendmsg+0x998/0xdf0 [ 832.455309] ? netlink_unicast+0x7f0/0x7f0 [ 832.455871] ? netlink_unicast+0x7f0/0x7f0 [ 832.456425] __sock_sendmsg+0x154/0x190 [ 832.456936] ____sys_sendmsg+0x70d/0x870 [ 832.457467] ? sock_write_iter+0x3d0/0x3d0 [ 832.458016] ? do_recvmmsg+0x6d0/0x6d0 [ 832.458527] ? SOFTIRQ_verbose+0x10/0x10 [ 832.459055] ? lock_downgrade+0x6d0/0x6d0 [ 832.459583] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 832.460241] ? SOFTIRQ_verbose+0x10/0x10 [ 832.460774] ___sys_sendmsg+0xf3/0x170 [ 832.461284] ? sendmsg_copy_msghdr+0x160/0x160 [ 832.461882] ? __fget_files+0x2cf/0x520 [ 832.462400] ? lock_downgrade+0x6d0/0x6d0 [ 832.462930] ? find_held_lock+0x2c/0x110 [ 832.463440] ? __fget_files+0x2f8/0x520 [ 832.463933] ? __fget_light+0xea/0x290 [ 832.464441] __sys_sendmsg+0xe5/0x1b0 [ 832.464922] ? __sys_sendmsg_sock+0x40/0x40 [ 832.465482] ? rcu_read_lock_any_held+0x75/0xa0 [ 832.466100] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 832.466780] ? syscall_enter_from_user_mode+0x1d/0x50 [ 832.467454] do_syscall_64+0x33/0x40 [ 832.467921] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 832.472597] RIP: 0033:0x7f6059340b19 [ 832.473058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 832.475331] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 832.476320] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 832.477237] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 832.478136] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 832.479048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 832.479966] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 11:12:37 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:37 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x300) 11:12:37 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 19) 11:12:37 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 4) [ 832.588305] FAULT_INJECTION: forcing a failure. [ 832.588305] name failslab, interval 1, probability 0, space 0, times 0 [ 832.600627] CPU: 0 PID: 6062 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 832.604805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 832.605805] Call Trace: [ 832.606129] dump_stack+0x107/0x167 [ 832.606571] should_fail.cold+0x5/0xa [ 832.607035] ? create_object.isra.0+0x3a/0xa20 [ 832.607590] should_failslab+0x5/0x20 [ 832.608066] kmem_cache_alloc+0x5b/0x310 [ 832.608568] create_object.isra.0+0x3a/0xa20 [ 832.609099] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 832.609719] kmem_cache_alloc_trace+0x151/0x320 [ 832.610287] ? io_async_queue_proc+0x80/0x80 [ 832.610819] percpu_ref_init+0xd8/0x3d0 [ 832.611303] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 832.611957] io_uring_setup+0x14f6/0x2980 [ 832.612474] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 832.613088] ? wait_for_completion_io+0x270/0x270 [ 832.613689] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 832.614325] ? syscall_enter_from_user_mode+0x1d/0x50 [ 832.614957] do_syscall_64+0x33/0x40 [ 832.615410] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 832.616038] RIP: 0033:0x7f0ba9f97b19 [ 832.616503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 832.618734] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 832.619658] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 832.620535] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 832.621401] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 832.622267] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 832.623133] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 832.698400] FAULT_INJECTION: forcing a failure. [ 832.698400] name failslab, interval 1, probability 0, space 0, times 0 [ 832.709450] CPU: 0 PID: 6067 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 832.716827] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 832.717829] Call Trace: [ 832.718157] dump_stack+0x107/0x167 [ 832.718610] should_fail.cold+0x5/0xa [ 832.719078] ? create_object.isra.0+0x3a/0xa20 [ 832.719638] should_failslab+0x5/0x20 [ 832.720116] kmem_cache_alloc+0x5b/0x310 [ 832.720630] create_object.isra.0+0x3a/0xa20 [ 832.721163] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 832.721787] kmem_cache_alloc_node+0x169/0x330 [ 832.722355] __alloc_skb+0x6d/0x5b0 [ 832.722809] netlink_sendmsg+0x998/0xdf0 [ 832.723315] ? netlink_unicast+0x7f0/0x7f0 [ 832.723848] ? netlink_unicast+0x7f0/0x7f0 [ 832.724381] __sock_sendmsg+0x154/0x190 [ 832.724870] ____sys_sendmsg+0x70d/0x870 [ 832.725372] ? sock_write_iter+0x3d0/0x3d0 [ 832.725885] ? do_recvmmsg+0x6d0/0x6d0 [ 832.726368] ? SOFTIRQ_verbose+0x10/0x10 [ 832.726870] ? SOFTIRQ_verbose+0x10/0x10 [ 832.727373] ___sys_sendmsg+0xf3/0x170 [ 832.727854] ? sendmsg_copy_msghdr+0x160/0x160 [ 832.728433] ? __fget_files+0x2cf/0x520 [ 832.728920] ? lock_downgrade+0x6d0/0x6d0 [ 832.729430] ? find_held_lock+0x2c/0x110 [ 832.729941] ? __fget_files+0x2f8/0x520 [ 832.730439] ? __fget_light+0xea/0x290 [ 832.730928] __sys_sendmsg+0xe5/0x1b0 [ 832.731394] ? __sys_sendmsg_sock+0x40/0x40 [ 832.731919] ? rcu_read_lock_any_held+0x75/0xa0 [ 832.732522] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 832.733161] ? syscall_enter_from_user_mode+0x1d/0x50 [ 832.733794] do_syscall_64+0x33/0x40 [ 832.734250] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 832.734873] RIP: 0033:0x7f6059340b19 [ 832.735333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 832.737580] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 832.738510] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 832.739379] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 832.740257] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 832.741124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 832.741995] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 11:12:51 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x5, 0x1, 0x0) 11:12:51 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:12:51 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:12:51 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x500) 11:12:51 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0xa, 0x0) 11:12:51 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:51 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 20) 11:12:51 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 5) [ 845.749221] FAULT_INJECTION: forcing a failure. [ 845.749221] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 845.750840] CPU: 1 PID: 6089 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 845.751669] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 845.756696] Call Trace: [ 845.757023] dump_stack+0x107/0x167 [ 845.757470] should_fail.cold+0x5/0xa [ 845.757937] _copy_to_user+0x2e/0x180 [ 845.758400] io_uring_setup+0x11b5/0x2980 [ 845.758905] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 845.759520] ? wait_for_completion_io+0x270/0x270 [ 845.760119] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 845.760765] ? syscall_enter_from_user_mode+0x1d/0x50 [ 845.761390] do_syscall_64+0x33/0x40 [ 845.761845] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 845.762463] RIP: 0033:0x7f0ba9f97b19 [ 845.762917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 845.765174] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 845.766101] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 845.766960] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 845.767817] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 845.768694] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 845.769553] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:12:51 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xf, 0x1, 0x0) 11:12:51 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:12:51 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x600) 11:12:51 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 21) [ 845.861809] FAULT_INJECTION: forcing a failure. [ 845.861809] name failslab, interval 1, probability 0, space 0, times 0 [ 845.863352] CPU: 1 PID: 6090 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 845.864183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 845.865212] Call Trace: [ 845.865537] dump_stack+0x107/0x167 [ 845.865978] should_fail.cold+0x5/0xa [ 845.872902] should_failslab+0x5/0x20 [ 845.873365] __kmalloc_node_track_caller+0x74/0x3b0 [ 845.873966] ? netlink_sendmsg+0x998/0xdf0 [ 845.874482] __alloc_skb+0xb1/0x5b0 [ 845.874924] netlink_sendmsg+0x998/0xdf0 [ 845.875418] ? netlink_unicast+0x7f0/0x7f0 [ 845.875936] ? netlink_unicast+0x7f0/0x7f0 [ 845.876448] __sock_sendmsg+0x154/0x190 [ 845.876945] ____sys_sendmsg+0x70d/0x870 [ 845.877437] ? sock_write_iter+0x3d0/0x3d0 [ 845.877946] ? do_recvmmsg+0x6d0/0x6d0 [ 845.878420] ? SOFTIRQ_verbose+0x10/0x10 [ 845.878911] ? lock_downgrade+0x6d0/0x6d0 [ 845.879413] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 845.880044] ? SOFTIRQ_verbose+0x10/0x10 [ 845.880548] ___sys_sendmsg+0xf3/0x170 [ 845.881022] ? sendmsg_copy_msghdr+0x160/0x160 [ 845.881577] ? __fget_files+0x2cf/0x520 [ 845.882058] ? lock_downgrade+0x6d0/0x6d0 [ 845.882559] ? find_held_lock+0x2c/0x110 [ 845.883056] ? __fget_files+0x2f8/0x520 [ 845.883542] ? __fget_light+0xea/0x290 [ 845.884018] __sys_sendmsg+0xe5/0x1b0 [ 845.884478] ? __sys_sendmsg_sock+0x40/0x40 [ 845.885014] ? rcu_read_lock_any_held+0x75/0xa0 [ 845.885588] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 845.886222] ? syscall_enter_from_user_mode+0x1d/0x50 [ 845.886845] do_syscall_64+0x33/0x40 [ 845.887295] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 845.887913] RIP: 0033:0x7f6059340b19 [ 845.888364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 845.890644] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 845.891567] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 845.892426] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 845.893301] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 845.894160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 845.895019] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 11:12:51 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 845.951017] FAULT_INJECTION: forcing a failure. [ 845.951017] name failslab, interval 1, probability 0, space 0, times 0 [ 845.952668] CPU: 1 PID: 6097 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 845.953495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 845.954505] Call Trace: [ 845.954831] dump_stack+0x107/0x167 [ 845.955276] should_fail.cold+0x5/0xa [ 845.955743] ? __d_alloc+0x2a/0x990 [ 845.956196] should_failslab+0x5/0x20 [ 845.960693] kmem_cache_alloc+0x5b/0x310 [ 845.961192] __d_alloc+0x2a/0x990 [ 845.961614] ? find_held_lock+0x2c/0x110 [ 845.962117] d_alloc_pseudo+0x19/0x70 [ 845.962579] alloc_file_pseudo+0xce/0x250 [ 845.963081] ? trace_hardirqs_on+0x5b/0x180 [ 845.963603] ? alloc_file+0x5a0/0x5a0 [ 845.964080] anon_inode_getfile+0xc8/0x1f0 [ 845.964615] io_uring_setup+0x138b/0x2980 [ 845.965133] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 845.965751] ? wait_for_completion_io+0x270/0x270 [ 845.966362] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 845.966998] ? syscall_enter_from_user_mode+0x1d/0x50 [ 845.967628] do_syscall_64+0x33/0x40 [ 845.968081] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 845.968729] RIP: 0033:0x7f0ba9f97b19 [ 845.969239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 845.971739] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 845.972756] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 845.973624] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 845.974494] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 845.975361] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 845.976232] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:13:04 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x700) [ 859.450497] FAULT_INJECTION: forcing a failure. [ 859.450497] name failslab, interval 1, probability 0, space 0, times 0 [ 859.451924] CPU: 1 PID: 6119 Comm: syz-executor.4 Not tainted 5.10.229 #1 11:13:04 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:13:04 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 6) 11:13:04 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0xf, 0x0) 11:13:04 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:13:04 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x10, 0x1, 0x0) 11:13:04 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 22) 11:13:04 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 859.452751] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 859.453837] Call Trace: [ 859.454178] dump_stack+0x107/0x167 [ 859.454650] should_fail.cold+0x5/0xa [ 859.455122] ? create_object.isra.0+0x3a/0xa20 [ 859.455681] should_failslab+0x5/0x20 [ 859.456148] kmem_cache_alloc+0x5b/0x310 [ 859.456653] create_object.isra.0+0x3a/0xa20 [ 859.457214] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 859.457837] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 859.458452] ? netlink_sendmsg+0x998/0xdf0 [ 859.458973] __alloc_skb+0xb1/0x5b0 [ 859.459418] netlink_sendmsg+0x998/0xdf0 [ 859.459921] ? netlink_unicast+0x7f0/0x7f0 [ 859.460441] ? netlink_unicast+0x7f0/0x7f0 [ 859.460962] __sock_sendmsg+0x154/0x190 [ 859.461465] ____sys_sendmsg+0x70d/0x870 [ 859.461962] ? sock_write_iter+0x3d0/0x3d0 [ 859.462474] ? do_recvmmsg+0x6d0/0x6d0 [ 859.462952] ? SOFTIRQ_verbose+0x10/0x10 [ 859.463445] ? lock_downgrade+0x6d0/0x6d0 [ 859.463956] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 859.464591] ? SOFTIRQ_verbose+0x10/0x10 [ 859.465100] ___sys_sendmsg+0xf3/0x170 [ 859.465574] ? sendmsg_copy_msghdr+0x160/0x160 [ 859.466134] ? __fget_files+0x2cf/0x520 [ 859.466618] ? lock_downgrade+0x6d0/0x6d0 [ 859.467123] ? find_held_lock+0x2c/0x110 [ 859.467625] ? __fget_files+0x2f8/0x520 [ 859.468114] ? __fget_light+0xea/0x290 [ 859.468592] __sys_sendmsg+0xe5/0x1b0 [ 859.469075] ? __sys_sendmsg_sock+0x40/0x40 [ 859.469605] ? rcu_read_lock_any_held+0x75/0xa0 [ 859.470184] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 859.470824] ? syscall_enter_from_user_mode+0x1d/0x50 [ 859.471454] do_syscall_64+0x33/0x40 [ 859.471908] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 859.472531] RIP: 0033:0x7f6059340b19 [ 859.473072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 859.475418] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 859.476348] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 859.477251] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 859.478117] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 859.478990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 859.479857] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 11:13:04 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1800) [ 859.524682] FAULT_INJECTION: forcing a failure. [ 859.524682] name failslab, interval 1, probability 0, space 0, times 0 [ 859.526121] CPU: 1 PID: 6129 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 859.526957] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 859.527964] Call Trace: [ 859.528289] dump_stack+0x107/0x167 [ 859.528732] should_fail.cold+0x5/0xa [ 859.529230] ? __d_alloc+0x2a/0x990 [ 859.529680] ? __d_alloc+0x2a/0x990 [ 859.530135] should_failslab+0x5/0x20 [ 859.530600] kmem_cache_alloc+0x5b/0x310 [ 859.531100] __d_alloc+0x2a/0x990 [ 859.531526] ? find_held_lock+0x2c/0x110 [ 859.532022] d_alloc_pseudo+0x19/0x70 [ 859.532487] alloc_file_pseudo+0xce/0x250 [ 859.533004] ? alloc_file+0x5a0/0x5a0 [ 859.533483] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 859.534146] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 859.534815] anon_inode_getfile+0xc8/0x1f0 [ 859.535336] io_uring_setup+0x138b/0x2980 [ 859.535852] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 859.536473] ? wait_for_completion_io+0x270/0x270 [ 859.537102] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 859.537748] ? syscall_enter_from_user_mode+0x1d/0x50 [ 859.538380] do_syscall_64+0x33/0x40 [ 859.538840] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 859.539467] RIP: 0033:0x7f0ba9f97b19 [ 859.539926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 859.542191] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 859.543149] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 859.544026] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 859.544901] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 859.545814] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 859.546685] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:13:04 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x11, 0x1, 0x0) 11:13:04 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1b, 0x0) 11:13:04 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 7) 11:13:04 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:13:04 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0x2c, 0x1, 0x0) 11:13:04 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) [ 859.659274] FAULT_INJECTION: forcing a failure. [ 859.659274] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 859.660918] CPU: 0 PID: 6138 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 859.662694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 859.663791] Call Trace: [ 859.664131] dump_stack+0x107/0x167 [ 859.664584] should_fail.cold+0x5/0xa [ 859.666178] _copy_from_iter_full+0x201/0xa60 [ 859.666783] ? __virt_addr_valid+0x170/0x5d0 [ 859.667345] ? __check_object_size+0x319/0x440 [ 859.667972] netlink_sendmsg+0x879/0xdf0 [ 859.668488] ? netlink_unicast+0x7f0/0x7f0 [ 859.670022] ? netlink_unicast+0x7f0/0x7f0 [ 859.670551] __sock_sendmsg+0x154/0x190 [ 859.671096] ____sys_sendmsg+0x70d/0x870 [ 859.671605] ? sock_write_iter+0x3d0/0x3d0 [ 859.672175] ? do_recvmmsg+0x6d0/0x6d0 [ 859.672665] ? SOFTIRQ_verbose+0x10/0x10 [ 859.674278] ? SOFTIRQ_verbose+0x10/0x10 [ 859.674844] ___sys_sendmsg+0xf3/0x170 [ 859.675331] ? sendmsg_copy_msghdr+0x160/0x160 [ 859.675956] ? __fget_files+0x2cf/0x520 [ 859.676449] ? lock_downgrade+0x6d0/0x6d0 [ 859.677920] ? find_held_lock+0x2c/0x110 [ 859.678437] ? __fget_files+0x2f8/0x520 [ 859.678994] ? __fget_light+0xea/0x290 [ 859.679492] __sys_sendmsg+0xe5/0x1b0 [ 859.680018] ? __sys_sendmsg_sock+0x40/0x40 [ 859.680550] ? rcu_read_lock_any_held+0x75/0xa0 [ 859.682267] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 859.682968] ? syscall_enter_from_user_mode+0x1d/0x50 [ 859.683609] do_syscall_64+0x33/0x40 [ 859.684120] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 859.684825] RIP: 0033:0x7f6059340b19 [ 859.686188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 859.688514] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 859.690710] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 859.691633] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 859.692556] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 859.694487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 859.695411] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 11:13:05 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x4800) 11:13:05 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 23) [ 859.761050] FAULT_INJECTION: forcing a failure. [ 859.761050] name failslab, interval 1, probability 0, space 0, times 0 [ 859.762626] CPU: 1 PID: 6150 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 859.763467] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 859.764500] Call Trace: [ 859.764837] dump_stack+0x107/0x167 [ 859.765304] should_fail.cold+0x5/0xa [ 859.765778] ? __alloc_file+0x21/0x320 [ 859.766259] should_failslab+0x5/0x20 [ 859.766726] kmem_cache_alloc+0x5b/0x310 [ 859.767230] __alloc_file+0x21/0x320 [ 859.767686] alloc_empty_file+0x6d/0x170 [ 859.768185] alloc_file+0x5e/0x5a0 [ 859.768622] alloc_file_pseudo+0x16a/0x250 [ 859.769203] ? alloc_file+0x5a0/0x5a0 [ 859.769685] anon_inode_getfile+0xc8/0x1f0 [ 859.770216] io_uring_setup+0x138b/0x2980 [ 859.770729] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 859.771357] ? wait_for_completion_io+0x270/0x270 [ 859.771970] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 859.772611] ? syscall_enter_from_user_mode+0x1d/0x50 [ 859.773579] do_syscall_64+0x33/0x40 [ 859.774497] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 859.775782] RIP: 0033:0x7f0ba9f97b19 [ 859.776699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 859.781208] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 859.782141] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 859.783020] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 859.783901] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 859.784777] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 859.786356] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:13:19 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x2, 0x0) 11:13:19 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x4c00) 11:13:19 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:13:19 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 24) 11:13:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 8) 11:13:19 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:13:19 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:13:19 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x2) [ 873.776256] FAULT_INJECTION: forcing a failure. [ 873.776256] name failslab, interval 1, probability 0, space 0, times 0 [ 873.777784] CPU: 0 PID: 6169 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 873.778615] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 873.779648] Call Trace: [ 873.779981] dump_stack+0x107/0x167 [ 873.780432] should_fail.cold+0x5/0xa [ 873.780905] ? fib_nl2rule.isra.0+0x333/0x1db0 [ 873.781474] should_failslab+0x5/0x20 [ 873.781973] __kmalloc+0x72/0x390 [ 873.782427] fib_nl2rule.isra.0+0x333/0x1db0 [ 873.782998] ? SOFTIRQ_verbose+0x10/0x10 [ 873.783523] ? fib_rules_event+0x5d0/0x5d0 [ 873.784070] ? __nla_parse+0x3e/0x50 [ 873.784565] fib_nl_newrule+0x29e/0x1b10 [ 873.785091] ? lock_release+0x680/0x680 [ 873.785638] ? fib_rules_seq_read+0x110/0x110 [ 873.786231] ? __mutex_lock+0x4fe/0x10b0 [ 873.786732] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 873.787375] ? security_capable+0x95/0xc0 [ 873.787912] ? fib_rules_seq_read+0x110/0x110 [ 873.788477] rtnetlink_rcv_msg+0x41e/0xbb0 [ 873.789016] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 873.789558] ? lock_acquire+0x197/0x470 [ 873.790084] ? netlink_deliver_tap+0xf4/0xcc0 [ 873.790682] netlink_rcv_skb+0x14b/0x430 [ 873.791212] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 873.791725] ? netlink_ack+0xab0/0xab0 [ 873.792203] ? netlink_deliver_tap+0x1ae/0xcc0 [ 873.792776] ? netlink_deliver_tap+0x1c4/0xcc0 [ 873.793339] ? is_vmalloc_addr+0x7b/0xb0 [ 873.794461] netlink_unicast+0x549/0x7f0 [ 873.795430] ? netlink_attachskb+0x870/0x870 [ 873.796503] netlink_sendmsg+0x90f/0xdf0 [ 873.797476] ? netlink_unicast+0x7f0/0x7f0 [ 873.798090] ? netlink_unicast+0x7f0/0x7f0 [ 873.798614] __sock_sendmsg+0x154/0x190 [ 873.799112] ____sys_sendmsg+0x70d/0x870 [ 873.799618] ? sock_write_iter+0x3d0/0x3d0 [ 873.800134] ? do_recvmmsg+0x6d0/0x6d0 [ 873.800622] ? SOFTIRQ_verbose+0x10/0x10 [ 873.801129] ? SOFTIRQ_verbose+0x10/0x10 [ 873.801724] ___sys_sendmsg+0xf3/0x170 [ 873.802235] ? sendmsg_copy_msghdr+0x160/0x160 [ 873.802309] FAULT_INJECTION: forcing a failure. [ 873.802309] name failslab, interval 1, probability 0, space 0, times 0 [ 873.802838] ? __fget_files+0x2cf/0x520 [ 873.802857] ? lock_downgrade+0x6d0/0x6d0 [ 873.805214] ? find_held_lock+0x2c/0x110 [ 873.805803] ? __fget_files+0x2f8/0x520 [ 873.806312] ? __fget_light+0xea/0x290 [ 873.806808] __sys_sendmsg+0xe5/0x1b0 [ 873.807281] ? __sys_sendmsg_sock+0x40/0x40 [ 873.807813] ? rcu_read_lock_any_held+0x75/0xa0 [ 873.808415] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 873.809061] ? syscall_enter_from_user_mode+0x1d/0x50 [ 873.809787] do_syscall_64+0x33/0x40 [ 873.810248] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 873.810877] RIP: 0033:0x7f6059340b19 [ 873.811340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 873.813636] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 873.814603] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 873.815490] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 873.816362] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 873.817232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 873.818118] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 [ 873.819029] CPU: 1 PID: 6173 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 873.819875] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 873.820876] Call Trace: [ 873.821211] dump_stack+0x107/0x167 [ 873.821682] should_fail.cold+0x5/0xa [ 873.822157] ? create_object.isra.0+0x3a/0xa20 [ 873.822712] should_failslab+0x5/0x20 [ 873.823181] kmem_cache_alloc+0x5b/0x310 [ 873.823675] create_object.isra.0+0x3a/0xa20 [ 873.824206] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 873.824836] kmem_cache_alloc+0x159/0x310 [ 873.825340] __alloc_file+0x21/0x320 [ 873.825807] alloc_empty_file+0x6d/0x170 [ 873.826303] alloc_file+0x5e/0x5a0 [ 873.826743] alloc_file_pseudo+0x16a/0x250 [ 873.833832] ? alloc_file+0x5a0/0x5a0 [ 873.834307] anon_inode_getfile+0xc8/0x1f0 [ 873.834823] io_uring_setup+0x138b/0x2980 [ 873.835328] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 873.835942] ? wait_for_completion_io+0x270/0x270 [ 873.836542] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 873.837175] ? syscall_enter_from_user_mode+0x1d/0x50 [ 873.837822] do_syscall_64+0x33/0x40 [ 873.838272] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 873.838891] RIP: 0033:0x7f0ba9f97b19 [ 873.839341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 873.841565] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 873.842490] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 873.843351] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 873.844213] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 873.845073] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 873.845950] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:13:19 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x3, 0x0) 11:13:19 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x6800) 11:13:19 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x3) 11:13:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 9) 11:13:19 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:13:19 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x6c00) 11:13:19 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 25) [ 874.017580] FAULT_INJECTION: forcing a failure. [ 874.017580] name failslab, interval 1, probability 0, space 0, times 0 [ 874.019005] CPU: 1 PID: 6188 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 874.019837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 874.020839] Call Trace: [ 874.021168] dump_stack+0x107/0x167 [ 874.021791] should_fail.cold+0x5/0xa [ 874.022711] ? create_object.isra.0+0x3a/0xa20 [ 874.023812] should_failslab+0x5/0x20 [ 874.024725] kmem_cache_alloc+0x5b/0x310 [ 874.025654] create_object.isra.0+0x3a/0xa20 [ 874.026193] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 874.026812] __kmalloc+0x16e/0x390 [ 874.027252] fib_nl2rule.isra.0+0x333/0x1db0 [ 874.027790] ? SOFTIRQ_verbose+0x10/0x10 [ 874.028283] ? fib_rules_event+0x5d0/0x5d0 [ 874.028806] ? __nla_parse+0x3e/0x50 [ 874.029263] fib_nl_newrule+0x29e/0x1b10 [ 874.030076] ? lock_release+0x680/0x680 [ 874.031060] ? fib_rules_seq_read+0x110/0x110 [ 874.032158] ? __mutex_lock+0x4fe/0x10b0 [ 874.033141] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 874.034583] ? security_capable+0x95/0xc0 [ 874.035798] ? fib_rules_seq_read+0x110/0x110 [ 874.037096] rtnetlink_rcv_msg+0x41e/0xbb0 [ 874.037870] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 874.038378] ? lock_acquire+0x197/0x470 [ 874.038871] ? netlink_deliver_tap+0xf4/0xcc0 [ 874.039423] netlink_rcv_skb+0x14b/0x430 [ 874.039921] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 874.040420] ? netlink_ack+0xab0/0xab0 [ 874.040893] ? netlink_deliver_tap+0x1ae/0xcc0 [ 874.041458] ? netlink_deliver_tap+0x1c4/0xcc0 [ 874.042077] ? is_vmalloc_addr+0x7b/0xb0 [ 874.042579] netlink_unicast+0x549/0x7f0 [ 874.043080] ? netlink_attachskb+0x870/0x870 [ 874.043627] netlink_sendmsg+0x90f/0xdf0 [ 874.044132] ? netlink_unicast+0x7f0/0x7f0 [ 874.044664] ? netlink_unicast+0x7f0/0x7f0 [ 874.045184] __sock_sendmsg+0x154/0x190 [ 874.046083] ____sys_sendmsg+0x70d/0x870 [ 874.047096] ? sock_write_iter+0x3d0/0x3d0 [ 874.048151] ? do_recvmmsg+0x6d0/0x6d0 [ 874.049108] ? SOFTIRQ_verbose+0x10/0x10 [ 874.049832] ? lock_downgrade+0x6d0/0x6d0 [ 874.050345] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 874.050992] ? SOFTIRQ_verbose+0x10/0x10 [ 874.051493] ___sys_sendmsg+0xf3/0x170 [ 874.051974] ? sendmsg_copy_msghdr+0x160/0x160 [ 874.052538] ? __fget_files+0x2cf/0x520 [ 874.053025] ? lock_downgrade+0x6d0/0x6d0 [ 874.053624] ? find_held_lock+0x2c/0x110 [ 874.054612] ? __fget_files+0x2f8/0x520 [ 874.055573] ? __fget_light+0xea/0x290 [ 874.056514] __sys_sendmsg+0xe5/0x1b0 [ 874.057429] ? __sys_sendmsg_sock+0x40/0x40 [ 874.058726] ? rcu_read_lock_any_held+0x75/0xa0 [ 874.060099] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 874.061585] ? syscall_enter_from_user_mode+0x1d/0x50 [ 874.062224] do_syscall_64+0x33/0x40 [ 874.062680] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 874.063310] RIP: 0033:0x7f6059340b19 [ 874.063774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 874.066635] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 874.068485] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 874.070400] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 874.072516] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 874.074503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 874.076299] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 [ 874.130810] FAULT_INJECTION: forcing a failure. [ 874.130810] name failslab, interval 1, probability 0, space 0, times 0 [ 874.133695] CPU: 1 PID: 6193 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 874.134533] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 874.135543] Call Trace: [ 874.135872] dump_stack+0x107/0x167 [ 874.136320] should_fail.cold+0x5/0xa [ 874.136796] ? security_file_alloc+0x34/0x170 [ 874.137351] should_failslab+0x5/0x20 [ 874.137887] kmem_cache_alloc+0x5b/0x310 [ 874.138389] security_file_alloc+0x34/0x170 [ 874.138919] __alloc_file+0xb7/0x320 [ 874.139376] alloc_empty_file+0x6d/0x170 [ 874.139874] alloc_file+0x5e/0x5a0 [ 874.140312] alloc_file_pseudo+0x16a/0x250 [ 874.140829] ? alloc_file+0x5a0/0x5a0 [ 874.141308] anon_inode_getfile+0xc8/0x1f0 [ 874.142226] io_uring_setup+0x138b/0x2980 [ 874.143236] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 874.144464] ? wait_for_completion_io+0x270/0x270 [ 874.145894] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 874.147243] ? syscall_enter_from_user_mode+0x1d/0x50 [ 874.148542] do_syscall_64+0x33/0x40 [ 874.149457] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 874.150799] RIP: 0033:0x7f0ba9f97b19 [ 874.151737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 874.154916] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 874.155849] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 874.156720] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 874.157642] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 874.158521] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 874.159397] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:13:33 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 887.786446] FAULT_INJECTION: forcing a failure. [ 887.786446] name failslab, interval 1, probability 0, space 0, times 0 [ 887.788015] CPU: 1 PID: 6212 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 887.788890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 887.789940] Call Trace: [ 887.790294] dump_stack+0x107/0x167 [ 887.790792] should_fail.cold+0x5/0xa [ 887.791258] ? create_object.isra.0+0x3a/0xa20 [ 887.791893] should_failslab+0x5/0x20 [ 887.792356] kmem_cache_alloc+0x5b/0x310 [ 887.792903] create_object.isra.0+0x3a/0xa20 [ 887.793435] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 887.794126] kmem_cache_alloc+0x159/0x310 [ 887.794690] security_file_alloc+0x34/0x170 [ 887.795214] __alloc_file+0xb7/0x320 [ 887.795716] alloc_empty_file+0x6d/0x170 [ 887.796208] alloc_file+0x5e/0x5a0 [ 887.796743] alloc_file_pseudo+0x16a/0x250 [ 887.797254] ? alloc_file+0x5a0/0x5a0 [ 887.797781] anon_inode_getfile+0xc8/0x1f0 [ 887.798322] io_uring_setup+0x138b/0x2980 [ 887.798884] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 887.799499] ? wait_for_completion_io+0x270/0x270 [ 887.800145] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 887.800829] ? syscall_enter_from_user_mode+0x1d/0x50 [ 887.801455] do_syscall_64+0x33/0x40 [ 887.801991] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 887.802676] RIP: 0033:0x7f0ba9f97b19 [ 887.803131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 887.805449] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 887.806464] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 887.807380] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 887.808289] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 887.809196] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 887.810153] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:13:33 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 26) 11:13:33 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:13:33 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:13:33 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x5, 0x0) 11:13:33 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x7400) 11:13:33 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x4) 11:13:33 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 10) 11:13:33 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x7a00) 11:13:33 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 887.872217] FAULT_INJECTION: forcing a failure. [ 887.872217] name failslab, interval 1, probability 0, space 0, times 0 [ 887.873690] CPU: 0 PID: 6223 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 887.878533] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 887.879538] Call Trace: [ 887.879863] dump_stack+0x107/0x167 [ 887.880307] should_fail.cold+0x5/0xa [ 887.880773] ? __alloc_skb+0x6d/0x5b0 [ 887.881238] should_failslab+0x5/0x20 [ 887.881700] kmem_cache_alloc_node+0x55/0x330 [ 887.882264] __alloc_skb+0x6d/0x5b0 [ 887.882711] notify_rule_change+0xa6/0x220 [ 887.883226] fib_nl_newrule+0x1486/0x1b10 [ 887.883735] ? fib_rules_seq_read+0x110/0x110 [ 887.884296] ? __mutex_lock+0x4fe/0x10b0 [ 887.884791] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 887.885401] ? security_capable+0x95/0xc0 [ 887.885910] ? fib_rules_seq_read+0x110/0x110 [ 887.886483] rtnetlink_rcv_msg+0x41e/0xbb0 [ 887.887008] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 887.887512] ? lock_acquire+0x197/0x470 [ 887.887995] ? netlink_deliver_tap+0xf4/0xcc0 [ 887.888553] netlink_rcv_skb+0x14b/0x430 [ 887.889053] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 887.889547] ? netlink_ack+0xab0/0xab0 [ 887.890030] ? netlink_deliver_tap+0x1ae/0xcc0 [ 887.890590] ? netlink_deliver_tap+0x1c4/0xcc0 [ 887.891146] ? is_vmalloc_addr+0x7b/0xb0 [ 887.891644] netlink_unicast+0x549/0x7f0 [ 887.892148] ? netlink_attachskb+0x870/0x870 [ 887.892691] netlink_sendmsg+0x90f/0xdf0 [ 887.893189] ? netlink_unicast+0x7f0/0x7f0 [ 887.893711] ? netlink_unicast+0x7f0/0x7f0 [ 887.894249] __sock_sendmsg+0x154/0x190 [ 887.894735] ____sys_sendmsg+0x70d/0x870 [ 887.895232] ? sock_write_iter+0x3d0/0x3d0 [ 887.895745] ? do_recvmmsg+0x6d0/0x6d0 [ 887.896221] ? lock_downgrade+0x6d0/0x6d0 [ 887.896728] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 887.897376] ___sys_sendmsg+0xf3/0x170 [ 887.897853] ? sendmsg_copy_msghdr+0x160/0x160 [ 887.898424] ? __fget_files+0x2cf/0x520 [ 887.898908] ? lock_downgrade+0x6d0/0x6d0 [ 887.899410] ? find_held_lock+0x2c/0x110 [ 887.899915] ? __fget_files+0x2f8/0x520 [ 887.900401] ? __fget_light+0xea/0x290 [ 887.900879] __sys_sendmsg+0xe5/0x1b0 [ 887.901340] ? __sys_sendmsg_sock+0x40/0x40 [ 887.901863] ? rcu_read_lock_any_held+0x75/0xa0 [ 887.902455] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 887.903091] ? syscall_enter_from_user_mode+0x1d/0x50 [ 887.903716] do_syscall_64+0x33/0x40 [ 887.904167] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 887.904788] RIP: 0033:0x7f6059340b19 11:13:33 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0xbf00) [ 887.905239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 887.911482] RSP: 002b:00007f6056895188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 887.912407] RAX: ffffffffffffffda RBX: 00007f6059454020 RCX: 00007f6059340b19 [ 887.913273] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 887.918864] RBP: 00007f60568951d0 R08: 0000000000000000 R09: 0000000000000000 [ 887.919734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 887.920599] R13: 00007fffac5f5d9f R14: 00007f6056895300 R15: 0000000000022000 11:13:33 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 11) 11:13:33 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 27) 11:13:33 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x5) [ 