0x4) 00:10:24 executing program 3: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:10:24 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 2) 00:10:24 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c000000fc4f4b8dc8797c45000100000040000000000a000000180900200000000214fc01c2c087080000005d000000000000"], 0x2c}}, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = dup2(r1, r2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r3, 0x8000000) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r0) sendmsg$TIPC_CMD_SET_LINK_TOL(r3, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r4, 0x400, 0x70bd2c, 0x25dfdbfb, {{}, {}, {0x1c, 0x18, {0x1, @bearer=@l2={'eth', 0x3a, 'bond_slave_0\x00'}}}}, ["", "", "", "", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x44800}, 0x14) [ 624.164719] netlink: 'syz-executor.0': attribute type 16 has an invalid length. [ 624.165991] FAULT_INJECTION: forcing a failure. [ 624.165991] name failslab, interval 1, probability 0, space 0, times 1 [ 624.169227] CPU: 1 PID: 5985 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 624.170677] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 624.172439] Call Trace: [ 624.173003] dump_stack+0x107/0x167 [ 624.173440] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=20476 sclass=netlink_route_socket pid=5987 comm=syz-executor.6 [ 624.173774] should_fail.cold+0x5/0xa [ 624.173795] ? io_uring_setup+0x258/0x2980 [ 624.173824] should_failslab+0x5/0x20 [ 624.179350] kmem_cache_alloc_trace+0x55/0x320 [ 624.180333] io_uring_setup+0x258/0x2980 [ 624.181195] ? __mutex_unlock_slowpath+0xe1/0x600 [ 624.182213] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 624.183282] ? wait_for_completion_io+0x270/0x270 [ 624.184329] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 624.185435] ? syscall_enter_from_user_mode+0x1d/0x50 00:10:24 executing program 7: rt_sigaction(0x10, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:10:24 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 624.186518] do_syscall_64+0x33/0x40 [ 624.187457] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 624.188565] RIP: 0033:0x7fcf423d9b19 [ 624.189342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 624.193234] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 624.194841] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 624.196345] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 624.197841] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 624.198857] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=20476 sclass=netlink_route_socket pid=5987 comm=syz-executor.6 [ 624.199340] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 624.199351] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:10:24 executing program 3: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:10:24 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r0, 0x0) quotactl(0xffffffffdfff2cda, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)="06a415bc25300c489c8262e7ec78ad16d294a131d6f781bb3c38a973d2b2610ee2f4f98d585a215a79f2797321fbf4dc1b732e64fb3ad1db86ebd109e1ee5ee690c036e8380d1718c404696a1880eb498d10c06af1d4ba34e42c21e588660432973cc022257d450cac76c168a0e27753b095ba0305bbcd5e912468a07fe4f0bd865845ece8e9261175dc1844742a5908b3fc43116a6b06beef9f09ab9f3d744362a843439691a87c50616c2368125f2290d31ca84d4a929dd1fa606c6088645770b7c1ec753f63c34dfe92d0d223528d428a33748e72d719781f73b07f3bd4c470aefa4df1a8912648be3242b4567ae40f3cf2691ff0a4f4a5") 00:10:24 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 3) 00:10:24 executing program 6: pipe2(&(0x7f0000000440)={0xffffffffffffffff}, 0x800) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x52dd, &(0x7f00000001c0)={0x0, 0x770f}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000001880)=@IORING_OP_NOP={0x0, 0x3}, 0x10000) recvmsg$unix(r0, &(0x7f0000001680)={&(0x7f0000000380)=@abs, 0x6e, &(0x7f0000001540)=[{&(0x7f0000000400)=""/14, 0xe}, {&(0x7f0000000440)}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/12, 0xc}], 0x4, 0x0, 0xe0}, 0x2000) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x18}, 0x0) lstat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000300)) perf_event_open(&(0x7f0000001580)={0x1, 0x80, 0x11, 0x9, 0xdf, 0xff, 0x0, 0x7e9, 0x8010, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x101, 0x4, @perf_config_ext={0x4, 0x8c}, 0x40005, 0x200, 0x8, 0x0, 0x8, 0xda, 0x8, 0x0, 0x8, 0x0, 0x6}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x8) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') setresuid(0xffffffffffffffff, r4, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) syz_io_uring_submit(r5, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff}) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_SEND={0x1a, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x1}, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f0000001840)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r0, 0x0, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)=[{0x0}, {&(0x7f0000001780)=""/40, 0x28}], 0x2}, 0x0, 0x2000}, 0x0) [ 624.337108] netlink: 'syz-executor.0': attribute type 16 has an invalid length. [ 624.351310] FAULT_INJECTION: forcing a failure. [ 624.351310] name failslab, interval 1, probability 0, space 0, times 0 [ 624.354235] CPU: 0 PID: 6006 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 624.355948] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 624.358014] Call Trace: [ 624.358676] dump_stack+0x107/0x167 [ 624.359589] should_fail.cold+0x5/0xa [ 624.360548] ? create_object.isra.0+0x3a/0xa30 [ 624.361685] should_failslab+0x5/0x20 [ 624.362634] kmem_cache_alloc+0x5b/0x310 [ 624.363652] create_object.isra.0+0x3a/0xa30 [ 624.364755] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 624.366027] kmem_cache_alloc_trace+0x151/0x320 [ 624.367193] io_uring_setup+0x258/0x2980 [ 624.368215] ? __mutex_unlock_slowpath+0xe1/0x600 [ 624.369428] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 624.370689] ? wait_for_completion_io+0x270/0x270 [ 624.371920] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 624.373233] ? syscall_enter_from_user_mode+0x1d/0x50 [ 624.374519] do_syscall_64+0x33/0x40 [ 624.375449] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 624.376732] RIP: 0033:0x7fcf423d9b19 [ 624.377657] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 624.382267] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 624.384158] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 624.385923] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 624.387686] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 624.389462] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 624.391236] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:10:24 executing program 3: perf_event_open(&(0x7f0000000440)={0x0, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:10:24 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000000)={0x88df, 0x2, 0x5, 0x1, 0x10001, 0x59, 0xea12}, &(0x7f0000000040)={0x101, 0x8, 0x101, 0x66d, 0x7, 0x1, 0x7, 0xf9bc}, &(0x7f0000000080)={0x5, 0xb366, 0x0, 0x1, 0xe22b, 0x68, 0x100000000, 0x2}, &(0x7f0000000100)={r0, r1+60000000}, &(0x7f0000000180)={&(0x7f0000000140), 0x8}) 00:10:24 executing program 0: socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) mmap$usbmon(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x10, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="2000006d1f4dc500397124ea00e432001e000af0000003feb604005f0000000000", @ANYRES32=0x0, @ANYBLOB], 0x20}}, 0x0) syncfs(r2) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x32100, 0x0) copy_file_range(r3, &(0x7f0000000080)=0xffffffffffff1890, 0xffffffffffffffff, &(0x7f00000000c0)=0x8000, 0x1, 0x0) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, &(0x7f0000000100)={0xfffffffe, 0x8}) mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS(r4, 0x4c00, 0x0) ioctl$LOOP_SET_STATUS(r4, 0x4c02, 0x0) mremap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2000, 0xb, &(0x7f0000ffe000/0x2000)=nil) ioctl$RFKILL_IOCTL_NOINPUT(0xffffffffffffffff, 0x5201) setresuid(0xffffffffffffffff, 0x0, 0x0) clock_gettime(0x4, &(0x7f0000000180)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYRES32=r0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB='\r\x00\x00\x00\x00\x00\x00\x00']) 00:10:24 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0x100000001, 0x0, 0x0, 0xffffffff, 0x4, 0x8, 0x7, 0x2}, &(0x7f0000000040)={0xd6, 0x10000, 0x4, 0x80, 0xff, 0x9}, &(0x7f0000000080)={0x5, 0x80000000, 0x4, 0x5, 0x21, 0x4, 0x3, 0x8001}, &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0xfff]}, 0x8}) 00:10:36 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 4) 00:10:36 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) r4 = semget$private(0x0, 0x6, 0x0) semop(r4, &(0x7f00000000c0)=[{0x3, 0x0, 0x1800}, {}, {0x2, 0x8, 0x800}, {0x4}], 0x4) r5 = semget$private(0x0, 0x2, 0x0) semtimedop(r5, &(0x7f0000000140)=[{}], 0x1, 0x0) semctl$IPC_RMID(r5, 0x0, 0x0) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x7, 0x1000}, {0x1, 0x5, 0x800}], 0x2, &(0x7f0000000240)) semctl$SEM_INFO(r4, 0x5, 0x13, &(0x7f0000000080)=""/101) semctl$IPC_RMID(0x0, 0x0, 0x0) 00:10:36 executing program 6: pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x8800) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r1, r2) splice(r0, &(0x7f0000000040)=0x7, r1, &(0x7f0000000080)=0x92, 0xffffffffffffffff, 0x6) 00:10:36 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f00000004c0)=[{{&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)="dab0", 0x2}], 0x1}}, {{&(0x7f0000000180)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="40000000000000000000000007027f000001ffffffffac1414bb07178c64010100ac1e01ac141412000000"], 0x40}}], 0x2, 0x0) 00:10:36 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:10:36 executing program 7: r0 = accept$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000100)=0x14) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000140)) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r1, r2) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) setsockopt$SO_BINDTODEVICE_wg(r0, 0x1, 0x19, &(0x7f0000000180)='wg1\x00', 0x4) r5 = dup2(r3, r4) sendfile(r2, r4, &(0x7f0000000000)=0x100000001, 0x5) r6 = accept4(r5, &(0x7f00000005c0)=@generic, &(0x7f0000000080)=0x80, 0x80000) syz_genetlink_get_family_id$gtp(&(0x7f0000000040), r6) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x1, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:10:36 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:10:36 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r2, r3) ioctl$MON_IOCX_GET(r3, 0x40189206, &(0x7f00000002c0)={&(0x7f0000000200), &(0x7f0000000280)=""/4, 0x4}) r4 = dup2(r0, r1) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) ioctl$MON_IOCH_MFLUSH(r5, 0x9208, 0x0) ioctl$MON_IOCX_GET(r4, 0x40189206, &(0x7f00000001c0)={&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/124, 0x7c}) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, &(0x7f0000000000)) ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000080)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x80000001}) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) [ 636.835725] FAULT_INJECTION: forcing a failure. [ 636.835725] name failslab, interval 1, probability 0, space 0, times 0 [ 636.837118] CPU: 1 PID: 6039 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 636.837906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 636.838866] Call Trace: [ 636.839172] dump_stack+0x107/0x167 [ 636.839598] should_fail.cold+0x5/0xa [ 636.840063] ? io_uring_setup+0x33c/0x2980 [ 636.840563] should_failslab+0x5/0x20 [ 636.841014] __kmalloc+0x72/0x390 [ 636.841434] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 636.842039] io_uring_setup+0x33c/0x2980 [ 636.842513] ? __mutex_unlock_slowpath+0xe1/0x600 [ 636.843082] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 636.843674] ? wait_for_completion_io+0x270/0x270 [ 636.844277] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 636.844904] ? syscall_enter_from_user_mode+0x1d/0x50 [ 636.845506] do_syscall_64+0x33/0x40 [ 636.845950] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 636.846551] RIP: 0033:0x7fcf423d9b19 [ 636.846987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 636.849139] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 636.850019] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 636.850846] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 636.851672] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 636.852518] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 636.853343] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:10:36 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:10:36 executing program 0: r0 = perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0x1, 0x0, 0x4, 0x60, 0x0, 0x7, 0x2000, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x5, 0x2, @perf_config_ext={0x9, 0x2}, 0xd01, 0x9, 0x1f, 0x9, 0xc17c, 0x1, 0x8, 0x0, 0x9, 0x0, 0x4}, 0x0, 0x7, r0, 0x1) ioctl$BTRFS_IOC_RESIZE(r1, 0x50009403, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00', @ANYRESDEC=0x0, @ANYBLOB='G^ax']) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/mcfilter\x00') ftruncate(r2, 0x7) r3 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000014c0)='./file0\x00', 0x40004, 0x1, &(0x7f0000000f40)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f00000004c0)=ANY=[]) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) r5 = fcntl$getown(r3, 0x9) sendmsg$nl_generic(r4, &(0x7f0000000900)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000280)={0x638, 0x2f, 0x800, 0x70bd28, 0x25dfdbfb, {0x15}, [@nested={0x10, 0x34, 0x0, 0x1, [@typed={0x8, 0x71, 0x0, 0x0, @ipv4=@local}, @generic="f83a995d"]}, @nested={0x132, 0x5e, 0x0, 0x1, [@generic="ee4f29c126d01e35e522922f14529fc754cc8dc391f223b36e55dc275ba244371f708dbf6840bac82d517959ec465ce1cd534c35499b0d504480931fb3147597eaf5355074e95a62fefa2399aef4163e97eba04c58a8a03235bbeb43882b12434dfae0d12c8ac9732bb797", @generic="0111821f84c324b8edb5d8255b049dae68c6f9bc1609c517794bec6289431099087d25f2b88405f79099b6dab1c86360b8e8d6f612c2f596e7f4717fa0b54507f05a51162beef520a65330e46ee5687ddcec966dfe7e67e030392278238688772d41721fb2ade40cf82895b38584a1b7217a92d7ab0a8dd7d6d30220ca8cb906cccdfe07230852c8247697e1d1d64042abb393066b2fec970224ff457ad7e5ab746794fcdfe9ef0c622f86a210dda300fb88be577378cd4693952341e106c4b923719c"]}, @typed={0x8, 0x47, 0x0, 0x0, @pid=r5}, @nested={0xf7, 0x4d, 0x0, 0x1, [@typed={0x8, 0x6e, 0x0, 0x0, @fd=r1}, @generic="8218bc8aabed29e52a526bd85af471a15a47fcff0fa43e751139ed07723c2cf25be3261f5b8069b7fa50e137a2341d630b35487d46b4d5478c32875271f5d1610395ad62a1a833c0eccd747753d239c53ed977309a7c82ca34f0e97f398ab013b7db4546c401bd9294e1b629e7ab7458fadb23e9dd46c36fd38e96cac06d0fe60501067a501caac1529dac5c4bba560e446fa6e7fdfb428cf2076ba7c1cbf43489645ddfef7798b539f878a5e5c0f41bdf6eb6afa9c2bd848cb175e7e56aeeaeb56eb1cc0c533a21ee27e2844b87498bdbe7b820354a01", @typed={0x5, 0x3a, 0x0, 0x0, @str='\x00'}, @typed={0xc, 0x49, 0x0, 0x0, @u64=0x5}]}, @nested={0x2b6, 0x7d, 0x0, 0x1, [@typed={0x8, 0x33, 0x0, 0x0, @uid=0xee00}, @typed={0xba, 0x5f, 0x0, 0x0, @binary="c73df6b8cefe7f4ae83f8f7928a47f3370a000fdd6ad6557ce8c2a52b47f1fa3df44aff8e03b279d9009e071ae5b3d4d94d7631e0374f886baa1cd19976b6341a4c6331ac786b3eb91bca934d6dc9433fb9d26189731901ff0e1678a62c0f29c34caa94cb2e4289f47e560c86b0bf8961307f65c8ab6fe654521b069d03a068edc6f7ae241380e5c0112e220227e850432205c069ba17654927c2df29a464fe6e9cb3be00a1428a228578aa05b997aa9f5a106bfa68f"}, @generic="9569bf8ef4386acbb5def9b738a4e7f595908fff316f7246a688fea81b58750a14af94e26ad84a1799da54035e586721c11982837deb0c2e7eeb6416426d9d93ce685a9e74625b240bd13e1821aca3d3cfff4fec824d7c93b03d89558b5ec2d9559ebc69cd42ddaf593505e24b7ef47aa4e3afa39eee5cffc0fa2219f159e0628a6ae6e83abebd8d716f4c537b2b422861946a73e5e23b4553b48d2627bdaf0518fdfbefb365542069796832540d4473c0aa3d38510911357e39369a941847635d186d9a3e47c8e329fe2d52377ee6ef43486aa00a5f3aafd22bb848e6b12699fc68c54905efb3f0e852cb5d0006d427cdbd302d", @typed={0x8, 