888.064504] FAULT_INJECTION: forcing a failure. [ 888.064504] name failslab, interval 1, probability 0, space 0, times 0 [ 888.065922] CPU: 0 PID: 6237 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 888.066760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 888.067767] Call Trace: [ 888.068094] dump_stack+0x107/0x167 [ 888.068543] should_fail.cold+0x5/0xa [ 888.069010] ? io_uring_alloc_task_context+0x99/0x6a0 11:13:33 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b000000000000000000000100"/111]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:13:33 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x6, 0x0) [ 888.069646] should_failslab+0x5/0x20 [ 888.078126] kmem_cache_alloc_trace+0x55/0x320 [ 888.078689] io_uring_alloc_task_context+0x99/0x6a0 [ 888.079294] ? io_import_iovec+0x1120/0x1120 [ 888.079831] ? lock_downgrade+0x6d0/0x6d0 [ 888.090304] ? do_raw_spin_lock+0x121/0x260 [ 888.090829] ? rwlock_bug.part.0+0x90/0x90 [ 888.091346] __io_uring_add_tctx_node+0x2c6/0x520 [ 888.091935] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 888.092571] ? alloc_fd+0x2e7/0x670 [ 888.093021] io_uring_setup+0x1fbb/0x2980 [ 888.093534] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 888.094177] ? wait_for_completion_io+0x270/0x270 [ 888.094776] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 888.095410] ? syscall_enter_from_user_mode+0x1d/0x50 [ 888.096035] do_syscall_64+0x33/0x40 [ 888.096485] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 888.097105] RIP: 0033:0x7f0ba9f97b19 [ 888.097560] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 888.099818] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 888.100739] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 888.101604] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 888.102485] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 888.103362] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 888.104230] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:13:33 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x80000) [ 888.165721] FAULT_INJECTION: forcing a failure. [ 888.165721] name failslab, interval 1, probability 0, space 0, times 0 [ 888.167403] CPU: 0 PID: 6246 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 888.169380] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 888.171795] Call Trace: [ 888.172548] dump_stack+0x107/0x167 [ 888.173594] should_fail.cold+0x5/0xa [ 888.174722] ? create_object.isra.0+0x3a/0xa20 [ 888.176046] should_failslab+0x5/0x20 [ 888.177139] kmem_cache_alloc+0x5b/0x310 [ 888.178327] ? find_held_lock+0x2c/0x110 [ 888.179515] create_object.isra.0+0x3a/0xa20 [ 888.180775] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 888.182259] kmem_cache_alloc_node+0x169/0x330 [ 888.183581] __alloc_skb+0x6d/0x5b0 [ 888.184637] notify_rule_change+0xa6/0x220 [ 888.185858] fib_nl_newrule+0x1486/0x1b10 [ 888.187095] ? fib_rules_seq_read+0x110/0x110 [ 888.188399] ? __mutex_lock+0x4fe/0x10b0 [ 888.189565] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 888.191048] ? security_capable+0x95/0xc0 [ 888.192257] ? fib_rules_seq_read+0x110/0x110 [ 888.193549] rtnetlink_rcv_msg+0x41e/0xbb0 [ 888.194785] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 888.195963] ? lock_acquire+0x197/0x470 [ 888.197108] ? netlink_deliver_tap+0xf4/0xcc0 [ 888.198432] netlink_rcv_skb+0x14b/0x430 [ 888.199631] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 888.200802] ? netlink_ack+0xab0/0xab0 [ 888.201915] ? netlink_deliver_tap+0x1ae/0xcc0 [ 888.203250] ? netlink_deliver_tap+0x1c4/0xcc0 [ 888.204569] ? is_vmalloc_addr+0x7b/0xb0 [ 888.205742] netlink_unicast+0x549/0x7f0 [ 888.206953] ? netlink_attachskb+0x870/0x870 [ 888.208242] netlink_sendmsg+0x90f/0xdf0 [ 888.209417] ? netlink_unicast+0x7f0/0x7f0 [ 888.210666] ? netlink_unicast+0x7f0/0x7f0 [ 888.211882] __sock_sendmsg+0x154/0x190 [ 888.213023] ____sys_sendmsg+0x70d/0x870 [ 888.214211] ? sock_write_iter+0x3d0/0x3d0 [ 888.215430] ? do_recvmmsg+0x6d0/0x6d0 [ 888.216558] ? SOFTIRQ_verbose+0x10/0x10 [ 888.217725] ? SOFTIRQ_verbose+0x10/0x10 [ 888.218914] ___sys_sendmsg+0xf3/0x170 [ 888.220038] ? sendmsg_copy_msghdr+0x160/0x160 [ 888.221360] ? __fget_files+0x2cf/0x520 [ 888.222533] ? lock_downgrade+0x6d0/0x6d0 [ 888.223732] ? find_held_lock+0x2c/0x110 [ 888.224910] ? __fget_files+0x2f8/0x520 [ 888.226075] ? __fget_light+0xea/0x290 [ 888.227203] __sys_sendmsg+0xe5/0x1b0 [ 888.228294] ? __sys_sendmsg_sock+0x40/0x40 [ 888.229533] ? rcu_read_lock_any_held+0x75/0xa0 [ 888.230910] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 888.232419] ? syscall_enter_from_user_mode+0x1d/0x50 [ 888.233907] do_syscall_64+0x33/0x40 [ 888.234986] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 888.236463] RIP: 0033:0x7f6059340b19 [ 888.237526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 888.242893] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 888.245120] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 888.247234] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 888.249290] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 888.251372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 888.253422] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 11:13:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x6) 11:13:47 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 28) 11:13:47 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:13:47 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:13:47 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x7, 0x0) 11:13:47 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b000000000000000000000100"/111]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:13:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 12) 11:13:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1000000) [ 901.798732] FAULT_INJECTION: forcing a failure. [ 901.798732] name failslab, interval 1, probability 0, space 0, times 0 [ 901.800409] CPU: 1 PID: 6276 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 901.801263] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 901.802335] Call Trace: [ 901.802713] dump_stack+0x107/0x167 [ 901.803195] should_fail.cold+0x5/0xa [ 901.803694] should_failslab+0x5/0x20 [ 901.804198] __kmalloc_node_track_caller+0x74/0x3b0 [ 901.804844] ? notify_rule_change+0xa6/0x220 [ 901.805420] __alloc_skb+0xb1/0x5b0 [ 901.805906] notify_rule_change+0xa6/0x220 [ 901.806462] fib_nl_newrule+0x1486/0x1b10 [ 901.807010] ? fib_rules_seq_read+0x110/0x110 [ 901.807566] ? __mutex_lock+0x4fe/0x10b0 [ 901.808061] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 901.808674] ? security_capable+0x95/0xc0 [ 901.809184] ? fib_rules_seq_read+0x110/0x110 [ 901.809728] rtnetlink_rcv_msg+0x41e/0xbb0 [ 901.810242] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 901.810800] ? lock_acquire+0x197/0x470 [ 901.811319] ? netlink_deliver_tap+0xf4/0xcc0 [ 901.811917] netlink_rcv_skb+0x14b/0x430 [ 901.812450] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 901.812988] ? netlink_ack+0xab0/0xab0 [ 901.813495] ? netlink_deliver_tap+0x1ae/0xcc0 [ 901.814100] ? netlink_deliver_tap+0x1c4/0xcc0 [ 901.814730] ? is_vmalloc_addr+0x7b/0xb0 [ 901.815271] netlink_unicast+0x549/0x7f0 [ 901.815817] ? netlink_attachskb+0x870/0x870 [ 901.816405] netlink_sendmsg+0x90f/0xdf0 [ 901.816945] ? netlink_unicast+0x7f0/0x7f0 [ 901.817512] ? netlink_unicast+0x7f0/0x7f0 [ 901.818076] __sock_sendmsg+0x154/0x190 [ 901.818620] ____sys_sendmsg+0x70d/0x870 [ 901.819157] ? sock_write_iter+0x3d0/0x3d0 [ 901.819706] ? do_recvmmsg+0x6d0/0x6d0 [ 901.820221] ? SOFTIRQ_verbose+0x10/0x10 [ 901.820750] ? lock_downgrade+0x6d0/0x6d0 [ 901.821283] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 901.821971] ? SOFTIRQ_verbose+0x10/0x10 [ 901.822513] ___sys_sendmsg+0xf3/0x170 [ 901.823031] ? sendmsg_copy_msghdr+0x160/0x160 [ 901.823634] ? __fget_files+0x2cf/0x520 [ 901.830887] ? lock_downgrade+0x6d0/0x6d0 [ 901.831421] ? find_held_lock+0x2c/0x110 [ 901.831925] ? __fget_files+0x2f8/0x520 [ 901.832464] ? __fget_light+0xea/0x290 [ 901.832987] __sys_sendmsg+0xe5/0x1b0 [ 901.833488] ? __sys_sendmsg_sock+0x40/0x40 11:13:47 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b000000000000000000000100"/111]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:13:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x2000000) [ 901.834048] ? rcu_read_lock_any_held+0x75/0xa0 [ 901.834698] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 901.835338] ? syscall_enter_from_user_mode+0x1d/0x50 [ 901.842525] do_syscall_64+0x33/0x40 [ 901.843027] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 901.843696] RIP: 0033:0x7f6059340b19 [ 901.844193] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 901.846596] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 901.847591] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 901.848516] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 901.849442] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 901.850371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 901.851327] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 [ 901.855755] FAULT_INJECTION: forcing a failure. [ 901.855755] name failslab, interval 1, probability 0, space 0, times 0 [ 901.857220] CPU: 1 PID: 6264 Comm: syz-executor.5 Not tainted 5.10.229 #1 11:13:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x7) [ 901.858106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 901.859195] Call Trace: [ 901.859525] dump_stack+0x107/0x167 [ 901.866592] should_fail.cold+0x5/0xa [ 901.898781] ? create_object.isra.0+0x3a/0xa20 [ 901.899342] should_failslab+0x5/0x20 [ 901.899808] kmem_cache_alloc+0x5b/0x310 [ 901.900307] create_object.isra.0+0x3a/0xa20 [ 901.900839] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 901.901456] kmem_cache_alloc_trace+0x151/0x320 [ 901.902033] io_uring_alloc_task_context+0x99/0x6a0 [ 901.906668] ? io_import_iovec+0x1120/0x1120 [ 901.907204] ? lock_downgrade+0x6d0/0x6d0 [ 901.907707] ? do_raw_spin_lock+0x121/0x260 [ 901.908229] ? rwlock_bug.part.0+0x90/0x90 [ 901.908755] __io_uring_add_tctx_node+0x2c6/0x520 [ 901.909339] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 901.909972] ? alloc_fd+0x2e7/0x670 [ 901.910425] io_uring_setup+0x1fbb/0x2980 [ 901.914964] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 901.915584] ? wait_for_completion_io+0x270/0x270 [ 901.916192] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 901.916826] ? syscall_enter_from_user_mode+0x1d/0x50 [ 901.917452] do_syscall_64+0x33/0x40 [ 901.917905] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 901.918536] RIP: 0033:0x7f0ba9f97b19 [ 901.919003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 901.921224] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 901.922145] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 901.923025] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 901.923887] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 901.924749] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 901.925609] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:13:47 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:13:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x3000000) 11:13:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 13) 11:13:47 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 29) [ 902.096054] FAULT_INJECTION: forcing a failure. [ 902.096054] name failslab, interval 1, probability 0, space 0, times 0 [ 902.097577] CPU: 0 PID: 6293 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 902.098459] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 902.103533] Call Trace: [ 902.103883] dump_stack+0x107/0x167 [ 902.104349] should_fail.cold+0x5/0xa [ 902.104822] ? create_object.isra.0+0x3a/0xa20 [ 902.105379] should_failslab+0x5/0x20 [ 902.105843] kmem_cache_alloc+0x5b/0x310 [ 902.106345] create_object.isra.0+0x3a/0xa20 [ 902.106900] kmemleak_alloc_percpu+0xa0/0x100 [ 902.107450] pcpu_alloc+0x4e2/0x1240 [ 902.107916] __percpu_counter_init+0x10d/0x2d0 [ 902.108472] io_uring_alloc_task_context+0xcc/0x6a0 [ 902.109077] ? io_import_iovec+0x1120/0x1120 [ 902.109613] ? lock_downgrade+0x6d0/0x6d0 [ 902.110115] ? do_raw_spin_lock+0x121/0x260 [ 902.110647] ? rwlock_bug.part.0+0x90/0x90 [ 902.111162] __io_uring_add_tctx_node+0x2c6/0x520 [ 902.111746] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 902.112379] ? alloc_fd+0x2e7/0x670 [ 902.112829] io_uring_setup+0x1fbb/0x2980 [ 902.113335] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 902.113948] ? wait_for_completion_io+0x270/0x270 [ 902.114563] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 902.115202] ? syscall_enter_from_user_mode+0x1d/0x50 [ 902.115834] do_syscall_64+0x33/0x40 [ 902.116286] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 902.116907] RIP: 0033:0x7f0ba9f97b19 [ 902.117363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 902.119587] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 902.120507] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 902.121375] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 902.122239] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 902.127121] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 902.127980] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 902.244265] FAULT_INJECTION: forcing a failure. [ 902.244265] name failslab, interval 1, probability 0, space 0, times 0 [ 902.245753] CPU: 0 PID: 6295 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 902.250636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 902.251717] Call Trace: [ 902.252079] dump_stack+0x107/0x167 [ 902.252567] should_fail.cold+0x5/0xa [ 902.253081] ? create_object.isra.0+0x3a/0xa20 [ 902.253696] should_failslab+0x5/0x20 [ 902.254208] kmem_cache_alloc+0x5b/0x310 [ 902.254782] create_object.isra.0+0x3a/0xa20 [ 902.255360] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 902.256040] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 902.256717] ? notify_rule_change+0xa6/0x220 [ 902.257319] __alloc_skb+0xb1/0x5b0 [ 902.257819] notify_rule_change+0xa6/0x220 [ 902.258394] fib_nl_newrule+0x1486/0x1b10 [ 902.258987] ? fib_rules_seq_read+0x110/0x110 [ 902.259608] ? __mutex_lock+0x4fe/0x10b0 [ 902.260150] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 902.260845] ? security_capable+0x95/0xc0 [ 902.261417] ? fib_rules_seq_read+0x110/0x110 [ 902.262016] rtnetlink_rcv_msg+0x41e/0xbb0 [ 902.262607] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 902.263171] ? lock_acquire+0x197/0x470 [ 902.263707] ? netlink_deliver_tap+0xf4/0xcc0 [ 902.264319] netlink_rcv_skb+0x14b/0x430 [ 902.264863] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 902.265410] ? netlink_ack+0xab0/0xab0 [ 902.265920] ? netlink_deliver_tap+0x1ae/0xcc0 [ 902.266551] ? netlink_deliver_tap+0x1c4/0xcc0 [ 902.267165] ? is_vmalloc_addr+0x7b/0xb0 [ 902.267721] netlink_unicast+0x549/0x7f0 [ 902.268276] ? netlink_attachskb+0x870/0x870 [ 902.268890] netlink_sendmsg+0x90f/0xdf0 [ 902.269450] ? netlink_unicast+0x7f0/0x7f0 [ 902.270040] ? netlink_unicast+0x7f0/0x7f0 [ 902.270633] __sock_sendmsg+0x154/0x190 [ 902.271169] ____sys_sendmsg+0x70d/0x870 [ 902.271728] ? sock_write_iter+0x3d0/0x3d0 [ 902.272291] ? do_recvmmsg+0x6d0/0x6d0 [ 902.272836] ? SOFTIRQ_verbose+0x10/0x10 [ 902.273394] ? SOFTIRQ_verbose+0x10/0x10 [ 902.273954] ___sys_sendmsg+0xf3/0x170 [ 902.274480] ? sendmsg_copy_msghdr+0x160/0x160 [ 902.279129] ? __fget_files+0x2cf/0x520 [ 902.279674] ? lock_downgrade+0x6d0/0x6d0 [ 902.280239] ? find_held_lock+0x2c/0x110 [ 902.280810] ? __fget_files+0x2f8/0x520 [ 902.281370] ? __fget_light+0xea/0x290 [ 902.281911] __sys_sendmsg+0xe5/0x1b0 [ 902.282431] ? __sys_sendmsg_sock+0x40/0x40 [ 902.283024] ? rcu_read_lock_any_held+0x75/0xa0 [ 902.283622] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 902.284264] ? syscall_enter_from_user_mode+0x1d/0x50 [ 902.284901] do_syscall_64+0x33/0x40 [ 902.285359] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 902.285985] RIP: 0033:0x7f6059340b19 [ 902.286453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 902.288869] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 902.289874] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 902.290837] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 902.291780] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 902.292723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 902.293686] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 11:14:01 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x4000000) 11:14:01 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:14:01 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:14:01 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 30) 11:14:01 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x8, 0x0) 11:14:01 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:14:01 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x8) 11:14:01 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 14) [ 916.246344] FAULT_INJECTION: forcing a failure. [ 916.246344] name failslab, interval 1, probability 0, space 0, times 0 [ 916.248996] CPU: 0 PID: 6321 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 916.250972] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 916.253392] Call Trace: [ 916.254156] dump_stack+0x107/0x167 [ 916.255224] should_fail.cold+0x5/0xa [ 916.256332] should_failslab+0x5/0x20 [ 916.257440] __kmalloc_node_track_caller+0x74/0x3b0 [ 916.258882] ? netlink_trim+0x1ee/0x250 11:14:01 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 916.260049] ? create_object.isra.0+0x3ad/0xa20 [ 916.279438] pskb_expand_head+0x15a/0x1040 [ 916.279975] ? find_held_lock+0x2c/0x110 [ 916.280488] ? fib4_rule_fill+0x1bf/0x330 [ 916.281004] ? fib4_rule_flush_cache+0x40/0x40 [ 916.281574] netlink_trim+0x1ee/0x250 [ 916.282053] netlink_broadcast_filtered+0x60/0xdc0 [ 916.282676] ? __kmalloc_node_track_caller+0x2f8/0x3b0 [ 916.291130] ? notify_rule_change+0x40/0x220 [ 916.291686] nlmsg_notify+0x94/0x290 [ 916.292147] ? rtnl_notify+0xa9/0xf0 [ 916.292617] notify_rule_change+0x158/0x220 [ 916.293157] fib_nl_newrule+0x1486/0x1b10 [ 916.293693] ? fib_rules_seq_read+0x110/0x110 [ 916.294267] ? __mutex_lock+0x4fe/0x10b0 [ 916.294773] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 916.307185] ? security_capable+0x95/0xc0 [ 916.307836] ? fib_rules_seq_read+0x110/0x110 [ 916.308498] rtnetlink_rcv_msg+0x41e/0xbb0 [ 916.308939] FAULT_INJECTION: forcing a failure. [ 916.308939] name failslab, interval 1, probability 0, space 0, times 0 [ 916.309114] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 916.311241] ? lock_acquire+0x197/0x470 [ 916.311756] ? netlink_deliver_tap+0xf4/0xcc0 [ 916.312358] netlink_rcv_skb+0x14b/0x430 [ 916.312894] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 916.313433] ? netlink_ack+0xab0/0xab0 [ 916.313944] ? netlink_deliver_tap+0x1ae/0xcc0 [ 916.314540] ? netlink_deliver_tap+0x1c4/0xcc0 [ 916.315124] ? is_vmalloc_addr+0x7b/0xb0 [ 916.316328] netlink_unicast+0x549/0x7f0 [ 916.316944] ? netlink_attachskb+0x870/0x870 [ 916.318239] netlink_sendmsg+0x90f/0xdf0 [ 916.318851] ? netlink_unicast+0x7f0/0x7f0 [ 916.320109] ? netlink_unicast+0x7f0/0x7f0 [ 916.320741] __sock_sendmsg+0x154/0x190 [ 916.322039] ____sys_sendmsg+0x70d/0x870 [ 916.322685] ? sock_write_iter+0x3d0/0x3d0 [ 916.323975] ? do_recvmmsg+0x6d0/0x6d0 [ 916.324561] ? SOFTIRQ_verbose+0x10/0x10 [ 916.325163] ? SOFTIRQ_verbose+0x10/0x10 [ 916.326341] ___sys_sendmsg+0xf3/0x170 [ 916.326911] ? sendmsg_copy_msghdr+0x160/0x160 [ 916.328396] ? __fget_files+0x2cf/0x520 [ 916.329005] ? lock_downgrade+0x6d0/0x6d0 [ 916.329656] ? find_held_lock+0x2c/0x110 [ 916.330315] ? __fget_files+0x2f8/0x520 [ 916.331604] ? __fget_light+0xea/0x290 [ 916.332204] __sys_sendmsg+0xe5/0x1b0 [ 916.333465] ? __sys_sendmsg_sock+0x40/0x40 [ 916.334134] ? rcu_read_lock_any_held+0x75/0xa0 [ 916.339691] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 916.341244] ? syscall_enter_from_user_mode+0x1d/0x50 [ 916.342053] do_syscall_64+0x33/0x40 [ 916.343300] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 916.344074] RIP: 0033:0x7f6059340b19 [ 916.345241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 916.347954] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 916.349105] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 916.350184] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 916.351240] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 916.352293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 916.353371] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 [ 916.354498] CPU: 1 PID: 6315 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 916.356548] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 916.359469] Call Trace: [ 916.360227] dump_stack+0x107/0x167 [ 916.361258] should_fail.cold+0x5/0xa [ 916.362345] ? create_object.isra.0+0x3a/0xa20 [ 916.363670] should_failslab+0x5/0x20 [ 916.364755] kmem_cache_alloc+0x5b/0x310 [ 916.365923] create_object.isra.0+0x3a/0xa20 [ 916.367270] kmemleak_alloc_percpu+0xa0/0x100 [ 916.368591] pcpu_alloc+0x4e2/0x1240 [ 916.369662] __percpu_counter_init+0x10d/0x2d0 [ 916.370979] io_uring_alloc_task_context+0xcc/0x6a0 [ 916.372447] ? io_import_iovec+0x1120/0x1120 [ 916.373716] ? lock_downgrade+0x6d0/0x6d0 [ 916.374900] ? do_raw_spin_lock+0x121/0x260 [ 916.376138] ? rwlock_bug.part.0+0x90/0x90 [ 916.377342] __io_uring_add_tctx_node+0x2c6/0x520 [ 916.378712] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 916.380223] ? alloc_fd+0x2e7/0x670 [ 916.381277] io_uring_setup+0x1fbb/0x2980 [ 916.382471] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 916.383938] ? wait_for_completion_io+0x270/0x270 [ 916.385347] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 916.386851] ? syscall_enter_from_user_mode+0x1d/0x50 [ 916.388353] do_syscall_64+0x33/0x40 [ 916.389413] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 916.390905] RIP: 0033:0x7f0ba9f97b19 [ 916.391973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 916.397301] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 916.399483] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 916.401550] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 916.403626] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 916.405702] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 916.407765] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:14:01 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x5000000) 11:14:01 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0xa, 0x0) 11:14:01 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 15) [ 916.521819] FAULT_INJECTION: forcing a failure. [ 916.521819] name failslab, interval 1, probability 0, space 0, times 0 [ 916.525687] CPU: 0 PID: 6334 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 916.527949] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 916.530585] Call Trace: [ 916.531438] dump_stack+0x107/0x167 [ 916.532578] should_fail.cold+0x5/0xa [ 916.533836] ? create_object.isra.0+0x3a/0xa20 [ 916.535243] should_failslab+0x5/0x20 [ 916.536346] kmem_cache_alloc+0x5b/0x310 [ 916.537525] create_object.isra.0+0x3a/0xa20 [ 916.538786] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 916.540281] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 916.541733] ? netlink_trim+0x1ee/0x250 [ 916.542891] pskb_expand_head+0x15a/0x1040 [ 916.544112] ? find_held_lock+0x2c/0x110 [ 916.545301] ? fib4_rule_fill+0x1bf/0x330 [ 916.546664] ? fib4_rule_flush_cache+0x40/0x40 [ 916.548168] netlink_trim+0x1ee/0x250 [ 916.549330] netlink_broadcast_filtered+0x60/0xdc0 [ 916.550953] ? __kmalloc_node_track_caller+0x2f8/0x3b0 [ 916.552619] ? notify_rule_change+0x40/0x220 [ 916.554071] nlmsg_notify+0x94/0x290 [ 916.555198] ? rtnl_notify+0xa9/0xf0 [ 916.556290] notify_rule_change+0x158/0x220 [ 916.557622] fib_nl_newrule+0x1486/0x1b10 [ 916.559023] ? fib_rules_seq_read+0x110/0x110 [ 916.560434] ? __mutex_lock+0x4fe/0x10b0 [ 916.561741] ? check_nnp_nosuid.isra.0+0x2a0/0x2a0 [ 916.563431] ? security_capable+0x95/0xc0 [ 916.564686] ? fib_rules_seq_read+0x110/0x110 [ 916.566050] rtnetlink_rcv_msg+0x41e/0xbb0 [ 916.567457] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 916.568721] ? lock_acquire+0x1b9/0x470 [ 916.570001] netlink_rcv_skb+0x14b/0x430 [ 916.571344] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 916.572630] ? netlink_ack+0xab0/0xab0 [ 916.573904] ? netlink_deliver_tap+0x1ae/0xcc0 [ 916.575363] ? netlink_deliver_tap+0x1c4/0xcc0 [ 916.576895] ? is_vmalloc_addr+0x7b/0xb0 [ 916.578176] netlink_unicast+0x549/0x7f0 [ 916.579529] ? netlink_attachskb+0x870/0x870 [ 916.580989] netlink_sendmsg+0x90f/0xdf0 [ 916.582281] ? netlink_unicast+0x7f0/0x7f0 [ 916.583678] ? netlink_unicast+0x7f0/0x7f0 [ 916.584290] __sock_sendmsg+0x154/0x190 [ 916.584871] ____sys_sendmsg+0x70d/0x870 [ 916.585464] ? sock_write_iter+0x3d0/0x3d0 [ 916.586073] ? do_recvmmsg+0x6d0/0x6d0 [ 916.586645] ? SOFTIRQ_verbose+0x10/0x10 [ 916.587249] ? SOFTIRQ_verbose+0x10/0x10 [ 916.587846] ___sys_sendmsg+0xf3/0x170 [ 916.588408] ? sendmsg_copy_msghdr+0x160/0x160 [ 916.589061] ? __fget_files+0x2cf/0x520 [ 916.589637] ? lock_downgrade+0x6d0/0x6d0 [ 916.590233] ? find_held_lock+0x2c/0x110 [ 916.590838] ? __fget_files+0x2f8/0x520 [ 916.591428] ? __fget_light+0xea/0x290 [ 916.592011] __sys_sendmsg+0xe5/0x1b0 [ 916.592560] ? __sys_sendmsg_sock+0x40/0x40 [ 916.593169] ? rcu_read_lock_any_held+0x75/0xa0 [ 916.593857] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 916.594593] ? syscall_enter_from_user_mode+0x1d/0x50 [ 916.595348] do_syscall_64+0x33/0x40 [ 916.595888] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 916.596605] RIP: 0033:0x7f6059340b19 [ 916.597144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 916.599770] RSP: 002b:00007f60568b6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 916.600866] RAX: ffffffffffffffda RBX: 00007f6059453f60 RCX: 00007f6059340b19 [ 916.601893] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005 [ 916.602915] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 916.603950] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 916.604973] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 11:14:01 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x6000000) 11:14:01 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x106) 11:14:01 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400"/194]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:14:02 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 31) 11:14:02 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0xf, 0x0) [ 916.907089] FAULT_INJECTION: forcing a failure. [ 916.907089] name failslab, interval 1, probability 0, space 0, times 0 [ 916.908733] CPU: 1 PID: 6353 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 916.909562] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 916.910562] Call Trace: [ 916.910889] dump_stack+0x107/0x167 [ 916.911393] should_fail.cold+0x5/0xa [ 916.911860] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 916.912502] should_failslab+0x5/0x20 [ 916.912965] kmem_cache_alloc_trace+0x55/0x320 [ 916.913522] io_uring_alloc_task_context+0x4a3/0x6a0 [ 916.914135] ? io_import_iovec+0x1120/0x1120 [ 916.914669] ? lock_downgrade+0x6d0/0x6d0 [ 916.915200] ? do_raw_spin_lock+0x121/0x260 [ 916.915721] ? rwlock_bug.part.0+0x90/0x90 [ 916.916245] __io_uring_add_tctx_node+0x2c6/0x520 [ 916.916833] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 916.917471] ? alloc_fd+0x2e7/0x670 [ 916.917924] io_uring_setup+0x1fbb/0x2980 [ 916.918435] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 916.919066] ? wait_for_completion_io+0x270/0x270 [ 916.919684] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 916.920320] ? syscall_enter_from_user_mode+0x1d/0x50 [ 916.920948] do_syscall_64+0x33/0x40 [ 916.921402] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 916.922025] RIP: 0033:0x7f0ba9f97b19 [ 916.922491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 916.924755] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 916.925692] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 916.926567] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 916.927495] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 916.928369] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 916.929237] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:14:15 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x2f0) 11:14:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) (fail_nth: 16) [ 930.686823] FAULT_INJECTION: forcing a failure. 11:14:15 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 32) 11:14:15 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:14:15 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400"/194]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:14:15 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x7000000) 11:14:15 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1b, 0x0) 11:14:15 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 930.686823] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 930.689593] CPU: 1 PID: 6363 Comm: syz-executor.4 Not tainted 5.10.229 #1 [ 930.690495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 930.691573] Call Trace: [ 930.691959] dump_stack+0x107/0x167 [ 930.692407] should_fail.cold+0x5/0xa [ 930.692930] _copy_to_user+0x2e/0x180 [ 930.693404] simple_read_from_buffer+0xcc/0x160 [ 930.694027] proc_fail_nth_read+0x198/0x230 [ 930.694557] ? proc_sessionid_read+0x230/0x230 [ 930.695162] ? security_file_permission+0xb1/0xe0 [ 930.695852] ? proc_sessionid_read+0x230/0x230 [ 930.697321] vfs_read+0x228/0x620 [ 930.697801] ksys_read+0x12d/0x260 [ 930.698238] ? vfs_write+0xb10/0xb10 [ 930.698698] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 930.699385] ? syscall_enter_from_user_mode+0x1d/0x50 [ 930.715879] do_syscall_64+0x33/0x40 [ 930.716339] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 930.716966] RIP: 0033:0x7f60592f369c [ 930.717429] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 930.719688] RSP: 002b:00007f60568b6170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 930.720619] RAX: ffffffffffffffda RBX: 000000000000001c RCX: 00007f60592f369c [ 930.721491] RDX: 000000000000000f RSI: 00007f60568b61e0 RDI: 0000000000000006 [ 930.722367] RBP: 00007f60568b61d0 R08: 0000000000000000 R09: 0000000000000000 [ 930.723239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 930.724122] R13: 00007fffac5f5d9f R14: 00007f60568b6300 R15: 0000000000022000 [ 930.726755] FAULT_INJECTION: forcing a failure. [ 930.726755] name failslab, interval 1, probability 0, space 0, times 0 [ 930.728146] CPU: 1 PID: 6376 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 930.728984] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 930.729996] Call Trace: [ 930.730322] dump_stack+0x107/0x167 [ 930.730770] should_fail.cold+0x5/0xa [ 930.731240] ? create_object.isra.0+0x3a/0xa20 [ 930.747858] should_failslab+0x5/0x20 [ 930.748327] kmem_cache_alloc+0x5b/0x310 [ 930.748826] create_object.isra.0+0x3a/0xa20 [ 930.749360] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 930.749982] kmem_cache_alloc_trace+0x151/0x320 [ 930.750557] io_uring_alloc_task_context+0x4a3/0x6a0 [ 930.751181] ? io_import_iovec+0x1120/0x1120 [ 930.751737] ? lock_downgrade+0x6d0/0x6d0 [ 930.752243] ? do_raw_spin_lock+0x121/0x260 [ 930.752769] ? rwlock_bug.part.0+0x90/0x90 [ 930.753290] __io_uring_add_tctx_node+0x2c6/0x520 [ 930.753880] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 930.754519] ? alloc_fd+0x2e7/0x670 [ 930.754976] io_uring_setup+0x1fbb/0x2980 [ 930.755489] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 930.756123] ? wait_for_completion_io+0x270/0x270 [ 930.756772] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 930.757435] ? syscall_enter_from_user_mode+0x1d/0x50 [ 930.758103] do_syscall_64+0x33/0x40 [ 930.758578] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 930.759203] RIP: 0033:0x7f0ba9f97b19 [ 930.759704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 930.761989] RSP: 002b:00007f0ba74ec108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 930.762942] RAX: ffffffffffffffda RBX: 00007f0baa0ab020 RCX: 00007f0ba9f97b19 [ 930.763834] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 930.764710] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 930.765578] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 930.766448] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:14:16 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x8000000) 11:14:16 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:14:16 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x300) 11:14:16 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x18000000) 11:14:16 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 33) 11:14:16 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:14:16 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400"/194]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 930.915742] FAULT_INJECTION: forcing a failure. [ 930.915742] name failslab, interval 1, probability 0, space 0, times 0 [ 930.917176] CPU: 1 PID: 6392 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 930.918008] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 930.919016] Call Trace: [ 930.919344] dump_stack+0x107/0x167 [ 930.919926] should_fail.cold+0x5/0xa [ 930.920398] ? io_wq_create+0xeb/0xc00 [ 930.920878] should_failslab+0x5/0x20 [ 930.921346] __kmalloc+0x72/0x390 [ 930.921774] io_wq_create+0xeb/0xc00 [ 930.922236] io_uring_alloc_task_context+0x1f1/0x6a0 [ 930.922859] ? io_import_iovec+0x1120/0x1120 [ 930.923396] ? io_apoll_task_func+0x2d0/0x2d0 [ 930.923987] ? __io_req_find_next+0x300/0x300 [ 930.924534] ? do_raw_spin_lock+0x121/0x260 [ 930.925060] ? rwlock_bug.part.0+0x90/0x90 [ 930.925579] __io_uring_add_tctx_node+0x2c6/0x520 [ 930.926169] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 930.926808] ? alloc_fd+0x2e7/0x670 [ 930.927260] io_uring_setup+0x1fbb/0x2980 [ 930.927804] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 930.928426] ? wait_for_completion_io+0x270/0x270 [ 930.929031] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 930.929673] ? syscall_enter_from_user_mode+0x1d/0x50 [ 930.930304] do_syscall_64+0x33/0x40 [ 930.930759] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 930.931387] RIP: 0033:0x7f0ba9f97b19 [ 930.931876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 930.934118] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 930.935046] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 930.935934] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 930.936804] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 930.937675] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 930.938547] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:14:16 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x2) 11:14:16 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x480) 11:14:16 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x48000000) 11:14:16 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:14:30 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 34) 11:14:30 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x4c000000) 11:14:30 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x500) 11:14:30 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f71"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:14:30 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) 11:14:30 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:14:30 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x3) 11:14:30 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x2, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:14:30 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f71"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:14:30 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x68000000) [ 944.965721] FAULT_INJECTION: forcing a failure. [ 944.965721] name failslab, interval 1, probability 0, space 0, times 0 [ 944.967225] CPU: 0 PID: 6426 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 944.972071] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 944.973068] Call Trace: [ 944.973392] dump_stack+0x107/0x167 [ 944.973834] should_fail.cold+0x5/0xa [ 944.974301] ? create_object.isra.0+0x3a/0xa20 [ 944.974858] should_failslab+0x5/0x20 [ 944.975320] kmem_cache_alloc+0x5b/0x310 [ 944.975816] create_object.isra.0+0x3a/0xa20 [ 944.976363] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 944.976981] __kmalloc+0x16e/0x390 [ 944.977419] io_wq_create+0xeb/0xc00 [ 944.977876] io_uring_alloc_task_context+0x1f1/0x6a0 [ 944.978491] ? io_import_iovec+0x1120/0x1120 [ 944.979024] ? io_apoll_task_func+0x2d0/0x2d0 [ 944.979567] ? __io_req_find_next+0x300/0x300 [ 944.980122] ? do_raw_spin_lock+0x121/0x260 [ 944.980644] ? rwlock_bug.part.0+0x90/0x90 [ 944.981159] __io_uring_add_tctx_node+0x2c6/0x520 [ 944.981745] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 944.982379] ? alloc_fd+0x2e7/0x670 [ 944.982827] io_uring_setup+0x1fbb/0x2980 [ 944.983345] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 944.984069] ? wait_for_completion_io+0x270/0x270 [ 944.984739] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 