0x6e, 0x0, 0x0, @fd=r0}, @typed={0x8, 0x30, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="2185ba832dd87059f2707f76ca25ac3e1f2de4680f745579cb5f3ea4285cd7c80ec1396d4d061c8f73e68ed7b70dfa55606faf9e8cf8797b868990e8768b8016f73ce4f9f338e29babba277df61dc54eada54ec42a4485d635e5946e6a04d257e92dc94c8e561ef0c531140dbc90a563dbb5d15f12ae7b76954a24027dc3ca12661f5ccde02aa4ebe84b32b0dc9a0a43d3ff7566b637d7a997306b90b3632bcecfd137bf7e60f9f3df4e1d7d0002f270a5d7c7a3758af5be9a660271a266cc572285e8f304987e5aa7890e663e7901358617", @typed={0x14, 0x86, 0x0, 0x0, @ipv6=@empty}, @typed={0x4, 0x19}]}, @nested={0x116, 0x95, 0x0, 0x1, [@typed={0x8, 0x47, 0x0, 0x0, @pid}, @typed={0x8, 0x73, 0x0, 0x0, @fd=r0}, @generic="74c06095010e9cc8b24809df0867ecf1b0ea91f8ed61b60a1ddb30dd77b38a34646e8efe808ee23a157dc85341415e10af7489e1e8cd722aaaeb97f03dc34d4d55c0a63a3458356b17506cb9829eadabec8c21b3af18377349aeff19eb0e91c7f1f73ffda67de4d134bf865da1cf9c517f410871b4faa33bd4cd802d6f4b48cc298ad428908c766501feae6d62bd61d3b11cb5b4f804dca282ec0cda00c2ec93bfc82083d71460a483a0c02f2fd83ba375001436", @generic="c51a6ff1a283cdb6c3ad3e07b495fefa7180", @generic="4c71c38aabc5ca84db51e125f9ab6d080c77272831d54016d35dc1093537709ba026eb3daef0b0315e0105490bd48c66b3ec324e296539f4ff4963b5"]}, @typed={0x8, 0x88, 0x0, 0x0, @u32}, @generic="cbdac022cf8890c3"]}, 0x638}, 0x1, 0x0, 0x0, 0x4040011}, 0x200440c0) 00:10:36 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x96, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, 0x80010, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = dup2(r1, r2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r3, 0x8000000) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000500)=ANY=[@ANYBLOB="0100f2ff0100000018000000a5f9a8fd6d726b44cc73f2c3f78cb54afe55d20619e8ce7e3b34fc9f2bd98c801868ef5e3932e6ecab0e230fb41eaa83ddea659894eee0e99096272400417a98b85771ee796ca50b8b2dc537b3cb5c37c793113a5579dbd65a76c7e9bc1882d0630617c973c528cad3ecae24240243e0764cca52f5ec0b74b20005446a0b4f0b319fdadb09ee5dc4ce2610e2cbf094c0f22288f3686e305c7cc644f9c63a59700537e7b2a8a523c53d502672b32922", @ANYRES32=r0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB='./file0\x00']) sendmsg$nl_generic(r3, &(0x7f00000004c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xdad2d873f4b359b2}, 0xc, &(0x7f0000000480)={&(0x7f0000000080)={0x3d8, 0x12, 0x304, 0x70bd2a, 0x25dfdbfe, {0x13}, [@nested={0xc2, 0x3, 0x0, 0x1, [@typed={0x4, 0x19}, @typed={0x8, 0x12, 0x0, 0x0, @ipv4=@rand_addr=0x64010101}, @generic="624d48e6a459fb01324b2836d38ab817a285b411f7a4de1db0d78a1b1eb7f2f118242504bd69f4edfe2134546ecf751d591ca9ab6f29d15cb88943", @generic="68fa713fe26d2d837231a3612407", @generic="c45723cb96e704c391e212dca954b9f4b86e766f3f140adf4a78b1cda4bbea879adf5adf031188fd9ff4f296f117e056649efefb17d506e7b10d747d0e8984eac509a26f6b444ad68bc4ded7d1912fec0ca990f3850200ba75f0b86f0127bfad00ca46ada138bcc82d"]}, @generic="4c7f9208b64be77aabb0338f36d3606b78ad30f4a9b133bd313ff61703d8b8bddc274ea2f5ce3ae5bfd2d200592cf7dc23062ebe92576e049b287d7e57eabc10051448d25beac3d5f12c0de4feac0759fd00cf0b6304670bcdc7d27a91350e2eb74a41739f76594fb30fd0c21f9c516b7735e0d572bb51167874819bc4351694c1bb8e", @nested={0x277, 0x16, 0x0, 0x1, [@typed={0x8, 0x2b, 0x0, 0x0, @u32=0x1}, @typed={0x8, 0xe, 0x0, 0x0, @fd=r0}, @typed={0x4, 0x43}, @generic="78192481fac165df94b730a72d4832a208c3ef17bc01621f0f9ac31e4ef420735be5446558540fa59bd1eb542b989b992f900729cd4ce24680460d178a59c39f4a253017ccbb3b751dd617caae3bbda77d67069990eedde8993bad65b2cac9088808e99d", @generic="befa8b61dc99589a72421d67f7c4cdee0b9cb069d4143597792701729885057c10efe1afe68a8b4f7f96dd5849a1df203f31061ad278ad2db98d88bcb31acd243e9a037cb65fb8bf750b90e2f71b394baa715f3212f39c03f29bc13fe71b65a6121787e2e5a01cef76a526cb06fdb07421b366e57f54c77b946728abebe4f81b8602720219d6da207ed3040fb89d2ecc27bd5f03110548a00128efbba70c7816ae5e2425a84493b3b30e24884d535679ee22ec773f1028b9728476f1738aeda4c44417d71388124b433ef2cc4828ea3721824426a549e40612096fa5120918c494142502f89f24381d7f", @typed={0x8, 0x5e, 0x0, 0x0, @uid=r4}, @generic="1d90c8a6022b65c71f68b23abea67b9ed829821500dd26c83a2e61b2a10b9f565f32320a1e5735e2c4d3f45213af750566854b25dd21623fbc79e45ac33c4272bc39938607626adacac7b6ee0b4c039d560f35facbc284f32f448244e224690243f2ebb465c2d290eaa0f829bd581f5f6e3f7d559686f86b90b6b8accb9518378030d0211c941e4a5e5e6cadff8e465ab16e883b297673e441d12081fab272943ab96aff21c2f1118520eee563628e45d402585747fb79165fe85bc5c7e0f3d3359a9281323f5b52b1dd6478", @typed={0x9, 0x6, 0x0, 0x0, @str='*@/-\x00'}, @generic="7a794b43e53db61c3f54b5e27f92adf90ee4610bed29c7132670eb3050bb59a4888334cc9a81214929644031bc6df0ecb4"]}, @typed={0x4, 0x7c}]}, 0x3d8}, 0x1, 0x0, 0x0, 0x4000000}, 0x8854) [ 636.996717] loop0: detected capacity change from 0 to 262144 [ 637.019462] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 637.020614] EXT4-fs (loop0): group descriptors corrupted! [ 637.037867] loop0: detected capacity change from 0 to 262144 [ 637.043784] EXT4-fs (loop0): Unrecognized mount option "5J" or missing value 00:10:52 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 5) 00:10:52 executing program 1: r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000006, 0x12, 0xffffffffffffffff, 0x8000000) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000000, 0x30, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(r0, r1, &(0x7f00000003c0)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffff9c, &(0x7f0000000280), &(0x7f0000000380)='./file0\x00', 0x1, 0x400}, 0x7d5c68b6) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) syz_io_uring_setup(0x68f, &(0x7f0000000000)={0x0, 0xed02, 0x4, 0x0, 0x46}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) pselect6(0x40, &(0x7f0000000100)={0xec, 0x5, 0x8, 0x8001, 0x5, 0x8399, 0x4, 0x6}, &(0x7f0000000140)={0x5, 0x9, 0x5, 0x3, 0x20, 0x401, 0x4, 0x200}, &(0x7f0000000180)={0x101, 0x7f, 0x4, 0x1ff, 0x1, 0x7ab, 0x6, 0x7}, &(0x7f00000001c0), &(0x7f0000000240)={&(0x7f0000000200)={[0xfffffffffffffffa]}, 0x8}) 00:10:52 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) r4 = semget$private(0x0, 0x6, 0x0) semop(r4, &(0x7f00000000c0)=[{0x3, 0x0, 0x1800}, {}, {0x2, 0x8, 0x800}, {0x4}], 0x4) r5 = semget$private(0x0, 0x2, 0x0) semtimedop(r5, &(0x7f0000000140)=[{}], 0x1, 0x0) semctl$IPC_RMID(r5, 0x0, 0x0) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x7, 0x1000}, {0x1, 0x5, 0x800}], 0x2, &(0x7f0000000240)) semctl$SEM_INFO(r4, 0x5, 0x13, &(0x7f0000000080)=""/101) semctl$IPC_RMID(0x0, 0x0, 0x0) 00:10:52 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:10:52 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000040)=0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000040)={r3, 0x1, 0x6, @broadcast}, 0x10) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000000c0), 0x6e, &(0x7f0000000280)=[{&(0x7f0000000140)=""/81, 0x51}, {&(0x7f00000001c0)=""/186, 0xba}], 0x2, &(0x7f00000002c0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}, 0x62) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000540)={&(0x7f00000003c0)=ANY=[@ANYBLOB="540100001700040028bd7000fcdbdf25fc010000000000000000000000000001000004d5ff000000e000000100000000000000000000000000000000000000000000000000000000fc0200000000000000000000000000004e2200004e2400000a0000802e000000", @ANYRES32=0x0, @ANYRES32=r0, @ANYBLOB="ac1414aa000000000000000000000000ffffffff0000000000000000000000004e230f134e240007020080001e000000", @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="5700000000000000fcffffffffffffff080000000000000004000000000000004000000000000000080000000000000007000000000000000600000000000000050000000000000001000000000000000000000000000000000000000100000007000000b66b6e00020102020000000007020000000f0000060000002abd700014000e00fe8000000000000000000000000000aa0c0015005b0735009b0200000a0010000100000000000000"], 0x154}, 0x1, 0x0, 0x0, 0x40a0}, 0x4c814) 00:10:52 executing program 6: r0 = getpgrp(0x0) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x800000}, 0x0, 0x2000, 0xffffffffffffffff, 0x0) ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r0, 0x10, &(0x7f0000000080)={0x9}) move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x86) recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYRES32, @ANYRES16, @ANYRESHEX, @ANYRES32, @ANYRESOCT, @ANYRES64, @ANYRES16, @ANYRESOCT]) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f000000a680)={0x2, 0x0, 0xffffffffffffff0e, 0x100000000}) r1 = getpgrp(r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x7fffdf005000, 0x0, 0x12, r2, 0x0) perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x5, 0x4, 0x3, 0x80, 0x0, 0x81, 0x400, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, @perf_config_ext={0x1, 0x3ff}, 0x1000c, 0x1, 0x7fff, 0x5, 0x9, 0x20, 0x9, 0x0, 0x3f, 0x0, 0x800}, r1, 0xd, r2, 0x0) openat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x3cba43, 0x0) ioctl$FIBMAP(0xffffffffffffffff, 0x1, 0x0) r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYBLOB="4000000000e6ff00000000005ba38c26f4e59e1c0861d8ecc214cd12fa4fc6b82a169e88891eebf888e2069a9860dfff28a74f474503e6070856e4c2a2d6b6d01963977b7487919724c4032814840d59cc471299c8eec8b46eac00"/104]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lsetxattr$trusted_overlay_opaque(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140), 0x2, 0x1) r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x342, 0x0) write$binfmt_elf64(r4, &(0x7f0000000180)=ANY=[], 0xfdef) ioctl$FIBMAP(r4, 0x1, &(0x7f0000000040)) 00:10:52 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:10:52 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x5f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) creat(&(0x7f00000000c0)='./file0\x00', 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000000)={'#! ', './file0', [{0x20, '\':^\'#*\''}], 0xa, "7621036d611d3511ddb7c7d836793440534fa55d6352c49df2bef8ed1aedb518ae66c25cfa7068b340baa68e9cfdaa0cd2e9ca0eb68fa99c"}, 0x4b) [ 653.013006] device lo entered promiscuous mode [ 653.017867] device lo left promiscuous mode [ 653.029445] device lo entered promiscuous mode [ 653.030976] device lo left promiscuous mode [ 653.045362] FAULT_INJECTION: forcing a failure. [ 653.045362] name failslab, interval 1, probability 0, space 0, times 0 [ 653.047810] CPU: 1 PID: 6096 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 653.049266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 653.050998] Call Trace: [ 653.051559] dump_stack+0x107/0x167 [ 653.052338] should_fail.cold+0x5/0xa [ 653.053137] ? create_object.isra.0+0x3a/0xa30 [ 653.054094] should_failslab+0x5/0x20 [ 653.054891] kmem_cache_alloc+0x5b/0x310 [ 653.055745] create_object.isra.0+0x3a/0xa30 [ 653.056681] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 653.057766] __kmalloc+0x16e/0x390 [ 653.058515] io_uring_setup+0x33c/0x2980 [ 653.059363] ? __mutex_unlock_slowpath+0xe1/0x600 [ 653.060376] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 653.061442] ? wait_for_completion_io+0x270/0x270 [ 653.062477] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 653.063568] ? syscall_enter_from_user_mode+0x1d/0x50 [ 653.064660] do_syscall_64+0x33/0x40 [ 653.065445] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 653.066511] RIP: 0033:0x7fcf423d9b19 [ 653.067281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 653.071164] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 653.072785] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 653.074307] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 653.075807] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 653.077318] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 653.078810] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:10:52 executing program 0: r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r2, r3) ioctl$MON_IOCX_GET(r3, 0x40189206, &(0x7f00000002c0)={&(0x7f0000000200), &(0x7f0000000280)=""/4, 0x4}) r4 = dup2(r0, r1) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) ioctl$MON_IOCH_MFLUSH(r5, 0x9208, 0x0) ioctl$MON_IOCX_GET(r4, 0x40189206, &(0x7f00000001c0)={&(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000140)=""/124, 0x7c}) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, &(0x7f0000000000)) ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000080)={&(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x80000001}) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:10:53 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) [ 653.130810] kauditd_printk_skb: 19 callbacks suppressed 00:10:53 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0x662, 0x1000, 0x0, 0xff, 0x8, 0x9, 0x7, 0x4}, &(0x7f0000000040)={0x9, 0x1f, 0x1ff, 0x9, 0x0, 0x7fffffff, 0x9, 0x7ff}, &(0x7f0000000080)={0x1ff, 0x1, 0x3fd, 0x42, 0xffffffffffffffff, 0x3eb5, 0x1, 0x8000}, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)={&(0x7f0000000100)={[0x100000001]}, 0x8}) r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = dup2(r0, r1) fsetxattr$security_selinux(r1, &(0x7f0000000180), &(0x7f00000001c0)='system_u:object_r:syslogd_initrc_exec_t:s0\x00', 0x2b, 