944.985468] ? syscall_enter_from_user_mode+0x1d/0x50 [ 944.986185] do_syscall_64+0x33/0x40 [ 944.986687] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 944.987333] RIP: 0033:0x7f0ba9f97b19 [ 944.987797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 944.990224] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 944.991170] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 944.992065] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 944.992947] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 944.993813] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 944.994673] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:14:30 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) 11:14:45 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x6c000000) 11:14:45 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:14:45 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f71"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:14:45 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x4) 11:14:45 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x600) 11:14:45 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:14:45 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 35) 11:14:45 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) [ 960.410910] FAULT_INJECTION: forcing a failure. [ 960.410910] name failslab, interval 1, probability 0, space 0, times 0 [ 960.412415] CPU: 1 PID: 6460 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 960.417515] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 960.418582] Call Trace: [ 960.418924] dump_stack+0x107/0x167 [ 960.419391] should_fail.cold+0x5/0xa [ 960.419889] ? create_object.isra.0+0x3a/0xa20 11:14:45 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x601) [ 960.420471] should_failslab+0x5/0x20 [ 960.432866] kmem_cache_alloc+0x5b/0x310 [ 960.433384] create_object.isra.0+0x3a/0xa20 11:14:45 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x74000000) [ 960.433932] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 960.438339] __kmalloc+0x16e/0x390 [ 960.438801] io_wq_create+0xeb/0xc00 [ 960.439275] io_uring_alloc_task_context+0x1f1/0x6a0 [ 960.439919] ? io_import_iovec+0x1120/0x1120 [ 960.440476] ? io_apoll_task_func+0x2d0/0x2d0 [ 960.441051] ? __io_req_find_next+0x300/0x300 [ 960.441612] ? do_raw_spin_lock+0x121/0x260 [ 960.442154] ? rwlock_bug.part.0+0x90/0x90 [ 960.442700] __io_uring_add_tctx_node+0x2c6/0x520 [ 960.443307] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 960.443965] ? alloc_fd+0x2e7/0x670 [ 960.444435] io_uring_setup+0x1fbb/0x2980 [ 960.444985] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 960.445625] ? wait_for_completion_io+0x270/0x270 [ 960.446251] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 960.446911] ? syscall_enter_from_user_mode+0x1d/0x50 [ 960.447561] do_syscall_64+0x33/0x40 [ 960.448048] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 960.448714] RIP: 0033:0x7f0ba9f97b19 [ 960.449192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 960.451487] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 960.452443] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 960.453354] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 960.454246] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 960.455146] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 960.456037] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:14:45 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:14:45 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x8, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:14:45 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 36) 11:14:45 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x5) 11:14:45 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x700) 11:14:45 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x7a000000) 11:14:45 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 960.610635] FAULT_INJECTION: forcing a failure. [ 960.610635] name failslab, interval 1, probability 0, space 0, times 0 [ 960.612179] CPU: 1 PID: 6478 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 960.613111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 960.614142] Call Trace: [ 960.614485] dump_stack+0x107/0x167 [ 960.614949] should_fail.cold+0x5/0xa [ 960.615434] ? create_object.isra.0+0x3a/0xa20 [ 960.616013] should_failslab+0x5/0x20 [ 960.616496] kmem_cache_alloc+0x5b/0x310 [ 960.617068] ? io_wq_create+0x114/0xc00 [ 960.617579] create_object.isra.0+0x3a/0xa20 [ 960.618133] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 960.618783] kmem_cache_alloc_node_trace+0x16d/0x340 [ 960.619431] io_wq_create+0x6ef/0xc00 [ 960.619925] io_uring_alloc_task_context+0x1f1/0x6a0 [ 960.620569] ? io_import_iovec+0x1120/0x1120 [ 960.621963] ? io_apoll_task_func+0x2d0/0x2d0 [ 960.622534] ? __io_req_find_next+0x300/0x300 [ 960.623100] ? do_raw_spin_lock+0x121/0x260 [ 960.623649] ? rwlock_bug.part.0+0x90/0x90 [ 960.624192] __io_uring_add_tctx_node+0x2c6/0x520 [ 960.624836] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 960.625499] ? alloc_fd+0x2e7/0x670 [ 960.625971] io_uring_setup+0x1fbb/0x2980 [ 960.626505] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 960.627150] ? wait_for_completion_io+0x270/0x270 [ 960.627784] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 960.628447] ? syscall_enter_from_user_mode+0x1d/0x50 [ 960.629837] do_syscall_64+0x33/0x40 [ 960.630941] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 960.632473] RIP: 0033:0x7f0ba9f97b19 [ 960.633586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 960.639077] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 960.641338] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 960.643457] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 960.645608] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 960.647731] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 960.649874] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:14:59 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x8004) 11:14:59 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:14:59 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:14:59 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:14:59 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x9, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:14:59 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0xbf000000) 11:14:59 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x6) 11:14:59 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 37) [ 974.649940] FAULT_INJECTION: forcing a failure. [ 974.649940] name failslab, interval 1, probability 0, space 0, times 0 [ 974.652677] CPU: 1 PID: 6509 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 974.653681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 974.662191] Call Trace: [ 974.662589] dump_stack+0x107/0x167 [ 974.663120] should_fail.cold+0x5/0xa [ 974.663685] ? __io_uring_add_tctx_node+0x15c/0x520 [ 974.664410] should_failslab+0x5/0x20 [ 974.664966] kmem_cache_alloc_trace+0x55/0x320 [ 974.673600] __io_uring_add_tctx_node+0x15c/0x520 [ 974.674301] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 974.675056] ? alloc_fd+0x2e7/0x670 [ 974.675595] io_uring_setup+0x1fbb/0x2980 [ 974.676208] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 974.676944] ? wait_for_completion_io+0x270/0x270 [ 974.689689] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 974.690443] ? syscall_enter_from_user_mode+0x1d/0x50 [ 974.691199] do_syscall_64+0x33/0x40 [ 974.691761] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 974.692509] RIP: 0033:0x7f0ba9f97b19 [ 974.693063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 974.695705] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 974.696797] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 974.705844] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 974.706867] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 974.707907] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 974.708926] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:14:59 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:14:59 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0xf6ffffff) 11:15:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0xfffffff6) 11:15:00 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xf002) 11:15:00 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 38) 11:15:00 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x7) 11:15:00 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe9140"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:15:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xf, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1000000000000) [ 974.860353] FAULT_INJECTION: forcing a failure. [ 974.860353] name failslab, interval 1, probability 0, space 0, times 0 [ 974.863866] CPU: 1 PID: 6531 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 974.865832] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 974.868204] Call Trace: [ 974.868938] dump_stack+0x107/0x167 [ 974.870030] should_fail.cold+0x5/0xa [ 974.871104] ? create_object.isra.0+0x3a/0xa20 [ 974.872406] should_failslab+0x5/0x20 [ 974.873491] kmem_cache_alloc+0x5b/0x310 [ 974.874645] create_object.isra.0+0x3a/0xa20 [ 974.875886] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 974.881372] kmem_cache_alloc_trace+0x151/0x320 [ 974.882699] __io_uring_add_tctx_node+0x15c/0x520 [ 974.890344] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 974.891824] ? alloc_fd+0x2e7/0x670 [ 974.892863] io_uring_setup+0x1fbb/0x2980 [ 974.894053] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 974.895497] ? wait_for_completion_io+0x270/0x270 [ 974.896875] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 974.902404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 974.903865] do_syscall_64+0x33/0x40 [ 974.904921] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 974.910413] RIP: 0033:0x7f0ba9f97b19 [ 974.911478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 974.916768] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 974.918953] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 974.920979] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 974.923023] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 974.925048] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 974.927104] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:15:14 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x8) 11:15:14 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:15:14 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe9140"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:15:14 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x60, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:14 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 39) 11:15:14 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x8000000000000) 11:15:14 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:15:14 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x80000) [ 989.394445] FAULT_INJECTION: forcing a failure. [ 989.394445] name failslab, interval 1, probability 0, space 0, times 0 [ 989.396086] CPU: 0 PID: 6561 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 989.396918] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 989.401923] Call Trace: [ 989.402249] dump_stack+0x107/0x167 [ 989.402694] should_fail.cold+0x5/0xa [ 989.403158] ? xas_alloc+0x336/0x440 [ 989.403614] should_failslab+0x5/0x20 [ 989.404077] kmem_cache_alloc+0x5b/0x310 [ 989.404580] ? stack_trace_consume_entry+0x160/0x160 [ 989.405193] xas_alloc+0x336/0x440 [ 989.405637] xas_create+0x34a/0x10d0 [ 989.406114] ? kernel_text_address+0xf2/0x120 [ 989.406659] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 989.407291] xas_store+0x8c/0x1c40 [ 989.407736] __xa_store+0x164/0x2d0 [ 989.408177] ? xa_delete_node+0x280/0x280 [ 989.408685] ? trace_hardirqs_on+0x5b/0x180 [ 989.409211] xa_store+0x31/0x50 [ 989.409628] __io_uring_add_tctx_node+0x1cf/0x520 [ 989.410233] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 989.410874] ? alloc_fd+0x2e7/0x670 [ 989.411324] io_uring_setup+0x1fbb/0x2980 [ 989.411833] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 989.412450] ? wait_for_completion_io+0x270/0x270 [ 989.413047] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 989.413719] ? syscall_enter_from_user_mode+0x1d/0x50 [ 989.414348] do_syscall_64+0x33/0x40 [ 989.414807] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 989.415428] RIP: 0033:0x7f0ba9f97b19 [ 989.415885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 989.418135] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 989.419058] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 989.419920] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 989.420780] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 989.421676] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 989.422546] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:15:14 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe9140"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:15:14 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x100000000000000) 11:15:14 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d78"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:15:14 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xf0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:14 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x1000000) 11:15:14 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x200000000000000) 11:15:14 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 40) [ 989.608169] FAULT_INJECTION: forcing a failure. [ 989.608169] name failslab, interval 1, probability 0, space 0, times 0 [ 989.609754] CPU: 1 PID: 6580 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 989.610598] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 989.611600] Call Trace: [ 989.611927] dump_stack+0x107/0x167 [ 989.612374] should_fail.cold+0x5/0xa [ 989.612844] ? create_object.isra.0+0x3a/0xa20 [ 989.613406] should_failslab+0x5/0x20 [ 989.613901] kmem_cache_alloc+0x5b/0x310 [ 989.614402] create_object.isra.0+0x3a/0xa20 [ 989.614937] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 989.615557] kmem_cache_alloc+0x159/0x310 [ 989.616069] xas_alloc+0x336/0x440 [ 989.616506] xas_create+0x34a/0x10d0 [ 989.616969] ? kernel_text_address+0xf2/0x120 [ 989.617519] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 989.618201] xas_store+0x8c/0x1c40 [ 989.618647] __xa_store+0x164/0x2d0 [ 989.619117] ? xa_delete_node+0x280/0x280 [ 989.619654] ? trace_hardirqs_on+0x5b/0x180 [ 989.620212] xa_store+0x31/0x50 [ 989.620639] __io_uring_add_tctx_node+0x1cf/0x520 [ 989.621254] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 989.621948] ? alloc_fd+0x2e7/0x670 [ 989.622421] io_uring_setup+0x1fbb/0x2980 [ 989.622956] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 989.623608] ? wait_for_completion_io+0x270/0x270 [ 989.624240] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 989.624912] ? syscall_enter_from_user_mode+0x1d/0x50 [ 989.625560] do_syscall_64+0x33/0x40 [ 989.626064] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 989.626692] RIP: 0033:0x7f0ba9f97b19 [ 989.627156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 989.629504] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 989.630529] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 989.631439] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 989.632356] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 989.633269] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 989.634213] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:15:14 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xfe, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:14 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x106) [ 1003.355019] FAULT_INJECTION: forcing a failure. [ 1003.355019] name failslab, interval 1, probability 0, space 0, times 0 [ 1003.356468] CPU: 0 PID: 6601 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1003.357313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1003.358345] Call Trace: [ 1003.358673] dump_stack+0x107/0x167 [ 1003.359119] should_fail.cold+0x5/0xa [ 1003.359587] ? xas_alloc+0x336/0x440 [ 1003.360045] should_failslab+0x5/0x20 [ 1003.360510] kmem_cache_alloc+0x5b/0x310 [ 1003.366276] xas_alloc+0x336/0x440 [ 1003.366712] xas_create+0x34a/0x10d0 [ 1003.367171] ? kernel_text_address+0xf2/0x120 [ 1003.367719] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1003.368356] xas_store+0x8c/0x1c40 [ 1003.368796] __xa_store+0x164/0x2d0 [ 1003.369240] ? xa_delete_node+0x280/0x280 [ 1003.369751] ? trace_hardirqs_on+0x5b/0x180 [ 1003.370302] xa_store+0x31/0x50 [ 1003.370710] __io_uring_add_tctx_node+0x1cf/0x520 [ 1003.371298] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1003.371936] ? alloc_fd+0x2e7/0x670 [ 1003.372385] io_uring_setup+0x1fbb/0x2980 [ 1003.372894] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1003.373514] ? wait_for_completion_io+0x270/0x270 [ 1003.374121] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1003.374763] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1003.375392] do_syscall_64+0x33/0x40 [ 1003.375845] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1003.376467] RIP: 0033:0x7f0ba9f97b19 11:15:28 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x2000000) 11:15:28 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 41) 11:15:28 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) 11:15:28 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r1, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:15:28 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d78"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:15:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x300, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:28 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x2f0) 11:15:28 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x300000000000000) [ 1003.376922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1003.379170] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1003.380097] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1003.386517] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1003.387383] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1003.388247] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1003.389110] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:15:28 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) 11:15:28 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x3000000) 11:15:28 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x300) 11:15:28 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x400000000000000) 11:15:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x900, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:28 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) lseek(0xffffffffffffffff, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x100000001) 11:15:28 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x4000000) 11:15:28 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d78"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:15:28 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x5000000) 11:15:28 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 42) [ 1003.646348] FAULT_INJECTION: forcing a failure. [ 1003.646348] name failslab, interval 1, probability 0, space 0, times 0 [ 1003.647945] CPU: 1 PID: 6638 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1003.648778] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1003.649784] Call Trace: [ 1003.650124] dump_stack+0x107/0x167 [ 1003.650583] should_fail.cold+0x5/0xa [ 1003.651053] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1003.651663] ? create_object.isra.0+0x3a/0xa20 [ 1003.652223] should_failslab+0x5/0x20 [ 1003.652688] kmem_cache_alloc+0x5b/0x310 [ 1003.653187] create_object.isra.0+0x3a/0xa20 [ 1003.653723] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1003.654376] kmem_cache_alloc+0x159/0x310 [ 1003.654890] xas_alloc+0x336/0x440 [ 1003.655325] xas_create+0x34a/0x10d0 [ 1003.655789] ? kernel_text_address+0xf2/0x120 [ 1003.656339] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1003.656980] xas_store+0x8c/0x1c40 [ 1003.657423] __xa_store+0x164/0x2d0 [ 1003.657869] ? xa_delete_node+0x280/0x280 [ 1003.658424] ? trace_hardirqs_on+0x5b/0x180 [ 1003.658958] xa_store+0x31/0x50 [ 1003.659366] __io_uring_add_tctx_node+0x1cf/0x520 [ 1003.659958] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1003.660597] ? alloc_fd+0x2e7/0x670 [ 1003.661051] io_uring_setup+0x1fbb/0x2980 [ 1003.661564] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1003.662202] ? wait_for_completion_io+0x270/0x270 [ 1003.662810] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1003.663451] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1003.664083] do_syscall_64+0x33/0x40 [ 1003.664539] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1003.665168] RIP: 0033:0x7f0ba9f97b19 [ 1003.665631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1003.667906] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1003.668839] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1003.669712] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1003.670602] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1003.671475] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1003.672348] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:15:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x500000000000000) 11:15:42 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:15:42 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 43) [ 1017.537952] FAULT_INJECTION: forcing a failure. [ 1017.537952] name failslab, interval 1, probability 0, space 0, times 0 [ 1017.541072] CPU: 1 PID: 6648 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1017.542718] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1017.544722] Call Trace: [ 1017.545368] dump_stack+0x107/0x167 [ 1017.546226] should_fail.cold+0x5/0xa [ 1017.546911] ? xas_alloc+0x336/0x440 [ 1017.547373] should_failslab+0x5/0x20 [ 1017.547844] kmem_cache_alloc+0x5b/0x310 [ 1017.548354] xas_alloc+0x336/0x440 [ 1017.548798] xas_create+0x34a/0x10d0 [ 1017.549277] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1017.549931] xas_store+0x8c/0x1c40 [ 1017.550401] __xa_store+0x164/0x2d0 [ 1017.551245] ? xa_delete_node+0x280/0x280 [ 1017.552239] ? trace_hardirqs_on+0x5b/0x180 [ 1017.553255] xa_store+0x31/0x50 [ 1017.554892] __io_uring_add_tctx_node+0x1cf/0x520 [ 1017.556066] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1017.557343] ? alloc_fd+0x2e7/0x670 [ 1017.558198] io_uring_setup+0x1fbb/0x2980 [ 1017.559303] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1017.560537] ? wait_for_completion_io+0x270/0x270 11:15:42 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xf00, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:42 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:15:42 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x480) 11:15:42 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:15:42 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x6000000) [ 1017.561713] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1017.567075] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1017.568277] do_syscall_64+0x33/0x40 [ 1017.569136] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1017.570334] RIP: 0033:0x7f0ba9f97b19 [ 1017.575448] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1017.584143] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1017.585953] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1017.587851] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1017.589593] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1017.591426] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1017.593096] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:15:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x600000000000000) 11:15:42 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x6010000) 11:15:42 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x500) 11:15:42 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:15:42 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x6000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:43 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x600) [ 1017.764273] FAULT_INJECTION: forcing a failure. [ 1017.764273] name failslab, interval 1, probability 0, space 0, times 0 11:15:43 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 44) 11:15:43 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x700000000000000) 11:15:43 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1017.765803] CPU: 1 PID: 6676 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1017.766901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1017.767912] Call Trace: [ 1017.768237] dump_stack+0x107/0x167 [ 1017.768680] should_fail.cold+0x5/0xa [ 1017.769141] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1017.769762] ? create_object.isra.0+0x3a/0xa20 [ 1017.770351] should_failslab+0x5/0x20 [ 1017.771527] kmem_cache_alloc+0x5b/0x310 [ 1017.772027] create_object.isra.0+0x3a/0xa20 [ 1017.772558] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1017.773175] kmem_cache_alloc+0x159/0x310 [ 1017.773684] xas_alloc+0x336/0x440 [ 1017.774116] xas_create+0x34a/0x10d0 [ 1017.774574] ? kernel_text_address+0xf2/0x120 [ 1017.775162] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1017.775816] xas_store+0x8c/0x1c40 [ 1017.776282] __xa_store+0x164/0x2d0 [ 1017.776749] ? xa_delete_node+0x280/0x280 [ 1017.777263] ? trace_hardirqs_on+0x5b/0x180 [ 1017.777791] xa_store+0x31/0x50 [ 1017.778195] __io_uring_add_tctx_node+0x1cf/0x520 [ 1017.778812] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1017.779447] ? alloc_fd+0x2e7/0x670 [ 1017.779903] io_uring_setup+0x1fbb/0x2980 [ 1017.780409] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1017.781025] ? wait_for_completion_io+0x270/0x270 [ 1017.781625] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1017.782300] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1017.783039] do_syscall_64+0x33/0x40 [ 1017.783493] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1017.784165] RIP: 0033:0x7f0ba9f97b19 [ 1017.784671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1017.787018] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1017.788020] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1017.788966] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1017.789882] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1017.790827] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1017.791744] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:15:57 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x7000000) 11:15:57 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:15:57 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:15:57 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x0, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:15:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x7ff1, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:57 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x800000000000000) 11:15:57 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x601) 11:15:57 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 45) 11:15:57 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x0, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1032.625681] FAULT_INJECTION: forcing a failure. [ 1032.625681] name failslab, interval 1, probability 0, space 0, times 0 [ 1032.627267] CPU: 0 PID: 6703 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1032.628167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1032.629233] Call Trace: [ 1032.629587] dump_stack+0x107/0x167 [ 1032.630069] should_fail.cold+0x5/0xa [ 1032.630570] ? xas_alloc+0x336/0x440 [ 1032.631063] should_failslab+0x5/0x20 [ 1032.631616] kmem_cache_alloc+0x5b/0x310 [ 1032.632155] xas_alloc+0x336/0x440 [ 1032.632624] xas_create+0x34a/0x10d0 [ 1032.633120] ? kernel_text_address+0xf2/0x120 [ 1032.633713] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1032.634405] xas_store+0x8c/0x1c40 [ 1032.634897] __xa_store+0x164/0x2d0 [ 1032.635412] ? xa_delete_node+0x280/0x280 [ 1032.635971] ? trace_hardirqs_on+0x5b/0x180 [ 1032.636540] xa_store+0x31/0x50 [ 1032.636979] __io_uring_add_tctx_node+0x1cf/0x520 [ 1032.637610] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1032.638288] ? alloc_fd+0x2e7/0x670 [ 1032.638771] io_uring_setup+0x1fbb/0x2980 [ 1032.639386] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1032.640055] ? wait_for_completion_io+0x270/0x270 [ 1032.640717] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1032.641397] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1032.642064] do_syscall_64+0x33/0x40 [ 1032.642517] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1032.643225] RIP: 0033:0x7f0ba9f97b19 [ 1032.643720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1032.646107] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1032.647094] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1032.648088] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1032.649028] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1032.650014] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1032.650975] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:15:57 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x8000000) 11:15:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x8100, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:15:57 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x700) 11:15:58 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1800000000000000) 11:16:12 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:16:12 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x0, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:16:12 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:16:12 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x80040000) 11:16:12 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 46) 11:16:12 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x4800000000000000) 11:16:12 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xf000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:16:12 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x8004) 11:16:12 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xf002) [ 1047.225960] FAULT_INJECTION: forcing a failure. [ 1047.225960] name failslab, interval 1, probability 0, space 0, times 0 [ 1047.227521] CPU: 1 PID: 6725 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1047.228469] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1047.236533] Call Trace: [ 1047.236923] dump_stack+0x107/0x167 [ 1047.237378] should_fail.cold+0x5/0xa [ 1047.237914] ? xas_alloc+0x336/0x440 [ 1047.238389] should_failslab+0x5/0x20 [ 1047.238952] kmem_cache_alloc+0x5b/0x310 [ 1047.239468] xas_alloc+0x336/0x440 [ 1047.240020] xas_create+0x34a/0x10d0 [ 1047.240501] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1047.241213] xas_store+0x8c/0x1c40 [ 1047.241676] __xa_store+0x164/0x2d0 [ 1047.242192] ? xa_delete_node+0x280/0x280 [ 1047.242725] ? trace_hardirqs_on+0x5b/0x180 [ 1047.248876] xa_store+0x31/0x50 [ 1047.249295] __io_uring_add_tctx_node+0x1cf/0x520 [ 1047.249953] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1047.250612] ? alloc_fd+0x2e7/0x670 [ 1047.251136] io_uring_setup+0x1fbb/0x2980 [ 1047.251681] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1047.252429] ? wait_for_completion_io+0x270/0x270 [ 1047.253109] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.253769] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1047.254463] do_syscall_64+0x33/0x40 [ 1047.254987] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1047.255633] RIP: 0033:0x7f0ba9f97b19 [ 1047.264137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1047.266383] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1047.267310] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1047.268206] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1047.269081] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1047.269950] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1047.270818] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:16:12 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, 0x0, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:16:12 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x4c00000000000000) 11:16:12 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x80000) 11:16:12 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 47) 11:16:12 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x6800000000000000) 11:16:12 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x8cffffff) 11:16:12 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, 0x0, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1047.437431] FAULT_INJECTION: forcing a failure. [ 1047.437431] name failslab, interval 1, probability 0, space 0, times 0 [ 1047.438842] CPU: 0 PID: 6749 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1047.439684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1047.440732] Call Trace: [ 1047.441057] dump_stack+0x107/0x167 [ 1047.441505] should_fail.cold+0x5/0xa [ 1047.441975] ? xas_alloc+0x336/0x440 [ 1047.442439] should_failslab+0x5/0x20 [ 1047.442906] kmem_cache_alloc+0x5b/0x310 [ 1047.443402] xas_alloc+0x336/0x440 [ 1047.443867] xas_create+0x34a/0x10d0 [ 1047.444338] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1047.444980] xas_store+0x8c/0x1c40 [ 1047.445424] __xa_store+0x164/0x2d0 [ 1047.445870] ? xa_delete_node+0x280/0x280 [ 1047.446384] ? trace_hardirqs_on+0x5b/0x180 [ 1047.446915] xa_store+0x31/0x50 [ 1047.447327] __io_uring_add_tctx_node+0x1cf/0x520 [ 1047.447937] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1047.448576] ? alloc_fd+0x2e7/0x670 [ 1047.449029] io_uring_setup+0x1fbb/0x2980 [ 1047.449542] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1047.450161] ? wait_for_completion_io+0x270/0x270 [ 1047.450767] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.451407] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1047.452055] do_syscall_64+0x33/0x40 [ 1047.452511] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1047.453136] RIP: 0033:0x7f0ba9f97b19 [ 1047.453597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1047.455864] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1047.456793] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1047.457664] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1047.458533] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1047.459401] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1047.460300] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:16:26 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x1000000) 11:16:26 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:16:26 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:16:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x6c00000000000000) 11:16:26 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xf17f, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:16:26 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xa7ffffff) 11:16:26 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, 0x0, 0x0) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:16:26 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 48) 11:16:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x7400000000000000) [ 1061.016056] FAULT_INJECTION: forcing a failure. [ 1061.016056] name failslab, interval 1, probability 0, space 0, times 0 [ 1061.017478] CPU: 0 PID: 6777 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1061.018311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1061.019326] Call Trace: [ 1061.019655] dump_stack+0x107/0x167 [ 1061.020104] should_fail.cold+0x5/0xa [ 1061.020588] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1061.021198] ? create_object.isra.0+0x3a/0xa20 [ 1061.021758] should_failslab+0x5/0x20 [ 1061.022225] kmem_cache_alloc+0x5b/0x310 [ 1061.022724] create_object.isra.0+0x3a/0xa20 [ 1061.023260] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1061.023883] kmem_cache_alloc+0x159/0x310 [ 1061.024409] xas_alloc+0x336/0x440 [ 1061.024846] xas_create+0x34a/0x10d0 [ 1061.025307] ? kernel_text_address+0xf2/0x120 [ 1061.025860] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1061.026501] xas_store+0x8c/0x1c40 [ 1061.026945] __xa_store+0x164/0x2d0 [ 1061.027390] ? xa_delete_node+0x280/0x280 [ 1061.027902] ? trace_hardirqs_on+0x5b/0x180 [ 1061.028449] xa_store+0x31/0x50 [ 1061.028858] __io_uring_add_tctx_node+0x1cf/0x520 [ 1061.029455] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1061.030098] ? alloc_fd+0x2e7/0x670 [ 1061.030554] io_uring_setup+0x1fbb/0x2980 [ 1061.031064] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1061.031691] ? wait_for_completion_io+0x270/0x270 [ 1061.032317] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1061.032959] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1061.033589] do_syscall_64+0x33/0x40 [ 