0x1) pwritev(r2, &(0x7f00000014c0)=[{&(0x7f0000000280)="afe3116223813389b636eb8d8a27aab41803f56aa6713b2a990a5c097a5797f241181d724082577dcd054de976b0d26312b5ceeb83ac94941ae7d606ae6c66753f805f82bdd1adad6282f95cd6ccac20f89a3d36386a0409c3af61461dae6a33d278927e61f596752e4f3358261a09f26a0b926ccf1ea0179873b950b006e258feda836d5ffdd73cc0c8bdc8ba858337d2d9f685f22b14caac01c7b72737f0d519c1dabb9b2ded910a38426ae94ab12bbe89cad8e77e8ccff2da3bfa53915522b5024116db3811aae0f1c4b352eb02eb60f67d1fbdb3e8fa0b5c4142f9f91670c3dd49617c83d216236fd859bcf25f6fd132dc24285a6ca9cdfd0f286bf5b72c5756536511fbc2d52252b9bfac477246faeeb29d934d46180681f6b25858ff2712e04c842d41c3676b68943f23d07aa10ff8fe0d2d8cecc22de72bd1d9eddde89d77cd0f51d629eebc50bea60513a81e55cba382f3a0dedce630ae32926a5de6a20aaaf6699f645eeddeb30a63c5fb3ec5b59dc192c0bcb487eb6a2f3fd46265ac89429a009bcc4ecf897f814d366f78fc2525733fb5e26836f1a7b584932eedf1b90a6984d655dc93a02b4261a6b3705e259451fc8a5b04f35768f0a3015ab2d8dad30df9a6333e85d1abb10e6e0591cf46b6093feb01af6a9bca4674eff9a6046c46083281dd5722cd34ca711f891ab680585de44e8fdacc4471a815810029b8c67164209d09446812e1ad3816c4c601ef1e33a8dc6f7bfec4b3d2847196995537be1710c1c668dc55504f3bf1313b9359e5d814189ed49a492f1832d2a689fd8007fa0f1d8a24609bdc5c94b6c7af0f0e299e7aa815b4fd9230f9c080335701672dc704272a9512d2bd38593c1f75e997755168a5c9fe694ae82e61fbb73c57e327de44ea3e8ab9d4d4e0df1138741a7a74c5469530e736a5902eedb4acaff95ca7e344ec6345ea2f4d7d8231b427882ff043d489df188bf5e648f1ccda86e8f1a3f6469200895427af8f0aadf3c4be6b46a22c9abdcbb23f215cb8f1c6046c53b416061728c178276385ccf727cc80fbf13933474b8958e9845b0162f4a2db913bf48bd2e09a130fae5bf3c7adbfb3839e58e2ad6cfb1ea40d343e8e3879c94306fa6bb9874f6dc27806bd865df78fd2567ccbf9bbd1c41d9849485262f418ddbb625be62ec24372a3eb0b914277bbdaa430557bc757226fc347524be21e0563743b9a3d7e3707b652dc4033c72d46b404c0144a3f31170984159159643256361ca3922b0c3567fe890bfedb9cc73556f0556b31ac6c71e5a6adcebdf9d6ece88ac69c7083ed38f44c964196d3017a9cde9b8323c849759861dfe8df175632322559e238e8cdf73fff490eec0b9f3b86b335b603478775be57ef636c129f4d0005473ef8e88d5531c06f932769c32991c6f3cbe97f5eb21fdde818fbe419868a64760f8923df2a842ce601b5d253c770e2387fe7d6d4f17cff525c4d798599869098ff15ebf2ccca551ca3441f08bf804d46e56d68f1ea3709ecf6b72d6263d6db89fda850dd9ef8e80969d16c1875713b9fb0ebc1fb06b51bb86c0bbbfb3d2c3ec5cd5ec02f6a031dfc5e1612e40e24961d1709b87cfcbb88d64ed7cc1c6405cc1581dab21b866758c007c295f78b3b0e30bb31ffa67f9617bcdea5649a473c51ff72f5550d074d413a64956c09e41686056eb124807f68ee0c1774eed569a863e2c2aeb8db1c33d1bb1c085501eea8848dfeac375217df6d6045c62962826364f720f58d005c499f37019be12d1ac2c64cdc6fe01f32e55fae243fd7621fd0740be02f2f6a8e009d6019cd226d4876ce3800efa1afd410cd1eb2db3bba456a6629cb80712afca10b0900501238f1df29bd32bde19e31ee270d0d6a488c5b7396545d0e2ee1184ebcd6e31e83ad5d540f0fd04931a9c72354e96c5d7447a9b166c7719185d50ab4110e8019cb6f7edc8521723a59dfd478385b8a9690db28141e01d69f59253f74c2465daccf5cefbb82970e3dab77391fb1a11269b7add5469d6a17eaf343192281224d201d2074ec6da67b3a4d777dcb95948647b4716c59512142ece92c36d2442e3fdea234896e68782d02dfd0e4a0496214803aab380b4b16b90be19e50a1ea6c3ce18d5eb973b8cf28cd61ffe502f76ef4fb71cd15a48863bc5f5c18137f7ba044f74152fffe6bf82ea979a403f0e085403124559f6ecfb071e8bc98efd35adb0abe7b7741f8a01d2d1208e6e953906f7612ef6038f62667b61b4a36cff25dba35772d711e2267623edd6ce100f636d5d1c8370a38c2ca1f98f4285c2df309569f3eb13bb78ceae6ae486576510a076e5cfa9f64f50f7584375d2d26aa2994dca0aa9f4f5c755a046e3f90435d4960b8fd8a0e3233cb44803f5e1b4a7021291a737e812c1f10e64e55d9e5f9f934dbee2e091b5b4db3b13a043b6ab87b9ac7f3ab992bc2950276692bfa69e6e7bfa992060cfb073a5583ea53e01e66373d615024a978c6e7463c0748b9b26135675dc812a17cd59b0a732bc47eda694c273d5b04600456e39caaf715e1dfdc80018b921532ccaafa63e12ea7e78495d8d4abfc8d953313fd24fcce5ca93bd4775c349fa23320fedaa5efc112ba13642f888a910b57400922ff4203d7963a7c1c2fa081fa0dd94d42932d47916d47fbe19d564fa3f435808006facb0e3aa3fd6cfb11bc32daf9f6a61eb6b5661f7361185d1307be6e3290441ecca84118fb5e14d137a146e836fac3f2cab8129d20a9921a1f44d681376c8742da14c97108e26dc40b9577e7c62bde86d758dfdaaeefae0a425b08f9789a37d2d423755e1b3e30b3f6528a3b7554d6b4044d088520a85ba905063fd569eac2bcec9128fe585786e8de74b9dc574d0d84b053f13bfdcb83b78aabe92fc1f0c208b0ee6512f55734e2bbc4a2b8d270b034beece4ff0d16afc430cb71b767561863db0e3087b769352137c07dc8416b1e493bb5da3e488b7661c970813092d9719374188e73b9f86727f67e8d7c2455aeab63ff6234af4efc98d0e5793b5fd94bae8b5bf10a114aebc2239681c74ad5ef50b66cb3cbd292d0c7d71c7aad523aee473be3c86e055cb5a8cc891aadcf6b876b8683c38c4fcb51728b6d19735a551c2b5408957f7f209fc8f0f10c0e8b702e52617308f2cd36d6771aaad329237eb8c86d86a0455100f9b6789f55a75d6ea9ad570b81a285c568c48f96fc298ad1c931b8738c98c87ef1bc6203914e089cb5063c2bf04349c879af0252f33b09775ef4d3052dd635f6ff5fa5b8b5058a0ea37343b52ad0ca70f1fcd5665dce7a6773279de9e74de5f5d6585737d76cbea1ab9b4d2eef4eeeefa797725b69f58e28b15a51836f8c9f7df3d32adb11fd052de4e4be399668dc0620a582fadf91d308f158a278e042102f4f872be51745e55a3c2cdc3343769fea1f97beb02cb4db47f9eb1e1315eea04aef046779509bab2ce0de084e9edbd335e53f3ad7e15ab7f26aca6e5d19fe086bfaf2f4857af2c09de84a73e575dd7a61bef61893e5418e0b76291d70adacef3a31e8334c85cd20ca9c6e7ed3a514a7695d0dbd370e8838a28c755599237c0199969f66d57e33244ec393eacb10ac415b9811003884c9ba8fde901b069df826b68c85447a39b967e7fd364cb2e0dcc6e30141bbaeb12e9fc2e17796b814450efa24e74e60a1d222511c7774a56f07f6419edc5f970c4156815e982d752d47a674d7860b2b38c1439cac62ae42be6c5723357d7f130bd3eec73594d3244c8bc011e9db6925b3b101843cb0448677ee59c0f480539c9c7f9bfebd183b0cbafbe0d50b56573c796d20f99134a1f8525d7a16acb975e8a9e3751dbf54f696c158d43b5cdcbec75405b0659dcdc9d092c94c0504cad76dc1dacc0c4b74a664f087286523e18d9a5b2f167d5b2d96d13c803fc0010804aefad7070f11d8524642ab705c122a97d8e4ddf3bf0d13f819257248520c220c7f49d988417a189c804a8fcde12389020d470f39e9e2400424f96a2ffc2da73018a45d381fb06abdedf832dcc09a7ae111550e9c48703983175b990a76bfb37e4b8a2ca4ec83d4ea003e3785e7fd01dff0e515dd0c879ac41db9760f2023dad8fe674138a2907f68db19f4635683da35341895e2913b784afef416fcb10dbe42c7f32d1874abda992cd45de32f184cb72b085b20479a0b472a5ba8ea876c7db2c1320795d254e2b71085f1db6dead69587e6af1059027e8e8dff9e5ef4e0dfd79d59280da2bd4046aa13a2f89c8c2fafefb2a734083827a7e9da8f7147fde292b94e36770f697a41abbfdcca2fc469815549a604e8ed1926f02216e1559c4d0179339bcf5d897c7112182ede424500a886720a76718cedfe115dc4f08cd83c1ce74ed51bb013ffb1b2d0e8a560e461f4b5e5c427d48e2f3e63019f9b3ace58b1ef998eb129bdc5d3a6945c33a0152689fc7faf7b68806d9ffbad80931ef9fe3963b9a0a5bc9da3a16116df2d9ca5675412b8ce2936d9dc3249b8e0d765983e89e662b758c409d2315e43031120995c1fe499157f35ec1f800933ca9e820c77e3c46c5fdc7ee0c7807572011cc10d78a9ea8275a442340325767ddc1510eb69eaa05ad47746edd5a2da19bfb047cf4a048a4e5aac4a5202c7be986c63ed1ce0cc4c6e4ea5f121743462e5ba647d9d541e0b276f3008440a7393093af377e83a522b38bfc3c43de4b0e849f6513e325a15567ee3016d2b534d03db6433e30d1c6d69603e17c2e53252ee99852a146e65d67817655376dda9d0ee320fa9a769e90fee8dedd338ade176810f72fbae64663096cc8c4dbe3cb6dff819ddaf3fc322a5d3d607f1f5801cedea8b7b62b6a7fb0b8173f28987fda2c79acc45db5b44d57ff86ff0eed9a196ca2a7b94a172df794fdef5ff00c8fd8cea8cf74e79d0d417a8a9113e020309d620be40b9b29c83eb68c9d9496c6419a4e43aec82223f9ce576112bba1834c29ddf3f6ae13298eb209e02363c66b2bf37d397f11571be061211f7b867cf5725ec2e9b1b7b9c7b3ad40bd5a88f963ffd699f900acf42d1fb50155013bd4185ebfb1af884e5a8dd4d7dc138da4818c643cb71b087a7ea311e09f86e7e8c85beae71fd60a6d401c012bd0b2010954750e98c1c2c7e0bcd27f6001f25af8f75bcf01f5590cafd3f6e10eb3e599492d5c152d3d29897f0c797fc65df63319cead73badc9f727f820f43f6ba918de4d787de37f2e4bae7c073af2c4e359578ea29d86ae54978371a6c0bd388b65bc96c57d09e0f9cbca17ce70ca9169e96da728bd8ed0337ee92bef8ff65e1427588da68270a9d1cd3ed3d8ab9abd4f21697e050a07ba06fb191a1ec8a7f0f72edf54f1f111f5e697204246cbd7740700ba8e006f84f096179a02360b1b25f6ab0d379cbb76a5f56265bafea8f31d987734840d77077dde119227914f49a53a97c6b7007688117298d49af69347371e1b0d518f069be6a68b6f38efba7b229347c92bd7d8c1753095cc09c21ea1de0a7a6fb58769c41eee01e7e2886b7c140c4694e097b9c764b25fcabe7427a862177619585612a503bc1b8ee82ffaf211bc5e47320a162a88b1a55c5bdb2d11add40957f50f5eaf356ec7d1d990759fc93dfbbfaa058046569c87a72c1810a9cd26185290cf725e7f61083ec5c532d6fa273576ba6665746dc94d5c986ab2b19c32eb2f4982269e5e935d49a08a7fa7a63ec214f30602accf55d340f575629e27e9661fce2e9287db20622bc1b425452753fd00ba56fe", 0x1000}, {&(0x7f0000001280)="8d6514d30b22c3cf08e9103aa6929763361c185781935be772c1a1e9271cecb8ca93b4672d35bfb66652deebc2146850dc790732e2b4e53a545873034e3e6f7d98a0e1f6f6cc8d1a4bae9982fcc4f0114c116885fcf2acb3b20905f584d263aff9d029b384bb91651f04d56583b5e25c3745729cc2a5699bf1bf311e9a", 0x7d}, {&(0x7f0000001300)="43c3781a4d03ea803bebcdf1b88828e857795e1ceeeb1ccde49f9e45f9eacb62ecd39e018676beeeed8a3467f59f9ce76784e69a28fbe827bbaa285122463017f8f9065dc198b65e58d26092a1133e65f1457c8daa1d5ab51038a8c666a6cca942d951db7d448a009551b6908cb10166d844e6b5329a298ca6fde44b377381a7ea79fa327eb6ae10c0a52878e4cf2fed66b954a3ca6937ea27958f92ab506464a20af4c3f23fe37d50f1c7acf1e222e7d1e4b2", 0xb3}, {&(0x7f0000000200)="2cee96ba44d0fcb7faff711fbfd30956bce6f5e259e2883fd486189bd7ec", 0x1e}, {&(0x7f00000013c0)="3828834b55f9a1b95277071011791a8b24e837177cfc02b07541216179fc29f5292bd7044cee94277a31d13b05e3fac385a8424f38ba8084a2237bb333967096314966c2a5b32eb8beb5603b7cbdcdf5973c9a26080a17d9cc4ace5b097d9b820582cd21ee2e5a51fbb125f90e438b125f4014013af725024ca5e128004fd35414a58bdc77bd29c4e3c24c21aa9e58f1640c064706769c14947a1b69c77a478185bf405637d7e34d880e055df75f00c142df36cd56a9b7d489e5b03e2d0879dee4867b", 0xc3}], 0x5, 0x4a7, 0x1000) [ 653.130828] audit: type=1400 audit(653.013:265): avc: denied { associate } for pid=6104 comm="syz-executor.1" name="usbmon0" dev="devtmpfs" ino=119 scontext=system_u:object_r:syslogd_initrc_exec_t:s0 tcontext=system_u:object_r:device_t:s0 tclass=filesystem permissive=1 00:10:53 executing program 7: rt_sigaction(0x31, &(0x7f0000001f80)={0x0, 0x0, 0x0, {[0x6]}}, 0x0, 0x5b, &(0x7f00000020c0)) pselect6(0x40, &(0x7f00000001c0)={0x8000, 0x7fff, 0x40, 0x0, 0x6, 0x4, 0x7, 0xd74a}, &(0x7f0000000200)={0x4, 0x100, 0x40, 0x42, 0x43eb, 0x4, 0x400, 0x5}, &(0x7f0000000240)={0x8, 0x10000, 0x8, 0x40, 0x9, 0x81, 0x81}, &(0x7f0000000280)={0x77359400}, &(0x7f0000000300)={&(0x7f00000002c0)={[0xfffffffffffffffd]}, 0x8}) r0 = syz_io_uring_setup(0x921, &(0x7f0000000340)={0x0, 0x75c9, 0x10, 0x0, 0x216}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff7000/0x6000)=nil, &(0x7f00000003c0), &(0x7f0000000400)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000440)=@IORING_OP_NOP={0x0, 0x4}, 0x401) pselect6(0x40, &(0x7f0000000000)={0x10001, 0x80000001, 0x3, 0x2, 0x3, 0x5, 0xd46, 0x7}, &(0x7f0000000040)={0x9, 0x2, 0x2, 0x5, 0xfffffffffffffffd, 0x0, 0x3, 0x2}, &(0x7f0000000080)={0x0, 0x4, 0x1, 0x6, 0x2, 0x1, 0x40, 0x9}, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000140)={&(0x7f0000000100)={[0x4]}, 0x8}) rt_sigaction(0x39, &(0x7f00000005c0)={&(0x7f00000004c0)="66420f3801262e66460f673d32233333660fe79d07000000448565063647834c9200bcc482c9090a263e2e66450f3a42800b810000076666450f5f2d6079f920dbcf0f909500000100", 0x2, &(0x7f0000000540)="403a639a3e660f2c39c4016bc21500000000098fc9e893747afdc4e1aa5a5a8bc421fe6f3576a378253e3e0f1ca6fe000000c4c3450636058fe96801b200000000c4816de1d8", {[0x6]}}, &(0x7f0000000680)={&(0x7f0000000600)="c46259911c01c422593f91d95d000044d9eec4e3d97b0a00450fbeb00200000066410f7070079943dbe440ccf30f52359cbcffffc4639d69834000000000", 0x0, &(0x7f0000000640)="6426f36d660fd86a0026f30f1ecbc402fd234a00ddc6c4a259909c920d000000f3440fbc6d0dc4c2d99ceef2436d0f878f000000"}, 0x8, &(0x7f00000006c0)) rt_sigsuspend(&(0x7f0000000180)={[0x7]}, 0x8) r2 = syz_io_uring_setup(0x3a71, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x4, 0xfffffffe}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000002c0), &(0x7f0000000100)=0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000e, 0x13, r2, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x5, 0x30, r2, 0x8000000) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000001, 0x4000010, r0, 0x10000000) syz_io_uring_submit(r4, r5, &(0x7f0000001980)=@IORING_OP_WRITEV={0x2, 0x3, 0x4000, @fd, 0xb7, &(0x7f0000001900)=[{&(0x7f0000000700)="6c02c205fb6415b01722ce04e4b07940acb6c5e3803d6c7e0b87cce48af101aa0d127a22c5f79982afafb859e6bd7a5ca8ff61d80594f874cc139733b6ca62e9f98b06001580", 0x46}, {&(0x7f0000000780)="edecf266c9782946b5dc1bee7fcaaa768590a5aa02231d15b0bc78332c7fdb5e4a23667455a6c554f157f42890267eb60e72bb152fb0075b4b0066001e5cd8bed562e1493b961b6fd1417e591142cb35d764ec641bfd0c2632027a19aaa10f3a05f8923b6fe77b53bf711e8948ee2db12d5b7d553394c4f3ff0356b4aa222a087e377a313a7280a2c51b9af8603670e50030be6c17a6f66ac8aa329219c9ac1fc21f9a2f41ae239eeb59e1fe34d6871c426ae4ec614ba664f8e145d3be839fada43e6252c4986dfc565bdab5d75da646eea5b36a71fa1ce11bd982236dd3776257919957a54340cd7ee14e2c524f3553d390f5b6cf660629fb48fa79d8f62a90a9c6703ccfea297ab320c173714b2c6f05c606392d98c03ee3af2e4a303be4e517cedac7d0e76a27623f2dc5a0f3052c855d1522f5db15270130c72d0f60f0065044752acb2703537e4fc9e988238556c41ec6f4d68c4edb1fbe9d4d8cf8c2c64d17dd1e222c60b1d7a8c36e029db3dc9de8f66f605ad6f38d540f0aa8de60e5c7d162563f83b2b454e945f8d0e662ca73cae64b7f11d336b8dbbbbb0436f287ff73b6cc9627c7fc2cd477f0575f563f0a1bc673756ac1fb79b6a64712e173daeaffa4087bcaeeb1ec0f2795df90b298cb9a4f4b2e97d1730b71a0536afe7158f09d0d0fcc93c3d4dad47fd4d30aea7833e19d04a873a35f5ee349430ce1b986a3693b9f32b469266dd5ce98c57b7652f0fca1477016572b3cb81b268821624e3d09aab7b26d447704c6306bb7ae476bb2fb58ccc87bf57da18404255f23a2b5e5de43d29c52841588d9355c25842c039e84fa3f8cb4218f597e65491b05247242b685906c00d304b73aad1c17376f4757f3c2df414041106d4fdcf0eddefbfe00035c4b1526aec74b827ca03126956f5882e6910647defdb4baea6354a9a5382c541422e29b81a5773635ccfdcf6cc9ebecd7d2c9a24ef9ffa6ed229167995b389d56355af1bd806c973fee353f92a1356855d79c40bdeeb543c3d2b80a9930d045cc89beaf3a968ea56a0089dbe47288af0924b5c3fd8b7e0d66999d802aad97ce10dfb3cb118eb83fe17e1a93fdfcf187559cead9186108b3a88c1b65291a91534f65dfdd12ad86166ef2842f6851f4f1741cb1cf4f605186e99d3f2e109ffd4c52fe0f0848735ef0b0577494767645da951339a37c805d83530e525015d5c90ec1ca29b52fd5af1bf1d7944874293948f0b2282d3eb6b4e685de57fc1d861631ba93c7ab67a3509b157de3f30a805b162552272b4eb0f713b08c00212de5b3cdacb2b90a9a5d4d7ea47287daff6956f348ebae3076a1631584c2c5c096b9e1c80afafe295425a2c215f0bf454436442e0cb79031e54bd47ca2e8cd96255a7297bf955b4ff511d7fa3b94b81bd50cfbb7914b9b92e6f27249606e377b63e4e53f7ba04c7dbf2960f6fdbef8f4bf35c85d41864974c78b455f86f35f8d6de8fc958fd166d88b05713049881dcdfef4b5e09f7efdb1501d1f276ad8f1f58759ee020040af75a42a35d05abda72aa644809a50fa72b268a656a833bd382e1b1ae08179c8c8a2c9ea552c1b1989c9a306d26a5631e181e16b8eca427af9f796b233e4ffa3206da4437ce4523c8d9f67cf826ffd830ebc29092854c074a086a8ef5f9ee9c2a5ac40d68a2d6fd5112d25cb6aae0d3967db99f4dbb3c7bf78ac4c421fdb84b5eb81352edb11319bf93408edaca4a84c3b403ac2757fb303cebb434439a07922dd3ef930cd511cd40e63057edd5829c5dc3a4caaccc15e903d5d5302600fd973e71d375e29a7165e3ea3454ed0bc1144429b77bfd04e188e259150f7d21e939c7707f43423854ebc33f22ea351516d2c1224c7404835020293b6fece3a816a5e2d3748dfc38928f4b4d5671008f826b603ad0023379c69f83dd2d73d12917a03c6834121e638264d50352b0ca1361d63a1e104d29efeb9377eb2e3355a21d0360ff42e6782fcbdc6a961488ba3a701b1736fcef5c96682916b9e3e641bd46d0d8c563087f9d9ac350917fdeec9f5b22265222c9e5add3bc2262602eeda2b7836ee96b04910cd8a5b08edd5868a108eace22a37e91461ef899816bb1e1f673770f7a2e48a5d8afc96f7d83c9e5a5ff3a14d2beff0437dde1cf63c48b94c8a0be2d077979a287034e56a3dc6aaf6a9fa87a45ebe9b73ad69dc1ed45d2617dbb7106e97c01a81e63fd8d469c79425ded523cd5c52c9b0c66d1c52594da03a10e6c87b07359f3b84c9bb1e68c3f985cbcd06f1132aba2923f85f7017b94d4f83987334c3d66119345a62edfd079f9b5417c3788d0f87806c2b86dbbe1d27a23108843c2de67502e887d6047ca79916f9a0cee760114e8fecd4aebc31ba378da4e8b126179903c6242329bb11e2bfff6ccfdfc0f4fd87302d96e4632431dd6f42bd7ac52f0c82ca75f7c48bca2cd559305c5ab7d0013e13524783539e9f096b8ab3ae1a876db3ce669d7c2800e63d8d1cea452c20ac0cdf1efe9c1c9fc89b3d4321984d8e02791eb253ef4a1b07b36759c372bd6a6c734eef30ac91b77fe6867a5ee608d98c99aca449631126c20acbc027f250a859359935e90d9317ae01359f00b362c68c201bcd9a7c7f58d72af963d6c303c8b1026099150719716b23095f3fb423287253623f823603b5668a0960c8db0eab82a7af32c380f33ef5d9be2ef18fcb6cc2320ccf295f7909616e780f5e1aa8036e2faa05ea1a8d024be11a8058cd052f3fd5d7b7e189832441c230b45aec5e273ad09f301d60fc924ff5507a7096630115e4bf567be7198e30d3138ca65f5bc901ab8083ac75766fff86f72a666c4ee638843ad019f1e59c2a42b06c3c271de87d361a50f8081a67650212fb2a779c5da8a6e68b5308b4198d9190ef6686ba792c5c5759757a154d0ae1dee08fb2086db37c40d84b389a673e0af71426401040c3a1fb9c2ee179cc45e17102301f953432b7c095cbe0e6cfb6096028404edf51b7d09ef9ea90b8c81223b40446a63a9a63d973957f8045e01c61cd03e6e312e1c4e500cc1ba10b61dc7e66c1713672cfc6048def0a97e9bbd31bb79352bfeb1d3672f879eb7cb8c6aa9c7e5fd7d921dea2a9b474c0088350fcd1ade88749e12fea68f9d01751a03d719046c8278faf35885405fa920a5e0332ea4a683ee82473889651ebdd56a537b6d3041b11e28c423f0493085ab1f21e09158097f84ecc6034c7710f7fd5229fd3b7e7991d633eb7ec435a3d7ab41afd26646ee2daea6c9ae4d8d37c70b62ce5f7fdd44e6a2bb5c7fcf7d24e1d0144422263123b3b47820aacc7cf885c9ed73971a995abc241c77df49108991956e1600ad2fe5c475d40414112d5bf32e880af6bf34d82c18edde2cbd583f1e834acbf7b797c78760311a70eb1c8a3421138c4c6a2db2beaefbd9f7b718a4a2f2dc8cd6ba73e8db4c1decb055f3976fd9eaf98bd08bab847b486783d524093f56bd48ff0a3ff5522dba2d2e10343ca7cd97aee740530ed9daa7253834ca87b061b0606c87bf10fa4363b32dc3886c87a864853dcf0193cf70955e6a595667a4a565f07a62fe26236bae6fa72e9097d22e8b43d002496d865fe7d0b350c7f529803fa6362036c42857c8a79888c74789e76476af376dfde783eec817ea32f4e648a455db90b8a7aadc6f5b7727d7a7fc4947043c91a8d78a7892eba8ee698e879413a017c2115d1d2e02944b40ee100a134bd46621dcd28d4e3bbe9e8279d28c7e6020e40fce3b3087c08093f222ff86cfe81b6a15a5a0c2a7f71c4244f8a14dcdc7977cfbeb6026bfa2f8040760db82ba9fa0dafdda96fad49f61182c5f40557e36e65a11e31fb0726063e49db4b2a23ad33e6b3a5a845fb5d7505ac5499c34ac1b9964f410917d0b08c36398419c41c127ce3852e3c6245160501376a27916064421c6e94846bfbe3268b599d0e51f6031d09a3258eba3c579989a4265ec986a539b00fad0c1d22462d68742edd97a339416bf3a9cc94d134b113cd8d860782fc7979553ddf1dc69cb17518cf8f0da509c1fc30bd279b5d390934bb0585d531b6b27a584ab186c674e96381fff617be9ce10eb963ba3334109815880e4b5cb5bc32e4abd000a812407e9fc2bba40ddff3ccf90b144a4ddfbe43040111714cf9b040a31ab3969554ad891d8cf3d7e6b2b315ea206569794333772312480f270f0d0904dfad39f1cdee8b3823588427edd793d958eea0f38ae408d114cccd345ed06dae602f1e1f490c0583b774f7dbd4838680382b6df3068d4f07a7c3ce48f1e4dfe78bc3bcf02424e20b6070e1242f10fcff24294dcb20825c64dd993004bccb930dada37ab195de2a7a8de7f0dba20094aeb63f9ba9c8949ab1b41ca9e3b2aa4009e7e5b870ca0c678e4b5456018ecb50566a6e79d6271b83570a7e4ad9630411682b12205d5644347b1ec483a8bde5f4b29eee23168444801f6f01528f1bb9ff431125a540afbf8a20a1fd86ead2fc26255b8baf78e7fec1fc43f10a089725518604958ff714d575b5817b9135e06af30abea72b3e1f8267180324dc5128edb5920c36363b5a6d782b32f449b15ccd546c22add60dd588d77360c1804c0eefe5d3d63ca2a86f92ee47f443c43932df860f09bb3c489ebad129d34188d4b74dfa563eef2ed9ed360e8f7eb57cfaf2ebf28fc43533693a1b3565d0557638089e759d1d562555f126c0a54029c354b2f0b246b356e9760f0be4d6ce26aa3b9d5c96e4efbf566b5954cbd435cee0c6f62e8dc5372347fd87d00e9ef873e5b765d0e7beebeeda75b94da7dcf518d041dc800eb48dbacd5db5efcdd8a27d8e094df6960360aa0c455db2acf44d4c98f5c85c24f3ecdeb9767460d257ad280409e74c767b633aa876159973daccd2feaf12592181442c30ed311d0931bb0651c2eb93e44c546f2df2b208e5e918fa3c9bed09fb6ff5c6696b4bf283003a7d50fe6e8eb1003d2255e94d5328992f04ce603fdbe9f0e820898267b396ef596590beea7383a0c29f5190f628d75d1daa283b87cd371abba769710c655a21d88edc8b07fcf0d13dfe260157c55359bd557d63109b77ce8cbe4aaf39faf7d5710d5d21251f9f1376d1753283148f9b4bc6017fbe24dccf0f5db25df9a95c72980316d2abd6161989f3146c216adb6e0fd99815c761d00ce838b9faf715b28575261c8d0c708ebc57086c623cdf6a5bc093583109e2a44c43fb54d4daf8636111f7304a9f09650bd8a44f8483dcef1eac032992d537a2e0eadd11cf9198f07e5816ac62b423c14c9464898731659928f63eae0fa8e046823b7786b137322755ea6a895754ed4c0d959a06192bd51224fdc16823fa94b40c8bec9b3ce80f4f6b8b390d66859061ee8678179e57dc69176bea9a7028dd7d4148eedd70135d40db82fafc50283d5f4351f2e2c4df84918c16224039585c68127f130cfb892f39b31a3ea18b53f56f4d0a2e67b9412841ec1835478f01ab2ea8ceb21a14ec543d62ddd49ab9ccb87a1abf3d36a0940839da2814fd09bd9d65db4ebc5c4f8857cfacc48512a1b33cffee630d8dab20b8bbf2ae397bce7dbfb64212407e7b6d20b538816acef58da0c6940b9a67ae29a5cc982ff2be26792dce9c2f20a2d655917ae79291ba8f63bdf68ecec453cb1d3974e596295789e3c3d84f0761c13e77ff3d3ba58447fc053ee3a72d47bde463e32675a2835f52b379e039eb4f117b7afd2dc04d02cb4f6f711017473362b0d55ce91c3e8ae920bfa612a51ab7", 0x1000}, {&(0x7f0000001780)="600d241ebcad86040d2ad2b176e18f78f94759d5be95e95923ad540abb5e2eb76284cc0a6720aec70a5ca535d4fc5a4fb2c968b8e99fe1663ce6586e94b0ce6cd8189b51a8f43102844cf1471f43103dc4b25b0c050f228604d336c229af4206ee2a116805a00505ad6fa2da74bdb414dbb08d0241e8223c2b0a8bacadbcc7a5188d2cff0b5aa0ee1cd22c138872028ffcbc01ff83ea8d196a70d5f2bef861578518649c46c469fc9046578f448dc440310089c12aa782f034c9de", 0xbb}, {&(0x7f0000001840)="4ae0cfbeea0cb3b664f9717f2f5873c3fd1ee15afdcffeb651deaa8a27a3821c97dcc745386cd2ceff5b1985b9de3ad39557691cd9c47795a0861251fbf55803f448c6da4232ebec9d4481f3a60aa43e96ae54890362cccb55664b906649382718c1a04e32c35f16ead7a63142ef11d48904c987828d728a1b437b17e792d011e4699f1e54a2c64f2472c82a6cd0863208aad5ef8385ec191c0f80c694df2590576e7e9f345508553860e6482428a4ed8ec7977b4034a83ef8616ec0efb5e6", 0xbf}, {&(0x7f0000002100)="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", 0x1000}], 0x5, 0x8, 0x1}, 0x0) syz_io_uring_setup(0x5e2b, &(0x7f0000000240)={0x0, 0xca12, 0x1}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000440)=0x0) r7 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_buf(r7, 0x29, 0x0, 0x0, &(0x7f0000000040)) r8 = socket$inet6_udp(0xa, 0x2, 0x0) syz_io_uring_submit(r4, r6, &(0x7f0000000340)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index, 0x800, {0x0, r7}, 0x6, 0x2, 0x1, {0x0, 0x0, r8}}, 0x5b) syz_io_uring_submit(r4, r1, &(0x7f0000000480)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0, 0x2, 0xa}, 0x2) syz_io_uring_submit(0x0, r3, &(0x7f0000003100)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001f40)={0x0, 0x0, &(0x7f0000001ec0)=[{&(0x7f00000019c0)="0abe07ae50fabb6ac5889fb6ff8425f3a8e35d29c02acfb94ef472dcce00238f0cfc4549ec6971b54807feb37a9f497f609353848925b0856176a6769211ec909a8260912a283028d0cce4f6b32c991123d3eafdf15a89a7060985cf56ac6f1c8194c20910983a1bb9dfca63bf76c077dda6cbf312093d5151353bebd27bc6d92b6b09275fb1dabf8ff447cf7a2c25c6cf1630d2c7162d4147fbca715e31ea4f1eb4c8ecaae750a064981ce4f19a17c075244c20ad157d7ef0083651cbd893ac467eca96fa028bf7", 0xc8}, {&(0x7f0000001ac0)="9f005a1d1fed916767915b950b0f5333e461e0ed38521a0f0bb1495de7e6e02162596943f235e22dad5345c88a67bb3ef9bfb11cdf75188f23822f039375cbf5582d5751795d9b1026bd1b1a7f6dd693c11fa0c111d0d8087a125e5c985618ebabb2636ad32327d73c03af7dc9be2756b00238504506989f92cde0c89ebeb001659a1eb772a34b781798767c97ad0d21c2", 0x91}, {&(0x7f0000001b80)="dc718b530cf5c750fc851060001a05154537638cbdf2974cd3301a27060669fb70c2c209da86d33cbdfdcb22d2254b369b0dacedf70edd5ae7f5783bf2a210169449df2bad96c71c7cd591378d27334af940502639625bf538b85b486b0116b6f0e1624300b7f920a3d3fbc07d1ab813afe8f564408898ac735d124dc490edb33ac6f871c8ee3f1b584526634a076cea7292c8c7d46177b0acefdc38b5c03eb396f9c2e4bcce7a52697e5e5cb734c5e9b33c5772e5a07490cd4438aa3f8f022a0df11ae11abfa38f46c8a1c7562a5c93b548ed9778d62aef1a7677b469717838a1ae193d", 0xe4}, {&(0x7f0000001c80)="ea20e660fdf6b699d7435159cb31af937c550ca5b70c0801e7c131aaf9c81154e142204dc4214606998cc0cfb41337c5809ef0f7ed2f013d9421417cac7827634d94db2ecea2a550e85b041647930037599e34a341b4e412dbd11e6d3e171f3e052bb4d96fef1f3c21396733dc1c07206f23865a608d3a9650cb8e035936d29c76af1882bf08e2c28d9496ad56550af44b72d80fe692f9e0913f1bf21cc4f163573b68a4e2c7f1b5b38251f7ca38de1c8163531098c27cf2bc08275ab572bcb11815440bc02950d7ff29ba45e392d14cf84272b5af2890c871303106ed6de82b6c0e52d6d7aa9aad22", 0xe9}, {&(0x7f0000001d80)="82737654af9e9afc8629371894e5cf57f949c23411d5fb98da0dd2b56b6d84dbc69161467452dc245abca7d3784c5be17d4e60b226f12001fde564597b455d41d1b6e42cd34e18b30fe3c108186a64c849c771935dd7b7dc", 0x58}, {&(0x7f0000001e00)="6c11b84819b8af27a52c0cbc31dfd1daf595eef4a3a91574c9d5174f3609dcd39b847f1c9684d68e9cd6b239d69b5095031892c5ba40d2e3581cf433e75b7b924fdb872e1ac14bcd1e70a6c94088c571de335057a088dd2847b2483dfae10bde2f7b9eec09e92aa14c4b4db4a49784d7074afd617ca56100fb9956f48a9ebff5c6ecfc584d9417ceb2ead0718d77c24007c7", 0x92}], 0x6, &(0x7f0000001fc0)=[{0xe0, 0x0, 0x7, "e1a3785a2596477605949fc9209f9b68984de7e911102070b391acf5c5fe468e96228a26ae972c5ac072e001b1334e9a4c864b64306998950bb4b0f2b039dc8e829187b5a4cec61dc3f1806b2acb418de78f676c5f3e5c905a73739bf0df0a393f54bd6057fc4120f160aed44e6b461419cb0ec0d18635379912c5136cba27966ab239e647c0d558a8f01ee1bc074311ddbb5cb62a165f962b70def700fdf7e2562f90d96179cd779764f60dec21165db927711d04da92e8ae1bb34bd598e22e15593a37679f338814"}], 0xe0}}, 0x3ff) 00:11:11 executing program 7: rt_sigaction(0x3c, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:11:11 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:11:11 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f00000005c0)=@updsa={0x1bc, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in=@multicast1, 0x0, 0x33}, @in=@remote, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0xc4, 0x14, {{'sha256\x00'}, 0x3c0, 0x0, "5a6855fde7707c1b7cae3c147135f9c2ba7b610ac300bd06b2f009bd0537d7580c0bb8bc4a600300009ebf1fd296cb32d8347608236c9004d559f11fac88076804527b3839e6b2eb1bfbff2583102c3acdd40d498078a0e5414843d514f7feef875b4d8b47d8028280268536e3fd7a983c0ce3f890c1bb41"}}, @XFRMA_SET_MARK={0x8}]}, 0x1bc}}, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x9, &(0x7f0000000300)=0xfffffffd, 0x4) io_setup(0x5, &(0x7f0000000700)) accept4$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000001c0)=0x14, 0x80000) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) r4 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ftruncate(r4, 0x1) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r3, 0x2ff, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000280), r4) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)={0x54, r6, 0x72d, 0x70bd2d, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x40048c0) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x2c, r6, 0x8, 0x70bd27, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x50}, 0x1) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="3000000010000100060000800000000006000000050000000000000011000080487fec864b245e0f3f9be149f8000000"], 0x30}}, 0x0) 00:11:11 executing program 1: r0 = dup(0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)={0x2c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4}]}]}]}]}, 0x2c}}, 0x0) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, r2, 0x2, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x1d}, @val={0x8}, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x3}, @NL80211_ATTR_VENDOR_DATA={0x4}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0xb9}]}, 0x38}, 0x1, 0x0, 0x0, 0x881}, 0x40) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:11:11 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:11:11 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:11:11 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 6) 00:11:11 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) r4 = semget$private(0x0, 0x6, 0x0) semop(r4, &(0x7f00000000c0)=[{0x3, 0x0, 0x1800}, {}, {0x2, 0x8, 0x800}, {0x4}], 0x4) r5 = semget$private(0x0, 0x2, 0x0) semtimedop(r5, &(0x7f0000000140)=[{}], 0x1, 0x0) semctl$IPC_RMID(r5, 0x0, 0x0) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x7, 0x1000}, {0x1, 0x5, 0x800}], 0x2, &(0x7f0000000240)) semctl$SEM_INFO(r4, 0x5, 0x13, &(0x7f0000000080)=""/101) [ 671.521512] loop6: detected capacity change from 0 to 32768 [ 671.529133] FAULT_INJECTION: forcing a failure. [ 671.529133] name failslab, interval 1, probability 0, space 0, times 0 [ 671.531823] CPU: 0 PID: 6136 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 671.533404] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 671.535280] Call Trace: [ 671.535882] dump_stack+0x107/0x167 [ 671.536720] should_fail.cold+0x5/0xa [ 671.537585] ? io_uring_setup+0x40b/0x2980 [ 671.538531] should_failslab+0x5/0x20 [ 671.539403] kmem_cache_alloc_trace+0x55/0x320 [ 671.540446] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 671.541590] io_uring_setup+0x40b/0x2980 [ 671.542503] ? __mutex_unlock_slowpath+0xe1/0x600 [ 671.543587] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 671.544729] ? wait_for_completion_io+0x270/0x270 [ 671.545848] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 671.547060] ? syscall_enter_from_user_mode+0x1d/0x50 [ 671.548229] do_syscall_64+0x33/0x40 [ 671.549076] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 671.550250] RIP: 0033:0x7fcf423d9b19 [ 671.551101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 671.555286] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 671.557006] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 671.558610] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 671.560214] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 671.561839] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 671.563447] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 671.599492] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 00:11:11 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 7) 00:11:11 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x2, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:11:11 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0x2, 0xffff, 0xffff, 0x8, 0x0, 0x8, 0x3, 0x1f}, &(0x7f0000000040)={0x1, 0x80, 0x2c, 0xfffffffffffff000, 0x7fff, 0x1, 0x5, 0xfffffffffffffffd}, &(0x7f0000000080)={0x7fff, 0x6bcb, 0x1, 0x51, 0xd32, 0x4, 0x101, 0x401}, &(0x7f00000000c0)={0x0, 0x3938700}, &(0x7f0000000140)={&(0x7f0000000100)={[0xffffffffffffba21]}, 0x8}) [ 671.698071] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 671.702726] FAULT_INJECTION: forcing a failure. [ 671.702726] name failslab, interval 1, probability 0, space 0, times 0 [ 671.705339] CPU: 0 PID: 6150 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 671.706917] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 671.708772] Call Trace: [ 671.709372] dump_stack+0x107/0x167 [ 671.710191] should_fail.cold+0x5/0xa [ 671.711049] ? create_object.isra.0+0x3a/0xa30 [ 671.712076] should_failslab+0x5/0x20 [ 671.712945] kmem_cache_alloc+0x5b/0x310 [ 671.713866] create_object.isra.0+0x3a/0xa30 [ 671.714853] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 671.715997] kmem_cache_alloc_trace+0x151/0x320 [ 671.717062] io_uring_setup+0x40b/0x2980 [ 671.718087] ? __mutex_unlock_slowpath+0xe1/0x600 [ 671.719292] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 671.720452] ? wait_for_completion_io+0x270/0x270 [ 671.721569] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 671.722754] ? syscall_enter_from_user_mode+0x1d/0x50 [ 671.723923] do_syscall_64+0x33/0x40 [ 671.724772] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 671.725936] RIP: 0033:0x7fcf423d9b19 [ 671.726776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 671.730946] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 671.732679] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 671.734285] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 671.735901] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 671.737511] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 671.739132] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:11:11 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:11:11 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 671.815661] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 687.434870] loop6: detected capacity change from 0 to 32768 00:11:27 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) r4 = semget$private(0x0, 0x6, 0x0) semop(r4, &(0x7f00000000c0)=[{0x3, 0x0, 0x1800}, {}, {0x2, 0x8, 0x800}, {0x4}], 0x4) r5 = semget$private(0x0, 0x2, 0x0) semtimedop(r5, &(0x7f0000000140)=[{}], 0x1, 0x0) semctl$IPC_RMID(r5, 0x0, 0x0) semtimedop(0x0, &(0x7f00000001c0)=[{0x0, 0x7, 0x1000}, {0x1, 0x5, 0x800}], 0x2, &(0x7f0000000240)) 00:11:27 executing program 1: sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c00000000000000000000000000000900000000000008000000000031e482e97a01d6ae4b034c19efef0458cfeada2183a838c9012e903551a6fac766810095bfe959"], 0x1c}}, 0x9) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000100)={0x1, 0x3, 0x6bbb, 0x1, 0x8fe, 0x170eeb4d, 0x0, 0xfff}, &(0x7f0000000140)={0x7, 0x0, 0x92bf, 0x8, 0x6, 0xfffffffffffffff7, 0xfffffffffffffff8, 0x8}, &(0x7f0000000180)={0xaa03, 0x8b, 0x2, 0x8, 0x33e, 0x3ff, 0x3, 0x4}, &(0x7f0000000200)={r0, r1+10000000}, &(0x7f0000000280)={&(0x7f0000000240)={[0x7]}, 0x8}) pselect6(0x40, &(0x7f0000000040)={0x1, 0xffff, 0x1, 0x8, 0x3, 0x5b, 0x103, 0x7}, &(0x7f0000000340)={0x39, 0x5, 0xfffffffffffffff9, 0x2, 0x0, 0x0, 0x7f, 0x3dad}, &(0x7f0000000380)={0x5, 0x6, 0x6, 0x3, 0x5, 0x3, 0x6, 0x1ff}, &(0x7f00000003c0)={0x0, 0x989680}, &(0x7f0000000440)={&(0x7f0000000400)={[0x101]}, 0x8}) 00:11:27 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:11:27 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 8) 00:11:27 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:11:27 executing program 7: ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f0000000000)={0xb7, 0xff, 0x1, 0x7b0, 0x1, [0x4, 0x7, 0x0, 0x1]}) 00:11:27 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = syz_io_uring_setup(0x538, &(0x7f0000000a00)={0x0, 0xded0, 0x37, 0x3, 0x319, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000240), &(0x7f0000000800)) read(r0, &(0x7f0000019340)=""/102400, 0x19000) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x1}, 