1061.034043] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1061.034668] RIP: 0033:0x7f0ba9f97b19 [ 1061.035128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1061.037387] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1061.038319] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1061.039193] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1061.040066] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1061.040951] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1061.041823] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:16:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x7a00000000000000) 11:16:26 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xf0020000) 11:16:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0xbf00000000000000) 11:16:26 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xfe00, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:16:26 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 49) 11:16:26 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x0, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:16:26 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x2000000) [ 1061.160725] FAULT_INJECTION: forcing a failure. [ 1061.160725] name failslab, interval 1, probability 0, space 0, times 0 [ 1061.162118] CPU: 0 PID: 6792 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1061.162944] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 11:16:26 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xfeffffff) [ 1061.163951] Call Trace: [ 1061.168308] dump_stack+0x107/0x167 [ 1061.168761] should_fail.cold+0x5/0xa [ 1061.169234] ? xas_alloc+0x336/0x440 [ 1061.169690] should_failslab+0x5/0x20 [ 1061.170156] kmem_cache_alloc+0x5b/0x310 [ 1061.170665] xas_alloc+0x336/0x440 [ 1061.171102] xas_create+0x34a/0x10d0 [ 1061.171567] ? kernel_text_address+0xf2/0x120 [ 1061.172114] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1061.172786] xas_store+0x8c/0x1c40 [ 1061.173227] __xa_store+0x164/0x2d0 [ 1061.173677] ? xa_delete_node+0x280/0x280 [ 1061.174191] ? trace_hardirqs_on+0x5b/0x180 [ 1061.174720] xa_store+0x31/0x50 [ 1061.175124] __io_uring_add_tctx_node+0x1cf/0x520 [ 1061.175712] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1061.176363] ? alloc_fd+0x2e7/0x670 [ 1061.176815] io_uring_setup+0x1fbb/0x2980 [ 1061.177324] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1061.177943] ? wait_for_completion_io+0x270/0x270 [ 1061.178549] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1061.179193] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1061.179820] do_syscall_64+0x33/0x40 [ 1061.180289] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1061.180912] RIP: 0033:0x7f0ba9f97b19 [ 1061.181370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1061.183607] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1061.184550] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1061.185420] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1061.186289] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1061.187156] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1061.188027] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:16:40 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0xf6ffffff00000000) 11:16:40 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:16:40 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:16:40 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xffffff8c) 11:16:40 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x0, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:16:40 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x3000000) 11:16:40 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x80000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:16:40 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 50) 11:16:40 executing program 2: setxattr$security_capability(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)=@v1={0x1000000, [{0x7f, 0x9}]}, 0xc, 0x2) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0xf8, 0x7e, 0x1, 0x7, 0x0, 0x6, 0x24000, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0xa5, 0x20}, 0x220, 0x3f, 0xecba, 0x9, 0xa6b, 0xfffffffd, 0xac48, 0x0, 0x8, 0x0, 0x9a}, 0x0, 0xc, r0, 0x1) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:16:40 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x0, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1074.994989] FAULT_INJECTION: forcing a failure. [ 1074.994989] name failslab, interval 1, probability 0, space 0, times 0 [ 1074.996420] CPU: 1 PID: 6819 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1075.001266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1075.002263] Call Trace: [ 1075.002589] dump_stack+0x107/0x167 [ 1075.003032] should_fail.cold+0x5/0xa [ 1075.003496] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1075.004103] ? create_object.isra.0+0x3a/0xa20 [ 1075.004668] should_failslab+0x5/0x20 [ 1075.005141] kmem_cache_alloc+0x5b/0x310 [ 1075.005638] create_object.isra.0+0x3a/0xa20 [ 1075.006171] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1075.006788] kmem_cache_alloc+0x159/0x310 [ 1075.007299] xas_alloc+0x336/0x440 [ 1075.007733] xas_create+0x34a/0x10d0 [ 1075.008191] ? kernel_text_address+0xf2/0x120 [ 1075.008757] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1075.009400] xas_store+0x8c/0x1c40 [ 1075.009842] __xa_store+0x164/0x2d0 [ 1075.010284] ? xa_delete_node+0x280/0x280 [ 1075.010794] ? trace_hardirqs_on+0x5b/0x180 [ 1075.011322] xa_store+0x31/0x50 [ 1075.011726] __io_uring_add_tctx_node+0x1cf/0x520 [ 1075.012312] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1075.012963] ? alloc_fd+0x2e7/0x670 [ 1075.013414] io_uring_setup+0x1fbb/0x2980 [ 1075.013923] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1075.014542] ? wait_for_completion_io+0x270/0x270 [ 1075.015144] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1075.015782] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1075.016411] do_syscall_64+0x33/0x40 [ 1075.016882] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1075.017504] RIP: 0033:0x7f0ba9f97b19 [ 1075.017960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1075.020190] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1075.021136] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1075.022002] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1075.022869] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1075.023735] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1075.024602] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:16:40 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x4000000) 11:16:40 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xffffffa7) 11:16:40 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 51) 11:16:40 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xf0ffff, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:16:40 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xfffffffe) 11:16:40 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) [ 1075.142036] FAULT_INJECTION: forcing a failure. [ 1075.142036] name failslab, interval 1, probability 0, space 0, times 0 [ 1075.143475] CPU: 1 PID: 6834 Comm: syz-executor.5 Not tainted 5.10.229 #1 11:16:40 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1075.144306] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1075.161288] Call Trace: [ 1075.161615] dump_stack+0x107/0x167 [ 1075.162060] should_fail.cold+0x5/0xa [ 1075.162525] ? xas_alloc+0x336/0x440 [ 1075.162982] should_failslab+0x5/0x20 [ 1075.163443] kmem_cache_alloc+0x5b/0x310 [ 1075.163939] xas_alloc+0x336/0x440 [ 1075.164370] xas_create+0x34a/0x10d0 [ 1075.168861] ? kernel_text_address+0xf2/0x120 [ 1075.169408] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1075.170046] xas_store+0x8c/0x1c40 [ 1075.170487] __xa_store+0x164/0x2d0 [ 1075.170932] ? xa_delete_node+0x280/0x280 [ 1075.171439] ? trace_hardirqs_on+0x5b/0x180 [ 1075.171968] xa_store+0x31/0x50 [ 1075.172371] __io_uring_add_tctx_node+0x1cf/0x520 [ 1075.172980] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1075.173614] ? alloc_fd+0x2e7/0x670 [ 1075.174067] io_uring_setup+0x1fbb/0x2980 [ 1075.174576] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1075.175194] ? wait_for_completion_io+0x270/0x270 [ 1075.175795] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1075.176429] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1075.192983] do_syscall_64+0x33/0x40 [ 1075.193435] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1075.194056] RIP: 0033:0x7f0ba9f97b19 [ 1075.194506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1075.200757] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1075.201679] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1075.202543] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1075.203405] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1075.204266] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1075.225084] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:16:53 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x5000000) 11:16:53 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) setsockopt$inet6_tcp_int(r1, 0x6, 0x8, &(0x7f0000000040)=0xff, 0x4) 11:16:53 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:16:53 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:16:53 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:16:53 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r2, 0xc0505350, &(0x7f0000000100)={{0x6, 0x17}, {0x3, 0x1}, 0x101, 0x4, 0x5}) write$sndseq(r1, &(0x7f0000000040)=[{0x3, 0x8, 0x3, 0x1, @tick=0x1f, {0x5, 0x5}, {0x7f, 0xff}, @raw8={"ec47db46ffb1d072f3ff0c45"}}], 0x1c) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000180), 0x20002, 0x0) lseek(r3, 0x10000, 0x2) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) sendmsg$nl_generic(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x168, 0x20, 0xc21, 0x0, 0x0, {0x16}, [@typed={0x8, 0x6c, 0x0, 0x0, @u32}, @nested={0x14c, 0x4a, 0x0, 0x1, [@generic="01a9c00a3a4bdde773de631ad0a40e4716c7f03120509df271f7ebba1626e36aa7b88ce6f5a8b9ebfd97587c9c61ab5c3dd8ff7e9cff85b4679167c05bc5b4000000d39e477f6473f17b66cb075ea91b5ceb96e83c206a2223c95ef0cde7016752dc58fc5b7bdd9ae0e8f5770b49d5edb20019d1246ad813a1d96a511c4df7c321736e639c6e2f453d257aab7d6c4fc1a1bb3c12ab4ddc33716d395cb300"/170, @generic="98f6f3bac65c9215f1ce1d71c83d792e37e1f035f9d937cf5d476ab955a810a7aca3b4bb39e9acaf4557d26c2fdead77985f280d1118837ec64280811cab0d43c607dac76817c839720b8ea8d3d49a9412fa4324d11c875c7cb02c0e3627c01aa549a8ff491179522892de0d3a2c136cffdd68a9b4aa80b652eb48d9fb54e42a3854dbb7c146c223d6d36f8735cdab687fa6d543b393afa5b61965001b16"]}]}, 0x168}}, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r5) 11:16:53 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 52) 11:16:53 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x1000000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1088.523379] FAULT_INJECTION: forcing a failure. [ 1088.523379] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.524823] CPU: 1 PID: 6859 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1088.525681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1088.526688] Call Trace: [ 1088.527015] dump_stack+0x107/0x167 [ 1088.527464] should_fail.cold+0x5/0xa [ 1088.527931] ? ___slab_alloc+0x155/0x700 [ 1088.528430] ? create_object.isra.0+0x3a/0xa20 [ 1088.528992] should_failslab+0x5/0x20 [ 1088.529480] kmem_cache_alloc+0x5b/0x310 [ 1088.529989] create_object.isra.0+0x3a/0xa20 [ 1088.530538] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1088.531172] kmem_cache_alloc+0x159/0x310 [ 1088.531693] xas_alloc+0x336/0x440 [ 1088.532137] xas_create+0x34a/0x10d0 [ 1088.532615] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1088.533285] xas_store+0x8c/0x1c40 [ 1088.533743] __xa_store+0x164/0x2d0 [ 1088.534197] ? xa_delete_node+0x280/0x280 [ 1088.534712] ? trace_hardirqs_on+0x5b/0x180 [ 1088.535246] xa_store+0x31/0x50 [ 1088.535654] __io_uring_add_tctx_node+0x1cf/0x520 [ 1088.536244] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1088.536884] ? alloc_fd+0x2e7/0x670 [ 1088.537351] io_uring_setup+0x1fbb/0x2980 [ 1088.537864] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1088.538486] ? wait_for_completion_io+0x270/0x270 [ 1088.539092] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1088.539732] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1088.540364] do_syscall_64+0x33/0x40 [ 1088.540820] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1088.541462] RIP: 0033:0x7f0ba9f97b19 [ 1088.541922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1088.544165] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1088.545096] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1088.545986] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1088.546858] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1088.547729] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1088.548598] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:16:53 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x34803) r2 = gettid() write$binfmt_elf64(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="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"/761], 0x307) tkill(r2, 0x7) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x80, 0x2, 0x75, 0x9, 0x0, 0x0, 0x87d8, 0x2000, 0x7, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x4, 0x8}, 0x8000, 0x4, 0xd58d, 0x2, 0x571, 0x199, 0x2, 0x0, 0x1, 0x0, 0x7fffffff}, 0xffffffffffffffff, 0x1, r0, 0x6) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0xfd, 0x3, 0xf2, 0x77, 0x0, 0x800, 0x1a20, 0xe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x4, @perf_bp={&(0x7f0000000000), 0xe}, 0x0, 0x7fffffff, 0x0, 0x3, 0x401, 0xc5b, 0xff27, 0x0, 0x4, 0x0, 0x62}, r2, 0x4, r3, 0x8) 11:16:53 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:16:53 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:16:53 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x6000000) 11:16:53 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 53) 11:16:53 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x2000000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1088.703166] FAULT_INJECTION: forcing a failure. [ 1088.703166] name failslab, interval 1, probability 0, space 0, times 0 [ 1088.704582] CPU: 0 PID: 6879 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1088.705435] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1088.706449] Call Trace: [ 1088.706781] dump_stack+0x107/0x167 [ 1088.707234] should_fail.cold+0x5/0xa [ 1088.707705] ? xas_alloc+0x336/0x440 [ 1088.708168] should_failslab+0x5/0x20 [ 1088.708636] kmem_cache_alloc+0x5b/0x310 [ 1088.709147] xas_alloc+0x336/0x440 [ 1088.709595] xas_create+0x34a/0x10d0 [ 1088.710067] ? kernel_text_address+0xf2/0x120 [ 1088.710628] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1088.711280] xas_store+0x8c/0x1c40 [ 1088.711734] __xa_store+0x164/0x2d0 [ 1088.712192] ? xa_delete_node+0x280/0x280 [ 1088.712718] ? trace_hardirqs_on+0x5b/0x180 [ 1088.713274] xa_store+0x31/0x50 [ 1088.713687] __io_uring_add_tctx_node+0x1cf/0x520 [ 1088.714281] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1088.714928] ? alloc_fd+0x2e7/0x670 [ 1088.715387] io_uring_setup+0x1fbb/0x2980 [ 1088.715910] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1088.716544] ? wait_for_completion_io+0x270/0x270 [ 1088.717174] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1088.718536] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1088.719799] do_syscall_64+0x33/0x40 [ 1088.720695] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1088.721595] RIP: 0033:0x7f0ba9f97b19 [ 1088.722067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1088.724315] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1088.725275] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1088.726154] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1088.727030] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1088.727909] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1088.728784] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:16:54 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'vlan1\x00', &(0x7f0000000000)=@ethtool_eee={0x45, 0x80, 0x7, 0x2e7c, 0x5, 0x0, 0x6, 0x8, [0x0, 0x8d]}}) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:07 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x0, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:17:07 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:17:07 executing program 7: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:07 executing program 2: perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0xff, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x1d}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x92, 0x92, 0x1, 0x1, 0x0, 0x1000, 0x8000, 0x4, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x4, @perf_config_ext={0x4, 0x6}, 0xc010, 0x5, 0x8000, 0x7, 0xa6, 0x1, 0x0, 0x0, 0x4, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x18) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)=ANY=[@ANYBLOB="3c0000000200000008000000000000002000137379732f2f7463705f726d656d000000000000000000"], 0x3c}}, 0x0) ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:17:07 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 54) [ 1102.096919] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2 sclass=netlink_route_socket pid=6905 comm=syz-executor.2 [ 1102.099740] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2 sclass=netlink_route_socket pid=6907 comm=syz-executor.2 [ 1102.112101] FAULT_INJECTION: forcing a failure. [ 1102.112101] name failslab, interval 1, probability 0, space 0, times 0 11:17:07 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x6010000) 11:17:07 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x3000000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:17:07 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 1102.113578] CPU: 1 PID: 6906 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1102.114484] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1102.115557] Call Trace: [ 1102.115910] dump_stack+0x107/0x167 [ 1102.116391] should_fail.cold+0x5/0xa [ 1102.116891] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1102.117543] ? create_object.isra.0+0x3a/0xa20 [ 1102.130181] should_failslab+0x5/0x20 [ 1102.130680] kmem_cache_alloc+0x5b/0x310 [ 1102.131233] create_object.isra.0+0x3a/0xa20 [ 1102.131819] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1102.132484] kmem_cache_alloc+0x159/0x310 [ 1102.133034] xas_alloc+0x336/0x440 [ 1102.133503] xas_create+0x34a/0x10d0 [ 1102.134027] ? kernel_text_address+0xf2/0x120 [ 1102.134634] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1102.135332] xas_store+0x8c/0x1c40 [ 1102.135812] __xa_store+0x164/0x2d0 [ 1102.136294] ? xa_delete_node+0x280/0x280 [ 1102.136844] ? trace_hardirqs_on+0x5b/0x180 [ 1102.137420] xa_store+0x31/0x50 [ 1102.137895] __io_uring_add_tctx_node+0x1cf/0x520 [ 1102.138540] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1102.139222] ? alloc_fd+0x2e7/0x670 [ 1102.139715] io_uring_setup+0x1fbb/0x2980 [ 1102.140263] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1102.140936] ? wait_for_completion_io+0x270/0x270 [ 1102.141602] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1102.142310] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1102.142986] do_syscall_64+0x33/0x40 [ 1102.143472] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1102.144139] RIP: 0033:0x7f0ba9f97b19 [ 1102.144631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1102.147031] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1102.148019] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1102.148946] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1102.149892] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1102.150773] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1102.151638] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:17:07 executing program 7: perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f0000000100), 0xa}, 0x0, 0xffffffffffffff7f, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f00000000c0)={0xfffffff7, 0x6b6e, 0x21, 0x3, 0x20000081}, 0x14) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x20040, 0x14) 11:17:07 executing program 2: perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x8, 0x0) 11:17:07 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x0, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:17:07 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x7000000) 11:17:07 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x9000000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:17:07 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x9) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, &(0x7f0000000000)={0x6, 0xf08, 0x1000, 0x4}, 0x10) socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:07 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000040)={{0x1, 0x5}, 0x0, 0x1000, 0x8, {0x90, 0x9}, 0x3, 0xff}) 11:17:07 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 55) 11:17:07 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xf000000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1102.333544] FAULT_INJECTION: forcing a failure. [ 1102.333544] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.339149] CPU: 1 PID: 6937 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1102.340033] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1102.341109] Call Trace: [ 1102.341464] dump_stack+0x107/0x167 [ 1102.345950] should_fail.cold+0x5/0xa [ 1102.346455] ? xas_alloc+0x336/0x440 [ 1102.346948] should_failslab+0x5/0x20 [ 1102.347447] kmem_cache_alloc+0x5b/0x310 [ 1102.347989] xas_alloc+0x336/0x440 [ 1102.348461] xas_create+0x34a/0x10d0 [ 1102.348959] ? kernel_text_address+0xf2/0x120 [ 1102.349551] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1102.358322] xas_store+0x8c/0x1c40 [ 1102.358801] __xa_store+0x164/0x2d0 [ 1102.359283] ? xa_delete_node+0x280/0x280 [ 1102.359832] ? trace_hardirqs_on+0x5b/0x180 [ 1102.360401] xa_store+0x31/0x50 [ 1102.360839] __io_uring_add_tctx_node+0x1cf/0x520 [ 1102.361474] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1102.366185] ? alloc_fd+0x2e7/0x670 [ 1102.366676] io_uring_setup+0x1fbb/0x2980 [ 1102.367224] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1102.367892] ? wait_for_completion_io+0x270/0x270 [ 1102.368547] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1102.369233] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1102.373942] do_syscall_64+0x33/0x40 [ 1102.374435] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1102.375106] RIP: 0033:0x7f0ba9f97b19 [ 1102.375601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1102.378006] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1102.379003] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1102.379932] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1102.380856] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1102.381808] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1102.382752] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:17:21 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x0, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:17:21 executing program 7: socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:21 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:17:21 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x8000000) 11:17:21 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:17:21 executing program 2: setxattr$trusted_overlay_nlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140)={'U+', 0x3ff}, 0x16, 0x0) truncate(&(0x7f0000000180)='./file0\x00', 0x769) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) openat(r1, &(0x7f00000001c0)='./file0\x00', 0x281, 0x100) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT(r2, 0x4004f506, &(0x7f0000000200)=0x1) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r2, 0xc08c5335, &(0x7f0000000000)={0xfffff84e, 0x8000, 0x0, 'queue1\x00', 0x7}) 11:17:21 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x60000000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:17:21 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 56) [ 1116.274902] netlink: 'syz-executor.2': attribute type 19 has an invalid length. [ 1116.294789] FAULT_INJECTION: forcing a failure. [ 1116.294789] name failslab, interval 1, probability 0, space 0, times 0 [ 1116.295883] netlink: 'syz-executor.2': attribute type 19 has an invalid length. [ 1116.296249] CPU: 1 PID: 6961 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1116.297917] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1116.302924] Call Trace: [ 1116.303251] dump_stack+0x107/0x167 [ 1116.303694] should_fail.cold+0x5/0xa [ 1116.304153] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1116.304761] ? create_object.isra.0+0x3a/0xa20 [ 1116.305313] should_failslab+0x5/0x20 [ 1116.305777] kmem_cache_alloc+0x5b/0x310 [ 1116.306292] create_object.isra.0+0x3a/0xa20 [ 1116.306824] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1116.307440] kmem_cache_alloc+0x159/0x310 [ 1116.307950] xas_alloc+0x336/0x440 [ 1116.308383] xas_create+0x34a/0x10d0 [ 1116.308842] ? kernel_text_address+0xf2/0x120 [ 1116.309386] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1116.310022] xas_store+0x8c/0x1c40 [ 1116.310479] __xa_store+0x164/0x2d0 [ 1116.310924] ? xa_delete_node+0x280/0x280 [ 1116.311430] ? trace_hardirqs_on+0x5b/0x180 [ 1116.311961] xa_store+0x31/0x50 [ 1116.312364] __io_uring_add_tctx_node+0x1cf/0x520 [ 1116.312949] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1116.313582] ? alloc_fd+0x2e7/0x670 [ 1116.314032] io_uring_setup+0x1fbb/0x2980 [ 1116.314559] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1116.315174] ? wait_for_completion_io+0x270/0x270 [ 1116.315777] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1116.316408] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1116.317041] do_syscall_64+0x33/0x40 [ 1116.317492] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1116.318111] RIP: 0033:0x7f0ba9f97b19 [ 1116.318585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1116.320808] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1116.321741] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1116.322629] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1116.323525] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1116.324385] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1116.325244] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:17:21 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x81, 0x0, 0x20, 0x0, 0x0, 0x4, 0x6008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x1, 0x1}, 0x0, 0x6, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, &(0x7f0000000040)) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000280)={0x1c, 0x10, 0x0, 0x0, 0x0, 0x0, {}, [@typed={0x8, 0x1, 0x0, 0x0, @pid}]}, 0x1c}}, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:21 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x80040000) 11:17:21 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, 0x0, 0x0) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:17:21 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000040)={0x0, @adiantum, 0x0, @desc3}) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:17:21 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x81000000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:17:21 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x4, 0x0, 0x0, 0x0, 0x8100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x10000003, 0x0, 0x7, 0x0, 0x0, 0x0, 0x72e, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1f, 0x8e, 0x2, 0x18, 0x0, 0x3, 0x140, 0xd, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x8016, 0x100, 0x0, 0x2, 0x5, 0x8, 0x9, 0x0, 0x32db00e, 0x0, 0x10001}, 0xffffffffffffffff, 0x8, r0, 0x2) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000000300)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000001300)={r2, 0x0, "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", "cc3dddf5742b92088e663411c13cf0ce8a4ec156878194f19af7bcffca1f26e48c71d295563e24ab04e654baec5f4e05d3e54e1ae0c13b90bc6616f1abb30500c6b6fb27b270796067d61837223572bf73b5863c4b0cd5b67cb0589dc54e8eafcbab8d488508179462c0e567b71e08c76919f8bc785a1633aaa8206854b8ba2868f01249546deba84bd7de6c8fdcbe3d372218956d56678f1135f5a682fa43b3ae6f380cab62e8a293384f3691654246b360f248785e158c4a93c80578b69622236e71947384918b8c72cdb4ff493e1d1846f1bb6ecdf753a6ede3b829d4db91532ae102eb9a7e645dd849210a1f3b9aab34f65fa12f1cf8973c2dbe4ee33dde225434c6708eee7a708fb040642acebecdf9ee29d4dd578cc4af9fc4066ceae1524cbf3645d5af00fbdc31415781b0e760ed1ec2fce104fae8504212a88003310dbfd1f5320d6a678ab9b75dc3cd4c07e84928b5341429bc1f03eb3f2e9de38520441a2de3c2e661da195c3558514d0fc052baaafdb1b08956450451fdf7a262d8b771078167d3488b18264efd2f378d94a2c1f5a4c7228b5878c7a7d8a9540f1fa7b5576ed346a9c45e226dbd752792cfc5d4ddde037f78d6bb9a6340ce7456ab395ebd9861bacd9d3e0db35cb6890c7a4076069dc66b808865e85ef6036a92a80a5c734d826f81e70a1fd4c606c4b4d31512f7837b89340a82a245e494cdac717b89461ce4804308804ad918f7a0bc45020d8c7a7a4423d0cf54983f68a876dfb1f980a30ecd7eeb77e757ae8d161136fa7d5381b05336e03cc88415a329a7927847f32360e4d4b39cb04d949c395a253a25e6bd92cfce443520ace9d5571844c53f9de0c71db7235414ad7c1f6b6ed4e29aa2af78b48058961826557f36da8192e711e9225db56fabfff0b04bfc754727d252c9bcf890aea10ad102032ffd448fc973651e27896171afeadc4a68c8c5a5e40063448ac25a1cfce8bb4b24f23d5d0d59e5f698e238bc2252824995dd6fa3f5d617ae956576bea6626b17dff1fd8d8acb73886fb75766d2773bb540a2b5c19fcacab41181b6ddb0a1cf0ab973230b22be596b1e1c6c59b933aa26da810d64c401a53270cbd6d085c290ae1ac32bb69681110b05d0969d8453e17e86c1bdd16c674e9b61736bce30112c891f693b18fc68ee0014b10e295ed3a4503dd4dc89d8e8233f597c11e05bfe31d27a5caf5a009574ac0d405df57684d6b794251133ef137a3853e167c2181b196600beba9319df775f78b05c8ad870a8056697c79f55e3f2ee1c4606b1bda871b37d0935181c055f3324834a66ffcd9f4e0a17476c45fe888fda478c4db1de87c0d0890ce0d3c7c349a564dbb652553a095be544f8080b0b967fee283d0d204924ab6d95e1ab773eebf7207e9d0da491a3a47394bf822f929513c82f1f0daa2090c55f496b180e9d105dd5e0d94a6e16f69c8938f8e800c1d8e4f5d807bdfa021e7c85ba6b215c6260000e09e484e27919bb9404a1bd33487d8c8e357efc7a564b112fcb1945baeabe1c497e8aa3f617f13ef27e4e0f7fe478341f34b16e426872fcaf5065cff5cda48361fc5bb973f5d18ec05ebde67a10b9d0dd10b28db6ed7f2e74d60ab3932247b63f594e1ac7a92f7736b838e79a90ca9559ec250fed13d1adf9100e937944d7c3cfe2b6ff5244aa0da2435bfeda972f0269b86a12e8a3f7674fdd860926c5a547fd9ca1fa2dfef32ea56ba782823f78cafefbf4dda7d470e4dc782b09f22d684cee99272ebe6c459af29467337434377ba6c2886f0fa8c0a0e8035d33e84dba1f753ade09eaf588588a052d6c7c5227d2b8f2dcc106ba3ae8dae74651cef759bb1cb1fa593f4398fcec29b042390bf8c676ccb046f0f9580bb8218e6d31bcb834e3f508f5373097edc6f06be40f6efb3fd3262f2b7200d16462fda10c68eb0395a178ede5196943f40913146675273d6f5a32821e49211095b977f53ef8861689667a94056e347440eb464372022e83bb210d895f4650c898b34eb5a0d69aa57ba4834bf9b33e51a68982e9f7b7b99d53d4af3eb43024bf07bdfc44f17387a4705f5e2feee9a0381c7982cc9a835f1987aec0b4bc1494feb1e8388487f9e2b8282789d36485ad3a08ab7bcd0ffbe04aaf52a056d09f71e94fd00bb16c92a859bac50dc1550e5eb2d7e854485bbb772801abc3ebbd91aac512656ad9f42fc6f88cae6e4431fb0f151f2dd2f0525d657648e35abf1aa364ee0691cdd528812402184414d955d7939ecc9f78a4bdffc7d080630303b215c7f5f736320979821fccd11fac709d41699d5b9d5ae6a2cd41cff86da935e7e837e5c8af753570c9d5284c793eb7659762dca5995b3529877512a5bfe5760f5cba46a30b058bfd5cc04bcc39abb08077378fba17015e34854ecfc4af56f18d61263b00f6ee52dec45b3cff503069b1aa02b37f657ae3be012c57818012ece5dc68ceacf3843660bccb1558e0fdda7c65430c356a20201f17c47711144d98c177575a3418ba0f4654d2a41a9209a0a914497f8b932b098b04c2aac2732f1faaf905c502b56f5d6f2160be259d4cbe19bb85d86a7e0ced5c34a791f787a24bec056cf4f19758dbe27fc6b164e10b887d87e8ffe09bf8014a5db8a0a9dbcc83e9fd973486cffcab8c0ab9e645bb420ceda79e2080fc649e86ccaaf284c3fc6e77577c517742e3acb49927fdeca96702752a8034d2f260b86e7bc19c9f192a85a75ef06d95c727c866e53fa9f69ac7daae3ff3a70c9477e99b6c58ff1ef369d72380499cf1b8b90ec62088e4703d9d3c0bf7a51a45140a55c80602cb9732d34eb2d3bb986df75bb8db4518b6befc14175b1a50a8b9f236f6388f408637656a5d21cc2ddcbf841fc1f6babd3f1b9460464c00c9fde4b701b2c6fff12678cad0bed0ced3503c88d71c7d12a8320a20a21e094a31223e858209e1ce3ae86de65209d2adba37c1a30294e63eeccfb8805b06d0994075a06d6568d7c3ca75040538db27ef7038cfeb4c6594f2b67366b69c229147b06f1cda1858660432bb9209a6ff9d986db185ebd658cd4dc536a0f2082e6a876d9b7f49333509190f6fe0466882a6da1986c59fc7883a927edae0b3f37f5c3afcbc0d0d6be4c82db5c00cf99d7af07635eadd3f9df06bba38291fcb6406198c1ea4394c9e5bdc08ef80511a73842443dc6dc9bb497a1e9e2e4f44d6e938e614af6031c82c84405157bd76a37323741560f4b4be7e3453f9da0dc0e316ead5595ce8f4c1e25446458982ef7186eea8723cc9f3d20ae077223cf177a8338168d38153b6b76c961eaa6a2ab21c0d88fb7119de15c2bce2c6ade492c86bc0ce6e16b9efa1e1c422acaab5fee405191d7e28f4758d5a7cabbcaa67e5070da5e1f0706ffcccfaf5d869569c78e695d6461b970db3258b38877ac7c35859dec7c0bb2271d72f92d8328d75debcbd423df433d77b5e33d82415b5d0cb7451eccee60a8ed9fa22bea111e5f33327b5ac36dc7df46e838b0ab8f8ef8214fb7b4f058a218f96b5e741dd24bd15acbded1b39db5e95de95e71df953f50305dc2ab91de8afa577ae602974b7f6e03acd686e5b9097d6824527599192697ffa4e573e7e216268bc6d882ba819a0abf9f80029bb3a6b1ef54ea0aecfa974cf29fabf8cad91e54d8d81defd28d2e67aedd3234af7e555236bee4a116f47dc36602826c63468a24c1ad3d04cb9f47107341cf833c8e29b9cf37974c1a3bbdc69ead193444c651d4725d82c8f0d42abaed0dfafd7cb76b0c3c1ab85a31672ea1288a79989b4df914db94c38a7951a56b4af303eace8996d7659327b3226be707a44963d19490e8e744c1bcb9840fcd88045cf7989c7f5d57ac7a8e56e2335049c6699de51cfc8242e648b5ea4621ffc223da604224ea3238e401ca0be9aaa71824c4db0f54aa462cb315dde1a53036c0573e622933cc3c3c82c3c4e28b2ae4a74ba1a805beeb8ca94928f53933e59c01f400747f5b86f9797539aac261c14d4d9d519c36430d4c789c32e9a3e09abb264507b143211d2d5c1bb563c2778477015c931a90c83ddfa05849db77795b09934f4d7cc9aeaa87d0340cf924f800dee4b14f4000e1d9e3bf884e83b5615ea0166ebda431a32f4d7591119ab376f8565e89f4888e359344931177862f13a341c553c3ac3a611af51ab2bce0ff4895cc73a47789cff7b56b02765fb143f54d3692678299b5636c83782eada764744fda640654ddd1f6bb866447793a3db468d8ba1144c2fb498eb5f31e18917962cdde6bf7a9785cce20ac594666fae78f028204f3f0a8feee97e7bdd2a6435033009d33879c4d2f07946519cc24efaf03a98a17d9c6fc7b7376cad39171e990b8b2ddcd41bbc564d80dafe2e4d3adc894ada2a8096c235fd408f69a51eab4c9492ffafb7407a34311bc0774c701c80b1df6f27aae231a0059c1ab47d4aacf6480aff3093824c154abb4c103970c9fa3a6821b8e744151ebb4988bc304624960b008ab92a60ab66f1ac174264dbf017d30956ff52bcc39380c8af58b5206289d239166b7d7d6301f80eb4fc6c7efc1ac8e9fb63fb563fab65e116f3a3a1dabcb7fb303c53f80c6de7bb54105d5b176a838aefac77201524a9951b7c28f0fc37b94e319f1348add5e3942a38187d1a31adb0829195f0b8436d6650801fc7e2a1d53761a264e57c23d9fc77f2c7f8f5fd76ff09891807f34e9ae64ec11945a8bc1e253e3408167bc1967f5c9b11c575c2fc2a874f197b20dea5f0a3693f4aedf97634bc5c76ce46b77fa1a25b9b03fdc59f97fe04239d630d71f4de89a389bf44325f29e4e2c5638d8fbd67ae460c9d4034a2ca1f709aca41ceba53e464d31cf0174e3cfb8d0008794f8f10117f5fe163a0b7b2ef09a675de78c381d9fdbb1817901a7a6bc88466cf165dc3b4dd53d7d91f83d24b60554afdeba18bb73c3b104b9bd6d74778f0564ec8031d0e778bdc31d2a2fc96282d3b26a0dc93ad2276064eda08efd84bbfa8f87edddf4d93a053ed71ee6b87dc4e0c54e793e6d564e68d0ebb0a78bcd80e8cb8bec41678e61bdc22f6a8a0881b8e81d359a134fadda26f3d4173a549ef65e412b9524c9338ace88303abb0e0495546305a81de8d7c9bdc0ceed91146c9b100ecc1b0b638d0aef966e99e540b9c805d34a0fd1c8085ff3900f6a86a377de8705487b7467b4bf183af7ecb01a780518c1ac5fb6aa0c665a6a9cb627e9f3b2cf117c2a8b881329eafa63bf178bd924f3505b9dff9b6302aab75f59f676a3084dba7fa383bce4a1a3cc9f6ff42254efa246b6c311140ff894920e31fb365cdad6a95b938b2c52706364bb4bd8ebf8c8d0f129751bf4d559c21e8315d5b26f7d4942dd3b81ff888128dda58"}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000023c0)=ANY=[@ANYBLOB="ff0000167ce59a7c491a48cd46be9de2a6c58681c52f02ea6fe90da7b2c3dcc094f32ee7f3772b217278e71904e3530ed1dab9dd3a2ac7647577cc4daf9374a6bdf34695e0414e7a50f2afb1e1088e4fb549ea313e12ae4a6cf699c03e", @ANYRES32=r1, @ANYBLOB="00040000000000002e2f66696c653000"]) ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f0000002380)=0x0) perf_event_open(&(0x7f0000002300)={0x5, 0x80, 0x40, 0x5, 0x7, 0x8, 0x0, 0x753, 0x210, 0x6, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffff8001, 0x2, @perf_config_ext={0x6, 0xf1}, 0x880, 0xc1d, 0x9, 0x3, 0x100000001, 0x401, 0x910f, 0x0, 0x2}, r4, 0x6, r1, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x20, 0x8, 0x4, 0x3f, 0x0, 0x100, 0x4000, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0xffff, 0x4, @perf_bp={&(0x7f0000000040), 0x8}, 0x8020, 0x9, 0x101, 0x6, 0x8, 0x3f3c, 0x2200, 0x0, 0x5a6f, 0x0, 0xfffffffeffffffff}, 0xffffffffffffffff, 0x2, r1, 0x0) add_key(&(0x7f0000000240)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x0}, &(0x7f00000002c0)="7d29ab468d4e78f2cb1faf807bffacaac9f44f7bbb2035a4c0541694094ed7f637f50994c64d705f6655a34d4b", 0x2d, 0xfffffffffffffffc) socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:36 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x8cffffff) 11:17:36 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) r2 = socket(0x6, 0x5, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r3, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) close_range(r2, r3, 