0x0, 0x0, 0xfffffffd, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r0) r3 = syz_open_dev$hidraw(&(0x7f0000000200), 0x3, 0x2) ioctl$FS_IOC_FSGETXATTR(r3, 0x801c581f, &(0x7f00000002c0)={0x100, 0x0, 0x8, 0xffff, 0x8}) r4 = io_uring_setup(0xd58, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0xfffffffe}) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) ppoll(&(0x7f0000000100)=[{r5, 0x2358}, {r1, 0x4014}, {r1}], 0x3, &(0x7f0000000140)={0x77359400}, &(0x7f0000000180)={[0x20]}, 0x8) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffc0800}]}) r6 = openat$incfs(r5, &(0x7f0000000300)='.log\x00', 0x900, 0x114) sendfile(r6, r4, &(0x7f0000000340)=0x9, 0xffffffff) clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) execveat(0xffffffffffffffff, &(0x7f0000019300)='./file1\x00', 0x0, &(0x7f000001a440), 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001800)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r5, 0x0, &(0x7f00000017c0)={&(0x7f0000000880)=@hci={0x1f, 0x4, 0x1}, 0x80, &(0x7f0000001540)=[{&(0x7f00000001c0)="75cdcbaaf5b672d53c5032056d447cc6ef006ae8e7385fe32b04449c0e4007b40bc505f95ffb0966a148c5cd0da0a4788be73a", 0x33}, {&(0x7f0000000900)="db1db5f543255fc69a368ea9895799e8637897f72642fea1965acb205c6c1512ad10b848f8dad0059447078d30404cf2adebae1f0265f8ee682e0d83a5112cdadc626347b141959964604f79c6dc63e80eee6e1d81d0e0984a142362f5cf0d10c29a5f99388c51bc1c5580c512307789f668aa4f0cecd6ab4ca9ae6d3f68e0cac4801019759ecfa97dc52d2e5f484f18251cc186e82d0c856ddf5614e4e0f6e019f3abf8f898dbb994d4ccc47256a860cf219cf999226ba827e18c9f5be9261e324a23080fce830cdb53503cb3d067548be3bcaebf4adf9254116311b21b", 0xde}], 0x2, &(0x7f00000016c0)=ANY=[@ANYBLOB="d80000000000000001000000ff07000094eb27ac1a950ea86df94bfbc041e00c4ba3883a474340c34fdfdecd7512ab5a229a53afc5c4d1eff166665151d93934714c4d476a1d163cd3636868afff59a3f1efe7545f18d1f554459996d8937cdd7643d568c95b0d3c0ba09370b9746eada11aea57b72839837c4426913ceed5495225e2884555a88bc7ddd8f7f621c6e9d5689547cd26b5a22974d9464878111a45c337b8f684c377f7c37a4519ba70286ee323aa996913941a08d9d76950a3f2cb836db9778f044ee47e00"/216], 0xd8}, 0x0, 0x40000}, 0x1ff) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)={0x2c, r7, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4}]}]}]}]}, 0x2c}}, 0x0) sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2000010}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x28, r7, 0x10, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x403, 0x30}}}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x48001}, 0x4000005) 00:11:27 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 687.455319] FAULT_INJECTION: forcing a failure. [ 687.455319] name failslab, interval 1, probability 0, space 0, times 0 [ 687.458333] CPU: 1 PID: 6179 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 687.460095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 687.462198] Call Trace: [ 687.462869] dump_stack+0x107/0x167 [ 687.463799] should_fail.cold+0x5/0xa [ 687.464773] ? create_object.isra.0+0x3a/0xa30 [ 687.465926] should_failslab+0x5/0x20 [ 687.466878] kmem_cache_alloc+0x5b/0x310 [ 687.467916] create_object.isra.0+0x3a/0xa30 [ 687.469037] kmemleak_alloc_percpu+0xa0/0x100 [ 687.470041] pcpu_alloc+0x4e2/0x1240 [ 687.470879] ? io_tctx_exit_cb+0xf0/0xf0 [ 687.471810] percpu_ref_init+0x31/0x3d0 [ 687.472719] io_uring_setup+0x47a/0x2980 [ 687.473649] ? __mutex_unlock_slowpath+0xe1/0x600 [ 687.474733] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 687.475869] ? wait_for_completion_io+0x270/0x270 [ 687.477010] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 687.478221] ? syscall_enter_from_user_mode+0x1d/0x50 [ 687.479413] do_syscall_64+0x33/0x40 [ 687.480246] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 687.481437] RIP: 0033:0x7fcf423d9b19 [ 687.482293] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 687.486538] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 687.488275] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 687.489881] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 687.491514] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 687.493169] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 687.494772] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 687.509162] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 00:11:27 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000180)={0x0, 0x4, 0x8, 0x2ba9, 0x400, 0x8, 0x4, 0x3ff}, &(0x7f00000001c0)={0x4, 0x0, 0x42, 0x80, 0x0, 0x9, 0x6, 0x7fffffff}, &(0x7f0000000200)={0x100000000, 0x401, 0x6, 0x7a2c, 0x10000, 0x0, 0x6, 0x6}, &(0x7f0000000240)={0x77359400}, &(0x7f00000002c0)={&(0x7f0000000280)={[0xf9e8]}, 0x8}) pselect6(0x40, &(0x7f0000000000)={0x6, 0x8, 0x4d8, 0x2, 0x8, 0x200, 0x81, 0xfffffffffffffff9}, &(0x7f0000000040)={0xfff, 0x7, 0x7, 0x8, 0x4, 0x1, 0x2, 0x3fd}, &(0x7f0000000080)={0x6, 0xd740, 0x9, 0xa2, 0x4442, 0x0, 0x48, 0x10000000}, &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0x3f]}, 0x8}) [ 687.552828] audit: type=1326 audit(687.435:266): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6174 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 00:11:27 executing program 7: sendmsg$TIPC_CMD_SET_LINK_WINDOW(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="00042abd7000ffdbdf25010000000000000009410000004c00180000007c62726f6164636173742d6c696e6b00"/98], 0x68}, 0x1, 0x0, 0x0, 0x8091}, 0x44814) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_STATUS(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x14}, 0x14}}, 0x0) syz_genetlink_get_family_id$nbd(&(0x7f0000000880), r0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) [ 687.557955] audit: type=1326 audit(687.435:267): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6174 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 687.584000] audit: type=1326 audit(687.435:268): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6174 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 00:11:27 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) [ 687.611402] audit: type=1326 audit(687.441:269): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6174 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 00:11:27 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:11:27 executing program 1: sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x60, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@HEADER={0x4}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x40000) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) [ 687.639017] audit: type=1326 audit(687.441:270): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6174 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 00:11:27 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 687.653610] audit: type=1326 audit(687.441:271): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6174 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 687.669494] audit: type=1326 audit(687.441:272): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6174 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 687.689500] audit: type=1326 audit(687.447:273): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6174 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 687.705931] audit: type=1326 audit(687.449:274): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6174 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 687.721801] audit: type=1326 audit(687.449:275): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6189 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 687.738695] loop6: detected capacity change from 0 to 32768 00:11:27 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) [ 687.775005] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 00:11:45 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) r4 = semget$private(0x0, 0x6, 0x0) semop(r4, &(0x7f00000000c0)=[{0x3, 0x0, 0x1800}, {}, {0x2, 0x8, 0x800}, {0x4}], 0x4) r5 = semget$private(0x0, 0x2, 0x0) semtimedop(r5, &(0x7f0000000140)=[{}], 0x1, 0x0) semctl$IPC_RMID(r5, 0x0, 0x0) 00:11:45 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:11:45 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) semtimedop(0x0, &(0x7f0000000200)=[{0x4, 0xffff, 0x1800}, {0x0, 0x0, 0x1800}, {0x0, 0x100, 0x1800}, {0x3}, {0x2, 0x80, 0x800}, {0x1, 0x49, 0x1800}], 0x6, &(0x7f0000000240)) io_pgetevents(0x0, 0x9, 0x8, &(0x7f0000000000)=[{}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000140)={r0, r1+60000000}, &(0x7f00000001c0)={&(0x7f0000000180)={[0x400000]}, 0x8}) 00:11:45 executing program 1: seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000240)) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) io_pgetevents(0x0, 0x7fffffff, 0x1, &(0x7f0000000000)=[{}], 0x0, &(0x7f0000000080)={&(0x7f0000000040)={[0x8]}, 0x8}) pselect6(0x40, &(0x7f00000000c0)={0x4, 0xffffffffffff0000, 0x1, 0x7be, 0x1, 0xffb, 0x1, 0x4}, &(0x7f0000000100)={0x3, 0x5, 0x200, 0x3, 0x3ff, 0x1, 0x3, 0x4}, &(0x7f0000000140)={0x8001, 0x3883c000000000, 0x3, 0x5418cc63, 0x3ff, 0x2, 0x5, 0x3}, &(0x7f0000000180)={0x0, 0x3938700}, &(0x7f0000000200)={&(0x7f00000001c0)={[0x5ec]}, 0x8}) r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x800, 0x2) fsetxattr$security_selinux(r0, &(0x7f0000000300), &(0x7f0000000340)='system_u:object_r:scsi_generic_device_t:s0\x00', 0x2b, 0x2) seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000280)) 00:11:45 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 9) 00:11:45 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:11:45 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:11:45 executing program 0: r0 = syz_io_uring_setup(0x68d2, &(0x7f00000002c0), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) syz_io_uring_setup(0x1008, &(0x7f0000000740), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/locks\x00', 0x0, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r4, 0x80047213, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) ioctl$FIDEDUPERANGE(r3, 0xc0189436, &(0x7f0000000480)=ANY=[@ANYBLOB="00000080c0401e8acfcfdc79d207e49a00000000440000004bae7d83bc551b3415860eb213cf469f1cc7066b535f86728f9a69b8713211b954fd0c80c957ea43aae46a6efbab9c0488262a2289ce629e0fd796caa4ab9f35d41562b42300d9c68ebcbafa7ab6d46efb28ec437446b748f7a0fa535d9cc56eb94377321a754492458b67f0e5293a60f7a9d802d287c6463a4c70e538e82e302faa071d6326c860c27b55532b29b64352464e6abdc7e330d48b661e7619b65376e7", @ANYRES32=r0, @ANYBLOB="000000000000000000000008e3a300000000000000000000000000002cf91e7b"]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 705.874535] loop6: detected capacity change from 0 to 32768 00:11:45 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040), 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:11:45 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 705.910775] FAULT_INJECTION: forcing a failure. [ 705.910775] name failslab, interval 1, probability 0, space 0, times 0 [ 705.913733] CPU: 0 PID: 6235 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 705.915504] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 705.917652] Call Trace: [ 705.918350] dump_stack+0x107/0x167 [ 705.919298] should_fail.cold+0x5/0xa [ 705.920292] ? create_object.isra.0+0x3a/0xa30 [ 705.921481] should_failslab+0x5/0x20 [ 705.922474] kmem_cache_alloc+0x5b/0x310 [ 705.923539] create_object.isra.0+0x3a/0xa30 [ 705.924696] kmemleak_alloc_percpu+0xa0/0x100 [ 705.925862] pcpu_alloc+0x4e2/0x1240 [ 705.926734] ? io_tctx_exit_cb+0xf0/0xf0 00:11:45 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 705.927668] percpu_ref_init+0x31/0x3d0 [ 705.928714] io_uring_setup+0x47a/0x2980 [ 705.929658] ? __mutex_unlock_slowpath+0xe1/0x600 [ 705.930862] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 705.932025] ? wait_for_completion_io+0x270/0x270 [ 705.933176] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 705.934380] ? syscall_enter_from_user_mode+0x1d/0x50 [ 705.935570] do_syscall_64+0x33/0x40 [ 705.936430] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 705.937618] RIP: 0033:0x7fcf423d9b19 [ 705.938480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 705.942673] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 705.944421] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 705.946066] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 705.947712] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 705.949351] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 705.950995] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 705.968598] loop6: detected capacity change from 0 to 32768 00:11:45 executing program 6: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:11:45 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040), 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:11:45 executing program 7: rt_sigaction(0x34, &(0x7f0000001f80)={0x0, 0x40000002, 0x0}, 0x0, 0x8, &(0x7f0000000000)) pselect6(0x40, &(0x7f0000000040)={0x81, 0x1, 0x6e, 0x4, 0x9ac, 0xfc, 0x80, 0x2}, &(0x7f0000000080)={0x563, 0x3, 0xffffffff, 0x5, 0x8, 0xb4, 0x8, 0x9}, &(0x7f00000000c0)={0x0, 0xfffffffffffffff9, 0x4, 0x5, 0x2, 0x80000000, 0x7fff, 0x9}, &(0x7f0000000100)={0x0, 0x989680}, &(0x7f0000000180)={&(0x7f0000000140)={[0xac]}, 0x8}) r0 = socket$unix(0x1, 0x5, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) io_setup(0x5, &(0x7f0000000040)=0x0) io_submit(r2, 0x1, &(0x7f0000000400)=[&(0x7f0000000200)={0x0, 0x0, 0x5, 0x0, 0x0, r1, 0x0}]) io_getevents(r2, 0x0, 0x1, &(0x7f0000000440)=[{}], 0x0) r3 = pidfd_getfd(r1, r1, 0x0) io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}]) io_pgetevents(r2, 0x1000, 0x1, &(0x7f00000001c0)=[{}], &(0x7f0000000200), 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(0xffffffffffffffff, r4) r5 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r6 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r7 = dup2(r5, r6) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r7, 0x8000000) r8 = creat(&(0x7f0000000480)='./file1\x00', 0x20) r9 = syz_open_dev$loop(&(0x7f00000005c0), 0x5, 0x305000) io_submit(0x0, 0x4, &(0x7f0000000680)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x7, 0xc1, 0xffffffffffffffff, &(0x7f00000006c0)="8d42851435ac9d0e92abafa3eef93fae5256db67ee9500d5a62884093e2a2a11a65843323b55a4dbf03aa07dd66f0c40c875a37261ef0f122f038205a30e7ca9e8c5fcb6babba8360df3f432ae982f6036020000009e5dbfd7ed251f7d699551fb2cccf64b3ab6da3a79e11a2306bda4f063ac88e3df045507bde21df9d78ba798cbcce4f2ea7b1b152b284b7c0e008709b2468c33202b8c6500fdaf0555e062ce2403b7e423732cfe0a106a00000000", 0xb0, 0x2c4dc679, 0x0, 0x2}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x5, 0x753b, r7, &(0x7f0000000380)="87d91d6bc8eee4dab77b4fd61f1be266bd0d8f7eb1e34bfadb716bca60febc27b3461f2d49185b816da5e291680253cb16714b44e3280d5e8ea359f39a5da1a71e3e3bf773ebd6f4dbd6b523b6470d10fd2380cb1877d4787ef2aeaeabd7717bc45a2a1ccbf231cb644cb0b00750a8ede195f6b639493282", 0x78, 0x981, 0x0, 0x1, r8}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x1, 0x9, r3, &(0x7f0000000500)="b68b79fa568f83afcb4f6d599b78065bbc6bfc5f8dce632c8830bb91bc126c4a739e90e5713e2494a69a0e3ba4576cb3aa4ceed29ac8caaec7a17a16fe4b80a8c3e0b4560e63659f7196c5fee15d04bebf67f7d687fbc7c6dd0346ad95de", 0x5e, 0xc9ba, 0x0, 0x6}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x5, 0x8, r9, &(0x7f0000000600)="a8439a43", 0x4, 0xffffffff, 0x0, 0x2, r3}]) shutdown(r0, 0x1) 00:11:45 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:11:45 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 10) [ 706.090038] FAULT_INJECTION: forcing a failure. [ 706.090038] name failslab, interval 1, probability 0, space 0, times 0 [ 706.091415] CPU: 1 PID: 6256 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 706.092203] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 706.093158] Call Trace: [ 706.093464] dump_stack+0x107/0x167 [ 706.093885] should_fail.cold+0x5/0xa [ 706.094325] ? percpu_ref_init+0xd8/0x3d0 [ 706.094802] should_failslab+0x5/0x20 [ 706.095242] kmem_cache_alloc_trace+0x55/0x320 [ 706.095770] ? io_tctx_exit_cb+0xf0/0xf0 [ 706.096239] percpu_ref_init+0xd8/0x3d0 [ 706.096698] io_uring_setup+0x47a/0x2980 [ 706.097178] ? __mutex_unlock_slowpath+0xe1/0x600 [ 706.097734] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 706.098317] ? wait_for_completion_io+0x270/0x270 [ 706.098885] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 706.099490] ? syscall_enter_from_user_mode+0x1d/0x50 [ 706.100083] do_syscall_64+0x33/0x40 [ 706.100509] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 706.101115] RIP: 0033:0x7fcf423d9b19 [ 706.101546] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 706.103659] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 706.104538] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 706.105374] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 706.106193] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 706.107008] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 706.107833] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 706.128844] loop6: detected capacity change from 0 to 32768 00:12:00 executing program 0: r0 = syz_io_uring_setup(0x68d2, &(0x7f00000002c0), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) syz_io_uring_setup(0x1008, &(0x7f0000000740), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/locks\x00', 0x0, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r4, 0x80047213, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) ioctl$FIDEDUPERANGE(r3, 0xc0189436, &(0x7f0000000480)=ANY=[@ANYBLOB="00000080c0401e8acfcfdc79d207e49a00000000440000004bae7d83bc551b3415860eb213cf469f1cc7066b535f86728f9a69b8713211b954fd0c80c957ea43aae46a6efbab9c0488262a2289ce629e0fd796caa4ab9f35d41562b42300d9c68ebcbafa7ab6d46efb28ec437446b748f7a0fa535d9cc56eb94377321a754492458b67f0e5293a60f7a9d802d287c6463a4c70e538e82e302faa071d6326c860c27b55532b29b64352464e6abdc7e330d48b661e7619b65376e7", @ANYRES32=r0, @ANYBLOB="000000000000000000000008e3a300000000000000000000000000002cf91e7b"]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 00:12:00 executing program 7: rt_sigaction(0x35, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000080)) r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) fsetxattr$security_selinux(r0, &(0x7f00000000c0), &(0x7f0000000100)='system_u:object_r:mount_exec_t:s0\x00', 0x22, 0x3) 00:12:00 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) r4 = semget$private(0x0, 0x6, 0x0) semop(r4, &(0x7f00000000c0)=[{0x3, 0x0, 0x1800}, {}, {0x2, 0x8, 0x800}, {0x4}], 0x4) r5 = semget$private(0x0, 0x2, 0x0) semtimedop(r5, &(0x7f0000000140)=[{}], 0x1, 0x0) 00:12:00 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:12:00 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 11) 00:12:00 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040), 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:12:00 executing program 1: r0 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @auto=[0x38]}, &(0x7f0000000480)={0x0, "e26c6f8f8540320526d26bb470ae7d2700ef754bcc45eb3fff389dfc745d219f254e9352a194283c1a32fcbc603d811223e160cdb69ada68e43f51095ecc2981"}, 0x48, 0xfffffffffffffffd) keyctl$search(0xa, r0, &(0x7f0000000500)='logon\x00', &(0x7f0000000540)={'syz', 0x2}, 0xfffffffffffffff8) r1 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @auto=[0x38]}, &(0x7f0000000480)={0x0, "e26c6f8f8540320526d26bb470ae7d2700ef754bcc45eb3fff389dfc745d219f254e9352a194283c1a32fcbc603d811223e160cdb69ada68e43f51095ecc2981"}, 0x48, 0xfffffffffffffffd) keyctl$search(0xa, r1, &(0x7f0000000500)='logon\x00', &(0x7f0000000540)={'syz', 0x2}, 0xfffffffffffffff8) keyctl$KEYCTL_MOVE(0x1e, r0, r1, 0xfffffffffffffff9, 0x1) rt_sigaction(0x1000003e, &(0x7f0000000280)={0x0, 0x98000001, 0x0, {[0x8]}}, 0x0, 0x8, &(0x7f0000000040)) pselect6(0x40, &(0x7f0000000000)={0x2, 0x9, 0x3, 0xfffffffffffffffb, 0x8000, 0x7, 0xfffffffffffffffd, 0x4}, &(0x7f0000000080)={0x0, 0x1ff, 0x20, 0x14f, 0xfffffffffffff800, 0x1f, 0x7f, 0x9}, &(0x7f00000000c0)={0x7, 0x9, 0x7de, 0x333a93c0, 0x8, 0x80000000, 0x5, 0x80}, &(0x7f0000000100)={0x0, 0x3938700}, &(0x7f0000000180)={&(0x7f0000000140)={[0x100000001]}, 0x8}) quotactl(0x384, &(0x7f00000001c0)='./file0\x00', 0xee00, &(0x7f0000000200)="0889db7d5569b80cc02a8bb32ff77b4f2867e60b42a541b27c2a8a3364eb0a1f9b7828ca0a440c49adc18ec09a5d5ef6b7e4555d56a19b78ef1b1ae851be465ecc17ebecef88497c932daaa76f9c4f3d8a9244673eb49059144723bee880f498807c57afe663c40cdf13e3b12eb6deaf73d2c9") getpeername(0xffffffffffffffff, &(0x7f00000002c0)=@isdn, &(0x7f0000000340)=0x80) [ 720.178523] loop6: detected capacity change from 0 to 32768 [ 720.205124] FAULT_INJECTION: forcing a failure. [ 720.205124] name failslab, interval 1, probability 0, space 0, times 0 [ 720.206585] CPU: 1 PID: 6286 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 720.207443] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 720.208454] Call Trace: [ 720.208784] dump_stack+0x107/0x167 [ 720.209237] should_fail.cold+0x5/0xa [ 720.209713] ? create_object.isra.0+0x3a/0xa30 [ 720.210282] should_failslab+0x5/0x20 [ 720.210748] kmem_cache_alloc+0x5b/0x310 [ 720.211247] create_object.isra.0+0x3a/0xa30 [ 720.211786] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 720.212410] kmem_cache_alloc_trace+0x151/0x320 [ 720.212986] ? io_tctx_exit_cb+0xf0/0xf0 [ 720.213496] percpu_ref_init+0xd8/0x3d0 [ 720.213984] io_uring_setup+0x47a/0x2980 [ 720.214481] ? __mutex_unlock_slowpath+0xe1/0x600 [ 720.215072] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 720.215698] ? wait_for_completion_io+0x270/0x270 [ 720.216303] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 720.216949] ? syscall_enter_from_user_mode+0x1d/0x50 [ 720.217600] do_syscall_64+0x33/0x40 [ 720.218059] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 720.218689] RIP: 0033:0x7fcf423d9b19 [ 720.219142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 720.221401] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 720.222327] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 720.223192] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 720.224054] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 720.224916] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 720.225789] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:12:00 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea1", 0x2, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:00 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0, {[0x9]}}, 0x0, 0x8, &(0x7f00000020c0)) 00:12:00 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 720.319892] loop6: detected capacity change from 0 to 32768 00:12:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:12:00 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea1", 0x2, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:00 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 12) 00:12:00 executing program 7: r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = dup2(r0, r1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r2, 0x8000000) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r5 = dup2(r3, r4) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r5, 0x8000000) ioctl$FITRIM(r5, 0xc0185879, &(0x7f0000000040)={0xbf52, 0x6, 0x1}) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r2, 0x8983, &(0x7f0000000000)) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:12:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 720.415617] FAULT_INJECTION: forcing a failure. [ 720.415617] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 720.418381] CPU: 0 PID: 6306 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 720.419921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 720.421794] Call Trace: [ 720.422389] dump_stack+0x107/0x167 [ 720.423213] should_fail.cold+0x5/0xa [ 720.424078] __alloc_pages_nodemask+0x182/0x600 [ 720.425134] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 720.426493] ? cap_capable+0x1cd/0x230 [ 720.427374] alloc_pages_current+0x187/0x280 [ 720.428362] __get_free_pages+0xc/0xa0 [ 720.429254] io_uring_setup+0xe27/0x2980 [ 720.430174] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 720.431337] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 720.432515] ? syscall_enter_from_user_mode+0x1d/0x50 [ 720.433697] do_syscall_64+0x33/0x40 [ 720.434533] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 720.435685] RIP: 0033:0x7fcf423d9b19 [ 720.436522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 720.440669] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 720.442382] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 720.443982] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 720.445595] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 720.447194] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 720.448794] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:12:00 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) read(r0, &(0x7f0000019340)=""/102400, 0x19000) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x1}, 0x0, 0x0, 0xfffffffd, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000280)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r0) r2 = io_uring_setup(0xd58, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0xfffffffe}) ioctl$FIONCLEX(r2, 0x5450) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffc0800}]}) migrate_pages(0x0, 0x8, 0x0, &(0x7f00000004c0)=0xfffffffffffff801) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000100)=[r0, r3], 0x2) recvmsg$unix(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000180)=""/168, 0xa8}, {&(0x7f0000000580)=""/151, 0x97}, {&(0x7f0000000640)=""/108, 0x6c}], 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000200000000000000001000000010000001a5abd266a3f929f18fff75085a90dc78f3ff4a38f201d2b75847c542b3b6238673ad6e21429eebe20d8206b44cd3cf73612be", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0x78}, 0x10040) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) execveat(0xffffffffffffffff, &(0x7f0000019300)='./file1\x00', 0x0, &(0x7f000001a440), 0x0) 00:12:00 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 720.469053] kauditd_printk_skb: 27 callbacks suppressed [ 720.469063] audit: type=1326 audit(720.351:303): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 720.474226] audit: type=1326 audit(720.356:304): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 720.478074] audit: type=1326 audit(720.360:305): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 720.480505] audit: type=1326 audit(720.360:306): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 720.491656] audit: type=1326 audit(720.360:307): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 720.493915] loop6: detected capacity change from 0 to 32768 [ 720.494095] audit: type=1326 audit(720.360:308): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 720.511010] audit: type=1326 audit(720.360:309): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 720.513488] audit: type=1326 audit(720.366:310): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 720.525281] audit: type=1326 audit(720.366:311): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 720.539230] audit: type=1326 audit(720.366:312): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6309 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 00:12:15 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 13) 00:12:15 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x48000006, 0x0, {[0xfffffffffffffffe]}}, 0x0, 0x8, &(0x7f0000000180)) clock_gettime(0x1, &(0x7f0000000100)={0x0, 0x0}) rt_sigtimedwait(&(0x7f0000000040)={[0x401]}, &(0x7f0000000080), &(0x7f0000000140)={r0, r1+60000000}, 0x8) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = dup2(r2, r3) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r4, 0x8000000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000340)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index, 0x800, {}, 0x6, 0x2, 0x1}, 0x5b) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2, 0x4010, r4, 0x10000000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f0000000200)=ANY=[@ANYBLOB="f7ffffff9f896128fa2b5c33", @ANYRES32=r4, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00./file0\x00']) openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000280), 0x258400, 0x0) r6 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r6, 0x0) syz_io_uring_setup(0x5059, &(0x7f00000002c0)={0x0, 0x15c5, 0x20, 0x1, 0x1be, 0x0, r4}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000340)=0x0, &(0x7f0000000380)) socket$nl_audit(0x10, 0x3, 0x9) io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r7, r5, &(0x7f0000000400)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x3, 0x0, 0xffffffffffffffff, &(0x7f00000003c0)}, 0xffe00000) io_uring_enter(r4, 0x3ed4, 0x9dec, 0x1, &(0x7f00000001c0)={[0x915]}, 0x8) r8 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x4a0b40, 0x0) ioctl$AUTOFS_IOC_CATATONIC(r8, 0x9362, 0x0) 00:12:15 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea1", 0x2, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:15 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:12:15 executing program 7: r0 = syz_io_uring_setup(0x3a71, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x4, 0xfffffffe}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r5 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r6 = dup2(r4, r5) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r6, 0x8000000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xb, 0x40010, 0xffffffffffffffff, 0x8000000) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r6, 0x89f8, &(0x7f0000001380)={'ip6gre0\x00', &(0x7f0000001300)={'syztnl1\x00', 0x0, 0x2f, 0x9, 0x4, 0xfffffffd, 0x13, @mcast2, @remote, 0x80, 0x80, 0x401, 0x3f}}) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@nl=@proc, 0x80, 0x0, 0x0, &(0x7f0000000380)=ANY=[], 0x30}}, 0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r7, r2, &(0x7f0000000300)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0}, 0x80000001) syz_io_uring_submit(r7, 0x0, &(0x7f00000012c0)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001280)={&(0x7f0000000000)=@isdn, 0x80, &(0x7f0000001240)=[{&(0x7f0000000080)=""/4096, 0x1000}, {&(0x7f0000001080)=""/22, 0x16}, {&(0x7f00000010c0)=""/159, 0x9f}, {&(0x7f0000001180)=""/192, 0xc0}], 0x4}, 0x0, 0x2000, 0x1, {0x1}}, 0x800) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:12:15 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) r4 = semget$private(0x0, 0x6, 0x0) semop(r4, &(0x7f00000000c0)=[{0x3, 0x0, 0x1800}, {}, {0x2, 0x8, 0x800}, {0x4}], 0x4) semget$private(0x0, 0x2, 0x0) [ 735.212777] FAULT_INJECTION: forcing a failure. [ 735.212777] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 735.215523] CPU: 0 PID: 6332 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 735.217067] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 735.218947] Call Trace: 00:12:15 executing program 0: execve(&(0x7f00000002c0)='./cgroup/cgroup.procs\x00', 0x0, 0x0) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x42002, 0x0) r1 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r1, 0x4018f50b, &(0x7f00000000c0)={0x0, 0xfffffffffffffffb, 0x2}) openat(r0, &(0x7f0000000040)='./cgroup/cgroup.procs/file0\x00', 0x20001, 0x8) 00:12:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r0, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 735.219545] dump_stack+0x107/0x167 [ 735.220484] should_fail.cold+0x5/0xa [ 