0x2) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r4, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) fcntl$setstatus(r4, 0x4, 0x400) r5 = syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000040)='./file0\x00', 0x9, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000080)="4d431b9f31f1708a99e92b38", 0xc}], 0x4, &(0x7f0000000100)={[{@user_xattr}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x1}}, {@mblk_io_submit}, {@journal_async_commit}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x5}}], [{@fowner_gt}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/snd/seq\x00'}}, {@measure}, {@fowner_lt={'fowner<', 0xee00}}]}) r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) r7 = syz_mount_image$msdos(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, 0x2, &(0x7f00000003c0)=[{&(0x7f0000000300), 0x0, 0xfffffffffffffffe}, {&(0x7f0000000340)="b3d260aceec4301e20e35b8ec80d91b50916df71bb6d6bab2511acb613974867f06a81af365a1886bc77c3e67d81b0499a834b16f54e13c346b52ea0808336ca0d19fd59c2e3cad1bd483a65f5171bdcbd42ef213ef0586b5b0599244ca6f1216720c934e24cc8e5b5032bba5244795c7a29cfbe72b3", 0x76, 0x6}], 0x10020, &(0x7f0000000400)=ANY=[@ANYBLOB='nodots,nodots,codepage=869,fowner=', @ANYRESDEC=0x0, @ANYBLOB="2c6673636f05746578743d726f6f742c66736d616769633d30783030303030303030303030303030332c6d61736b3d4d41595f524541442c61756469742c736d61636b66736465663d2f6465762f736e642f736571002c00"]) r8 = syz_mount_image$iso9660(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x5, 0x5, &(0x7f0000000800)=[{&(0x7f0000000540)="39fddb75f0dc1b68b28437f0aee13570190f43d3366746108b4e7f675e2ce226fe9cb265a7f7a437ad2e12db95194db21339aee7099dd983a179928fe394d4d1f614fd37d48360b7751b4c5f1f2e554a5ea53e301e00bfa82bd40ff20d319442364ee3c65c5c0c011b11301daa5670e93518b92144cc5c80b22227ffcddef0038088a6974a501bf7e7a7ff6b957bcd3bf699f08b22c95827022f571e608252e4f7a511cf0faf246fe8ba1b07729dfcbcdc6341f2fa22bb7e1f53c7ad1b4c6f034acc1f6d47c5990b7ded9e3e54042dd5b5a06d57", 0xd4, 0x6}, {&(0x7f0000000640)="de7cfb26030f1ec329359650bac0e1b9", 0x10, 0x10001}, {&(0x7f0000000680)="559668e21e5119af67692b0501b6e4354f15480685ae8e470ef1baa7f0d92fcce67a760494ea8e9760951f0a1777be", 0x2f, 0x3}, {&(0x7f00000006c0)="7d2620b469798df2bbd03047ac5b6837c05ace9aeb548bbb742d446386cf46416b73ef12ed2be6ab258224e51cc27ca09fcc69bf4bdf0bf24325a80da0625bf7c1b2618fdac74e14ef7dd17a6988", 0x4e, 0x7}, {&(0x7f0000000740)="1d99c54e6883e67e2b5cf9644bea4492c3632c776bc86971ff5275700cfc4b85e31b67555ef7cdee69d3b843ef66c872bc65a7dc6ce7966b9c33ce379cb7bb377f07f3599005bd6971acc0d34ae3e5598901a48f02371882e245e2e2b55930c16fc4d6de5db04188501ce947b6cf9e6247cc44000ff11b4b54e57b33fe65d106f9a49d0ee53da235b0f622edb68cf7c6d2b7674824", 0x95, 0x145116ed}], 0x200081, &(0x7f0000000880)={[{}, {@uid={'uid', 0x3d, 0xee00}}], [{@fsmagic={'fsmagic', 0x3d, 0x3b8}}, {@obj_type={'obj_type', 0x3d, '/dev/snd/seq\x00'}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@obj_type={'obj_type', 0x3d, '\'%.:*![@@,*{'}}, {@subj_user={'subj_user', 0x3d, '/dev/snd/seq\x00'}}, {@fowner_lt={'fowner<', 0xee00}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/snd/seq\x00'}}, {@dont_measure}]}) ppoll(&(0x7f0000000980)=[{r0, 0x2}, {r1}, {r4, 0x100}, {r5, 0x8823}, {r6}, {r7, 0x8680}, {r0, 0x80}, {r8, 0x1080}, {r0, 0x400}], 0x9, &(0x7f0000000a00), &(0x7f0000000a40)={[0x8001]}, 0x8) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:17:36 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:17:36 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:17:36 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, 0x0, 0x0) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:17:36 executing program 7: r0 = gettid() r1 = gettid() tkill(r1, 0x7) rt_sigqueueinfo(r0, 0x1, &(0x7f0000000000)={0x1a, 0xa9, 0xffff7fff}) rt_tgsigqueueinfo(r0, r1, 0x40, &(0x7f0000000280)={0x34, 0x9, 0xffffdea3}) perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0xd4, 0x40, 0xbe, 0x3, 0x0, 0x1, 0xa00, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x5, 0x7}, 0x80, 0x9, 0x0, 0x7, 0x401, 0x20, 0x8000, 0x0, 0x5, 0x0, 0x5}, r1, 0xd, 0xffffffffffffffff, 0x8) perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0xb0, 0x8, 0x80, 0x7, 0x0, 0x7, 0x6200, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c9, 0x6, @perf_config_ext={0x8000, 0x100}, 0x0, 0x5, 0x5d5, 0x7, 0x2, 0xff, 0x0, 0x0, 0x5, 0x0, 0x1}, r1, 0x7, 0xffffffffffffffff, 0x0) tkill(r0, 0x7) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x1202}, r0, 0x0, 0xffffffffffffffff, 0x0) r2 = gettid() tkill(r2, 0x7) r3 = gettid() tkill(r3, 0x7) waitid(0x1, r3, &(0x7f0000000180), 0x80000000, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:36 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x9effffff, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:17:36 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 57) 11:17:36 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x26, 0x3f, 0x6, 0x5, 0x0, 0x5, 0x8deb959c1bd15cb1, 0x33e909a088989764, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x80, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x30, 0x57ac, 0x3, 0x7, 0x800, 0x10001, 0x9, 0x0, 0x2, 0x0, 0x14}, 0x0, 0xa, 0xffffffffffffffff, 0xa) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x40082406, &(0x7f0000000040)='-/\')\x00') [ 1130.752826] FAULT_INJECTION: forcing a failure. [ 1130.752826] name failslab, interval 1, probability 0, space 0, times 0 [ 1130.754273] CPU: 0 PID: 7004 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1130.755128] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1130.756148] Call Trace: [ 1130.756479] dump_stack+0x107/0x167 [ 1130.756926] should_fail.cold+0x5/0xa [ 1130.757395] ? xas_alloc+0x336/0x440 [ 1130.757857] should_failslab+0x5/0x20 [ 1130.758323] kmem_cache_alloc+0x5b/0x310 [ 1130.762844] xas_alloc+0x336/0x440 [ 1130.763282] xas_create+0x34a/0x10d0 [ 1130.763744] ? kernel_text_address+0xf2/0x120 [ 1130.764295] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1130.764934] xas_store+0x8c/0x1c40 [ 1130.765377] __xa_store+0x164/0x2d0 [ 1130.765823] ? xa_delete_node+0x280/0x280 [ 1130.766335] ? trace_hardirqs_on+0x5b/0x180 [ 1130.766887] xa_store+0x31/0x50 [ 1130.767294] __io_uring_add_tctx_node+0x1cf/0x520 [ 1130.767881] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1130.768520] ? alloc_fd+0x2e7/0x670 [ 1130.768970] io_uring_setup+0x1fbb/0x2980 [ 1130.769481] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1130.775215] ? wait_for_completion_io+0x270/0x270 [ 1130.775816] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1130.776454] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1130.777084] do_syscall_64+0x33/0x40 [ 1130.777541] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1130.778166] RIP: 0033:0x7f0ba9f97b19 [ 1130.778634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1130.780890] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1130.781824] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1130.782720] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1130.783590] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1130.784460] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1130.785334] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:17:36 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, 0x0, 0x0) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1130.812005] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 11:17:36 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 58) [ 1130.839272] netlink: 'syz-executor.7': attribute type 19 has an invalid length. 11:17:36 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xa7ffffff) 11:17:36 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xf0ffffff, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1130.861801] netlink: 'syz-executor.7': attribute type 19 has an invalid length. 11:17:36 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) write$P9_RSTATFS(r1, &(0x7f0000000100)={0x43, 0x9, 0x2, {0x8001, 0xadc, 0xfffffffffffffffc, 0x3ff, 0x8001, 0x7f, 0x3, 0x5ea2, 0x3}}, 0x43) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) write$binfmt_misc(r2, &(0x7f0000000180)={'syz1', "7b282d2de1e8b730877bfe65701d779798fef62fc99bc872c2df70609dd2cb79447bd88c66fd756fde7f286d3f6c59cef10f4eb94ba86a848bc74d46c0e7fd4c9c4d6ca4505f98994e839aee75b1e146d8c878cf58e77344ea57284f60a778958d5a48cc09f619e02503"}, 0x6e) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) write$P9_RCLUNK(r4, &(0x7f0000000040)={0x7, 0x79, 0x2}, 0x7) write(0xffffffffffffffff, &(0x7f0000000000)="f0470e6b67fdff9e96a82a530987f26cf28c2df01da433abe3f0", 0x1a) socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:36 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0x0, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1130.908779] FAULT_INJECTION: forcing a failure. [ 1130.908779] name failslab, interval 1, probability 0, space 0, times 0 [ 1130.910236] CPU: 0 PID: 7021 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1130.911083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1130.912098] Call Trace: [ 1130.912429] dump_stack+0x107/0x167 [ 1130.912876] should_fail.cold+0x5/0xa [ 1130.913344] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 1130.913958] ? create_object.isra.0+0x3a/0xa20 [ 1130.914520] should_failslab+0x5/0x20 [ 1130.915008] kmem_cache_alloc+0x5b/0x310 [ 1130.915508] create_object.isra.0+0x3a/0xa20 [ 1130.916044] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1130.916669] kmem_cache_alloc+0x159/0x310 [ 1130.917183] xas_alloc+0x336/0x440 [ 1130.917620] xas_create+0x34a/0x10d0 [ 1130.918097] ? kernel_text_address+0xf2/0x120 [ 1130.918670] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1130.919326] xas_store+0x8c/0x1c40 [ 1130.919784] __xa_store+0x164/0x2d0 [ 1130.920243] ? xa_delete_node+0x280/0x280 [ 1130.920767] ? trace_hardirqs_on+0x5b/0x180 [ 1130.921308] xa_store+0x31/0x50 [ 1130.921728] __io_uring_add_tctx_node+0x1cf/0x520 [ 1130.922326] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1130.922983] ? alloc_fd+0x2e7/0x670 [ 1130.923437] io_uring_setup+0x1fbb/0x2980 [ 1130.923948] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1130.924572] ? wait_for_completion_io+0x270/0x270 [ 1130.925175] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1130.925815] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1130.926446] do_syscall_64+0x33/0x40 [ 1130.926919] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1130.927546] RIP: 0033:0x7f0ba9f97b19 [ 1130.928009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1130.930265] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1130.931213] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1130.932087] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1130.933095] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1130.934938] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1130.936628] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 1130.954628] netlink: 'syz-executor.7': attribute type 19 has an invalid length. 11:17:36 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0x0, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1131.008431] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=521 sclass=netlink_route_socket pid=7033 comm=syz-executor.7 11:17:50 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xf0020000) 11:17:50 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:17:50 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:17:50 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xf17f0000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:17:50 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0x0, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:17:50 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net/sockstat\x00') preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/109, 0x6d}], 0x1, 0x7a, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:50 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 59) 11:17:50 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000065a80)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000066a80)={{0x0, 0x1000, 0x363, 0x2562, 0x9, 0x1, 0xffffffffffffffff, 0x800, 0xffffff01, 0x856, 0x7fffffff, 0x0, 0x1, 0x80, 0x8001}}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f000004c140)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004c340)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}], 0x0, "7e9ac7272717f4"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}], 0x80, "5fabd34a60e47f"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000067a80)={0x81, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0x0, "7940225c61c455"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000068a80)={0x0, 0x0, "08e9eda1af8b663fbfbd44f51e6fbbd3a81d3d6b2224e32c749dca36436e4a9a51d2bfcf47487811df60b93c6dcfec28b355b6207be78439623c9ba2b6f9d7190a54ceacc36ef30902bbf602eae106c5c7b0d4e9bf794a66ba7df1585c0145085a35e5b923d2c44066291026ffca08c67138a9467b70a73bcbf2bfde37efda2c9febc79cce8aef2d58163c61da037e032f0a81298bacd62201a5b3a9e6928b6c2411a5e2cdb8feb46dc5f53da0fae3735a89b84b7ecd77d0001be3c94827b5228ec66591426ac0a8e758331d2c4dcf192a603536016f8f8f92cfce3ad5dfc19e2fa1749b2f9d1a0ba56904a973216aa395c9d9aa22bbff5a6d713bc65608dd58", "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"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000069a80)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {0x0, r14}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r14}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r15}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r14}], 0x80, "5fabd34a60e47f"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000006aa80)={0x5, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x7, "ed2d78d9ef11f8"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000006ba80)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {r3, r4}, {r5}, {r9, r10}, {0x0, r11}, {r13, r16}], 0x0, "46699c114244db"}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0x20c00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, r1, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) [ 1145.143071] FAULT_INJECTION: forcing a failure. [ 1145.143071] name failslab, interval 1, probability 0, space 0, times 0 [ 1145.144478] CPU: 0 PID: 7050 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1145.145308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1145.146314] Call Trace: [ 1145.146641] dump_stack+0x107/0x167 [ 1145.147109] should_fail.cold+0x5/0xa [ 1145.147576] ? xas_alloc+0x336/0x440 [ 1145.148033] should_failslab+0x5/0x20 [ 1145.148497] kmem_cache_alloc+0x5b/0x310 [ 1145.148994] xas_alloc+0x336/0x440 [ 1145.149429] xas_create+0x34a/0x10d0 [ 1145.149909] ? kernel_text_address+0xf2/0x120 [ 1145.150456] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1145.151117] xas_store+0x8c/0x1c40 [ 1145.151560] __xa_store+0x164/0x2d0 [ 1145.152003] ? xa_delete_node+0x280/0x280 [ 1145.152513] ? trace_hardirqs_on+0x5b/0x180 [ 1145.153041] xa_store+0x31/0x50 [ 1145.153447] __io_uring_add_tctx_node+0x1cf/0x520 [ 1145.154033] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1145.154669] ? alloc_fd+0x2e7/0x670 [ 1145.155144] io_uring_setup+0x1fbb/0x2980 [ 1145.155655] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1145.156273] ? wait_for_completion_io+0x270/0x270 [ 1145.156875] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1145.157512] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1145.158141] do_syscall_64+0x33/0x40 [ 1145.158594] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1145.159234] RIP: 0033:0x7f0ba9f97b19 [ 1145.159694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1145.161919] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1145.162841] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1145.163723] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1145.164585] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1145.165447] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 [ 1145.166315] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:17:50 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xfcffffff, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1145.196619] netlink: 'syz-executor.2': attribute type 19 has an invalid length. [ 1145.221822] netlink: 'syz-executor.2': attribute type 19 has an invalid length. 11:17:50 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:17:50 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)=ANY=[@ANYBLOB="3c0000002000210c00000000000000000200000008008d9a7127b46d757619000000000000200013002f70726f632f7379732f6e65742f895876342f"], 0x3c}}, 0x0) stat(&(0x7f0000000440)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r2, 0x0) sendmsg$nl_generic(r1, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000040)={&(0x7f0000000100)={0x39c, 0x38, 0x4, 0x70bd2a, 0x25dfdbfb, {0xa}, [@generic="8c38a9b62f21515cc46d1e6cee29378244b0e12221e12dc8115064712adb138b2c070556f6701352725eefbff51123233beaf0cedf1a63a5a2401c27c79913820fcb5c95bb7c90f517058c5177efa2", @nested={0x60, 0x75, 0x0, 0x1, [@generic="e43374a08ab8f7d3e469dc20fd8c981dc302cfc2ee0a0aa460c5ba881556a6002909801a83b1329352cf4184f3a7e97985a394ac373dea89cba85e3860c14ba848c2097a8b65f0dbaefe88f96c98b25b7c71fb457b63aac535a02f0e"]}, @nested={0x198, 0xd, 0x0, 0x1, [@generic="21db986755ac7d3f17fccf0d350d80330c91f128dfdf9bebeeff61398d3638fbbdb5e93947221c24b4dac12aeaf0b52567776f5bbdd02a9fcc1b9df9d66f45acf952ced80588398e1eec72e71688168c3f1f0386e9af90308745601cea17ae62b21f5eb2c055833f8cda2f76a68b82f2230958b73b41f19df52ac9b97c28a8f47af6d4512e9a49920402fa243bc709b633f24c497ebcadb08e4904a1c39480289cf608e1b813c56b170628079366fac476606fe33bf9f44faff5674c926f4f19447e75ffac98707d59c62ddc5b13b8612864eef2294b64999fc82fe8a2e7fc8d99e9df0276c6bdf8b958c9e0b702f1dfb6e7aed4416d", @generic="7fd40948bdaf4de42784cdba9d16ba69f8512d76a169cbe8298b2ab789f87db27bf00f6c4070ee732ff37bd9ea4f38464eaf4108ddf5d456fc109c535f23ad728556d3af5900a65bc5a4710256a1598cabc6f9f0f7800e1f1b10963bd8a78184d628b5bc6efec1f50460eb0d19dd0861231bbbd21a358ad1ab6f122638454fee64105161e2f1fe1904e86a0bb4150b50ec61420891a8", @typed={0x8, 0x3e, 0x0, 0x0, @pid}]}, @generic="299cdac5cc4852a5b6a10ac9be19321c84ef472a92540f98bdf1358ab2e2422ab9ea60d219a337823e2e33a7231740c9c038166c483ca8b8a874ddb85906f7b59ddc89414a91fecee9a0e9b8e2005e5af932994310c0b49b6cce00b47447f204709d2c8589deada98369d6fa7e2bcee3a796d5ecaa84c0c970ab4fdcd175a43c2c8d29e9b9da9938e8ce27d3f03e2322ad59b2d2b49f1cb6db7ecec3", @nested={0xc, 0x92, 0x0, 0x1, [@typed={0x8, 0x12, 0x0, 0x0, @uid=r2}]}, @generic="46b0a3394c88255605b46a3ac0c8352f1d34245f058cfbb4f35084f9078878db47106972ec1bbe2474b31edf006943d17e948b79f0661a81f4f66ba3b20c558fda5edd84e73fcb913cb42bdea91153601b074c332d142e0e960a97728cc8c30b2535c613e1103112c19b492616da0df63a3f57d2fa3a9c660efcdfbf00e54c3fb9fe869240dde4cb2ff5755c73c20d41c7980fab081c96"]}, 0x39c}, 0x1, 0x0, 0x0, 0x8040}, 0xc880) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r3, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r4, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) getsockopt$IP_SET_OP_VERSION(r4, 0x1, 0x53, &(0x7f0000000540), &(0x7f0000000580)=0x8) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r3, 0x8982, &(0x7f0000000500)={0x8, 'ipvlan1\x00', {'veth1_vlan\x00'}, 0xa252}) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:17:50 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) write$sndseq(r1, &(0x7f00000000c0)=[{0x5b, 0x0, 0x0, 0xff, @tick=0x4, {0x38, 0x80}, {0x5, 0x9c}, @raw32={[0x8, 0x18f, 0x10001]}}, {0xf6, 0x3, 0x5, 0x1f, @time={0x8000, 0xe00}, {0x4, 0x4}, {0x3f, 0x1}, @queue={0x4, {0x3}}}, {0x20, 0x29, 0x31, 0xa3, @time={0x2, 0x6}, {0x81}, {0x7, 0x3f}, @result={0x80000000, 0x800}}, {0x3b, 0xa6, 0x8, 0x5, @time={0x8, 0x388f}, {0xf8}, {0x1, 0xf9}, @ext={0x96, &(0x7f0000000000)="c262f2c255f9d2538b926744e63f34e0ff284bf7ed5abe05480043bf704611ca3d0eadda60c79a103449d846f1c90ef3a17c6bb5f65dead978a1d3727b080cece369e943f11376b0c7f62b115a5746cd9bf9ee036ea622f89cd67c5c5a34c23c3867ea8812ad3a9645a779d7e11af2daf36935eb09072d230626701fce0773278b85483e32bec5ed75d417e4b6c523858b172e70f0a1"}}, {0x40, 0x20, 0x1f, 0xc1, @tick=0x9, {0x40, 0x7f}, {0x1, 0x4}, @result={0x4}}, {0x1, 0x4, 0x1, 0x7, @tick=0x2, {0x4, 0x3f}, {0x7f, 0x3c}, @addr={0x1, 0x3}}], 0xa8) 11:17:50 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xfeffffff) [ 1145.276611] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.7'. 11:17:50 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 60) 11:17:50 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xfe000000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1145.343697] netlink: 'syz-executor.2': attribute type 19 has an invalid length. [ 1145.344537] FAULT_INJECTION: forcing a failure. [ 1145.344537] name failslab, interval 1, probability 0, space 0, times 0 [ 1145.345943] CPU: 0 PID: 7072 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1145.346781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1145.347810] Call Trace: [ 1145.348134] dump_stack+0x107/0x167 [ 1145.348577] should_fail.cold+0x5/0xa [ 1145.349040] ? ___slab_alloc+0x155/0x700 [ 1145.349539] ? create_object.isra.0+0x3a/0xa20 [ 1145.350095] should_failslab+0x5/0x20 [ 1145.350555] kmem_cache_alloc+0x5b/0x310 [ 1145.351094] create_object.isra.0+0x3a/0xa20 [ 1145.351648] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1145.352271] kmem_cache_alloc+0x159/0x310 [ 1145.352780] xas_alloc+0x336/0x440 [ 1145.353213] xas_create+0x34a/0x10d0 [ 1145.353672] ? kernel_text_address+0xf2/0x120 [ 1145.354218] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1145.354857] xas_store+0x8c/0x1c40 [ 1145.355366] __xa_store+0x164/0x2d0 [ 1145.355810] ? xa_delete_node+0x280/0x280 [ 1145.356321] ? trace_hardirqs_on+0x5b/0x180 [ 1145.356850] xa_store+0x31/0x50 [ 1145.357254] __io_uring_add_tctx_node+0x1cf/0x520 [ 1145.357841] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1145.358479] ? alloc_fd+0x2e7/0x670 [ 1145.358940] io_uring_setup+0x1fbb/0x2980 [ 1145.359455] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1145.360073] ? wait_for_completion_io+0x270/0x270 [ 1145.360671] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1145.361306] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1145.361933] do_syscall_64+0x33/0x40 [ 1145.362385] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1145.363027] RIP: 0033:0x7f0ba9f97b19 [ 1145.363487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1145.365722] RSP: 002b:00007f0ba750d108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1145.366649] RAX: ffffffffffffffda RBX: 00007f0baa0aaf60 RCX: 00007f0ba9f97b19 [ 1145.367544] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000006c6b [ 1145.368411] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1145.369282] R10: 00000000200000c0 R11: 0000000000000202 R12: 0000000020000140 11:17:50 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1145.370152] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 1145.376653] netlink: 'syz-executor.2': attribute type 19 has an invalid length. 11:17:50 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xffffff8c) 11:18:03 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) socket$nl_sock_diag(0x10, 0x3, 0x4) signalfd(r0, &(0x7f0000000000)={[0x5]}, 0x8) 11:18:03 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r0, &(0x7f0000000040)="f2588bae25cd22da59c9214553af05", 0xf, 0x1000, &(0x7f0000001780)={0xa, 0x4e22, 0xffffff6f, @mcast1, 0x8}, 0x1c) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) readv(r1, &(0x7f00000016c0)=[{&(0x7f0000000100)=""/210, 0xd2}, {&(0x7f0000000040)}, {&(0x7f0000000200)=""/189, 0xbd}, {&(0x7f00000002c0)=""/206, 0xce}, {&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f00000013c0)=""/212, 0xd4}, {&(0x7f00000014c0)=""/11, 0xb}, {&(0x7f0000001500)=""/169, 0xa9}, {&(0x7f00000015c0)=""/200, 0xc8}], 0x9) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r2, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) dup3(r2, r1, 0x0) finit_module(r1, &(0x7f0000000000)='+\x00', 0x2) 11:18:03 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:18:03 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:18:03 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xffffffa7) 11:18:03 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 61) 11:18:03 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1158.558510] FAULT_INJECTION: forcing a failure. [ 1158.558510] name failslab, interval 1, probability 0, space 0, times 0 [ 1158.564214] CPU: 1 PID: 7100 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1158.565053] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1158.566073] Call Trace: [ 1158.566402] dump_stack+0x107/0x167 [ 1158.566858] should_fail.cold+0x5/0xa [ 1158.567353] ? vm_area_dup+0x78/0x290 [ 1158.567835] should_failslab+0x5/0x20 [ 1158.568302] kmem_cache_alloc+0x5b/0x310 [ 1158.568811] vm_area_dup+0x78/0x290 [ 1158.569268] ? lock_release+0x680/0x680 [ 1158.569762] ? mark_lock+0xf5/0x2df0 [ 1158.570225] ? lock_chain_count+0x20/0x20 [ 1158.570734] ? mark_lock+0xf5/0x2df0 [ 1158.571210] ? perf_trace_kmem_alloc+0xc9/0x100 [ 1158.571790] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1158.572427] ? lock_chain_count+0x20/0x20 [ 1158.572934] ? mark_lock+0xf5/0x2df0 [ 1158.573385] ? vm_area_alloc+0x110/0x110 [ 1158.573886] ? __lock_acquire+0x1657/0x5b00 11:18:03 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xfffff000, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1158.574425] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1158.583308] ? SOFTIRQ_verbose+0x10/0x10 [ 1158.583803] ? vmacache_find+0x55/0x2a0 [ 1158.584289] __split_vma+0xa8/0x570 [ 1158.584736] __do_munmap+0x365/0x1260 [ 1158.585209] mmap_region+0x776/0x1590 [ 1158.585680] ? get_unmapped_area+0x2f0/0x420 [ 1158.586217] do_mmap+0xcdb/0x11e0 11:18:03 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1158.586647] vm_mmap_pgoff+0x198/0x1f0 [ 1158.595305] ? randomize_page+0xb0/0xb0 [ 1158.595803] ksys_mmap_pgoff+0x41c/0x560 [ 1158.596300] ? find_mergeable_anon_vma+0x250/0x250 [ 1158.596902] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1158.597544] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1158.598175] do_syscall_64+0x33/0x40 [ 1158.598633] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1158.603284] RIP: 0033:0x7f0ba9f97b62 [ 1158.603746] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1158.605980] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1158.606906] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1158.607823] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1158.608691] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1158.609559] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1158.610427] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:18:03 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0xfffffffe) 11:18:03 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) r2 = syz_open_pts(0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2, 0x2010, r2, 0xfac9b000) sendfile(r1, r0, &(0x7f0000000000)=0x4, 0x7fff) 11:18:03 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0xff, 0x9b, 0x9, 0x200}, {0x400, 0x1, 0x9, 0xff}, {0xed, 0x0, 0x0, 0x1}, {0x2, 0x63, 0x5, 0xeb36}, {0x0, 0x3, 0x5, 0x1}, {0x5, 0x4, 0x0, 0x2}, {0xfffc, 0xfe, 0x20, 0x5}]}, 0x10) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f0000000000)={0x4, 0x80, 0x8, 0xff, 0xc, 0x1f, 0x0, 0x200, 0x1300, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x9, 0x4, @perf_config_ext={0x2, 0x7}, 0x51408, 0x3d8, 0x6, 0x2, 0x200, 0x2, 0x6, 0x0, 0x2e9, 0x0, 0x10000}) 11:18:03 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1172.448993] FAULT_INJECTION: forcing a failure. [ 1172.448993] name failslab, interval 1, probability 0, space 0, times 0 [ 1172.450449] CPU: 0 PID: 7129 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1172.451274] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1172.452297] Call Trace: [ 1172.452626] dump_stack+0x107/0x167 [ 1172.453073] should_fail.cold+0x5/0xa [ 1172.453543] ? create_object.isra.0+0x3a/0xa20 [ 1172.454105] should_failslab+0x5/0x20 [ 1172.454571] kmem_cache_alloc+0x5b/0x310 [ 1172.455073] create_object.isra.0+0x3a/0xa20 [ 1172.455621] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1172.456245] kmem_cache_alloc+0x159/0x310 [ 1172.456757] vm_area_dup+0x78/0x290 [ 1172.457214] ? lock_release+0x680/0x680 [ 1172.457702] ? mark_lock+0xf5/0x2df0 [ 1172.458164] ? lock_chain_count+0x20/0x20 [ 1172.458671] ? mark_lock+0xf5/0x2df0 [ 1172.459130] ? perf_trace_kmem_alloc+0xc9/0x100 [ 1172.459716] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1172.460356] ? lock_chain_count+0x20/0x20 [ 1172.460873] ? mark_lock+0xf5/0x2df0 [ 1172.461328] ? vm_area_alloc+0x110/0x110 [ 1172.461828] ? __lock_acquire+0x1657/0x5b00 [ 1172.462366] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1172.463010] ? vmacache_find+0x55/0x2a0 [ 1172.463512] __split_vma+0xa8/0x570 [ 1172.463959] __do_munmap+0x365/0x1260 [ 1172.464431] mmap_region+0x776/0x1590 [ 1172.464901] ? get_unmapped_area+0x2f0/0x420 [ 1172.465439] do_mmap+0xcdb/0x11e0 [ 1172.465869] vm_mmap_pgoff+0x198/0x1f0 [ 1172.466346] ? randomize_page+0xb0/0xb0 [ 1172.466841] ksys_mmap_pgoff+0x41c/0x560 [ 1172.467337] ? find_mergeable_anon_vma+0x250/0x250 [ 1172.467949] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1172.468589] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1172.469220] do_syscall_64+0x33/0x40 [ 1172.469674] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1172.470299] RIP: 0033:0x7f0ba9f97b62 [ 1172.470761] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1172.473012] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1172.473939] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1172.474808] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1172.475941] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1172.477642] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 11:18:17 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 62) [ 1172.479331] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 1172.483790] udc-core: couldn't find an available UDC or it's busy [ 1172.493187] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 11:18:17 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:18:17 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:18:17 executing program 2: r0 = msgget(0x1, 0x60) msgctl$MSG_STAT_ANY(r0, 0xd, &(0x7f0000001e00)=""/4096) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = msgget$private(0x0, 0x200) msgrcv(r1, &(0x7f0000000000)={0x0, ""/162}, 0xaa, 0x2, 0x1000) msgget(0x2, 0x20) openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) 11:18:17 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:18:17 executing program 3: r0 = syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}]}}]}}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_ep_write(r0, 0x82, 0x5, &(0x7f0000002340)='hello') syz_usb_control_io(r0, &(0x7f0000000280)={0x2c, &(0x7f0000000040)={0x20, 0x11, 0x2, {0x2}}, &(0x7f0000000100)={0x0, 0x3, 0x92, @string={0x92, 0x3, "4be50099692908d8739f47bb87d155fc3f0f715a966d2dace606e5bf91de3c035abf62d2600fd9a4e86614f20f941557da3d477ea17fdcc2aff71a3493ef9be042f07309c6bc2989e78621b1607367a4ae296f4e16353a2b6a4f071cbd4836afdaf1fd757b426364b2b358aa8e74b36ba31b50068227442516a77c7dd51948e038e8223b6a85e1cd2263da30c5feaabe"}}, &(0x7f00000001c0)={0x0, 0xf, 0x5, {0x5, 0xf, 0x5}}, &(0x7f0000000200)={0x20, 0x29, 0xf, {0xf, 0x29, 0x0, 0x2, 0x5, 0x3, "3d016927", "a649991a"}}, &(0x7f0000000240)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x4, 0x1b, 0x7f, 0x1, 0x9, 0x4, 0x82}}}, &(0x7f0000000740)={0x84, &(0x7f00000002c0)={0x0, 0x18, 0xae, "dd808ce6c8b125b650bad19aaa2f96dfee0418d7354b7af6af3d06b21d051dd205afa12ffbf1e5876db4a1f7fafdb4eecae73d466d02b31b7d15514e32bf57f8fa01b1a95c3902c35e79f2a1db9cef124249989ad26edca6d2cabdd797453b74a4bfdfb86d7f7eea2b40c9079d32599650f90a64998800d3eb22d202fc672577cc24803fd2ba6c4dbab3b815490e3c0f4a7bc3390dafeca1da86e1b7608cea450aaded91b7f03ed79e89d8be1226"}, &(0x7f0000000380)={0x0, 0xa, 0x1}, &(0x7f00000003c0)={0x0, 0x8, 0x1, 0x5}, &(0x7f0000000400)={0x20, 0x0, 0x4, {0x1}}, &(0x7f0000000440)={0x20, 0x0, 0x8, {0x60, 0x20, [0xf000]}}, &(0x7f0000000480)={0x40, 0x7, 0x2, 0x5}, &(0x7f00000004c0)={0x40, 0x9, 0x1, 0x7}, &(0x7f0000000500)={0x40, 0xb, 0x2, 'GD'}, &(0x7f0000000540)={0x40, 0xf, 0x2, 0x5}, &(0x7f0000000580)={0x40, 0x13, 0x6, @local}, &(0x7f00000005c0)={0x40, 0x17, 0x6, @multicast}, &(0x7f0000000600)={0x40, 0x19, 0x2, "189a"}, &(0x7f0000000640)={0x40, 0x1a, 0x2, 0x8000}, &(0x7f0000000680)={0x40, 0x1c, 0x1, 0x3}, &(0x7f00000006c0)={0x40, 0x1e, 0x1}, &(0x7f0000000700)={0x40, 0x21, 0x1, 0x20}}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f0000000000)=0x5, 0x4) ioctl$LOOP_SET_BLOCK_SIZE(0xffffffffffffffff, 0x4c09, 0x2) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:18:17 executing program 7: perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x16, 0x1, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0xd2a3, 0xffffffff}, 0x2010, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003540)=[{{&(0x7f0000000100), 0x6e, &(0x7f0000000040)=[{&(0x7f0000000180)=""/199, 0xc7}], 0x1}}, {{&(0x7f0000000280), 0x6e, &(0x7f0000000680)=[{&(0x7f0000000300)=""/130, 0x82}, {&(0x7f00000003c0)=""/22, 0x16}, {&(0x7f0000000400)=""/109, 0x6d}, {&(0x7f0000000480)=""/34, 0x22}, {&(0x7f00000004c0)=""/244, 0xf4}, {&(0x7f00000005c0)=""/172, 0xac}], 0x6, &(0x7f0000000700)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x130}}, {{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000840)=""/16, 0x10}], 0x1, &(0x7f00000008c0)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000000900)=@abs, 0x6e, &(0x7f0000000a80)=[{&(0x7f0000000980)=""/226, 0xe2}], 0x1, &(0x7f0000000ac0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb0}}, {{&(0x7f0000000b80), 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000000c00)=""/147, 0x93}, {&(0x7f0000000cc0)=""/244, 0xf4}, {&(0x7f0000000dc0)=""/210, 0xd2}, {&(0x7f0000000ec0)=""/4096, 0x1000}, {&(0x7f0000001ec0)=""/234, 0xea}], 0x5, &(0x7f0000002040)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xa8}}, {{&(0x7f0000002100), 0x6e, &(0x7f0000003400)=[{&(0x7f0000002180)=""/163, 0xa3}, {&(0x7f0000002240)=""/198, 0xc6}, {&(0x7f0000002340)=""/4096, 0x1000}, {&(0x7f0000003340)=""/160, 0xa0}], 0x4, &(0x7f0000003440)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}}], 0x6, 0x2, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r3) ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000003740)={{0x1, 0x1, 0x18, r1, {0x9}}, './file0\x00'}) perf_event_open(&(0x7f00000036c0)={0x0, 0x80, 0x18, 0x2, 0xfa, 0x9, 0x0, 0xec10, 0x22132, 0xd, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x2, @perf_config_ext={0x9, 0x8}, 0x844, 0x5e, 0xfffff8d1, 0x6, 0x94, 0x0, 0x444, 0x0, 0x7fff, 0x0, 0x2}, r4, 0xd, r5, 0xc) 11:18:17 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xffffff7f, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:18:17 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x0, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:18:17 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xffffff9e, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:18:17 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 63) [ 1172.635865] FAULT_INJECTION: forcing a failure. [ 1172.635865] name failslab, interval 1, probability 0, space 0, times 0 [ 1172.637294] CPU: 1 PID: 7156 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1172.638137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1172.639156] Call Trace: [ 1172.639520] dump_stack+0x107/0x167 [ 1172.639986] should_fail.cold+0x5/0xa [ 1172.640465] ? anon_vma_clone+0xdc/0x590 [ 1172.640979] should_failslab+0x5/0x20 [ 1172.641459] kmem_cache_alloc+0x5b/0x310 [ 1172.641980] anon_vma_clone+0xdc/0x590 [ 1172.642487] __split_vma+0x17c/0x570 [ 1172.642966] __do_munmap+0x365/0x1260 [ 1172.643467] mmap_region+0x776/0x1590 [ 1172.643986] ? get_unmapped_area+0x2f0/0x420 [ 1172.644550] do_mmap+0xcdb/0x11e0 [ 1172.644999] vm_mmap_pgoff+0x198/0x1f0 [ 1172.645490] ? randomize_page+0xb0/0xb0 [ 1172.646004] ksys_mmap_pgoff+0x41c/0x560 [ 1172.646509] ? find_mergeable_anon_vma+0x250/0x250 [ 1172.647123] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1172.647801] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1172.648444] do_syscall_64+0x33/0x40 [ 1172.648914] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1172.649554] RIP: 0033:0x7f0ba9f97b62 [ 1172.650038] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1172.652318] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1172.653267] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1172.654155] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1172.655043] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1172.655942] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1172.656831] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:18:17 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x0, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:18:17 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xfffffff0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:18:17 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x6a30, 0x200}, 0x0, 0xa, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x100, 