735.221365] __alloc_pages_nodemask+0x182/0x600 [ 735.222438] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 735.222469] ? cap_capable+0x1cd/0x230 [ 735.222498] alloc_pages_current+0x187/0x280 [ 735.222519] __get_free_pages+0xc/0xa0 [ 735.222538] io_uring_setup+0xf9a/0x2980 [ 735.222567] ? __do_sys_io_uring_enter+0x1890/0x1890 00:12:15 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a", 0x3, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) [ 735.222584] ? wait_for_completion_io+0x270/0x270 [ 735.222631] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 735.222651] ? syscall_enter_from_user_mode+0x1d/0x50 [ 735.222675] do_syscall_64+0x33/0x40 [ 735.222695] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 735.222708] RIP: 0033:0x7fcf423d9b19 [ 735.222725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 00:12:15 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 735.222736] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 00:12:15 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 735.222757] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 00:12:15 executing program 7: rt_sigaction(0x3c, &(0x7f0000000000)={0x0, 0x8000004, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:12:15 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a", 0x3, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:15 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 14) [ 735.222768] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 735.222779] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 735.222789] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 735.222800] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 735.389251] FAULT_INJECTION: forcing a failure. [ 735.389251] name failslab, interval 1, probability 0, space 0, times 0 [ 735.390937] CPU: 1 PID: 6357 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 735.391927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 735.393134] Call Trace: [ 735.393533] dump_stack+0x107/0x167 [ 735.394064] should_fail.cold+0x5/0xa [ 735.394617] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 735.395411] should_failslab+0x5/0x20 [ 735.395957] kmem_cache_alloc_trace+0x55/0x320 [ 735.396607] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 735.397393] io_uring_setup+0x14f6/0x2980 [ 735.397996] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 735.398717] ? wait_for_completion_io+0x270/0x270 [ 735.399416] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 735.400171] ? syscall_enter_from_user_mode+0x1d/0x50 [ 735.400902] do_syscall_64+0x33/0x40 [ 735.401439] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 735.402170] RIP: 0033:0x7fcf423d9b19 [ 735.402708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 735.405329] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 735.406409] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 735.407404] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 735.408427] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 735.409453] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 735.410438] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:12:30 executing program 1: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x4001, 0x0) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r1, r2) close_range(r0, r1, 0x2) 00:12:30 executing program 7: sendmsg$NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000e0}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x68, 0x0, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}]}, 0x68}, 0x1, 0x0, 0x0, 0x4010}, 0x4044005) 00:12:30 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) r4 = semget$private(0x0, 0x6, 0x0) semop(r4, &(0x7f00000000c0)=[{0x3, 0x0, 0x1800}, {}, {0x2, 0x8, 0x800}, {0x4}], 0x4) 00:12:30 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:12:30 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a", 0x3, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:30 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffd}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pread64(r1, &(0x7f0000000300)=""/157, 0x9d, 0xfffffffffffffffd) r2 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x28}, 0x2}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000000080)=[{{0x0, 0x90, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r2, 0x89f4, &(0x7f00000047c0)={'sit0\x00', &(0x7f0000004740)={'syztnl0\x00', 0x0, 0x29, 0x5, 0x9, 0x0, 0x0, @remote, @loopback, 0x7800, 0x40, 0x6, 0xffff8001}}) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) signalfd4(r0, &(0x7f0000000dc0)={[0x1]}, 0x8, 0x0) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) openat(r3, &(0x7f0000000500)='./file1\x00', 0x480240, 0x108) mount$9p_fd(0x0, &(0x7f0000000040)='./file1/../file0\x00', &(0x7f00000002c0), 0x83a04a, &(0x7f0000000400)=ANY=[@ANYBLOB="7419616e6e6d3d5918c2de73f94000000081000000006cc81d03c306e1755d", @ANYRESHEX, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00', @ANYRESHEX=r1, @ANYBLOB=',\x00']) statx(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x6000, 0x4, &(0x7f0000000780)) 00:12:30 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 15) 00:12:30 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 750.686379] FAULT_INJECTION: forcing a failure. [ 750.686379] name failslab, interval 1, probability 0, space 0, times 0 [ 750.689648] CPU: 0 PID: 6378 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 750.691617] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 750.694031] Call Trace: [ 750.694783] dump_stack+0x107/0x167 [ 750.695842] should_fail.cold+0x5/0xa [ 750.695867] ? create_object.isra.0+0x3a/0xa30 [ 750.695886] should_failslab+0x5/0x20 [ 750.695907] kmem_cache_alloc+0x5b/0x310 [ 750.695933] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 750.695958] create_object.isra.0+0x3a/0xa30 [ 750.698178] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 750.698209] kmem_cache_alloc_trace+0x151/0x320 [ 750.705822] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 750.707378] io_uring_setup+0x14f6/0x2980 [ 750.708574] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 750.708592] ? wait_for_completion_io+0x270/0x270 [ 750.708636] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 750.712511] ? syscall_enter_from_user_mode+0x1d/0x50 [ 750.714006] do_syscall_64+0x33/0x40 [ 750.715071] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 750.716520] RIP: 0033:0x7fcf423d9b19 [ 750.717650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 750.722675] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 750.724472] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 750.724484] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 750.724496] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 750.724507] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 750.724518] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:12:30 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:12:30 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) [ 750.797938] loop0: detected capacity change from 0 to 41948160 00:12:30 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) fspick(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) pselect6(0x40, &(0x7f0000000040)={0x7f, 0x9, 0xf1dc, 0x10001, 0xffffffffffffff55, 0x10001, 0xf49, 0x1}, &(0x7f0000000080)={0x400, 0xffffffff, 0x2e59, 0x4, 0x1000, 0xaa, 0x10000, 0xff}, &(0x7f00000000c0)={0x39, 0x3, 0xfffffffffffff001, 0x28, 0x0, 0x100000000, 0x6b3, 0x100}, &(0x7f0000000100)={0x77359400}, &(0x7f0000000180)={&(0x7f0000000140)={[0x5]}, 0x8}) [ 750.817814] FAT-fs (loop0): Unrecognized mount option "Õ‡ÿ^¬Øq§?Sí'm;3„»+û¤àósæßžp$7ŠÇT¬vù–óîSÑLw v}ß&%u2÷®‰3g·:6+„ËÂ'ºžŸô‹Ïà'X\ñKÿ7¨ˆ" or missing value 00:12:30 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000000)={0x6, 0x80000000, 0x9, 0x1, 0x1, 0xfffffffffffffff9, 0x100000001, 0x769}, &(0x7f0000000040)={0x8, 0x28, 0xaa1, 0x6, 0x2, 0x5, 0x17, 0x4}, &(0x7f0000000080)={0x4, 0x96c, 0x81, 0x1, 0x100000000, 0x9, 0x1000, 0x7fff}, &(0x7f0000000100)={r0, r1+10000000}, &(0x7f0000000180)={&(0x7f0000000140)={[0x7fffffff]}, 0x8}) 00:12:30 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 16) [ 750.865976] FAT-fs (loop6): bogus number of reserved sectors [ 750.867397] FAT-fs (loop6): Can't find a valid FAT filesystem 00:12:30 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:12:30 executing program 7: r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r0, r1) r2 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r2, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000000)={r2, 0x8, 0x0, 0x1}) 00:12:30 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f00000001c0)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f00000003c0)=ANY=[]) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdirat(r0, &(0x7f0000000180)='./file0\x00', 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r2, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r3, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000a40)) syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000200)='./file0\x00', 0x9, 0x9, &(0x7f00000008c0)=[{&(0x7f0000000240)="df049e41d1453b2c54691eeb0dfca24e60bbc5aa6dbf7ec0d6c1f16f12744ef2d79b798817688714b67fc394f9118e50e139222f045a1d99aa2921aa77078d3d983409247650e9bd1c491b002ed98545a74efe3d21afefb7f4ca984ec30f8174c16a541d09b98ea06c243b033020818d0f4e6a0a3888ef87454398a1e60c232fe836e2363489237cf45eb0009c7fb9d99e8164569be72c46af1c5f8060292fc64d370c790fc50497d79269a61757b706dbe1073f66900a88ac4281b77bf566546f4ee2186472990093ec484ac3da2d7f9c5916d77fe5d7fe5d8504a687b79ed971", 0xe1, 0x9}, {&(0x7f0000000340)="434946f70f3e26723140dd71db11adfa251ae20cded70ea741f83eb0973e27d46ea907c11706187406afecff0ca0c84c5505133876cbfad0d794d8b86c5daa261d068f9d743e8e2450ff9faa4ef4943089e5291695128360fbaa1d2a1d74e0e64f9046fcae280943dbc4d6abd70ebd3c95aaa6d9f248ec3575b315cbdfb8e14e514d", 0x82, 0x2}, {&(0x7f0000000400)="64eb7effda2d4bb7de3547144165b78fd7f763e7ff43e931d1a9ddf70774d42a1db0ac203019560f76abb866cd2a6e178c", 0x31, 0x3}, {&(0x7f0000000440)="a4f0091eb95ea831a1f7d0c21efa32389e8270275f5c9ea780ed7d94154a2bced489c5f128ed643d0cbc47cc603ed8cc73eb11711c457bf3b7912bf6b0d635f5e45c26afc3f23b42112fa3197c144ffd73efdd51280104f12a8147caf67a17afde1114d3d07d0565347301ec0347286b16a53445f5408978984e943e63d34e12d4826b75a5024cbc019d709c5d1dbbe724f6abe4dadd4d335480282b4ffb33141ae67067e569d77195a4fa65241afaba4d5903accb0ae9487905a7f1123a11a5b396b4d694964cf03a5e838b5e79b80f43bd7fe26d", 0xd5, 0x6}, {&(0x7f0000000540)="86efe3ca7a722e58a29147f1b107fcbd0599ee13527b21e585450d08334227fc09ee35a02b77d992ec13d1bc15c9356b37f3afcc6ef3b318a02e201385bf018a51be665674a1b390a9ec6cec128b2605849c8f6e66756fd21557d69b2042f1d1efdd32377d7488902af5e3fc570e2d1222f786515465bd4fdf893f734f8b3f691d13ebe167190734092fdde5f86ae8d8d57e275931968d093925ed54484cd8748603db15b361680f7274dce28f70ce7a156130d4167b0a22137e7331a5862f3faee061052d1c06e90b4d0f8e11c65b39d949204df726c448758daad0b0463c388cf888a4c20f70", 0xe7, 0x9}, {&(0x7f0000000640)="1148b95e9017b9ec0d7fd0656ee1c8f3cae1358496be9ee031be7192b68b03543bf77bb779c9f3900741db038df10edc24709eece97e594f2a4aeec820d1dede1935ba4583df470469217e218885d2e1a8ed4d8645fc39dc1227cd685f85fe04bfdbb79c75448cbbb6f4f5607c44e4757326496dce6018446d", 0x79, 0x4}, {&(0x7f00000006c0)="6321ea46eda9e235da55bb990d6f10135768cd24cc2b415e8377ae88bae16a204e5d63504c8964d7416690a7d65ed376fffe22004cfbe3f688b5f79e62f9108f1938b25ed04f00c5d28454ee689474ba667f504b5615313d2bcd154fc18561499fab53fdddd4f50a6d2eeb103f3910589152b4f0f8ff5e0cf994c57bf2df43b1323f80b5649f49f654664a4eb8a9e7c9b7751b0871659a2461b2821c216f7f399028fff16bbab449c40c9bbfc50b0c2c7f8af2afcc93af64f8edaab37422960842488a99a636d85dfbf554d8", 0xcc, 0x538}, {&(0x7f00000007c0)="76fbdbfeb8cb12c2e4556d0666059688bab9bf808d59cc097202eb45cb9a66f0b7ba1459863c522d4be03378bf378121db3a2af2bc54f2", 0x37, 0x3386}, {&(0x7f0000000800)="c8c7698c552339457e8e5c7df13b1ff57723a5cf9b40a16baa9f1bcaa7c02b1768ea52fd93e8e9fa7b839bb16fb37153c99d0ccd39823c01600916e5964dc38856fd7a38ebc0a2a1cd8876d79dab7aee8c0a5755c21011a0b2bdbe3edf45eefc3e775ec9f637a4f93066d0db4a2995eb1532b9b3cf3a2c1b26b8435bcb1800b105c7db27314719b643cdd64bdc88e1a4467530f54ec7f5ae783e0960f699d6bb33d05aaa4ed6d1676559d313fcc3b973ac6d7a55832469d241cf41", 0xbb, 0xfffffffffffeffff}], 0x9205f, &(0x7f00000009c0)={[{@uid={'uid', 0x3d, r2}}, {@huge_advise}, {@huge_advise}, {@size}, {@uid={'uid', 0x3d, r3}}], [{@fsname={'fsname', 0x3d, 'vfat\x00'}}]}) unlinkat(r0, &(0x7f0000000000)='./file0\x00', 0x200) 00:12:30 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) [ 750.955574] FAULT_INJECTION: forcing a failure. [ 750.955574] name failslab, interval 1, probability 0, space 0, times 0 [ 750.958713] CPU: 0 PID: 6403 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 750.960167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 750.961945] Call Trace: [ 750.962505] dump_stack+0x107/0x167 [ 750.963286] should_fail.cold+0x5/0xa [ 750.964097] ? create_object.isra.0+0x3a/0xa30 [ 750.965057] should_failslab+0x5/0x20 [ 750.965870] kmem_cache_alloc+0x5b/0x310 [ 750.966736] create_object.isra.0+0x3a/0xa30 [ 750.967677] kmemleak_alloc_percpu+0xa0/0x100 [ 750.968667] pcpu_alloc+0x4e2/0x1240 [ 750.969505] ? io_async_queue_proc+0x80/0x80 [ 750.970458] percpu_ref_init+0x31/0x3d0 [ 750.971317] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 750.972490] io_uring_setup+0x14f6/0x2980 [ 750.973388] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 750.974633] ? wait_for_completion_io+0x270/0x270 [ 750.975889] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 750.977258] ? syscall_enter_from_user_mode+0x1d/0x50 [ 750.978623] do_syscall_64+0x33/0x40 [ 750.979575] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 750.980868] RIP: 0033:0x7fcf423d9b19 [ 750.981839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 750.986667] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 750.988636] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 750.990466] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 750.992268] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 750.994092] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 750.995914] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:12:30 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000140)={0x8, 0x1ff, 0x1, 0x81, 0x100000000, 0x1, 0x10001, 0x8}, &(0x7f0000000180)={0x9, 0x6, 0x10000000000, 0x6, 0x3, 0xaf, 0x9, 0x10000}, &(0x7f00000001c0)={0x40, 0x7555, 0x10000, 0x1, 0x0, 0x3, 0x7}, &(0x7f0000000240)={r0, r1+60000000}, &(0x7f00000002c0)={&(0x7f0000000280)={[0xfffffffffffffffb]}, 0x8}) r2 = accept4$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, &(0x7f0000000080)=0x6e, 0x81000) clock_gettime(0x7, &(0x7f0000000300)) fsetxattr$security_selinux(r2, &(0x7f00000000c0), &(0x7f0000000100)='system_u:object_r:hald_cache_t:s0\x00', 0x22, 0x2) [ 751.033247] loop0: detected capacity change from 0 to 41948160 00:12:46 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) semget$private(0x0, 0x6, 0x0) 00:12:46 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:46 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:12:46 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x18000001, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) clock_gettime(0x0, &(0x7f0000000080)) 00:12:46 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:12:46 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 17) 00:12:46 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = dup2(r0, r1) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r2, 0x8000000) ioctl$PIO_SCRNMAP(r2, 