0x412201) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x2031, r0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff}) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x638000, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r2, 0x84009422, &(0x7f0000000180)={0x0, 0x0, {}, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) io_uring_enter(r1, 0x39fb, 0x3fc1, 0x0, &(0x7f0000000100)={[0x358]}, 0x8) 11:18:18 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 64) 11:18:18 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x0, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:18:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xfffffffc, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1172.817542] FAULT_INJECTION: forcing a failure. [ 1172.817542] name failslab, interval 1, probability 0, space 0, times 0 [ 1172.818959] CPU: 0 PID: 7171 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1172.819819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1172.820834] Call Trace: [ 1172.821163] dump_stack+0x107/0x167 [ 1172.821612] should_fail.cold+0x5/0xa [ 1172.822082] ? create_object.isra.0+0x3a/0xa20 [ 1172.822647] should_failslab+0x5/0x20 [ 1172.823116] kmem_cache_alloc+0x5b/0x310 [ 1172.823638] create_object.isra.0+0x3a/0xa20 [ 1172.824175] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1172.824801] kmem_cache_alloc+0x159/0x310 [ 1172.825319] anon_vma_clone+0xdc/0x590 [ 1172.825806] __split_vma+0x17c/0x570 [ 1172.826273] __do_munmap+0x365/0x1260 [ 1172.826758] mmap_region+0x776/0x1590 [ 1172.827231] ? get_unmapped_area+0x2f0/0x420 [ 1172.827788] do_mmap+0xcdb/0x11e0 [ 1172.828223] vm_mmap_pgoff+0x198/0x1f0 [ 1172.828704] ? randomize_page+0xb0/0xb0 [ 1172.829205] ksys_mmap_pgoff+0x41c/0x560 [ 1172.829704] ? find_mergeable_anon_vma+0x250/0x250 [ 1172.830308] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1172.830957] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1172.831613] do_syscall_64+0x33/0x40 [ 1172.832071] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1172.832699] RIP: 0033:0x7f0ba9f97b62 [ 1172.833164] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1172.835416] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1172.836372] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1172.837254] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1172.838132] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1172.839006] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1172.839894] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 1172.997961] udc-core: couldn't find an available UDC or it's busy [ 1172.998876] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 11:18:31 executing program 7: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x408000, 0x0) read(r0, &(0x7f0000000100)=""/172, 0xac) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$inet6(r2, &(0x7f0000000700)={&(0x7f00000002c0)={0xa, 0x4e20, 0xf2, @private0, 0x7c}, 0x1c, &(0x7f0000000680)=[{&(0x7f0000000300)="25d0a4f9f262bd60ede23e3124843eae9052c723f4f9eff59bf43e3db85cdadc22864da5bf52ac", 0x27}, {&(0x7f0000000340)="f39ecd7fa0f2690355eb0cd98558188b2a2afba3dc950a29f319429aead26bbe9497e25f0171c300bcd53f7f98ee5442171ddb6083b33d46ac179647b9f167bd6ecd65fe660ffe2fa8bf4af6a4c7dc8e4fe2dd1405fb4629c26f3b195492518527d084f834e643f74472e7c8133ecc1fc4db8baed9edf0a4df00b2b0b5d58eec07234f697c2368573e436c223cdee099c4448f6a4ba8239620dfe5ea6423251a8478491ff658e1ad3bfc8b23796990", 0xaf}, {&(0x7f0000000400)="875434519480fb854a0190908e8f1352fff1a5f818de838320483b8483ca259944598f2ad33c114f2585c8ab6e7f679586963a20504622fb0635dc39905661df000c7affe190d73355c6e95db6e29455bcf17b5a04b0969dd5656f6931a4fbf1c8e40dfb97c7e09a53d654c4f14e9aeeee970e010fb07c702338390dab1bbcc3e3fafb8acc794039a9ecf0bfeabb13bbd5391e361a095ea39900b556f87634659440890a09062e749254", 0xaa}, {&(0x7f00000004c0)="14c46c6fa027c3fc5cfbd2ff4d6d1ca4c061b717a74b3414cefb94f3cd26fe2b5196f200fb00b6410fff7f89e83ed4cc13662f214bc7d2d3d6f5ba7b8533ca1d5646c47283fcde866d98d095fa4daf77b23e22f2c720d559834df5cf4b7a9a42e013371730fa64f997ded5437add491af238579540b08cfb062113", 0x7b}, {&(0x7f0000000540)="27693afc6a5183be3e0644c534c665f3319e22e6a210dd93418a0b18695ffd5196bbed840c0a83b100f0a524f8c0c0eae8fc4b070ac1034bbd206c156bcee6b0904e2c19bacf6a0646128b14fa419c4d040b3a6be8f622be33d1b3aa6ed3e09826efe94de04721a88cdc949c343399e18bb329f9cb17af1641bc68ae1ef545e0ae06eb1402e43533f20d5ff23a4d18ad0897a53fbf104c3631ecef753d6cea1fd8db3857441718190f34d1a33b138cbc7b40426f715384af3dfced2696c642d9a5923ae0cc2e875bc6027c963fb0204c0f586c3823d8777e430848dcd3eaea8d9e349e82c21b27ad63cd9df635bee289", 0xf0}, {&(0x7f0000000640)="bc9ee5f11dea", 0x6}], 0x6, 0xfffffffffffffffc}, 0x4004) r3 = openat2(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)={0x4000, 0xa, 0x6}, 0x18) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r3, 0xc0189378, &(0x7f0000000800)=ANY=[@ANYBLOB="0100000001000000180000006b345b74c55e135e95da8223da39800947bc8472d0f17e30430f79f4afb1a4af1a297c51c94eedc2218a1db4c7f2fb1df6976d477fb5bd920a1bf25305848365af125302dddde6f230cbbaeef94610a1dc9e5631942e571e4d45e2695f9976a5f7cbf497fb3b3e13a2e588750b4d28044ba63753fe45ab71bbca475b91bf967c99d21cc79f750db89165cd30f02994a02cc7241dd9a8c3", @ANYRES32=r3, @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00./file0\x00']) fsetxattr$security_ima(r4, &(0x7f0000000780), &(0x7f00000007c0)=@md5={0x1, "c1073674eec608a38cd867e25452980b"}, 0x11, 0x3) setsockopt$inet6_tcp_buf(r3, 0x6, 0x1a, &(0x7f0000000200)="472252ff2e8b044f80e65eebec85762e257052dc541e5a9f88358e1ef6847a28fdfc5e56af6e9e7b3818118d3e75acff2ef39292dd4a01b0b615634a538c239e7a7d01df00a2a0bad2bf5721d84f55a06da9a630a7025ed9bd2fdcb98963a8434240bee602ee4290f041a7ece5b63144b73e65afdc718823773f6d69f3b3663a7b57fd066abbd24763f71bba815c2eab", 0x90) 11:18:31 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() tkill(r0, 0x7) setpriority(0x1, r0, 0x1) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x14, 0x60, 0xc21, 0x0, 0x0, {0x22}}, 0x14}}, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0xfd, 0x1, 0x6a, 0x5, 0x0, 0x2, 0x21204, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x81, 0x2}, 0x402, 0x9, 0x6e, 0x4, 0x800, 0x1, 0x400, 0x0, 0x7, 0x0, 0x8}, r0, 0xf, r2, 0x1) r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000180), 0x1b00) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r3, 0xc08c5335, &(0x7f0000000000)={0xfffffff7, 0x8, 0x1, 'queue1\x00', 0x7}) 11:18:31 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = creat(0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, r2) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000100)={0x0}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r3, 0xc018937d, &(0x7f0000000340)=ANY=[@ANYBLOB="001800007bc2000000000000b9ab2b3b8d7d4ebbce54cdb6a461c1df8be3a0642cf5dc46855e3ace55d874c740080d888b96e4757e36cc210045cb6fc11ef0a47669756aef14d6673fa1ff20091748b7a93ee050ba01fce417472c6e66436b65130539259cabb26a8cf4a3d10c128e096410313c9d9adcdce087d7a47bc9d20f094728a0e7e3421d17d84cadda33dcd71483e2f4a2ec9a97f0949f3b6b7780ad8b855bdf07d3d2b9070a70", @ANYRESDEC=r4]) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000100)={r4, 0x3, r0, 0x5, 0x80000}) r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x111040, 0x0) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r5, 0x6, 0x21, &(0x7f0000000040)="7acdf80abf13f1370f0fcf1aaae52b73", 0x10) 11:18:31 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 65) 11:18:31 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000400), 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:18:31 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0xffffffff, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:18:31 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:18:31 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) [ 1186.325360] FAULT_INJECTION: forcing a failure. [ 1186.325360] name failslab, interval 1, probability 0, space 0, times 0 [ 1186.326771] CPU: 0 PID: 7194 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1186.327601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1186.328627] Call Trace: [ 1186.328954] dump_stack+0x107/0x167 [ 1186.329401] should_fail.cold+0x5/0xa [ 1186.329870] ? vm_area_dup+0x78/0x290 [ 1186.330339] should_failslab+0x5/0x20 [ 1186.330805] kmem_cache_alloc+0x5b/0x310 [ 1186.331301] ? SOFTIRQ_verbose+0x10/0x10 [ 1186.331818] vm_area_dup+0x78/0x290 [ 1186.332273] ? find_held_lock+0x2c/0x110 [ 1186.332776] ? __vma_adjust+0x612/0x25b0 [ 1186.333280] ? lock_downgrade+0x6d0/0x6d0 [ 1186.333795] ? find_held_lock+0x2c/0x110 [ 1186.334305] ? up_write+0x191/0x550 [ 1186.334756] ? downgrade_write+0x3a0/0x3a0 [ 1186.335271] ? anon_vma_interval_tree_remove+0xb34/0xf30 [ 1186.335945] ? vm_area_alloc+0x110/0x110 [ 1186.336444] ? __vma_adjust+0xc11/0x25b0 [ 1186.336952] ? vmacache_find+0x55/0x2a0 [ 1186.337436] __split_vma+0xa8/0x570 [ 1186.337882] __do_munmap+0xf40/0x1260 [ 1186.338355] mmap_region+0x776/0x1590 [ 1186.338830] ? get_unmapped_area+0x2f0/0x420 [ 1186.339381] do_mmap+0xcdb/0x11e0 [ 1186.339834] vm_mmap_pgoff+0x198/0x1f0 [ 1186.340313] ? randomize_page+0xb0/0xb0 [ 1186.340809] ksys_mmap_pgoff+0x41c/0x560 [ 1186.341306] ? find_mergeable_anon_vma+0x250/0x250 [ 1186.341908] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1186.342557] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1186.343191] do_syscall_64+0x33/0x40 [ 1186.343651] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1186.348327] RIP: 0033:0x7f0ba9f97b62 [ 1186.348779] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1186.350996] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1186.351935] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1186.352801] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1186.353672] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1186.354533] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1186.355399] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:18:31 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x8) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:18:31 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) syz_io_uring_setup(0x2bdc, &(0x7f0000000000)={0x0, 0xf06a, 0x0, 0x1, 0x10d}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r3 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x3f, 0x1, &(0x7f0000000300)=[{&(0x7f0000000200)="a4aef1ad7c034b63aa438396ae747607800853d884d3a352b8431cb4ff119369fc3276f0229d5ca2ce70d75f16e0ac82c4a3b968763066eacd4695a499a3220f713353a08a8493fed9ad4084cf6f8c3c103171f9e4a86b078d35c374633478579c5b2b81eb1ece74073392d1375bb46c9e77886b4fe803d0fd49f7a42825c6ca78d8932114d4b9d46d9cd28ec6cfb9188572d7ac9d93055348ac6269cd8a50dba6cfb893c91a9f3d0eb23f76ba446eac2c578fb917c63bec9cca2dfa235c35f08ecbf190344e619021cab629113612426b6d", 0xd2, 0x74}], 0x2009001, &(0x7f0000000340)={[{@jqfmt_vfsv0}, {@data_journal}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@min_batch_time={'min_batch_time', 0x3d, 0x6}}, {@journal_dev={'journal_dev', 0x3d, 0x9}}], [{@pcr={'pcr', 0x3d, 0x1b}}, {@smackfsroot={'smackfsroot', 0x3d, '}#--]'}}, {@uid_gt={'uid>', 0xee01}}, {@smackfshat}, {@uid_lt}, {@smackfshat={'smackfshat', 0x3d, '*'}}]}) syz_io_uring_submit(r0, r2, &(0x7f0000000580)=@IORING_OP_STATX={0x15, 0x1, 0x0, r3, &(0x7f0000000440), &(0x7f0000000540)='./file0\x00', 0x84, 0x4000, 0x1}, 0x7ff) socket$inet6_tcp(0xa, 0x1, 0x0) 11:18:31 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000400), 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:18:31 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0xf, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:18:31 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 66) [ 1186.498596] FAULT_INJECTION: forcing a failure. [ 1186.498596] name failslab, interval 1, probability 0, space 0, times 0 [ 1186.500044] CPU: 0 PID: 7213 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1186.500878] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1186.501882] Call Trace: [ 1186.502207] dump_stack+0x107/0x167 [ 1186.502651] should_fail.cold+0x5/0xa [ 1186.503117] ? create_object.isra.0+0x3a/0xa20 [ 1186.503681] should_failslab+0x5/0x20 [ 1186.504159] kmem_cache_alloc+0x5b/0x310 [ 1186.504657] create_object.isra.0+0x3a/0xa20 [ 1186.505190] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1186.505810] kmem_cache_alloc+0x159/0x310 [ 1186.506318] vm_area_dup+0x78/0x290 [ 1186.506765] ? find_held_lock+0x2c/0x110 [ 1186.507261] ? __vma_adjust+0x612/0x25b0 [ 1186.507772] ? lock_downgrade+0x6d0/0x6d0 [ 1186.508280] ? find_held_lock+0x2c/0x110 [ 1186.508779] ? up_write+0x191/0x550 [ 1186.509221] ? downgrade_write+0x3a0/0x3a0 [ 1186.509733] ? anon_vma_interval_tree_remove+0xb34/0xf30 [ 1186.510385] ? vm_area_alloc+0x110/0x110 [ 1186.510878] ? __vma_adjust+0xc11/0x25b0 [ 1186.511379] ? vmacache_find+0x55/0x2a0 [ 1186.511872] __split_vma+0xa8/0x570 [ 1186.512314] __do_munmap+0xf40/0x1260 [ 1186.512783] mmap_region+0x776/0x1590 [ 1186.513249] ? get_unmapped_area+0x2f0/0x420 [ 1186.513781] do_mmap+0xcdb/0x11e0 [ 1186.514206] vm_mmap_pgoff+0x198/0x1f0 [ 1186.514679] ? randomize_page+0xb0/0xb0 [ 1186.515168] ksys_mmap_pgoff+0x41c/0x560 [ 1186.515660] ? find_mergeable_anon_vma+0x250/0x250 [ 1186.516274] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1186.516910] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1186.517535] do_syscall_64+0x33/0x40 [ 1186.517987] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1186.518608] RIP: 0033:0x7f0ba9f97b62 [ 1186.519063] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1186.521298] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1186.522220] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 11:18:31 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4000008, 0x8010, 0xffffffffffffffff, 0x0) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x10000000) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x3, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x1, {0x0, r2}}, 0xffff) socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0x1010, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(r3, r5, &(0x7f0000000440)=@IORING_OP_WRITEV={0x2, 0x1, 0x2004, @fd_index=0x5, 0x1f, &(0x7f00000003c0)=[{&(0x7f0000000100)="35982470389262a56a047c42ecf5dc506315ea05f9cb358b0f289a3fc1de2670b72fb6d0744a0a60a0186cceca6654e5255b05ea85ea84da42866e191f8a260957a3761421a0a5135b8ad11136ac2edf06a6ab1e3027a2a67fa6c205c34026c8d1510f193ed3f82b93046a65cceeb4b650f822e4e650a9da05907b86e2aed6f5f418c58dd8d5e139026f3b", 0x8b}, {&(0x7f00000001c0)="49a1062f8a3cfd0e6f2c44b8d4573c6d2e8254159bcf3c6532165c5b7f98881c3ea32986b9ecb4f60eaabf14bbe34acf99725a0b2dc465b6cee148b97729333222c468288ddddeb88b0b7b11da9e92e149096d67aa46121b350671f0bd7629fafe01892c4f72823e6c2d7819ec6fe9e0a77dfe81c92412", 0x77}, {&(0x7f0000000240)="b4f2037343196f3b6a3c7e343c29c131f23cf22bbf66af1f1d2d3fe9fef306e014b15a5dc7e1835d54d2ed963c5340534e654b7391f92a2a08b44199d7b32272a5d1802b3bcba5d670e436f5c873ec5ffdfe10a8a9b13c043a864c8788efa01b3ac0e6f25acba11b19f95b16c94bfd6d5e90bbf56c7b306270c9df8e0d8bd1f15330fef44cf90162a5677df79e350c846161cdae3c82e781", 0x98}, {&(0x7f0000000040)="c7a85e5d114d05aa1388fc896d9c4aea84fe5cd964f489b3", 0x18}, {&(0x7f0000000300)="83cf031eea2c6667612e664783c5e2c8203a921b85e39daeae2a043b3fbd5c7e8d", 0x21}, {&(0x7f0000000340)="09d2a54ee5159096a7a0cdef88a3c805b9a268f1334a8389d0b1f308b69d2ec25c97212b463dac5a0200ad1c8bbcdb11b4bc453d1661aff990c2354e6dd09d63a11bde6abb5bcbc8e95c5c78bfb4f6b6137d892bc418f56794877531d4a1f3df896c69a01e3138edf96376f7d9c840", 0x6f}], 0x6, 0x9, 0x0, {0x1, r2}}, 0x10000) [ 1186.523088] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1186.523979] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1186.524839] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1186.525703] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:18:31 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() tkill(r0, 0x7) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x4a, 0x3, 0x4, 0x0, 0x0, 0x7ff, 0x2482, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xc37, 0x1, @perf_config_ext={0x3, 0x6a52c43e}, 0x40c4, 0x6, 0x81, 0x5, 0x3, 0x2, 0x7, 0x0, 0x1, 0x0, 0x5}, r0, 0xa, 0xffffffffffffffff, 0x1) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) r1 = clone3(&(0x7f0000000500)={0x200, &(0x7f0000000280), &(0x7f0000000300)=0x0, &(0x7f0000000340), {0xe}, &(0x7f0000000380)=""/103, 0x67, &(0x7f0000000400)=""/148, &(0x7f00000004c0)=[r0, r0, r0], 0x3}, 0x58) rt_tgsigqueueinfo(r2, r0, 0xa, &(0x7f0000000580)={0x32, 0x2, 0x8}) r3 = syz_open_dev$vcsu(&(0x7f0000000000), 0x3f, 0x80000) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f00000001c0)={0x1, 0x4, 0x1, 'queue1\x00', 0xfffffffd}) r4 = gettid() tkill(r4, 0x7) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000800)='/proc/keys\x00', 0x0, 0x0) clone3(&(0x7f0000000840)={0x81030100, &(0x7f0000000600), &(0x7f0000000640), &(0x7f0000000680), {0x2d}, &(0x7f00000006c0)=""/136, 0x88, &(0x7f0000000780), &(0x7f00000007c0)=[r1, r1, r4], 0x3, {r5}}, 0x58) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f0000000080)={0x5, 0x80, 0xa2, 0x9, 0x3, 0x0, 0x0, 0x80, 0x204, 0xa, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x90, 0x0, @perf_bp={&(0x7f0000000040), 0x1}, 0x2240, 0xfffffffffffffff8, 0x7114d6ad, 0xb, 0x3ff, 0xff, 0x4, 0x0, 0x7f, 0x0, 0x80}) 11:18:31 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000400), 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:18:31 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x4, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, @perf_config_ext={0x9, 0xb3}}, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) recvmmsg$unix(r2, &(0x7f0000003a80)=[{{&(0x7f0000000440)=@abs, 0x6e, &(0x7f0000002740)=[{&(0x7f00000004c0)=""/140, 0x8c}, {&(0x7f0000000580)=""/113, 0x71}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f0000001600)=""/4096, 0x1000}, {&(0x7f0000002600)=""/148, 0x94}, {&(0x7f00000026c0)=""/103, 0x67}], 0x6, &(0x7f00000027c0)=ANY=[@ANYBLOB="24000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000028000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000034000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="00008975"], 0x130}}, {{&(0x7f0000002900)=@abs, 0x6e, &(0x7f00000039c0)=[{&(0x7f0000002980)=""/4096, 0x1000}], 0x1, &(0x7f0000003a00)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x78}}], 0x2, 0x120, &(0x7f0000003b00)={0x0, 0x989680}) sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0xd8, 0x0, 0x1, 0x70bd2c, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x4}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x2}}]}, 0xd8}, 0x1, 0x0, 0x0, 0x11}, 0x40) connect$inet(r2, &(0x7f0000000200)={0x2, 0x4e23, @rand_addr=0x64010102}, 0x10) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000000)=0x0) r4 = socket$packet(0x11, 0x2, 0x300) r5 = fsmount(0xffffffffffffffff, 0x1, 0x5) ioctl$PERF_EVENT_IOC_QUERY_BPF(r5, 0xc008240a, &(0x7f0000000040)={0x3, 0x0, [0x0, 0x0, 0x0]}) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) sendmsg$nl_generic(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) sendmsg$DEVLINK_CMD_TRAP_GET(r7, &(0x7f0000003c80)={&(0x7f0000003b40)={0x10, 0x0, 0x0, 0x12020}, 0xc, &(0x7f0000003c40)={&(0x7f0000003b80)={0x88, 0x0, 0x300, 0x70bd25, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x88}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r4, 0xc0c89425, &(0x7f0000000100)={"f9962d1a884a52fd222f87b19283f5dc", 0x0, r3, {0x3, 0x878d}, {0x3, 0x1002}, 0x6, [0x0, 0x1, 0x8000, 0x0, 0x3f, 0x95c, 0x8, 0x6, 0x4, 0xc9, 0x1, 0x8, 0x10000000000000, 0x80000001, 0x400, 0x7fff]}) socket$inet6_tcp(0xa, 0x1, 0x0) [ 1186.643039] netlink: 'syz-executor.7': attribute type 19 has an invalid length. [ 1186.700271] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7227 comm=syz-executor.7 [ 1186.733986] netlink: 'syz-executor.7': attribute type 19 has an invalid length. [ 1186.766833] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7227 comm=syz-executor.7 [ 1187.496742] netlink: 'syz-executor.7': attribute type 19 has an invalid length. [ 1187.547913] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7227 comm=syz-executor.7 [ 1187.548783] netlink: 'syz-executor.7': attribute type 19 has an invalid length. [ 1187.549910] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=7238 comm=syz-executor.7 11:18:46 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 67) 11:18:46 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x490, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x400, 0x0, 0x0, 0x9, 0xc5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) [ 1200.742456] audit: type=1400 audit(1731237526.057:15): avc: denied { tracepoint } for pid=7240 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 11:18:46 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:18:46 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x10, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:18:46 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() tkill(r0, 0x7) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x4, 0x2, 0xff, 0x1, 0x0, 0x6, 0x8800, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x6, 0x9}, 0x18000, 0x2, 0x1, 0x4, 0x2, 0x4, 0x6, 0x0, 0x8, 0x0, 0x5}, r0, 0xffffffffffffffff, r3, 0xb) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x81, 0xe3, 0x81, 0x5, 0x0, 0x4, 0x44020, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_config_ext={0xd2f, 0x1f}, 0x18000, 0x0, 0x0, 0x5, 0x1000, 0x9, 0x5, 0x0, 0x8, 0x0, 0x5}, r0, 0xe, r1, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:18:46 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:18:46 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:18:46 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 1200.770678] netlink: 'syz-executor.2': attribute type 19 has an invalid length. [ 1200.780079] FAULT_INJECTION: forcing a failure. [ 1200.780079] name failslab, interval 1, probability 0, space 0, times 0 [ 1200.785587] CPU: 0 PID: 7249 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1200.786473] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1200.793113] Call Trace: [ 1200.793469] dump_stack+0x107/0x167 [ 1200.793956] should_fail.cold+0x5/0xa [ 1200.794466] ? anon_vma_clone+0xdc/0x590 [ 1200.795003] should_failslab+0x5/0x20 [ 1200.795500] kmem_cache_alloc+0x5b/0x310 [ 1200.796053] anon_vma_clone+0xdc/0x590 [ 1200.800450] __split_vma+0x17c/0x570 [ 1200.800947] __do_munmap+0xf40/0x1260 [ 1200.801460] mmap_region+0x776/0x1590 [ 1200.801966] ? get_unmapped_area+0x2f0/0x420 [ 1200.802541] do_mmap+0xcdb/0x11e0 [ 1200.803003] vm_mmap_pgoff+0x198/0x1f0 [ 1200.803522] ? randomize_page+0xb0/0xb0 [ 1200.804077] ksys_mmap_pgoff+0x41c/0x560 [ 1200.804616] ? find_mergeable_anon_vma+0x250/0x250 [ 1200.805266] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1200.805949] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1200.806629] do_syscall_64+0x33/0x40 [ 1200.807128] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1200.807795] RIP: 0033:0x7f0ba9f97b62 [ 1200.808308] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1200.810703] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1200.811693] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1200.812630] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1200.813561] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1200.814490] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1200.815421] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:18:46 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, r1, 0x0) openat(r1, &(0x7f0000000000)='./file0\x00', 0x8442, 0x130) socket$inet6_tcp(0xa, 0x1, 0x0) 11:18:46 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) fallocate(r1, 0x20, 0x9681, 0xff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x200000000000, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200, 0x6}, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffff, 0x101}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000040)=0x1, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r3, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e21, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x80}, 0x9) 11:18:46 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1200.875532] netlink: 'syz-executor.7': attribute type 19 has an invalid length. [ 1200.893192] netlink: 'syz-executor.7': attribute type 19 has an invalid length. 11:18:46 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) r1 = gettid() tkill(r1, 0x7) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x3}}, './file0\x00'}) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000100), 0x4) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x2, 0x1, 0x10, 0x8, 0x0, 0x7fff, 0x0, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x6, 0x2, @perf_config_ext={0x2f313f9a, 0x18}, 0x14800, 0x200, 0x7, 0x7, 0x8, 0x100, 0x87c8, 0x0, 0x3, 0x0, 0x9}, r1, 0x6, 0xffffffffffffffff, 0x1) ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(r0, 0xc0305302, &(0x7f0000000080)={0x3f, 0x7f, 0x8, 0x3ff, 0x5, 0x5}) 11:18:46 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1b, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:18:46 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 68) 11:18:46 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000040)={@empty, 0x4b}) perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x9, 0x81, 0x3, 0x7, 0x0, 0x80000001, 0x12492, 0xf, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x4, 0x6, @perf_bp={&(0x7f0000000000), 0x3}, 0x180, 0x10000, 0xbd62, 0x6, 0xc91, 0x8, 0x9, 0x0, 0x6, 0x0, 0x80}, 0x0, 0x1, r0, 0x2) r2 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH(r2, 0xd0009411, &(0x7f0000000180)={{0x0, 0x1000, 0x8, 0x800, 0x9, 0x2, 0x1, 0x3, 0x142, 0x9, 0x7fffffff, 0x3, 0x1, 0x2, 0x8001}}) [ 1201.010890] FAULT_INJECTION: forcing a failure. [ 1201.010890] name failslab, interval 1, probability 0, space 0, times 0 [ 1201.012466] CPU: 1 PID: 7273 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1201.013372] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1201.014452] Call Trace: [ 1201.014808] dump_stack+0x107/0x167 [ 1201.015292] should_fail.cold+0x5/0xa [ 1201.015807] ? create_object.isra.0+0x3a/0xa20 [ 1201.020439] should_failslab+0x5/0x20 [ 1201.020944] kmem_cache_alloc+0x5b/0x310 [ 1201.021487] create_object.isra.0+0x3a/0xa20 [ 1201.022061] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1201.022729] kmem_cache_alloc+0x159/0x310 [ 1201.023283] anon_vma_clone+0xdc/0x590 [ 1201.023826] __split_vma+0x17c/0x570 [ 1201.024329] __do_munmap+0xf40/0x1260 [ 1201.024847] mmap_region+0x776/0x1590 [ 1201.025353] ? get_unmapped_area+0x2f0/0x420 [ 1201.025913] do_mmap+0xcdb/0x11e0 [ 1201.026352] vm_mmap_pgoff+0x198/0x1f0 [ 1201.026868] ? randomize_page+0xb0/0xb0 [ 1201.027406] ksys_mmap_pgoff+0x41c/0x560 [ 1201.027948] ? find_mergeable_anon_vma+0x250/0x250 [ 1201.028627] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1201.029300] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1201.029970] do_syscall_64+0x33/0x40 [ 1201.030471] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1201.031157] RIP: 0033:0x7f0ba9f97b62 [ 1201.031661] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1201.034079] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1201.035078] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1201.036016] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1201.036974] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1201.037924] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1201.038864] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:19:00 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0xfc) r1 = fcntl$getown(r0, 0x9) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x1, 0x1f, 0x0, 0x78, 0x0, 0xff, 0x14000, 0x9, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, 0x65b1fa39b8da796b, @perf_config_ext={0xc0, 0x9}, 0x480, 0x1d9e, 0x7fff, 0x6, 0x9, 0xffffffff, 0x3, 0x0, 0x0, 0x0, 0xc40}, r1, 0xffffffffffffffff, r0, 0xa) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:19:00 executing program 7: syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000240)={0x2c, &(0x7f0000000100)={0x40, 0x30, 0x94, {0x94, 0x7, "c39f9ff2eff4b308ace6949fb9ea28469d5007f34008d88a17daab2a3f4b141e30e0455e51de6cd8d17fabf535e77fc0d69b46ff0962c265499363d3738061ccf97f7c0c4923c7cdae7f3a6b56ee9ac1288c00bce2941b50d4c7e4a8edf3fd653b20093eeefae4d8c661faea7c6cd726e554ba99a1b813fcee65dbe6229fba8d22f8e56d93c90c19ae6099e6df429586e299"}}, &(0x7f0000000000)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x445}}, &(0x7f0000000040)={0x0, 0xf, 0x1f, {0x5, 0xf, 0x1f, 0x3, [@generic={0xc, 0x10, 0x2, "d35a6d6f629c91419e"}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0xc, 0xd3, 0x2, 0x6, 0x6, 0x2a}]}}, &(0x7f00000001c0)={0x20, 0x29, 0xf, {0xf, 0x29, 0x80, 0x60, 0x7f, 0x80, "33a30140", "1beb0780"}}, &(0x7f0000000200)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x2, 0x0, 0x80, 0x3, 0xd1, 0x1, 0xeef}}}, &(0x7f0000000700)={0x84, &(0x7f0000000280)={0x20, 0x12, 0x93, "b72c06a6d57b19593f103c19ab05c0fad7714ddb925991e27756d81fe5a91f9bb66a4aa20c1dcaf33d81599f3200d58e65c8722db6072bf43785496d08b0745f424db5d52c8aac9801bef0178a2e8f30964689ee0384bce98aa961b39e43a61e8b4d84b8b1edfc2513248ef46249b5c7ec6ddd7a877867ea2dfd47e4c98674c97ae8a0429582bcb1076e29bc4e22cf0b1d36dd"}, &(0x7f0000000340)={0x0, 0xa, 0x1, 0xff}, &(0x7f0000000380)={0x0, 0x8, 0x1, 0x1}, &(0x7f00000003c0)={0x20, 0x0, 0x4, {0x1, 0x1}}, &(0x7f0000000400)={0x20, 0x0, 0x8, {0x100, 0x20, [0xff0]}}, &(0x7f0000000440)={0x40, 0x7, 0x2, 0x2}, &(0x7f0000000480)={0x40, 0x9, 0x1, 0x9}, &(0x7f00000004c0)={0x40, 0xb, 0x2, "7da8"}, &(0x7f0000000500)={0x40, 0xf, 0x2, 0x500}, &(0x7f0000000540)={0x40, 0x13, 0x6, @multicast}, &(0x7f0000000580)={0x40, 0x17, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, &(0x7f00000005c0)={0x40, 0x19, 0x2, "1ee2"}, &(0x7f0000000600)={0x40, 0x1a, 0x2}, &(0x7f0000000640)={0x40, 0x1c, 0x1}, &(0x7f0000000680)={0x40, 0x1e, 0x1, 0xff}, &(0x7f00000006c0)={0x40, 0x21, 0x1, 0x2}}) r0 = syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}]}}]}}, &(0x7f0000001400)={0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x91, &(0x7f0000000bc0)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x7f, 0x1, 0x1, 0x4, 0x60, 0x5, [{{0x9, 0x4, 0x0, 0x6, 0x2, 0x2, 0x6, 0x0, 0x81, {{0xa, 0x24, 0x6, 0x0, 0x0, "ff4306b7c5"}, {0x5, 0x24, 0x0, 0x1ff}, {0xd, 0x24, 0xf, 0x1, 0x3, 0x2, 0x4, 0x1f}, [@mdlm={0x15, 0x24, 0x12, 0x4}, @mbim_extended={0x8, 0x24, 0x1c, 0xc073, 0x0, 0xe2db}, @country_functional={0x6, 0x24, 0x7, 0xcc, 0x8}, @network_terminal={0x7, 0x24, 0xa, 0x2, 0x8, 0x0, 0x2}, @call_mgmt={0x5, 0x24, 0x1, 0x2, 0x7}, @network_terminal={0x7, 0x24, 0xa, 0x50, 0x0, 0x8, 0x2}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x40, 0x3, 0x1, 0x1}}], {{0x9, 0x5, 0x82, 0x2, 0x20, 0x3, 0x4, 0x1f}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0x3f, 0x3, 0xe9}}}}}]}}]}}, &(0x7f0000000d00)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x310, 0x1f, 0x5, 0x8, 0x40, 0x3}, 0x5, &(0x7f0000000c80)={0x5, 0xf, 0x5}, 0x1, [{0x31, &(0x7f0000000cc0)=@string={0x31, 0x3, "b060e07b1d57fe7e5348d8d287d5614ef96132b2e2e0a8e7cd766a9c875e1d2df33ac2d8918a9f0abe0cba53b589cd"}}]}) syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) syz_usb_ep_write(r0, 0x82, 0x5, &(0x7f0000002340)='hello') syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000840)={0x14, &(0x7f00000007c0)={0x79191aff80e0dbdb, 0xf, 0x16, {0x16, 0x30, "4f722cc1245e114066d843e607043c23ccc6b8bb"}}, &(0x7f0000000800)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000940)={0x1c, &(0x7f0000000880)={0x0, 0x10, 0x1, "97"}, &(0x7f00000008c0)={0x0, 0xa, 0x1, 0x9}, &(0x7f0000000900)={0x0, 0x8, 0x1, 0x9}}) syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000a00)={0x14, &(0x7f0000000980)={0x20, 0xc, 0x27, {0x27, 0x24, "fc083dc7595a310d30335c56346a52bc47e659eb8b8e4ce13ad6cc2a291d86bb1b9ed0b432"}}, &(0x7f00000009c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000b80)={0x1c, &(0x7f0000000a40)={0x40, 0x7, 0xa9, "77ca341f7ea393d1f93c93345b618c70d793ad31a52af2721a7baf828a84a4704a8f21c1f6893f4647730b946dab023f51f29a69151f918c19f35844e85e614082c7faf92a3a1204e7a0756e27284c6cceb1824a0294ecb1fc50d7bc1c35f6a01bda767ab8978156f0c071bb2516912fa17be95bb2ff02cbd7c4af93ca360bc322bbb3471a00d816cee23bb92c3d15b4a6acc3174db5e255f2b89bf1c0d6bc65fa7da9328383cca648"}, &(0x7f0000000b00)={0x0, 0xa, 0x1, 0x3}, &(0x7f0000000b40)={0x0, 0x8, 0x1, 0xc7}}) r1 = syz_usb_connect$printer(0x4, 0x36, &(0x7f0000000d40)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xa0, 0x70, 0x4, [{{0x9, 0x4, 0x0, 0x2, 0x1f, 0x7, 0x1, 0x1, 0x5, "", {{{0x9, 0x5, 0x1, 0x2, 0x40, 0x71, 0x7, 0x3}}, [{{0x9, 0x5, 0x82, 0x2, 0x8, 0x0, 0x0, 0xf9}}]}}}]}}]}}, &(0x7f0000000f80)={0xa, &(0x7f0000000d80)={0xa, 0x6, 0x250, 0x6, 0x4, 0x0, 0x8, 0x1}, 0xd4, &(0x7f0000000dc0)={0x5, 0xf, 0xd4, 0x3, [@ss_container_id={0x14, 0x10, 0x4, 0x4, "47170f441745bdd7f622fe4e39e3cf07"}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x8, 0x3f, 0x4, 0x98}, @generic={0xb1, 0x10, 0xa, "f11bff56b20458abdd89aea0daca259bed3b500f9301b8e80758df1482887b0f55a81fefa3d0019d008d2091042420a78b1d9bbfaab0519687762bff4776cccbc4e1fb80fcba6ef240f958885028ca3162c8e4a9795fd7c57341c37b2c9f6671be0eeee77cb8980be6e503a61142b2ac279be1516b59ff35f1e6e45ded725c2b02b228c8c406f825aafaa8d29d2ca7216f8191aac4a568ef017f15d0a812117034adf732f555a3263040fa465eaf"}]}, 0x2, [{0x5a, &(0x7f0000000ec0)=@string={0x5a, 0x3, "2c53b5daff3720274d59b7ce1ed7fdc3e440e877ebb21475efca71f2d096bcea5fd0f47e239e3800c49f6eb25f6fb842eaa9f50a298d353ba97cfac8a93a059f6a263b1c26126d37a169e728a932d8a525f92b11ec979dfc"}}, {0x4, &(0x7f0000000f40)=@lang_id={0x4, 0x3, 0x1809}}]}) syz_usb_disconnect(r1) socket$inet6_tcp(0xa, 0x1, 0x0) 11:19:00 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:19:00 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:19:00 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup(r0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000003ec0)={'team0\x00', 0x0}) sendmmsg$inet6(r2, &(0x7f0000004580)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7}, 0x1c, &(0x7f0000001580)=[{&(0x7f0000000040)="74ef8c68b2e6e9652c3f843eb0cb6c31c1e38769556660a995cfd2bcff9cdf8ed5f0b74c27675d3068512c7ba26e391fc59f3dd1bb789f6b244253", 0x3b}, {&(0x7f0000000100)="092f6618febf17572ce7a388a44a8f0b238d0bfc8aacdafca3b23356ce502bce1e04db88ba6b3b8bc4a8bc13256a497bf635e9e7d5cbff25b3cc739bec3d455c254afb0ae50ee57087c9755fcf4d87dcba0746abcc8d51a77cbb2a33f4ef39ea7a601cd9303a284b94ac0e44e4a5fd7597eb2f5df4e6d8f11c7e99731efab43143a2d5fb83e7ae1ebc061329e1d0c717b1c738", 0x93}, {&(0x7f00000001c0)="62d588599226926d9d8d21a640f5eddfc099a02cfb771bfd78213b801e11bb6df562e30b828b2a66de49c0c215a4c7f08ef29e0422a7907889b35d2fedc8f7878c1b384938e0985dbc4a7c397ae81e28616b396af52b753f01375ede299e289b683a239df4f49c05cc419984ba7921bcd84e8493c4712e0802d045b8190b61a5700867e578607d585160df85a53f7fbb72a40579857a1ed58fabce8d376de9274ec428551a2ddfbc245811b2a880368e2fee6ececeb5440a086a003e77823f27a4a4412f3b9eca321c883c1ceee28124d32b514e69dfb3d59a", 0xd9}, {&(0x7f00000002c0)="98e2427c73a6b44b4ed9b7cfc3e8bf6e7f17535143b89ad2bbac8e0c5ff9e9f3f19806994a9f817bfba0b24599e60d99e40113554a934aa9a7e673b0511980aba45ca5b8a3b931b684fa1ac77c8b747b332e9d3d5f3ce44fc32f90d934b43191eee6ba38142a97371b056c032ea55277e801fc78eed2202e9ecb30facbc0b59410e33dbd89be2a1f0ede08aa4be095dd0a51a4476f6122760988121b8e82bc58d3c5e7e2a8b7bd8aa1e57aa119790cbaa8a674148c5a6d9324fd9e2d23be92a0692da8d522d34e9b4857361e716e3aa47defb9108eacf590a647a9822a5e77d651e551f107ce5a92102276", 0xeb}, {&(0x7f00000003c0)="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", 0x1000}, {&(0x7f00000013c0)="7712f521999f801c15fa7fa72d37fa7529ff8642aff9990d5b11f36b4a72d812c707492419d613cb461bdf", 0x2b}, {&(0x7f0000001400)="442e96c45f1aefe22a52669058ed2efa00f449c057ed4a1d40a375e527c6cfd35fe20ce78694e251de728f4e6eb50bd62d03295630b7f352637f160f1a02a2e8c32e77218f5c3f95be14b7fd53d63ef3ab7db8e49f3a636a609a6859eba7ac0ece0808e3c9344b8278", 0x69}, {&(0x7f0000001480)="50bb85394488a9332fd924cd303f3781cf622174663bbcc10f6d8a9c6ac54a37845a4ae100553436db6bfdd2decb5a53f463d5b713b1f751d2001c26350abe170b9040222d62747b925da02a22303ebd70e6d9df28a5c7f6c381c5cc9828d109e106d4b87ed48973f195c56f386059fac3fe6c3514fc6a65aebd2b488816ac1df310186fccf3aeb9e2b80ee02ab6a66f4c0d8314a89f3af86d89e8253ec74a24c3380491142c", 0xa6}, {&(0x7f0000001540)="3bc798", 0x3}], 0x9}}, {{&(0x7f0000001640)={0xa, 0x4e21, 0x3f, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4}, 0x1c, &(0x7f0000001900)=[{&(0x7f0000001680)="875c4d9a779f52ca8d9cd5e58e1fb08599416e6063fe367ebedc13b760a96bf18795e21452552134922983e7bade5c822ac6a8f66309f5cd66cc52b78fcf17b1b487e088b2b92bb0f7bcd8957e9369f271623a45ee3496de0b2afd966e401031d2676070353cca07525d371e5e59f97a41900e6025f10d881bd437181a96cb254cceffb8d79a65452860d3288c2224e6db7b969431d261dd6032f881c1413a25d4e492f6b9bb391fee8dcaaddae1b778180a1cddf10012abffd3eed6d68cb8d8b3c9021e17601156a447e54d00a1d6913896bcb19eaf41f4296f36a0cffa9454de04be1770c041d382685098b0c13c8b1dc152c8a83c", 0xf6}, {&(0x7f0000001780)="ef358a77c496c08aa354ab65e2c2cac6dcc9587f1b1b8f04e26e4006c2122adc54a41e0aa8f5c350df5d4d1419677bac55a172d1508c9644ed253a01804f2128dbe9dad504fb9c259fabd0bd32dc54af72b3d84c7121f52343d64f3dbd8f58b32013084d71e6cc7287725548901c5a0d824c8df3add5ce468964b346733075850b42d658c2c45a15aae9f907d200dc9024b8004c65184300e9754f735cd4aacdd1940301b1ef552512fc65f753", 0xad}, {&(0x7f0000001840)}, {&(0x7f0000001880)="ef4bdda5eb1e1b", 0x7}, {&(0x7f00000018c0)="9d3a7522", 0x4}], 0x5, &(0x7f0000001980)=[@hoplimit={{0x14, 0x29, 0x34, 0x6fab}}, @flowinfo={{0x14}}, @dontfrag={{0x14, 0x29, 0x3e, 0xfff}}, @dontfrag={{0x14, 0x29, 0x3e, 0x5fb6}}], 0x60}}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000001a00)="77532d97788e6a99f166fa2195c72d7db00e9f1d4579c0a70cdb422d753074eb77bb15c714723dda1755e347a30c1fd737c048bc7d518fbe7595ac108dfb4646aa51ba4e8ad6bac9164c11a8f2cd348a9a03208619ab7ba7c8a2a5ae99e827cd1ba7fc926103c744bc3214d1157389f6515c615b8d838e1e81af1ffb4267a85271de4eee8f871df58906a128fdf67f0de0e8d6547e0fdb37213aac365f9f5d64289db60868a8c29e08f2fcb5b544ee20bda04c03fd9f66a8e2db47d06316cccbe1", 0xc1}], 0x1, &(0x7f0000001b40)=[@rthdr={{0x38, 0x29, 0x39, {0x0, 0x4, 0x2, 0x8, 0x0, [@local, @ipv4={'\x00', '\xff\xff', @private=0xa010100}]}}}, @rthdrdstopts={{0x1a0, 0x29, 0x37, {0x3c, 0x30, '\x00', [@enc_lim={0x4, 0x1, 0x4}, @generic={0xfe, 0x84, "024f4fd3fa930f3f56a118ffbce229b7a8149eab9f8c414f9acf87a773580b85fff856ef9d9272273b5cbb9b110fa6c85b5764674d72bab523e4ed487f0755ad15dabf7110c8ee2b70ff7bbfe8d955d8a9cdd4f6d6a4c3954ee71f34dc035bf06a8f7e002a00b71c0c3d47ab3848b174e1c8ed2ee3f8605266ea2406e81fe44f38ba3fb0"}, @enc_lim={0x4, 0x1, 0x5b}, @calipso={0x7, 0x40, {0x2, 0xe, 0x0, 0xc06f, [0xa9d, 0x3, 0x3, 0x7, 0x9, 0x2, 0xdf7e]}}, @generic={0x9, 0xb0, "526a8dcc8d5d7fdf514fd85cbb27b8f1593a10a130aee598f8c0ed7aaeb4837d3616e72ab6a07cb6e83fd53ea4a7111dcfc3397000d6c4839191fada839ae4c46d66a00f4bda56022be0f7b2945ca56fe519e831329d147dbf6c7d339042018a25adba70bd02d846c06f0c919961731901a6ba2d26f7cdf892d98a1119d38cd77b31bbde189674cd001c683589c41f24ec5f31c9e604302c0c8c0f9a1c6e361adfe1ab2f30f368f8fa18f190fad8b2d3"}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x1}}, @hopopts={{0xc8, 0x29, 0x36, {0x67, 0x15, '\x00', [@generic={0xfc, 0xac, "64abf71ac80c5e8e4de586ad34ed93b93f95ad17bf0095eabc375d1816dc7a0070e7bb837abeab510317524be1638bb5169b37a184d37e42a5e5eac4fff286f5003920cf8dd19db4dd743a49bbea2de9eb036e6fd1887cb66a209aababeff01f3e6cb5ee4af31cd7b17afd44f6cf000b1f8b911f600febdb07b17b33ecd627093e6c462f9aecd6384f28b28d24405c4ed7f668d4c3d3fa64c0bb3cb0fa5a583b3d21492712e44627ada5eadd"}]}}}], 0x2b8}}, {{&(0x7f0000001e00)={0xa, 0x4e20, 0x4, @mcast2, 0x8}, 0x1c, &(0x7f0000002300)=[{&(0x7f0000001e40)="3319e6decca1828e621ae5c4a0fbb07875e0663823a9425a818f19ced8ac1950e9b73ebec15339b7b530ebbee797aa63b836356d6f7cd4020e44261fc1d607f5755d73b5e0de18d3514b87241c08e3b738ce8ec9a56e868ac63c87148b83bb8395e3d1db6b391b72cce490eee7e58431dbb88e4ac38a9393d86c7d03c91b9ae526e42cc9ebd3e4e442bfb040ead749d47b761cb3716895b9ac7107434dd958abb7b7cd3b8c256b5dd4011ff9d02788f30466f572c15daf25ccf0c71947c2f8f51be79efd95c6bd50755d61", 0xcb}, {&(0x7f0000001f40)}, {&(0x7f0000001f80)="d7e9a292405ab29edb2e294541307ffbb25619f64c522a093dd335e236a1c099c9a4e4bbd208c4b3d80d794a6ff12a6807ff30b5027ef31f42fda46ae204096518de54456cb1ce68b81c11a598ae44d51a4f4b510cda74f8950cd93a56e0a992ea41646b7cc4f7ba8d77ac2ef42944c52c4f361429a9fbfadb3db8f84be820c80234eee69bbc3069c6198740853e6d7c57f27b28d6386d8ff66993a09a1ed8f2ccfeb1bd16694b6534dd8a07d9767f0a8e8cf90f", 0xb4}, {&(0x7f0000002040)="6392c7069804dbd473ee7c8cd96a771991a76aa85bb3e3a863c95ca260a6562973ec07b45a0dd9ed9573ee2b53a201e65e45e8db7d4be63444077d47bda3c03adae38bfebbcc957737c0cc89c195b9434676978197cab65532914b24eb4e2b889b89de9d9817caad3665d3f0c4a23c424948aa89232c2abe984b44a2", 0x7c}, {&(0x7f00000020c0)="09cfd3649f98ab7fdc0570b87a63a1d8a5fc5daf44d405cfdb42b44190e26aad0d1d40ae85e5696ba8a995d68bfc4b6733af35b656004c3b26d040902c41798f204e4a97105eb5b51e26271d1844087227740db525e37f171c3aafe1018f69291f4b4f8bb983f0fdb34de29016246a31b9fda9c54140baeb078f308bc005f6ce1e7b51f3c521b23d2eb53ffcfb75e422e0c089b189dd9ff95132e7a45c6af23dc965", 0xa2}, {&(0x7f0000002180)="b13f6a1c77f2920111e7311c65fa00933816906fd1674f5a646e14cecbee33d0c0017dc2ecd35241d2513799a758e6551a55b1bc5c638ab85da579fc03f6b78259e19f32cc4f44bd8c8108d7f9a2cd2c76f1c2816504a15f1630ff104469417bb1ab202f248dbe05ffd7d86ffa96ecac6191a09bc4a46d4d4021f14e035e26ec298d8384b32b57", 0x87}, {&(0x7f0000002240)="1c4be94b69f4c616e8675bffafccd84e767071836a998ca20dd4f075244bfe4a3e42f95cc3e28050df1e252558d21bc3fb926a72b21f08e8887c3418", 0x3c}, {&(0x7f0000002280)="413892d7676131523135d3ce9d2ee123fedf294f0983ff9720637ef2d194f63cc9ee88acf2fd22ba4bf6025b057610251fdf1cbcfd42aad5c5bfc25367d58af72723a7907ea00c0ceface6746a6dbbd84955c012cf8ea12e56ee833cd0180d71ceba7a03a8793ba93680875078cc", 0x6e}], 0x8, &(0x7f0000002380)=[@hopopts_2292={{0x30, 0x29, 0x36, {0x33, 0x2, '\x00', [@hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0xc}}, @enc_lim]}}}, @hopopts_2292={{0xd0, 0x29, 0x36, {0x29, 0x16, '\x00', [@pad1, @calipso={0x7, 0x18, {0x3, 0x4, 0x3, 0x4, [0x1, 0xffff]}}, @hao={0xc9, 0x10, @private1}, @generic={0x13, 0x78, "f609d75c912d2fe2fa6437c59be0beb7e0e2b515fe4f4222fcc4b8d5c7e8020b90c31ecc2ef0746e1491bfb81b0c8ec5b760a52034184dfea1530d165dfb5c8d002ce58edda0bc74f468f8f019b68624d8c3cb3175a9e6911c4e55d385ec469abdd9de68a4292b2d8a318e5f055f844cd24634be82fdd670"}, @ra={0x5, 0x2, 0x3}, @ra={0x5, 0x2, 0x89d1}]}}}, @tclass={{0x14, 0x29, 0x43, 0x8001}}, @hopopts={{0x40, 0x29, 0x36, {0x2c, 0x4, '\x00', [@jumbo={0xc2, 0x4, 0x1}, @enc_lim={0x4, 0x1, 0x2}, @ra={0x5, 0x2, 0x8}, @pad1, @jumbo={0xc2, 0x4, 0x7b}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x100}}, @tclass={{0x14, 0x29, 0x43, 0x566aae58}}], 0x188}}, {{0x0, 0x0, &(0x7f0000003980)=[{&(0x7f0000002540)="c64c73424683848e24ddf83d1e53475b0c4f345a56609e24246ff55052a15901f58e29038d95fe0f75c4948f3ecabfb0bf45ae936317e5e14c89fd05bf445acc3889e3a8cddf59ba0b39dbb0fc29b2653be64a8ad45cf6672e7c1d39a05713af045abcdcc32ad4be5ba2f45ff3cd1229226d8e06a46e25d529f997bd3ae6e78533de3a1725d6104da403095cee2d9cf089fc2ae1dd66426c561706e013a85c76f688497a22ad6737a13d7ab35d832434dd18710179a4faa311ca9fec265aa737aae3cefc20ae0ee399972684acb78e8f42824c397e152ab2c6dc912b0eb2681612765bd7a62db31ed5584d8a5432dd7296f8e5a4900533525cedd7a9eebf97504f48becce7f1c79929c81928e6e3e9c03c3d5d9862259f408b6688cd02de169ac2e1da2b8279082ea2c57b0140fe87cd6b624a024de35610df0466c3e62c4dfc80d8521f621e91e889c6c5a73b40ccab4404eb444c9a7a85296bb835a6264e5d3d2b4a6d5f936799d5cd8f53762a5a0fd7f60020be6ea698bfb2ca2dafd226077d5262911ebbcc7b026eb75f561a4a1e270859e3d7388963d33aaa8153f805f882b72b0cdb429e080737d5bec1f65d727546cb6b77e6653dff8a3f854421a1f163cd8ddf160b64b3be1e5864a48700c76bc230cc9e74bc244195f3b485d89c1d6de23ec02de60d1acc7d63b604d17d998cbb5cecf3f58286a4c29fe7482e114616c023132fc2939258bc71237c35f456d34d1f2e98d22e9add2c24f1985000133a5af87730a979cab2ae8cb2b9e4d888cf2b47ce4cc9e7004adae8790ce3f851d1ecf4700b5036c0e8f0d2c1dc44ab01c310f6555e4f545ddff761b28ea17792f8b84632c8d1289e6221a8d689ed825aac7186a0cefdb88c09ca1de2f4d02c4f9e01fa8eb5bc7e1c5d544209f86f83e54c2be5c5a8049c1905007377a3b0e683a80bb126c330f2949cafeaa7ab065d40decc420068d1a9cc8524707615d4a662cd32228f964ba5c0dff3e93353574ac45ef1d4324e3ce08dac56dc934a8b0d33a5a6da56a2aec161274bf2e2e221c9251997c31b2770526432d25e775e60487421d5357e9a5b2c24c41e76fc6a6d62ee5f87c29db72965a55cf7a9987e236c9f39a24a3fdda6b5c83104b1d0a826df42958693768c5b5c40a643da9a6422fbeafe2b03edfb00e8bd5898643dace9568e4ab79185753fa292aebf99c0817495fb4a82ddde4726e87d25f92047967762b3d05651a9576812b404ebefabb59f88453c869d081ad72c5a5184cc5de07c9e97b2e80347710ccd5d20c4172836466b03be9e4b48e33aed26dfcba7afb86f5c2b879450fdc13db51c0055e490cef9649a6b2839a194d06b7f991478e7a06fe47d59cd52e0fd3ce46473aa219906795ec717c082f2ed1bb8e3fb64b532ad95aa353cff89b18e2b12959bd2cd46dae7194bdd45a49e5ec578599b07911f6ebbd3bdbbec41ac6500982bae04a3bb1e0c5ec5bcec67d8a81bdd24c4b55c4e207eebd8616a6ee8b399cbf75e25b836a944444c25d447c15c997628be0af9de6ce2bb87a55a18f7e27e878c80f87fac6bbd306c4f6ecbc04709d2fa4f20e315f675ca684869b176b076c0c6aa4aeab897968b9c0dc8cd8252d132c463919da9908d2758718355ead202d777343afed841d8ce6f84a7590f97a7ccb54df286f46ce1472f14b4f4a9973897cc1e417d35502f0254e4cec618cfeadb183da92c6d7e5054110cf1c9079f4c5c744ab6f76db7cdbf827f535c089d7b5841b9b5b31909895fabf3fc862bf68a35bee36fdc59e394195240ed264ce281c0ae44857a784c3828f7181f450d700891fd7e0c7ea6f4141ea0efde7bd8f70ac1781e9837f71269d1bcb7911eb61589a98a7ba048a7da2eb2907e3bc0119775fbf34250089a57726a5ee4e8f06e32affea8fb1c82573fb457dd5ddbd9b2530fa24baaf6f5ea19ceac8ff3110b83eaadaf2ff2f8b961396214040b93a98e1d663ff2ca5b1b92df77d92122a13e59deaf12d9083d2c01cb8b782683747151ebbbbf2f0f9977aac197671827152ccf4f3a3a7b75e7b3076801dc92b2f2933cd080b5bdc63e8914adb2e3d2ab35771e81e19ee0032d54e10d06969098aafae4decba6adf91614d7ea5565726b839acd146ad87805d0dde960758d1d4a3e456a65e3b115898a1e94c83fbfa0e790ebe789979dc10429164872b1d3942051c1d9dedc872b12f7f31f16d892776e42be7814dc6f34223f313e707130e87d3a830cd1ce6ca5ee30d2f63d8463ee9007ed4f3ca90a96c50f96e38170be47a389874e33ab0999b08c3cf013127212ca9e873fb3ec3a514f4eb213f77894697b5beab39fc7d173e44e46dae0243b766f797b5d28e85d9d188291c4d723c3fef569639bf354d7d1e4011c99e487121d809b6c54cf724740288e46e367f203b687f3d674d92134899c58fda97d336a25fb636843b391476007b0f721aa384ef09a78b8caf0b3a60171a0d6e46f345f0714ed94cde6b643dbe7f7ef55b0b9c5e919c4933275e120266b8cc44acba7a5a2d23fe8dca2fcb0d05606c06ec4cb94a36fada9bad164b0db6a30979599c6c2df85ea5961253b51d2e20964abecd65b12cbca4a5cf46d1e28ead6593bc8cf1d24e504657a97068c4f14cb8ab68a56d7a3dcb653cfd0fd584f1b4088e31ba968d667e997f856c5a988a52e33310532b362f146777f4a746459e98745c57cc8354cfa9a11ff3d48514c142df5200892b5b9b2308a12d223dba0ee201de9374182a8e7e6d8964af1fcd3ed66595b4d3c646ff85a4ebf6372bef2371d7960b11381f7c79276c0218851278255ba360c923775b8a4f285aaf28312bb2343d69884597192d9d19679028dae3f9ea2a16fe75ae27c863f7f88a6e652755fa2b1ec17d2edff4594e36caf5c950d1f932d4ca73a5795657bb85d58b9760fdf1a6d21a79e3fd9e7cc2a9c7044b408be12a49c2f575b8980ce382ccce84be8f6e14f015148c79665985ec7cce624f9c8bfb9b056ed67622a6eca5e481b15d9325f52f54af6be34c79ddc676dbe5c783289fa95ee3d882829c375d5def0bc7f984d490a98aa21a4b0be8b5bb9a987991bc6b637adb1b2867ea6e2cda9ed407de72332a56c8045c19f7fc7bcddb9a1b085039e5af68925316f340c41548aad602a576c6ec04f2e0e809901ac9ec30e41e93170d8467dfd52b2461587f3fc3575c8309a5b4708a6ef34021a6e08909b954de71af95c834fdbf674c5ea51d371b05b3787288204db7ee8da0ef2d0e60ee1bb430aa3f0ce59e0d5b96d05a139f8ee0ac81160b6cd35bafda92f49a4b8c1270601c5a56f9739b791b1bcde4371b654dea381d9fb376c481e4eb4ee70a8d043d74b9108c73b618b29980d3fe7f251b0bd128a6155f8bfa64b0711c70f19721c9aa0231e8aed666cde826f411748288c0fc723c157cec372828ae8b026b0d3c6e444391f65aa75ecee0cb2f979e2935df3568e8654d297b6ebf83de95af8010b079dad887c0f5dfc146e50c5142cd5e238691f48c2cdf10fc9678bd1eadc30db935b5c9f2122407485ffe37611f8ac9587afad390d92779764b1835ed84010636ae9392d1101bbd67a47d53e4aa87ebcb2361f5b7c056a35b38cbeb6e724c1d709b785c38df2fd36cca83e81b0c21d2b5a1cf51d24e796eb5795daf656c8bb4ea941d5a3982c86daad835322cdb674e46adc994affe12a1289282bbf6cf2b154f780136833ddb3f3889ed65ad4c21d30e58938a9dab43aa6200d04bd9c7d007143ea5f329bad8d2522046469818628523707c2cabcc9c74d38091edf85cc51e79eb3635319b2584441bab7b5997199c9a733458b672d40db844dd37fdf9ddb5c1dac07e474bc35c225b65786056fd2346a5a93f77f3b44249af1d6be8370a4086b33fe0d864bf51ad23f3d69c2a75bc929dd66f44943c6f033115b9d1f9892c85b3ee65bebc018f63e467f2c4b19bef7869d8ea5ae57c25a564203b2f8ec5804bf519115e5a137da69bfcd12419485ec2f76254512bb017dd0ce54dd44bf04075ccbf43b9b213a48326d1dcdf28c3d847e449d1dac3e1bbadcc7f25bb2694bc1cc84d6f6cd4ebc20864f137d93dda20c8b7ea8956d0f5b9ccd9791a741e2a4d973ef2c28783395105f8d12a5f6956c0b3a544b15ffd1678bcf514e092243ad2e53fdad3162f68159fff5e762513b202f8a208c5e8a86fb7792f5a9275e6ab47115393c0cc6c8b96a73918dbb72314e986fa80e5cdd346380c9367d669f778c6cd58e791de5e5a822a60932ee07acfdb4cf8ef456db4abe77a4bbef631a956d3f0d62fdcc9fbe2fb5fce60bd57fb3f6851eeac43a2e827704ef7c30d9254d24c59534250bb50b53d7c9a60717dfcece916dde9a53e2d6b10042f491b8ee717018488b1547675230877db34566d6f1558bb60a0401cd13b99efab5cbf60e03efa86db771ae1f67159602b1063d043125fef8ece052fb388370ac4505faa255b5acc4114235886b4628450c18426a5e0efef5680d50100e1feda63a84686eb1e4154c0ff8e34285ac140f22731bc09628180bed47ac138c080b812ab55354039018af9d88c03c3e79831569507de97c9a9afa4de316c1006fd977784e2a3972a29183cedaaa096a5985852ea0ffecc7cac374975836e7ad33e12cc5e9b8ba58939c6733e10e09348fff325b7089d5b35f157352ed65f9e09ab402d066eb735a10143225ce38f763449cbb46023549f7818f20282ca447f92fedc9a0648a8884d63ac46bec209fd8f1833f7f5e545f4a3a99f6ae805e8b2d426499d95164fe68b9b0c99c66f0c1e609f7e579e2170fccfb7645fc5d1f06e2c26cd80564fe295d35e54f8901c6f43212ec307a57468f2741e423ea5654f18ae916f79aea5d016e666acaeaa3a8714a57515ac30877f4ac356359ea2da4225e4088dc017e26840c58f49ce1e315facfad8e5a94a84831f70f1c975833f6d098db471aa61092608e560e8926765b4a5611ce678a1e44bfa57ddde6cfe4da7b71f629d7d338c2429af61dc121c9bb2c690632d613273bf4db871dbcf4926c9404ab22f5db82cff38a24744eaf5fb42db24b0d45908cd81dc1f37fbd4082ab6c5ae40ed338ada2add564561d9946128aef1cd6f7fc8e6b368538a6c8b9c1c86b5d50953e2fe278eacc8948fcf37a1f1dbae23f4aa4afd118f5eed89b8ed7947239ebf87316520764349190aa6b07122a59b98c12df1d44cdf8eea3c4e9dde49da53254e1c13246b7ff4089703831bda7221167ca3c00c14e56fa1c74cfeb71bb2ae9510725b9167ae454a21aca984c0c38f4423ae33e8258aa0a50e17d34df4d7e4059d3608f4a9ee6a3d42dd98ebc6116c0205433e97bf06e8d4b769776866a6a43b709ebf28cf6a4bbc9ecdeb226602786054c4beef8586ab2010b08cddc483475875d8c677c3e85f337bb45b4cfaa0d88c08b45586c4b8e241fc231c620b59d8bc38694bac54ac053774d97ea8c16c6df693c7338996a7798d8ee76cf2dbfbed0489be0b548c4c9219fdaaac7cafcfa5d82f1afb8b82c49e1fd9aea587300b76ee510b190222c280a20fe69c7cef7b7d5a63f764b9bffe6c3b2b9d7104e0b5a47832c7769a5c8a432b30eb00a7cbd8e2972d340169290f2983638f097bceaea86ab401ba1ff2a0807c4b9dabfad58c522cfcae93cc9e2765a9a9f78ea9f2ecea4cc489fe268e08d8f59dae24329115f6a70d32ba71e71dfcbc7be832e80464b2cb7bb3e90eae957d857361a3fe8d1c1bb", 0x1000}, {&(0x7f0000003540)="62e7382b0714b31982d584a1b06307ca71", 0x11}, {&(0x7f0000003580)="5f4ee3ee1dc8acf5c3d01c05d599734ea18a90ee3b84678555a3679cd7b9faa19dae45388d1176c66cf24da4d97a6ac79d3946317266fd0defb63c74357a33609559f9b731fb97c5f0a75cc31ca9234ce7de936d165ccfa71c525e737eac4250be30acfa9e86254bc5b4759c89ade41fa8c76180153328dbc5a8dfec18f971633de14cffe99a3e28303e80bae3a02a004afa6ccf7976da0d2468a1b6b8005e1a3a9529b210b577cd2ad14fefecb9f518", 0xb0}, {&(0x7f0000003640)="906f32e643bd96e51df0a1fd74060505a78a14f8e85ab7ab65e3af60ce315343b7c7e0ce44b44c3206725e1db1693bffef40d5a257b2f7f4bc00de40e3734d26218cfb13ba12c2c33527ddcc8dce22df4c65", 0x52}, {&(0x7f00000036c0)="e3eb46464dc91d0e0140cc18ce6b46ec4f9730ab4f73801722ce641faa9d9b28a6a9d65017c82787ed1345bcbff77bba7d75dd4030cf1e25918917f958d38d84133b012b6d8ee4e562a062c79379300c4d4e33c43f5a2e1683a223483cc06a5768a897b6e0ca3b67708062731a5323b10e4b493061d36e37", 0x78}, {&(0x7f0000003740)="4b0c2cfa0844021b17858270093c2b571b2ca8590e71cc1f3502a76a4ca025a5349a757037901518596ee4494018d57f8126106ce6b33a82e01218e2ff39de0c195e66e9bce9fc0c31b9f088c126bfdc15f5966e406b872e150aac5392823f", 0x5f}, {&(0x7f00000037c0)="856ff8b6878c48980351b6e7a12b97ac2bbf2902f21295bb2ae748a72c28e6cfe4c03689ddac00fe0a5326276d9ac9eb945db144", 0x34}, {&(0x7f0000003800)="af2d57ad68db231041dfcbb15d22c3d7c9c1534bdee052929ff1e8c8e062e8663a011fffdf232e85", 0x28}, {&(0x7f0000003840)="3758f9863f2869fb253a45a39acedc743de71a06739f713f4434468e8090406ff3dc6954085db2a8d0a114915fcda346bffbcf456f6fdb6bd816b6b9f08491198fa35bf022aacc9b0b70de28d1b10a39eabe81775191b9e3056336e38917c36d49b6cd8f3bde25f3522a3492bb91691d8d89ee899606b1350771c5cf1d084c5b329a29d60c8df6388ac69a5f224d8742ae64c9e8252a2a54c5a273bfc5b034be9f7feb4112b634ad9e8def0f7dc30e929360573d4548f71e8c", 0xb9}, {&(0x7f0000003900)="3c4c23f9e9fb52e2ff4eb142c7eafabc9718b6287ecc6efb9da2fc7e5a2b2c1524dee47cb869f0916ed70ffc8801ab93eaf110237ffe8f293536e772bd86ded0936742489abfd41ee8457be4934d0545bb81b94a", 0x54}], 0xa, &(0x7f0000003a40)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x3d13}}, @rthdr={{0x78, 0x29, 0x39, {0x21, 0xc, 0x2, 0x1f, 0x0, [@mcast2, @remote, @mcast1, @empty, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0xffffff57}}], 0xa8}}, {{0x0, 0x0, &(0x7f0000003e40)=[{&(0x7f0000003b00)="a53f8e4c25c0ace4e0769f45a5c6fe760347d0bb98ea92ce960d3c77f54d7cce7cfbc1853621a569614119a688d338e9712bfd6a7ee35938dffc2ed08126e66b4e478f87b180e06ea89b3490f1fa8eeb6e09432f6b9e2044ba20804ec33223aaf3344623a978b1ac2a92383661cb927b4cb909ad247e33f51831b07ba6f7131b", 0x80}, {&(0x7f0000003b80)="127ad99fb48d2abea51a08420aba4c25e73f97069b1a2ba27ec805f9c7706008da068bd8c139889e595fb2757cbf276c4b8dd269da122cc48cbf75eb15a042efd4a9a61d2cb8701a1d38e1e37e9d868d9984b3561081946ae91ca7119f3cb7888ae14de5dd65cf29a8abf198d32de530ab5051", 0x73}, {&(0x7f0000003c00)="5896427c1be11809a137a4908bc1c389eeee2d723823a55c197d76672c344b5620bbd48b34478eb7723bac24ecf3f0813fddde8c86ad4a72c3bbbc557c911545cc1a2f5c42c3bd7b8bbba1c56e0603057b079faea9f7987688324e0828d2", 0x5e}, {&(0x7f0000003c80)="a198c7d484a6afdc53f9fdfbdaff6aae72aa8256eeb41310c2d012320fb85e609aa9fb31e89ac7a8eca4d6fb8ac1ec51bc7716051961a240b0d8db63fecadfe1ef6018d9cdf23f78eca4d381aabcd0c8c9306ed782bdd603f4693144d021b95714ea6ab3eec1a0b911679e70d1b88b54f4ae867c0c04cbc8c0bc43a443bf2937ca46494d05c162193ef68a", 0x8b}, {&(0x7f0000003d40)="207e1d6b95af9202af6036861a0a831cc5d78caf867c8500167680ef806f397ed743ebe447c1d663d1546d31c1bf", 0x2e}, {&(0x7f0000003d80)="7fb8354605424c81b171a5a4c9807108d7613fd5ea913365e431c5ba38906fcd4b0a7ce4c0c3aab23eb0248e76d9c9aca825068bcebbabbdc622c023618ff9ccf8a89c2885299cd704d5580eb40cb2e9c7d1475fc54b88ee7f97ece48fca700da72567f8ff256ab0d595f9f1b89c70fa7706227d341b59c6c5126a882f3469bd1a213d9dfc7168a932c76158bcd2a6651372e15ba7c43bfc82a85842f4c664dc51168d63918176f11c269de1e3f1fbb3f18d75b5fd2f3b7b", 0xb8}], 0x6, &(0x7f0000003f00)=[@tclass={{0x14, 0x29, 0x43, 0x6}}, @pktinfo={{0x24, 0x29, 0x32, {@remote, r3}}}, @rthdr={{0xb8, 0x29, 0x39, {0x3a, 0x14, 0x1, 0x7, 0x0, [@empty, @mcast1, @private1, @empty, @loopback, @dev={0xfe, 0x80, '\x00', 0xe}, @mcast2, @mcast2, @dev={0xfe, 0x80, '\x00', 0x2e}, @rand_addr=' \x01\x00']}}}], 0xf8}}, {{&(0x7f0000004000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x7}, 0x1c, &(0x7f0000004340)=[{&(0x7f0000004040)="f3b66e7c94f190e2ea0175c7d1372143eaa2226ce7c44df56bb34ce42518e7ba251ad54b2b86b6547a3d84430062d2a49c5d7ca65302fb292cbbd8d7804bafeb85b2eea549982d6b92eb7582cde13d14a6626541f196e58167d8d88f3339e5c4b9cfe79594e7f1db80d0892b2efa3206ac39b5df4e7417507ca6531cf430124ffc99e451469586b4ec39d0f19b4f5b4d9b89a79e98f7e3674e3c307092523ba6b3e6a0bffb3b4bb517b69e93ad38b2d948f6be1c7e9739fa2cd400384c820423f46bbcf34b4d0558216c81e3138614b84d9c9f50bd98fe39ea617f93a1d4a0a04a56276637a23e667d6bbb1b9e152b1919e73e1cebe6", 0xf6}, {&(0x7f0000004140)="d60b7b29fb", 0x5}, {&(0x7f0000004180)="552d7aea392f2074881d96bbdbcdcba67932f47caa6710d26a70ae45a87a0c273163f8d0b818ba262d7286c3dd98a0f06c201898ad3827fa1e0704b4083934e471470ed9b8e72ceee6f369474d96ba686972b14ffcd6de8f21614e4b7a89631b313120edaf5c08428a3a6888ff328d61e25511326becc6338f8595de17c2044d0bfe00673cf3ae3c60361d8d01d838b7f49809bcf66b1caddef16d6196c6627019bdc2f85ebcf6d1d66c64da506d5de451e21228a46d13176f72713a134c24bba39e83577b19e1536ec9c69d29d31bb157fd3e693d6a2cf5035072dec778", 0xde}, {&(0x7f0000004280)="99ce8b", 0x3}, {&(0x7f00000042c0)="6ed033e57e8b11703bf0f0c0713de119a1124f14eb88fc08fe677396dcf96efa909466bdb782be7e084fe3a57d4df1695c867be9535f3efeb708742b38a42d2a1f9454b9f9f0444ab881653a6e757a41d0fe0b5e7911b035910796a3f76bbc841e5319e1", 0x64}], 0x5, &(0x7f00000043c0)=[@hoplimit={{0x14, 0x29, 0x34, 0x40}}, @dstopts_2292={{0x40, 0x29, 0x4, {0x3b, 0x4, '\x00', [@hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @multicast2}}, @hao={0xc9, 0x10, @private0}]}}}, @tclass={{0x14, 0x29, 0x43, 0x2}}, @flowinfo={{0x14}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x10001}}, @dstopts={{0xe8, 0x29, 0x37, {0x6c, 0x19, '\x00', [@generic={0xf0, 0xbc, "5e61cab152036265206a1538b6693ded5deba59ae2a1e962fd072260be4e9faa6dc4d55bae58dde024cfaa669f9ebf14272dcbe677f9197feee3a09ba06b6c1af85e7083ecf76fcb9688a68bbdf7b079cfb495a943d4f0f25665c6f4ecc13a14132bd5a131c56f9f91a19f41c637ba32c457dcb0ebfbbcf3f8cf40a6fd4c9d6245ffbc83f22d16f49acf91cdb33fbca6b3eac5432ff283a513d6de6a8f7067188c9a575932c437dd188b9e28f68e9a918ea0e0e79ddcaddcf8ad8c19"}, @padn={0x1, 0x2, [0x0, 0x0]}, @jumbo={0xc2, 0x4, 0xa}, @pad1]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x6}}], 0x1a0}}], 0x7, 0x4082) 11:19:00 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 69) 11:19:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0xc0, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:19:00 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0, 0x800) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1214.749051] FAULT_INJECTION: forcing a failure. [ 1214.749051] name failslab, interval 1, probability 0, space 0, times 0 [ 1214.749557] udc-core: couldn't find an available UDC or it's busy [ 1214.750507] CPU: 1 PID: 7296 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1214.751236] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 1214.752043] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1214.752050] Call Trace: [ 1214.754264] dump_stack+0x107/0x167 [ 1214.754750] should_fail.cold+0x5/0xa [ 1214.755258] ? anon_vma_clone+0xdc/0x590 [ 1214.755801] should_failslab+0x5/0x20 [ 1214.756301] kmem_cache_alloc+0x5b/0x310 [ 1214.756869] anon_vma_clone+0xdc/0x590 [ 1214.757386] __split_vma+0x17c/0x570 [ 1214.757827] udc-core: couldn't find an available UDC or it's busy [ 1214.757872] __do_munmap+0xf40/0x1260 [ 1214.758635] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 1214.759071] mmap_region+0x776/0x1590 [ 1214.764371] ? get_unmapped_area+0x2f0/0x420 [ 1214.764966] do_mmap+0xcdb/0x11e0 [ 1214.765433] vm_mmap_pgoff+0x198/0x1f0 [ 1214.765951] ? randomize_page+0xb0/0xb0 [ 1214.766489] ksys_mmap_pgoff+0x41c/0x560 [ 1214.767025] ? find_mergeable_anon_vma+0x250/0x250 [ 1214.767677] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1214.768376] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1214.769064] do_syscall_64+0x33/0x40 [ 1214.769556] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1214.770179] RIP: 0033:0x7f0ba9f97b62 [ 1214.770639] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1214.772883] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1214.773815] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1214.774680] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1214.775545] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1214.776425] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1214.777298] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:19:00 executing program 2: openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x242880) 11:19:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x2c0, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:19:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) ioctl(r1, 0x7ff, &(0x7f0000000000)="66fcd6857004a4cd6e6eb03803cd35807bd8fb8686b2a1c39ee37f45ac36d14c2250dbbc7477b799ea8b8832bba9e07766c96178aa8abbeff742781ea30b7e1cb8a10d1c08e6e6bd57") ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000080)={{0x0, 0x7f}, 0x1, 0x0, 0x2, {0x81, 0x20}, 0x1f, 0x2d34}) 11:19:00 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x0) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:19:00 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 70) [ 1214.942533] FAULT_INJECTION: forcing a failure. [ 1214.942533] name failslab, interval 1, probability 0, space 0, times 0 11:19:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x4aefc2) [ 1214.943927] CPU: 0 PID: 7315 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1214.944789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1214.945799] Call Trace: [ 1214.946124] dump_stack+0x107/0x167 [ 1214.946571] should_fail.cold+0x5/0xa [ 1214.947040] ? create_object.isra.0+0x3a/0xa20 [ 1214.947600] should_failslab+0x5/0x20 [ 1214.948067] kmem_cache_alloc+0x5b/0x310 [ 1214.948586] create_object.isra.0+0x3a/0xa20 [ 1214.949122] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1214.949746] kmem_cache_alloc+0x159/0x310 [ 1214.950263] vm_area_alloc+0x1c/0x110 [ 1214.950728] mmap_region+0x819/0x1590 [ 1214.951198] ? get_unmapped_area+0x2f0/0x420 [ 1214.951738] do_mmap+0xcdb/0x11e0 [ 1214.952168] vm_mmap_pgoff+0x198/0x1f0 [ 1214.952662] ? randomize_page+0xb0/0xb0 [ 1214.953157] ksys_mmap_pgoff+0x41c/0x560 [ 1214.953653] ? find_mergeable_anon_vma+0x250/0x250 [ 1214.954257] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1214.954899] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1214.955528] do_syscall_64+0x33/0x40 [ 1214.955983] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1214.956625] RIP: 0033:0x7f0ba9f97b62 [ 1214.957091] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1214.959331] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1214.960258] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1214.961147] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1214.962017] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1214.962885] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1214.963754] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:19:00 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$IPCTNL_MSG_CT_GET_STATS(r1, &(0x7f00000001c0)={&(0x7f0000000100), 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x5, 0x1, 0x3, 0x0, 0x0, {0x1, 0x0, 0x2}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x40) getpeername$netlink(r1, &(0x7f0000000040), &(0x7f0000000080)=0xc) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x400, 0x87, 0xc8, 0x80}]}, 0x10) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)=ANY=[@ANYBLOB="3c0000002000210c0007000000000000020000000800000000000000200013002f70726f632f7379732f6e8474342f7463705f726d656d00"], 0x3c}, 0x1, 0x0, 0x0, 0x4008000}, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r2, 0x40082404, &(0x7f0000000000)=0x3cd7) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000300)={{0x0, 0x5, 0x1000, 0x83, 0x15, 0x7, 0xf2, 0x16ec, 0x9, 0x80000000, 0x7fff, 0x8b7, 0xfffffffffffff000, 0x20, 0x8}}) 11:19:00 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x0) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:19:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0xec0, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1215.027676] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=261 sclass=netlink_route_socket pid=7327 comm=syz-executor.2 [ 1215.041160] netlink: 'syz-executor.2': attribute type 19 has an invalid length. [ 1215.054274] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=261 sclass=netlink_route_socket pid=7329 comm=syz-executor.2 [ 1215.059868] netlink: 'syz-executor.2': attribute type 19 has an invalid length. [ 1215.486158] udc-core: couldn't find an available UDC or it's busy [ 1215.486973] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 1215.504804] udc-core: couldn't find an available UDC or it's busy [ 1215.505600] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 1229.673608] FAULT_INJECTION: forcing a failure. [ 1229.673608] name failslab, interval 1, probability 0, space 0, times 0 [ 1229.675042] CPU: 1 PID: 7336 Comm: syz-executor.5 Not tainted 5.10.229 #1 11:19:14 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 71) 11:19:14 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000100)={@in6={{0xa, 0x4e22, 0x8, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1}}, 0x0, 0x0, 0x41, 0x0, "456a8919c31e88551e2c7701d99f9b500a4ef2240601f88272110a916c684d0a34ebaef942b70043fc83784448a4b23b9c489f859ef47d66280d4ba3cc5791a844485a69f2aef25de2c21cecfcb74092"}, 0xd8) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0xd0402, 0x18) r3 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) setsockopt$inet6_tcp_int(r3, 0x6, 0x7, &(0x7f0000000040)=0x10001, 0x4) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000000200)=""/53, 0x35}], 0x1, 0x0, 0x2) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r4, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) sendfile(r1, r4, 0x0, 0x8) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000001, 0x40010, r2, 0x8000000) 11:19:14 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r2, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) 11:19:14 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1) lseek(r0, 0x401, 0x1) socket$inet6_tcp(0xa, 0x1, 0x0) 11:19:14 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x2400, 0x7f) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:19:14 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x0) listen(r2, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:19:14 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x33fe0, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:19:14 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) [ 1229.675878] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1229.676924] Call Trace: [ 1229.677774] dump_stack+0x107/0x167 [ 1229.678806] should_fail.cold+0x5/0xa [ 1229.679898] ? vm_area_dup+0x78/0x290 [ 1229.681010] should_failslab+0x5/0x20 [ 1229.682086] kmem_cache_alloc+0x5b/0x310 [ 1229.683246] ? _raw_read_unlock+0x1a/0x30 [ 1229.684422] vm_area_dup+0x78/0x290 [ 1229.685502] ? mark_lock+0xf5/0x2df0 [ 1229.686562] ? lock_chain_count+0x20/0x20 [ 1229.687757] ? __lock_acquire+0x1657/0x5b00 [ 1229.689007] ? mark_lock+0xf5/0x2df0 [ 1229.690068] ? vm_area_alloc+0x110/0x110 [ 1229.691219] ? __lock_acquire+0x1657/0x5b00 [ 1229.692456] ? lock_acquire+0x197/0x470 [ 1229.693591] ? __mm_populate+0x24e/0x360 [ 1229.694748] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1229.696240] ? vmacache_find+0x55/0x2a0 [ 1229.697384] __split_vma+0xa8/0x570 [ 1229.698410] __do_munmap+0x365/0x1260 [ 1229.699497] ? lock_release+0x680/0x680 [ 1229.700624] mmap_region+0x776/0x1590 [ 1229.701785] ? get_unmapped_area+0x2f0/0x420 [ 1229.703051] do_mmap+0xcdb/0x11e0 [ 1229.704068] vm_mmap_pgoff+0x198/0x1f0 [ 1229.705184] ? randomize_page+0xb0/0xb0 [ 1229.706328] ksys_mmap_pgoff+0x41c/0x560 [ 1229.707470] ? find_mergeable_anon_vma+0x250/0x250 [ 1229.708883] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1229.710367] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1229.711837] do_syscall_64+0x33/0x40 [ 1229.712900] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1229.714410] RIP: 0033:0x7f0ba9f97b62 [ 1229.715491] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1229.720860] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1229.723034] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1229.725088] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1229.727123] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1229.729189] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1229.731221] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:19:15 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(0xffffffffffffffff, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r2 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r2, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:19:15 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x3f, 0x1f, 0x4, 0x0, 0x3, 0x1010, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x19, 0xb, @perf_bp={&(0x7f0000000000), 0x2}, 0xa804, 0x5, 0x3, 0x6, 0x3, 0xfb, 0x1c, 0x0, 0x3, 0x0, 0xa345}, 0x0, 0x3, 0xffffffffffffffff, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x40, 0x0, 0x1}, 0x1000) r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x5, 0x80, 0x4, 0xf7, 0x0, 0x36a6, 0x8180, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000100)}, 0x0, 0xc2c, 0x3ff, 0x3, 0xffffffffffffffff, 0x1, 0x4, 0x0, 0x81, 0x0, 0xf0}, 0x0, 0xffffffffffffffff, r1, 0x2) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:19:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x2000399c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:19:15 executing program 3: ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f513, &(0x7f0000000000)) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x8, @dev={0xfe, 0x80, '\x00', 0x41}, 0x8}, 0x1c) dup(r0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:19:15 executing program 7: socket$inet6_tcp(0xa, 0x1, 0x0) 11:19:15 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 72) [ 1229.896093] FAULT_INJECTION: forcing a failure. [ 1229.896093] name failslab, interval 1, probability 0, space 0, times 0 [ 1229.899553] CPU: 1 PID: 7365 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1229.901553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1229.903947] Call Trace: [ 1229.904694] dump_stack+0x107/0x167 [ 1229.905759] should_fail.cold+0x5/0xa [ 1229.906835] ? create_object.isra.0+0x3a/0xa20 [ 1229.908140] should_failslab+0x5/0x20 [ 1229.909244] kmem_cache_alloc+0x5b/0x310 [ 1229.910403] create_object.isra.0+0x3a/0xa20 [ 1229.911640] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1229.913108] kmem_cache_alloc+0x159/0x310 [ 1229.914282] vm_area_dup+0x78/0x290 [ 1229.915325] ? mark_lock+0xf5/0x2df0 [ 1229.916374] ? lock_chain_count+0x20/0x20 [ 1229.917575] ? __lock_acquire+0x1657/0x5b00 [ 1229.918799] ? mark_lock+0xf5/0x2df0 [ 1229.919857] ? vm_area_alloc+0x110/0x110 [ 1229.921042] ? __lock_acquire+0x1657/0x5b00 [ 1229.922278] ? lock_acquire+0x197/0x470 [ 1229.923404] ? __mm_populate+0x24e/0x360 [ 1229.924563] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1229.926062] ? vmacache_find+0x55/0x2a0 [ 1229.927190] __split_vma+0xa8/0x570 [ 1229.928218] __do_munmap+0x365/0x1260 [ 1229.929323] ? lock_release+0x680/0x680 [ 1229.930442] mmap_region+0x776/0x1590 [ 1229.931533] ? get_unmapped_area+0x2f0/0x420 [ 1229.932785] do_mmap+0xcdb/0x11e0 [ 1229.933775] vm_mmap_pgoff+0x198/0x1f0 [ 1229.934872] ? randomize_page+0xb0/0xb0 [ 1229.936009] ksys_mmap_pgoff+0x41c/0x560 [ 1229.936943] ? find_mergeable_anon_vma+0x250/0x250 [ 1229.937639] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1229.938384] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1229.939117] do_syscall_64+0x33/0x40 [ 1229.939648] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1229.940372] RIP: 0033:0x7f0ba9f97b62 [ 1229.948901] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1229.951142] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1229.952071] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1229.956970] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1229.957839] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1229.958709] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1229.959577] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:19:29 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:19:29 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r2, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) 11:19:29 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:19:29 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r0, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) statx(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x6000, 0x200, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setxattr$system_posix_acl(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000002040)={{}, {}, [{0x2, 0x0, 0xee01}], {0x4, 0x2}, [{0x8, 0x1, 0xee01}, {0x8, 0x7, r2}, {0x8, 0x2, 0xffffffffffffffff}, {0x8, 0x4}], {}, {0x20, 0x1}}, 0x4c, 0x2) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setxattr$system_posix_acl(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000002040)={{}, {}, [{0x2, 0x0, 0xee01}], {0x4, 0x2}, [{0x8, 0x1, 0xee01}, {0x8, 0x7, r3}, {0x8, 0x2, 0xffffffffffffffff}, {0x8, 0x4}], {}, {0x20, 0x1}}, 0x4c, 0x2) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setxattr$system_posix_acl(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000002040)={{}, {}, [{0x2, 0x0, 0xee01}], {0x4, 0x2}, [{0x8, 0x1, 0xee01}, {0x8, 0x7, r4}, {0x8, 0x2, 0xffffffffffffffff}, {0x8, 0x4}], {}, {0x20, 0x1}}, 0x4c, 0x2) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setxattr$system_posix_acl(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000002040)={{}, {}, [{0x2, 0x0, 0xee01}], {0x4, 0x2}, [{0x8, 0x1, 0xee01}, {0x8, 0x7, r5}, {0x8, 0x2, 0xffffffffffffffff}, {0x8, 0x4}], {}, {0x20, 0x1}}, 0x4c, 0x2) fsetxattr$system_posix_acl(r0, &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f00000001c0)={{}, {0x1, 0x5}, [{0x2, 0x5, 0xee01}, {0x2, 0x6, r1}], {0x4, 0xa}, [{0x8, 0x5, r2}, {0x8, 0x4}, {0x8, 0x6, 0xffffffffffffffff}, {0x8, 0x3, r3}, {0x8, 0x0, 0xee00}, {0x8, 0x0, 0xee00}, {0x8, 0x4, r4}, {0x8, 0x2, r5}], {0x10, 0x7}, {0x20, 0x1}}, 0x74, 0x3) io_uring_enter(0xffffffffffffffff, 0x3f75, 0x73d8, 0x0, &(0x7f0000000000)={[0x9]}, 0x8) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0xa80) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) setsockopt$inet6_tcp_int(r6, 0x6, 0x0, &(0x7f0000000240)=0x4, 0x4) 11:19:29 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000000)) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x800) r2 = gettid() tkill(r2, 0x7) fcntl$setown(r0, 0x8, r2) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r4, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r6, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r7, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r8, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) poll(&(0x7f0000000180)=[{r3, 0x100}, {0xffffffffffffffff, 0x4}, {r4, 0x9532}, {r3, 0x2}, {r5, 0x10}, {r6}, {r7, 0x4085}, {r1, 0x40}, {r8, 0x10}], 0x9, 0xeed1) 11:19:29 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x7ffff000, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:19:29 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(0xffffffffffffffff, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r2 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r2, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:19:29 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 73) [ 1243.962745] FAULT_INJECTION: forcing a failure. [ 1243.962745] name failslab, interval 1, probability 0, space 0, times 0 [ 1243.964213] CPU: 0 PID: 7390 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1243.969119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1243.970175] Call Trace: [ 1243.970515] dump_stack+0x107/0x167 [ 1243.970977] should_fail.cold+0x5/0xa [ 1243.971462] ? anon_vma_clone+0xdc/0x590 [ 1243.971978] should_failslab+0x5/0x20 [ 1243.972480] kmem_cache_alloc+0x5b/0x310 [ 1243.973006] anon_vma_clone+0xdc/0x590 [ 1243.973520] __split_vma+0x17c/0x570 [ 1243.974019] __do_munmap+0x365/0x1260 [ 1243.974528] ? lock_release+0x680/0x680 [ 1243.975048] mmap_region+0x776/0x1590 [ 1243.975550] ? get_unmapped_area+0x2f0/0x420 [ 1243.976129] do_mmap+0xcdb/0x11e0 [ 1243.976588] vm_mmap_pgoff+0x198/0x1f0 [ 1243.977104] ? randomize_page+0xb0/0xb0 [ 1243.977643] ksys_mmap_pgoff+0x41c/0x560 [ 1243.978172] ? find_mergeable_anon_vma+0x250/0x250 [ 1243.978821] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1243.979503] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1243.980171] do_syscall_64+0x33/0x40 [ 1243.980659] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1243.981322] RIP: 0033:0x7f0ba9f97b62 [ 1243.981818] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1243.984253] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1243.989247] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1243.990068] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1243.990888] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1243.991707] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1243.992527] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:19:29 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x5, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = fcntl$getown(r0, 0x9) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f00000002c0)) r4 = perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x7, 0x12, 0x9, 0x1f, 0x0, 0x8000, 0x40004, 0x6, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1, @perf_bp={&(0x7f00000001c0), 0x2}, 0x41000, 0x401, 0x3, 0x4, 0x3, 0x10001, 0x2, 0x0, 0x1, 0x0, 0x6c}, r1, 0xa, r3, 0x9) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000300)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) sendmsg$inet6(r6, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000340)="b639d8c9ca48c0bd7a72f0faf6bf60fa114dad50ca832ba4d795df55ae473830e70252727be7b6164031f9c1dadb2dd3e7251593acb164b19208597f69e7532d77e67f2555ef6e82b8b0afe45c271edc4edc1f2a0f9b905a6808363095ac699ba109d1c48ae6492bd3d320cb5703b274074b1c35cb1d188c9e8d8a4fd9862707a67f14d044c46d33b109df21d4f93e52a3c58a54ad5f32a7a52856cebbbc2bc1725a639f8152ff44421074d27ac49e6fb4eac80cab4c14cd7c3ade72e4e29bf770bdfa6de0b17ba43eeea9b7c109f22641792fd4204b8a9c8b113481b7420ce02917abf7b2", 0xe5}, {&(0x7f0000000440)="3c516a002e7e2d2fb0802cb89c6e44a1cec8cf9b0dab47aea279775bc83a42e7e402c09a1581dc2c3c5680f669b178891228f343ddcec8353beb47b8eaad9c1f617488f542d7b5c78934b9cf7fcec302b714fd60bfd568ef06d2bd97c2c2c2d54829d63bea017756e4ccec22ee459ad84efbdad5d610beca6923dc071bd89a6b7a2a403aad901417552e3cdafefb08625669a415fa716d10f1fd178dcb523c54", 0xa0}], 0x2, &(0x7f0000000540)=[@dstopts_2292={{0x28, 0x29, 0x4, {0x3a, 0x1, '\x00', [@calipso={0x7, 0x8, {0x0, 0x0, 0x2, 0x5}}, @ra={0x5, 0x2, 0x75}]}}}, @dstopts={{0x30, 0x29, 0x37, {0x1d, 0x2, '\x00', [@hao={0xc9, 0x10, @private2}, @ra={0x5, 0x2, 0x7}]}}}, @rthdr_2292={{0x98, 0x29, 0x39, {0x2f, 0x10, 0x0, 0xb0, 0x0, [@mcast1, @empty, @loopback, @remote, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @loopback, @ipv4={'\x00', '\xff\xff', @broadcast}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@rand_addr=' \x01\x00'}}}, @hopopts_2292={{0x78, 0x29, 0x36, {0x21, 0xb, '\x00', [@ra={0x5, 0x2, 0x2}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @jumbo={0xc2, 0x4, 0x80000000}, @jumbo={0xc2, 0x4, 0x1ff}, @calipso={0x7, 0x38, {0x3, 0xc, 0x7d, 0x7ff, [0x1, 0x5, 0x6d7f, 0xffffffff80000000, 0x6c16f3d0, 0x40]}}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x3}}, @hopopts={{0x20, 0x29, 0x36, {0x2, 0x0, '\x00', [@generic={0x7f}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x730c19b8}}], 0x1e0}, 0x8844) setsockopt$inet6_opts(r5, 0x29, 0x40, &(0x7f0000000100)=ANY=[], 0x68) lseek(r5, 0x5, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xfa, 0x80, 0x1, 0x97, 0x0, 0xca7, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xc1, 0x1, @perf_bp={&(0x7f0000000100), 0x7}, 0x38816, 0x101, 0x5, 0x2, 0xfffffffffffffff7, 0x6, 0x6, 0x0, 0x6, 0x0, 0xffffffff}, 0x0, 0x6, 0xffffffffffffffff, 0x0) write(r0, &(0x7f0000000000)="737c644323062f50799618c40d3c75db45c4cfd349d5f48183dbf4042e0e630c7639189b55b2942879f3835065b3b0b5394db66239c01c759a33008175821c13b016e82e", 0x44) 11:19:29 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f0000000000)={0x993, 0x40, 0x1, 'queue1\x00', 0x6}) 11:19:29 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0xfffffdef, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:19:29 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(0xffffffffffffffff, 0xe19) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r2 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r2, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:19:29 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = getpid() perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0xdc, 0x6, 0x7, 0x3, 0x0, 0x0, 0x48000, 0x48bce97851cbdf2d, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000040), 0x5}, 0x0, 0x1000, 0x8, 0x2, 0xfff, 0x4f, 0x5, 0x0, 0x1000, 0x0, 0x8001}, r1, 0xffffffffffffffff, r0, 0x4) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f0000000100)={0x6, 0x80, 0x6, 0x0, 0xfe, 0x20, 0x0, 0x6, 0x400, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000000), 0x4}, 0x2060, 0xffff, 0x8296, 0x6, 0xb09f, 0x5, 0xffff, 0x0, 0x7ff, 0x0, 0x100000001}) r4 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r4, 0x0, r4) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_AUTHENTICATE(r4, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0xec, r6, 0x100, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x7}, @key_params=[@NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "426f544bbc38b54092525af0fe"}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}], @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x62}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x30e}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x1}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x40}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}], @key_params=[@NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_SEQ={0x11, 0xa, "142a2ef1f607b726919dae7b9f"}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}], @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0xec}, 0x1, 0x0, 0x0, 0x8004}, 0x20000080) socket$inet6_tcp(0xa, 0x1, 0x0) [ 1244.082173] netlink: 'syz-executor.3': attribute type 19 has an invalid length. [ 1244.090570] netlink: 'syz-executor.7': attribute type 19 has an invalid length. [ 1244.098492] netlink: 'syz-executor.3': attribute type 19 has an invalid length. 11:19:29 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 74) 11:19:29 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x200, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) r1 = accept$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @dev}}, &(0x7f0000000100)=0x1c) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000001ec0)={{{@in6=@mcast1, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in=@empty}}, &(0x7f0000001fc0)=0xe8) sendmmsg$inet6(r1, &(0x7f00000028c0)=[{{&(0x7f0000000140)={0xa, 0x4e23, 0x101, @dev={0xfe, 0x80, '\x00', 0x13}, 0x81}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000180)="e75387121b3703e3be267f9a9b17fd2e09f8a1f93407773bf01f95d6160f0a1cbe1466db18efd571747cc4b64078e6de2f41a7a6c83e00b5f43f8be22d633c9201498d54944e3ddfb901a6888a0311214743e4d2d45e14b76dca273b52e209deeaa708323b709aa56f32ad695470ded34f4cc8102a318300375f66f35ec7ffd9ff01f1322fe3ef0d7cbe567cdd90774789915de3346398baccdf23bbb2229082e38c09d0dc346ece6e2f3c390f8bed3e764b08bd09d27eee522e6544a6724e6ba6ef9cb585e359aa8002a5558c5ffb9ff46676", 0xd3}, {&(0x7f0000000300)="ac9bfd272644f0cb222b7e196f984fee2da36c3142a8f85dbe61125a601786e32b407a3124f582abd205afdb48710e8de4a501bcbcee2a50113c35d6c48b5c9427fdf43199e4790f857867dc9ff8cc57f0033f998fa12adaa603686345f056b71b500de18bb047fc357eec05395695161e0ad0fb77f3feb54fd0ba36698111e42c44e7e7c03599906fd01035780946f14fc2c6e9ef99db4f1fef78d0fa3788c77ed0f7e15a8882afcff44c653683f9307834d749068e58c61793226d6a9166a17e66cc029cb2430d1247aa577e600c27c6eaeb84ea81cf8647cfb14d11f1e803f36b23", 0xe3}, {&(0x7f0000000280)="09f7a44b125c0bec058482fc851cba69f7e6936a986c6d8998f2cfb0c73eb8420dc732281191d2035488cd", 0x2b}], 0x3, &(0x7f0000002000)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x95}}, @dontfrag={{0x14, 0x29, 0x3e, 0x7}}, @tclass={{0x14, 0x29, 0x43, 0x9f}}, @dontfrag={{0x14, 0x29, 0x3e, 0x8}}, @pktinfo={{0x24, 0x29, 0x32, {@rand_addr=' \x01\x00', r2}}}, @hopopts={{0x20, 0x29, 0x36, {0x0, 0x0, '\x00', [@pad1, @ra={0x5, 0x2, 0x50}]}}}], 0xa8}}, {{&(0x7f00000020c0)={0xa, 0x4e24, 0x9, @loopback}, 0x1c, &(0x7f0000002240)=[{&(0x7f0000002100)="bb979a00698dff35f40bfec2f9e66c74632c34f1945918dcb0c2fedfa4803868728b27b5552e598b8e2a52bf20de33b413c03d63d8643176b9804c6283a8629ed0a9f99be7caf498db6d351d", 0x4c}, {&(0x7f0000002180)="5bec101931f7c0926c8a9e9d6c88ff4c6f1ebb95d3850ebbb96e740666ec439a74e717de89c95cc1b93707edf3edc4ecb136ca712c10d3252201beda186fb6d09a4394b8ea8705f7ae34e2604465e31062745ec7bf61fca88db8a8af4e39e8fdf80057ba6be3b3930852c0e5e1263981560a91a30ea3bcb37ddc0282a41f8631560cc148a6c755bebc65463ac3d724e5575bda2b019de0bf0ce9cea519e013bc1c044afa6ad20f265568aafb0400c16cda71fdeae04ee9d5414a", 0xba}], 0x2, &(0x7f0000002280)=[@hoplimit={{0x14, 0x29, 0x34, 0x2}}], 0x18}}, {{&(0x7f00000022c0)={0xa, 0x4e24, 0x4, @mcast1, 0x1}, 0x1c, &(0x7f0000002480)=[{&(0x7f0000002300)="d3e20ce9671f29a724b725253f8f039871440fe2a41ca3ac9b8d83c8dc0270f00913e053a044f8592ca86bdc1759ce5f6666", 0x32}, {&(0x7f0000002340)="03627a68df488ae300d61b053eebefcb4f0cd0fea2e5ccb91337cf802d2dd62e1f5f68e665d0990d0eca28f0f0e658e82c5662d469d15ce5812eedc45f9a6b3bed55ad8c9f7ef29e641cbd7b521316ab4e1bb76b8ef1890d395fbbfc37", 0x5d}, {&(0x7f00000023c0)="5924679094480fe1ca19123fdc5fa83312b8abb538bc7bb5b54e21f34a228b64806883fae2f886edeb97c552735237f3ed92bc4088b5c423b87e545bf218b1edcfe7a40b827fc1f24eeb5aa392192588568521e244817165c03d0cc3478066971299d4602ea517054f30a43e1ff87ca3a2699ce3cf7377895697caebe9aaf754cea184f4bb769eeef1bfb0a82e7150c400dca95481f961cdbbaf8317684cd3a05cdc935995366a120c64cd21", 0xac}], 0x3, &(0x7f00000024c0)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0xfffffffc}}, @pktinfo={{0x24, 0x29, 0x32, {@local}}}, @hopopts={{0x30, 0x29, 0x36, {0x0, 0x3, '\x00', [@hao={0xc9, 0x10, @rand_addr=' \x01\x00'}, @enc_lim={0x4, 0x1, 0x1}, @enc_lim={0x4, 0x1, 0x2}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0xd7}}, @dontfrag={{0x14, 0x29, 0x3e, 0x101}}, @rthdr={{0x58, 0x29, 0x39, {0xfb, 0x8, 0x1, 0x1, 0x0, [@remote, @remote, @private0={0xfc, 0x0, '\x00', 0x1}, @local]}}}, @rthdr={{0x78, 0x29, 0x39, {0x32, 0xc, 0x0, 0x3f, 0x0, [@mcast1, @dev={0xfe, 0x80, '\x00', 0x27}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private0, @ipv4={'\x00', '\xff\xff', @local}, @private1={0xfc, 0x1, '\x00', 0x1}]}}}, @tclass={{0x14, 0x29, 0x43, 0x2}}, @dontfrag={{0x14, 0x29, 0x3e, 0x1ffc0000}}], 0x1a0}}, {{&(0x7f0000002680)={0xa, 0x4e21, 0x2, @mcast1, 0x7fffffff}, 0x1c, &(0x7f0000002740)=[{&(0x7f00000026c0)="ddd4ff7d959d81b0328472243ce3cbfc661458199befc6cb9df4569bbbb4a8f0dd2b35fec68aa36bcfa2188bb14c591793a778c8ba2a8f7cb06f815705e20364026b1e17", 0x44}], 0x1, &(0x7f0000002780)=[@dontfrag={{0x14, 0x29, 0x3e, 0x7fff}}, @hopopts={{0xa8, 0x29, 0x36, {0x8f, 0x11, '\x00', [@generic={0xf9, 0x88, "a60581b8982a6bc73a8ef01302f869984c1fc32055c9a10b42582aa3664e270e4211354509f816f41dae929b085270bd56c17a4b2e934fbfaad6a3fb5768c2f4fe189241c2f8ed858978b0cbb193a922f263cca43888d4ce3ce07b55a0c1ec75875552df494a1dce03b1b51eb7e86d2a9397b1975d65be648670ce55b73658fd17dee3574fac9b71"}]}}}, @tclass={{0x14, 0x29, 0x43, 0x3}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xe398}}, @flowinfo={{0x14, 0x29, 0xb, 0x3f}}, @flowinfo={{0x14, 0x29, 0xb, 0xfffffffd}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x20}}], 0x138}}], 0x4, 0x40000) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000000)={0x1000, 0x5f, 0x1, 'queue0\x00', 0x4}) 11:19:29 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) [ 1244.152120] netlink: 'syz-executor.7': attribute type 19 has an invalid length. 11:19:29 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0xf, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1244.165100] FAULT_INJECTION: forcing a failure. [ 1244.165100] name failslab, interval 1, probability 0, space 0, times 0 [ 1244.166518] CPU: 0 PID: 7415 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1244.167318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1244.168282] Call Trace: [ 1244.168594] dump_stack+0x107/0x167 [ 1244.169028] should_fail.cold+0x5/0xa [ 1244.169475] ? create_object.isra.0+0x3a/0xa20 [ 1244.170014] should_failslab+0x5/0x20 [ 1244.170455] kmem_cache_alloc+0x5b/0x310 [ 1244.170928] create_object.isra.0+0x3a/0xa20 [ 1244.171437] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1244.172028] kmem_cache_alloc+0x159/0x310 [ 1244.172515] anon_vma_clone+0xdc/0x590 [ 1244.172971] __split_vma+0x17c/0x570 [ 1244.173426] __do_munmap+0x365/0x1260 [ 1244.173873] ? lock_release+0x680/0x680 [ 1244.174335] mmap_region+0x776/0x1590 [ 1244.174782] ? get_unmapped_area+0x2f0/0x420 [ 1244.175292] do_mmap+0xcdb/0x11e0 [ 1244.175700] vm_mmap_pgoff+0x198/0x1f0 [ 1244.176155] ? randomize_page+0xb0/0xb0 [ 1244.176629] ksys_mmap_pgoff+0x41c/0x560 [ 1244.177122] ? find_mergeable_anon_vma+0x250/0x250 [ 1244.177696] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1244.178306] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1244.178907] do_syscall_64+0x33/0x40 [ 1244.179342] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1244.179935] RIP: 0033:0x7f0ba9f97b62 [ 1244.180377] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1244.182525] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1244.183405] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1244.184225] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1244.185071] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1244.185899] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1244.186726] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 1244.224111] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=15 sclass=netlink_route_socket pid=7421 comm=syz-executor.4 [ 1244.235806] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=15 sclass=netlink_route_socket pid=7422 comm=syz-executor.4 [ 1258.529478] FAULT_INJECTION: forcing a failure. [ 1258.529478] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.530978] CPU: 0 PID: 7437 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1258.531854] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1258.532890] Call Trace: [ 1258.533244] dump_stack+0x107/0x167 [ 1258.533744] should_fail.cold+0x5/0xa [ 1258.534239] ? vm_area_dup+0x78/0x290 [ 1258.534740] should_failslab+0x5/0x20 [ 1258.535245] kmem_cache_alloc+0x5b/0x310 [ 1258.535779] ? mark_lock+0xf5/0x2df0 [ 1258.536275] vm_area_dup+0x78/0x290 [ 1258.536755] ? lock_chain_count+0x20/0x20 [ 1258.537313] ? mark_lock+0xf5/0x2df0 [ 1258.537818] ? lock_chain_count+0x20/0x20 [ 1258.538366] ? __lock_acquire+0x1657/0x5b00 [ 1258.538938] ? mark_lock+0xf5/0x2df0 [ 1258.539434] ? vm_area_alloc+0x110/0x110 [ 1258.539967] ? __lock_acquire+0x1657/0x5b00 [ 1258.540543] ? lock_acquire+0x197/0x470 [ 1258.541064] ? __mm_populate+0x24e/0x360 [ 1258.541619] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.542301] ? vmacache_find+0x55/0x2a0 [ 1258.542819] __split_vma+0xa8/0x570 [ 1258.543301] __do_munmap+0x365/0x1260 [ 1258.543806] ? lock_release+0x680/0x680 [ 1258.544328] mmap_region+0x776/0x1590 [ 1258.544834] ? get_unmapped_area+0x2f0/0x420 [ 1258.545426] do_mmap+0xcdb/0x11e0 [ 1258.546088] vm_mmap_pgoff+0x198/0x1f0 [ 1258.546599] ? randomize_page+0xb0/0xb0 [ 1258.547132] ksys_mmap_pgoff+0x41c/0x560 [ 1258.547664] ? find_mergeable_anon_vma+0x250/0x250 [ 1258.548406] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.549282] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1258.549936] do_syscall_64+0x33/0x40 [ 1258.550392] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.551014] RIP: 0033:0x7f0ba9f97b62 [ 1258.551472] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1258.553736] RSP: 002b:00007f0ba74ec0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1258.554660] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1258.555518] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1258.556378] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 11:19:43 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 75) 11:19:43 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:19:43 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r3, 0x800, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r4, 0x0, 0x100000001) 11:19:43 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00'}) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r2, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) 11:19:43 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x6, 0x28210, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x3f}, 0x100, 0x0, 0x0, 0x5, 0x7ff00000}, 0x0, 0x3, 0xffffffffffffffff, 0x6) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) open_by_handle_at(r0, &(0x7f0000000000)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{0x8, 0x3, 0x1, 0x401}, 0xffffff3d, 0x99}}, 0x64100) 11:19:43 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0xc000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x1, 0x6, 0x5, 0x40, 0x0, 0x4, 0x8401, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_config_ext={0x4, 0xe3c}, 0x40000, 0x200000, 0x9, 0x2, 0x6, 0x10a5, 0x6, 0x0, 0xffffffff, 0x0, 0x4}, 0xffffffffffffffff, 0x5, r1, 0xc) 11:19:43 executing program 2: perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x40000000000}, 0x0, 0x0, 0x0, 0x7, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xf, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_opts(r1, 0x29, 0x40, &(0x7f00000001c0)=ANY=[@ANYRES32], 0x68) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r3, &(0x7f0000007780)={0x0, 0x0, &(0x7f0000007740)={&(0x7f00000075c0)={0x38, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x1c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x9}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}, @ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x38}}, 0x0) accept4$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000300)=0x14, 0x80000) sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r4, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PAUSE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x8800}, 0x40001) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r8, &(0x7f0000007780)={0x0, 0x0, &(0x7f0000007740)={&(0x7f00000075c0)={0x38, r9, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x1c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x9}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}, @ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x38}}, 0x0) accept4$packet(r6, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000300)=0x14, 0x80000) sendmsg$ETHTOOL_MSG_PAUSE_SET(r7, &(0x7f0000000400)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, r9, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_PAUSE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x8800}, 0x40001) sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x9684a3014a8b302b}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x90, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x81}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x7}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @empty}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r5}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r10}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}]}, 0x90}, 0x1, 0x0, 0x0, 0x20000840}, 0x24004001) syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) dup2(0xffffffffffffffff, r0) 11:19:43 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x10, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1258.557235] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1258.558135] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:19:43 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_setup(0x994, &(0x7f0000000000)={0x0, 0x2086, 0x8, 0x3, 0x234}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) 11:19:43 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1258.582376] netlink: 'syz-executor.7': attribute type 19 has an invalid length. 11:19:44 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e24, @remote}, 0x10) listen(0xffffffffffffffff, 0x8) ioctl(r2, 0x1000, &(0x7f00000002c0)="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") perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4) 11:19:44 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 76) [ 1258.776068] netlink: 'syz-executor.7': attribute type 19 has an invalid length. 11:19:44 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x14010, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa60}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x44, 0x2, 0x16, 0xa2, 0x0, 0x1, 0x808, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0x8000, 0xffffffffffffffc1}, 0x90, 0x6, 0xffff0000, 0x5, 0x5, 0x6, 0x4, 0x0, 0x1, 0x0, 0x9}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x9) 11:19:44 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x11, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1258.789831] FAULT_INJECTION: forcing a failure. [ 1258.789831] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.791267] CPU: 0 PID: 7461 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1258.792104] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1258.793116] Call Trace: [ 1258.793476] dump_stack+0x107/0x167 [ 1258.793927] should_fail.cold+0x5/0xa [ 1258.794398] ? create_object.isra.0+0x3a/0xa20 [ 1258.794960] should_failslab+0x5/0x20 [ 1258.795426] kmem_cache_alloc+0x5b/0x310 [ 1258.795931] create_object.isra.0+0x3a/0xa20 [ 1258.796465] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1258.797087] kmem_cache_alloc+0x159/0x310 [ 1258.797625] vm_area_alloc+0x1c/0x110 [ 1258.798090] mmap_region+0x819/0x1590 [ 1258.798561] ? get_unmapped_area+0x2f0/0x420 [ 1258.799098] do_mmap+0xcdb/0x11e0 [ 1258.799527] vm_mmap_pgoff+0x198/0x1f0 [ 1258.800006] ? randomize_page+0xb0/0xb0 [ 1258.800500] ksys_mmap_pgoff+0x41c/0x560 [ 1258.800996] ? find_mergeable_anon_vma+0x250/0x250 [ 1258.801623] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.802265] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1258.802898] do_syscall_64+0x33/0x40 [ 1258.803353] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.803978] RIP: 0033:0x7f0ba9f97b62 [ 1258.804439] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1258.806709] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1258.807644] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1258.808514] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1258.809403] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1258.810274] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1258.811144] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 1258.820829] netlink: 'syz-executor.7': attribute type 19 has an invalid length. 11:19:44 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r1, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r2 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r2, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r3 = fcntl$dupfd(r1, 0x0, r1) setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r3, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:19:44 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = gettid() tkill(r1, 0x7) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x3, 0x0, 0x20, 0x0, 0x0, 0x101, 0x20000, 0x9, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x400, 0x2}, 0x140, 0x1, 0x80000001, 0x7, 0x0, 0x401, 0x6, 0x0, 0x50, 0x0, 0x4}, r1, 0x1, r0, 0x0) 11:19:44 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xf}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x4, 0x8, 0xf3, 0x19, 0x0, 0x3f000, 0x60000, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x3, 0xe4}, 0x80, 0x80, 0x2, 0x7, 0xcb, 0x1ff, 0xfff7, 0x0, 0x4, 0x0, 0x9}, 0xffffffffffffffff, 0x0, r1, 0x9) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_void(r2, 0x1, 0x0, 0x0, 0x0) 11:19:44 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x12, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1258.909206] netlink: 'syz-executor.3': attribute type 19 has an invalid length. [ 1258.922874] netlink: 'syz-executor.3': attribute type 19 has an invalid length. 11:19:57 executing program 7: ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000040)={&(0x7f0000000000)=""/33, 0x21, 0x9, 0x8}) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 11:19:57 executing program 6: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r2, 0x800, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r2, r3, 0x0, 0x100000001) 11:19:57 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0x40a85321, &(0x7f0000000000)={{0x3}, 'port1\x00', 0x93, 0x400, 0x8, 0x80, 0x1, 0x9, 0xffffffff, 0x0, 0x1, 0x1}) 11:19:57 executing program 0: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x80) r0 = socket$nl_generic(0x10, 0x3, 0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.io_queued\x00', 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000001440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)={0x30, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}]}, 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r2, 0x20, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x40090) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x40000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0xc800}, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) lseek(r4, 0x800, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x100000001) 11:19:57 executing program 1: socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r1 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r1, 0xe19) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r2 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r2, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) 11:19:57 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) readv(r0, &(0x7f0000000000)=[{&(0x7f0000000100)=""/176, 0xb0}, {&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/160, 0xa0}, {&(0x7f0000001280)=""/254, 0xfe}, {&(0x7f0000001380)=""/228, 0xe4}], 0x5) 11:19:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x13, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) 11:19:57 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x6c6b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000140)) (fail_nth: 77) [ 1272.534917] FAULT_INJECTION: forcing a failure. [ 1272.534917] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1272.536452] CPU: 0 PID: 7498 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1272.537286] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1272.538333] Call Trace: [ 1272.538671] dump_stack+0x107/0x167 [ 1272.539122] should_fail.cold+0x5/0xa [ 1272.539597] __alloc_pages_nodemask+0x182/0x600 [ 1272.540177] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1272.540931] ? walk_mem_res+0x170/0x170 [ 1272.541426] alloc_pages_current+0x187/0x280 [ 1272.541989] pte_alloc_one+0x16/0x1a0 [ 1272.542469] __pte_alloc+0x1d/0x330 [ 1272.542929] remap_pfn_range_internal+0x9a3/0xf60 [ 1272.543537] ? lookup_memtype+0x5b/0x200 [ 1272.544049] ? apply_to_existing_page_range+0x40/0x40 [ 1272.544692] remap_pfn_range+0xcd/0x160 [ 1272.545188] ? remap_pfn_range_notrack+0x70/0x70 [ 1272.545852] io_uring_mmap+0x398/0x530 [ 1272.546331] mmap_region+0xb5a/0x1590 [ 1272.546812] do_mmap+0xcdb/0x11e0 [ 1272.547254] vm_mmap_pgoff+0x198/0x1f0 [ 1272.547750] ? randomize_page+0xb0/0xb0 [ 1272.548258] ksys_mmap_pgoff+0x41c/0x560 [ 1272.548774] ? find_mergeable_anon_vma+0x250/0x250 [ 1272.549397] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1272.550067] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1272.550701] do_syscall_64+0x33/0x40 [ 1272.551171] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1272.551814] RIP: 0033:0x7f0ba9f97b62 [ 1272.552279] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1272.554541] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1272.555479] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1272.556351] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1272.557224] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1272.558112] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1272.558986] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 11:19:57 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet(0x2, 0x2, 0x2) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000100)={{r1}, 0x0, 0x8, @inherit={0x60, &(0x7f0000000000)={0x0, 0x3, 0x7, 0x80, {0x18, 0x1, 0x44, 0x7, 0xb5f1}, [0x5, 0x2, 0x80]}}, @name="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"}) [ 1272.577464] ------------[ cut here ]------------ [ 1272.579970] WARNING: CPU: 1 PID: 7498 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 1272.581064] Modules linked in: [ 1272.581485] CPU: 1 PID: 7498 Comm: syz-executor.5 Not tainted 5.10.229 #1 [ 1272.582331] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1272.583379] RIP: 0010:get_pat_info+0x216/0x270 [ 1272.585006] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 01 88 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 ea 87 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 b5 7d 5a 00 e9 [ 1272.590294] RSP: 0018:ffff888045da78b0 EFLAGS: 00010212 [ 1272.591070] RAX: 000000000001401a RBX: ffff88800cec3400 RCX: ffffc90008023000 [ 1272.591966] RDX: 0000000000040000 RSI: ffffffff81123696 RDI: 0000000000000007 [ 1272.592855] RBP: ffff888045da7968 R08: 0000000000000000 R09: ffff888045da7838 [ 1272.595463] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 1272.596338] R13: 1ffff11008bb4f16 R14: 0000000000000000 R15: ffff88800cec3450 [ 1272.597226] FS: 00007f0ba750d700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 1272.600998] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1272.601753] CR2: 00007fb52d5273a4 CR3: 00000000477c0000 CR4: 0000000000350ee0 [ 1272.602638] Call Trace: [ 1272.602966] ? __warn+0xe2/0x1f0 [ 1272.603383] ? get_pat_info+0x216/0x270 [ 1272.603892] ? report_bug+0x1c1/0x210 11:19:57 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x16, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x3c, 0x20, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x20, 0x13, 0x0, 0x0, @str='/proc/sys/net/ipv4/tcp_rmem\x00'}]}, 0x3c}}, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) 11:19:57 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x20, 0x0, 0x0, 0x0, 0x9, 0x2088, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0) 11:19:57 executing program 1: socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x4e20, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x10000000}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004d00), 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000fffffdfd0000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000f1ff00000000000000000000000000341fc74d91a7f32cc2a07b00000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b1757b020008000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006f710142dcdba5c159fe91400d7800"]) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000100)={0x2, {{0x2, 0x0, @multicast2}}}, 0x108) setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000280)={0xb7, {{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x10}}}, {{0x2, 0x4e24, @loopback}}}, 0x108) r1 = accept4$packet(0xffffffffffffffff, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000400)=0x14, 0x800) listen(r1, 0xe19) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e21, 0x4, @remote, 0x9}, 0x1c) r2 = fcntl$dupfd(r0, 0x0, r0) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @dev={0xac, 0x14, 0x14, 0x8}, 0x1, 0x1, [@multicast2]}, 0x14) setsockopt$inet6_MRT6_DEL_MFC(r2, 0x29, 0xcd, &(0x7f0000000000)={{0xa, 0x4e20, 0x6, @empty, 0xfffffffe}, {0xa, 0x4e20, 0x6, @private0, 0x3}, 0x400, [0xbe, 0x0, 0x125, 0x0, 0x2, 0x8, 0x7, 0x6]}, 0x5c) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0) [ 1272.605424] ? handle_bug+0x41/0x90 [ 1272.605956] ? exc_invalid_op+0x14/0x50 [ 1272.606467] ? asm_exc_invalid_op+0x12/0x20 [ 1272.607000] ? get_pat_info+0x216/0x270 [ 1272.607504] ? get_pat_info+0x216/0x270 [ 1272.607994] ? pgprot_writethrough+0xc0/0xc0 [ 1272.608550] ? finish_task_switch+0x126/0x5d0 [ 1272.609103] untrack_pfn+0xdc/0x240 [ 1272.609566] ? track_pfn_insert+0x150/0x150 [ 1272.611850] ? lock_downgrade+0x6d0/0x6d0 [ 1272.612357] ? uprobe_munmap+0x1c/0x560 [ 1272.612866] unmap_single_vma+0x1bc/0x300 [ 1272.613375] zap_page_range_single+0x2ce/0x450 [ 1272.613964] ? unmap_single_vma+0x300/0x300 [ 1272.614509] ? remap_pfn_range_internal+0xc56/0xf60 [ 1272.615120] ? lookup_memtype+0x5b/0x200 [ 1272.615642] ? apply_to_existing_page_range+0x40/0x40 [ 1272.616278] remap_pfn_range+0x139/0x160 [ 1272.616795] ? remap_pfn_range_notrack+0x70/0x70 [ 1272.617378] io_uring_mmap+0x398/0x530 [ 1272.619624] mmap_region+0xb5a/0x1590 [ 1272.620208] do_mmap+0xcdb/0x11e0 [ 1272.620672] vm_mmap_pgoff+0x198/0x1f0 [ 1272.621151] ? randomize_page+0xb0/0xb0 [ 1272.622569] ksys_mmap_pgoff+0x41c/0x560 [ 1272.623080] ? find_mergeable_anon_vma+0x250/0x250 [ 1272.623700] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1272.624338] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1272.624988] do_syscall_64+0x33/0x40 [ 1272.625460] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1272.626997] RIP: 0033:0x7f0ba9f97b62 [ 1272.627475] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1272.630721] RSP: 002b:00007f0ba750d0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1272.631665] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f0ba9f97b62 [ 1272.632549] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1272.633437] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1272.635474] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1272.636355] R13: 0000000020ffc000 R14: 00000000200000c0 R15: 00000000200a0000 [ 1272.637256] irq event stamp: 1959 [ 1272.637720] hardirqs last enabled at (1969): [] console_unlock+0x92d/0xb40 [ 1272.638780] hardirqs last disabled at (1978): [] console_unlock+0x839/0xb40 [ 1272.639838] softirqs last enabled at (1478): [] asm_call_irq_on_stack+0x12/0x20 [ 1272.640949] softirqs last disabled at (1413): [] asm_call_irq_on_stack+0x12/0x20 [ 1272.643869] ---[ end trace fa679e276244d109 ]--- [ 1272.652797] netlink: 'syz-executor.7': attribute type 19 has an invalid length. [ 1272.664055] netlink: 'syz-executor.7': attribute type 19 has an invalid length. 11:19:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x68) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000003980)={0x1c, 0x14, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x1c}}, 0x0) [ 1272.732687] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1272.750680] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. VM DIAGNOSIS: 11:19:58 Registers: info registers vcpu 0 RAX=dead000000000100 RBX=800000001d19d007 RCX=ffffffff8160e973 RDX=ffff888017cd0000 RSI=ffffffff8160e98b RDI=0000000000000007 RBP=ffff888038601420 RSP=ffff888037ddf8b8 R8 =0000000000000000 R9 =ffffea0000746707 R10=0000000000000020 R11=0000000000000001 R12=00000000100400fb R13=ffffea0000746740 R14=0000000000000028 R15=dffffc0000000000 RIP=ffffffff8160e9a3 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00005555577ae400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555567576c58 CR3=0000000037dd4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000000ff0000000000000000ff000000 XMM01=6e657300656c6966646e657300706f64 XMM02=ff00000100000000000000ff00000000 XMM03=00007f4e6178f7c800007f4e6178f7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822dcf51 RDI=ffffffff879f1140 RBP=ffffffff879f1100 RSP=ffff888045da7258 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000020 R13=0000000000000020 R14=ffffffff879f1100 R15=dffffc0000000000 RIP=ffffffff822dcfa8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f0ba750d700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe1800000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb52d5273a4 CR3=00000000477c0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000