0x4b41, &(0x7f0000000000)="632a3ea6e1e3a685100ca99bdb495ff1cb54708076d1a7ed391cb51d5a550a12312c045219e860e8c455109bc779be22ce0639a3205a41119e58b81b362c9e65dbf47b21c79e138bd5439a6373c7504a1507169183bd81460fe7a8b7c96aca4e70a524696d037079c9af5db39952f7a93a8ed9fa984cb472f210f6d9470799e920642db90f14cd1d5600106aa20e3c0de5db87f1012a6a36e284affa9aad53f9e1908764b0c8f962f166cc6b3e718abc3bf43135db8e5ab8941fdd726d9217f9824fb151961b207e5d706cc35592c911f67fa93313f193261b757912b5e96163c5") rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:12:46 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0xca}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) perf_event_open(0x0, 0x0, 0xc, 0xffffffffffffffff, 0x3) r2 = signalfd(0xffffffffffffffff, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x104, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f00000003c0)=ANY=[@ANYBLOB="010096d1a3ce25862fb605eea17035aba13fa556ebd0d4c7f06375006300", @ANYBLOB="ff000000ff41108dfa05dd8a296c1e8750124779b11557eae3150f3f731cc1cfd6d8101c2afae329f6158d18a8338424b9e6cffb69258ee2dbe5c24df4fef43b0d8700005485f2307c940655cc55e083d3f51e466aa18d7256a37f71e59a39cde5a501de03ed1173246ad1e1eb6e9d6d7f072b48505b3255ecd1119a613b320def678fa2327f54aca6b09c266c9064ad00"]) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_TREE_SEARCH(r2, 0xd0009411, &(0x7f000004cc80)={{0x0, 0x2, 0xfffffffffffffff9, 0x6d, 0xa6, 0x0, 0x4e4, 0xe49f, 0x4, 0x7fffffff, 0x5, 0x2, 0xe6b, 0x0, 0x20}}) fallocate(r3, 0xa, 0x800, 0x7) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0}) r9 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x6d7cf708bc06516e}, 0x23a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r9, 0x81f8943c, &(0x7f0000052ec0)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000680)) lseek(r1, 0x0, 0x2) r11 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x128) copy_file_range(r11, 0x0, r1, 0x0, 0x200f5ef, 0x0) [ 766.360749] FAULT_INJECTION: forcing a failure. [ 766.360749] name failslab, interval 1, probability 0, space 0, times 0 [ 766.363264] CPU: 0 PID: 6433 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 766.364715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 766.366466] Call Trace: [ 766.367022] dump_stack+0x107/0x167 [ 766.367790] should_fail.cold+0x5/0xa [ 766.368590] ? create_object.isra.0+0x3a/0xa30 [ 766.369552] should_failslab+0x5/0x20 [ 766.370350] kmem_cache_alloc+0x5b/0x310 [ 766.371210] create_object.isra.0+0x3a/0xa30 [ 766.372291] kmemleak_alloc_percpu+0xa0/0x100 [ 766.373390] pcpu_alloc+0x4e2/0x1240 [ 766.374334] ? io_async_queue_proc+0x80/0x80 [ 766.375416] percpu_ref_init+0x31/0x3d0 [ 766.376384] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 766.377720] io_uring_setup+0x14f6/0x2980 [ 766.378746] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 766.379976] ? wait_for_completion_io+0x270/0x270 [ 766.381175] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 766.382468] ? syscall_enter_from_user_mode+0x1d/0x50 [ 766.383743] do_syscall_64+0x33/0x40 [ 766.384655] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 766.385918] RIP: 0033:0x7fcf423d9b19 [ 766.386833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 766.391342] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 766.393206] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 766.394952] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 766.396674] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 766.398433] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 766.400143] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 766.424635] FAT-fs (loop6): bogus number of reserved sectors [ 766.426052] FAT-fs (loop6): Can't find a valid FAT filesystem 00:12:46 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:12:46 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0x3ff, 0x8001, 0x9, 0x103, 0x101, 0x4, 0x0, 0x80000000000001}, &(0x7f00000003c0)={0x460d, 0xf20, 0xfffffffffffff000, 0xfffffffffffffff7, 0x20000000000002, 0x7, 0x1}, &(0x7f0000000080)={0x9, 0x0, 0x2, 0x800, 0x5, 0x1, 0x51, 0xffff}, &(0x7f00000000c0)={0x0, 0x3938700}, &(0x7f0000000140)={&(0x7f0000000100)={[0x4]}, 0x8}) r0 = syz_io_uring_setup(0x14b3, &(0x7f0000000080)={0x0, 0x0, 0x8, 0x4, 0x2d1}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000002c0), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x5, 0x30, r0, 0x8000000) syz_io_uring_setup(0x5e2b, &(0x7f0000000240)={0x0, 0x93e2, 0x1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000380)=0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_buf(r3, 0x29, 0x0, 0x0, &(0x7f0000000040)) r4 = socket$inet6_udp(0xa, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index, 0x800, {0x0, r3}, 0x6, 0x2, 0x1, {0x0, 0x0, r4}}, 0x5b) r5 = perf_event_open(&(0x7f0000000480)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x4}, 0x0, 0x8000, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = syz_io_uring_setup(0x40a5, &(0x7f0000000180)={0x0, 0x0, 0x8, 0x0, 0x3ca}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000300)=0x0, &(0x7f0000000140)=0x0) r9 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r9, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0) r11 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) syz_io_uring_submit(r11, 0x0, &(0x7f0000000200)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0x8, 0x5, {0x0, r5}, 0x9, 0x0, 0x0, {0x0, r10, r6}}, 0x401) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x0, {0x0, r10}}, 0x2) [ 766.531340] FAT-fs (loop6): bogus number of reserved sectors [ 766.532695] FAT-fs (loop6): Can't find a valid FAT filesystem 00:12:46 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:46 executing program 1: r0 = syz_io_uring_setup(0x3a71, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x4, 0xfffffffe}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000c80)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x1, @mcast2, 0x80}, 0x1c, &(0x7f0000000980)=[{&(0x7f0000000340)="b18328e5deb3c990bb5344e9959f911cf01248c1be97474f71aa1c4b0913bea34b46420114adfb2e1f67eed97bb223573233fc92a7a5f61f848a855bf1b33076b07106dad4927531120a748b117ce8ddbb3f", 0x52}, {&(0x7f00000003c0)="5ddcef76803e84d30a699c0adb18c88129fa642aafd89c34e84809bf2b345c3e56d71f8efad9043a18a3f55155603fcf26f56f3e4316a5c4d1fd37c3b961a627a9f43bcddc5d7037f02468be329c2abc41b54eb4", 0x54}, {&(0x7f0000000500)="3e8ce47177def12b2639aace44523bd8d2dcf1b67a792ac01094099709a398bc1d7e349b9fc06a8e5f911d98d0bd78f1fab043a8e60f11f7232e944b39677ee147b9fffa15d633f95bf521c4f022c99ea22570784e760a8979fbf2aa8ddb191f4aa67282490585ea8d6f841c79f562e760911d5850de6d0d6f3adff071a6e70e02f62d76b18205135d5a9ba65b97e831e54fbe38c76593a036c0c6f8d559861352423bec26f8736a0561a1b93dfb16fda1568f", 0xb3}, {&(0x7f0000000280)="5a67e0b1416d3b2ac164845c033c7f190a342267bbf01c07b27add4cb831c3a22617d8f1de226c", 0x27}, {&(0x7f00000005c0)="1bdf39f106d849f79a75aba31263ae27ae8afc01a5da29ab6bcc5a3403591b0c55a5a32a355ee811e9761886fb8b94a7ed7feb249035e64e20d22c2e0875e22e119d5df237c6034de49af87aab4994039f177c5eea2939dc1cfd515cf2bcbc6fae2e23352bc41394a8c78f81ea39f6f68fa7f25478f5bb299a1c00062532af43e84a901cc76d954f08f4b097cc4ff6bad0041da6235de0b160d07e43ffb2b0ab1124f12fc2e4be36ec5d3dc001f56fe6c52000c9d37f723f984d8a0269a5c9e3773e6e89e3cb68a9eacf6e8035b1ac4c", 0xd0}, {&(0x7f00000006c0)="ed704fde521ecff25d0d81e5ab9d3273809369e918fe2700b2175776cb7742ff4e83c21a1ee21d96da570ae12d2c00a3ea65bf35cebccf1162adf2e83f834c55e9630db21d8910a7beae87efc0a49667b84145517e0948bbd1b441ddef16be41ad064e266a3be3db4236d328c8903589aa50c59225a4f7f2bb29e27a1d46b493ae489705d374da0a36bdc2ee58d59d4f3f184bcf", 0x94}, {&(0x7f0000000440)="381e39502cf45fd396e267c8efd0d55d", 0x10}, {&(0x7f0000000780)="ebec358273196a336a20e26245eb4559600b8120da", 0x15}, {&(0x7f00000007c0)="f22da5e3118cb93b650c133805a0bd678deb40427d684e0077a3ab5b55ccd83ed4dbe16581a9762880d6b79fc41b15a00778cd34ba127b2432446b08e8b7bdffed54e2a5dd7afb5c4ed0f6f21569ddf2f6396bc1a2eb6b527069453dbb8bc35f01775953de187258ff6678c1a5b8b1d189d578787ec3f172403bc67cea396a50f9606b8f83c8e7bc34063b81be397ce1d777b87f2bca", 0x96}, {&(0x7f0000000880)="849016341788df9bad322f4ab5f6fc76a5614b1afbc1c7108248d1f6d4f84ae84e051549674c4d77dc6b16821a5e4977b295fc7fa69a86918e9f491f7e1c9a6ce99de2d19ef51a41f73b2de0453b78545c819902fecc4050dad947ede411cfa993d9b56d98aaa019b841b58f74f3bb3b8e1c1e7dcc37d19a401240dc8c3802cf69ac2bb4638ae6a069073d94da5b0bbde652d97f8af89c526983a9f40393af1e76655f9119940a5c3013ea35c137aed3762cb598057f2a953d5dd75574474b5209a1fb0fbb", 0xc5}], 0xa, &(0x7f0000000a40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0x400}}, @dstopts={{0xb8, 0x29, 0x37, {0x1, 0x13, '\x00', [@pad1, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @generic={0x3, 0x80, "2d973c23b304eb741c35b8a24b3bfd04fd986980a82216abaacbc02996887188d7669e7022c389b4aaf2c9b4ab5a30fdcd4e72411da44b697f83e22e656667d12c022b167b05b833cc0b8245993b28e5c85132b635e251690aa739af18aff0dd2da3892c8e344a89e03b6cc00084e8b2fa7d5644733fdbb0041a67ba15bc2230"}, @ra={0x5, 0x2, 0x5}, @enc_lim={0x4, 0x1, 0x81}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0xfffffffe}}, @rthdr={{0x78, 0x29, 0x39, {0x3c, 0xc, 0x2, 0x0, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, @private0, @mcast1, @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}]}}}, @hopopts={{0x30, 0x29, 0x36, {0xff, 0x2, '\x00', [@hao={0xc9, 0x10, @loopback}]}}}, @dstopts_2292={{0x28, 0x29, 0x4, {0x3b, 0x1, '\x00', [@jumbo={0xc2, 0x4, 0x1}, @pad1]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x24f7}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast2}}}, @tclass={{0x14, 0x29, 0x43, 0x8}}], 0x228}}], 0x1, 0x4895) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@nl=@proc, 0x80, 0x0, 0x0, &(0x7f0000000380)=ANY=[], 0x30}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f0000000300)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0}, 0x80000001) r5 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r6 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r5, r6) r7 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = syz_io_uring_setup(0x630e, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x3ca}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r11 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r11, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x0) r13 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r8, 0x8000000) syz_io_uring_submit(r13, 0x0, &(0x7f0000000200)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0x8, 0x5, {0x0, r7}, 0x9, 0x0, 0x0, {0x0, r12, r8}}, 0x401) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x1, 0x4007, @fd=r5, 0xfffffffffffffff7, 0x0, 0x0, 0x6, 0x0, {0x0, r12}}, 0x4) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:12:46 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:12:46 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 18) 00:12:46 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:12:46 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$tmpfs(0x0, &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600), 0x0, &(0x7f0000000000)={[{@mpol={'mpol', 0x3d, {'bind', '=static', @void}}}]}) [ 766.716946] FAT-fs (loop6): bogus number of reserved sectors [ 766.718422] FAT-fs (loop6): Can't find a valid FAT filesystem [ 766.734613] FAULT_INJECTION: forcing a failure. [ 766.734613] name failslab, interval 1, probability 0, space 0, times 0 [ 766.737050] CPU: 1 PID: 6466 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 766.738497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 766.740237] Call Trace: [ 766.740802] dump_stack+0x107/0x167 [ 766.741579] should_fail.cold+0x5/0xa [ 766.742385] ? percpu_ref_init+0xd8/0x3d0 [ 766.743255] should_failslab+0x5/0x20 [ 766.744062] kmem_cache_alloc_trace+0x55/0x320 [ 766.745032] ? io_async_queue_proc+0x80/0x80 [ 766.745980] percpu_ref_init+0xd8/0x3d0 [ 766.746827] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 766.747976] io_uring_setup+0x14f6/0x2980 [ 766.748855] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 766.749937] ? wait_for_completion_io+0x270/0x270 [ 766.750972] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 766.752070] ? syscall_enter_from_user_mode+0x1d/0x50 [ 766.753170] do_syscall_64+0x33/0x40 [ 766.753963] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 766.755040] RIP: 0033:0x7fcf423d9b19 [ 766.755820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 766.759743] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 766.761344] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 766.762884] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 766.764384] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 766.765892] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 766.767411] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 766.776488] tmpfs: Bad value for 'mpol' 00:12:59 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) semctl$IPC_RMID(r3, 0x0, 0x0) 00:12:59 executing program 1: rt_sigaction(0x39, &(0x7f0000001f80)={0x0, 0x8000005, 0x0, {[0xfffffffffffffffd]}}, 0x0, 0x8, &(0x7f0000000000)) pselect6(0x40, &(0x7f0000000040)={0x7, 0xdffffffffffffffe, 0xc8, 0x1, 0x74, 0x7fff, 0xfffffffffffff801, 0x9}, &(0x7f0000000080)={0x4000000f3c6, 0x7, 0x0, 0x484, 0x9, 0x81, 0x0, 0x1}, &(0x7f00000000c0)={0xf2, 0x5, 0xb70, 0x6, 0x9, 0xd2a, 0x46d000000000000, 0xc57b800000000000}, &(0x7f0000000100)={0x77359400}, &(0x7f0000000180)={&(0x7f0000000140)={[0x80000001]}, 0x7}) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) pselect6(0x40, &(0x7f00000001c0)={0x8, 0xaf, 0x3f00000, 0x9, 0x5, 0x3, 0x7, 0x8001}, &(0x7f0000000200)={0x7, 0x9419, 0x99, 0x0, 0x82, 0x5b, 0x6, 0x8}, &(0x7f0000000240)={0x1ae6800000, 0x4, 0x40, 0x1f, 0x5, 0x2, 0x8, 0xad}, &(0x7f00000002c0)={r0, r1+10000000}, &(0x7f0000000340)={&(0x7f0000000300)={[0x1]}, 0x8}) 00:12:59 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:12:59 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:12:59 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0) ioctl$SNAPSHOT_PREF_IMAGE_SIZE(0xffffffffffffffff, 0x3312, 0x8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x81403, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000100), 0x8}, 0x4, 0x3, 0xfffffffc, 0x2, 0x3, 0x400, 0xfffe, 0x0, 0xfffffffc, 0x0, 0x8008}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_RELOAD_REGDB(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x14, r3}, 0x14}}, 0x0) sendfile(0xffffffffffffffff, r2, &(0x7f0000000200)=0x6, 0x3) write$binfmt_elf64(r1, &(0x7f00000008c0)=ANY=[], 0x629) r4 = creat(&(0x7f0000000080)='./file0\x00', 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0xf, 0x10, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r5, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r6, 0x6, 0x3, &(0x7f0000000000)=0xf9, 0x4) ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000000)={0x390, 0x9, 0xaa9, 0x1, 0x6}) sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000013c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001380)={&(0x7f0000000300)={0x1048, 0x0, 0x4, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_SCAN_SUPP_RATES={0x1028, 0x7d, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x1004, 0x2, "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"}, @NL80211_BAND_5GHZ={0x20, 0x1, "4d6986d3b4c63824cc7f77fd9e5dad4e7dc49c3910fa3194e17bad2e"}]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x1048}, 0x1, 0x0, 0x0, 0x4000000}, 0x82) pwrite64(r4, &(0x7f00000000c0)="04", 0x1, 0x3ff03) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x1000, 0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r1, r0, 0x0, 0xffffffff000) 00:12:59 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 19) 00:12:59 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:59 executing program 7: getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0xe, &(0x7f0000000040)={@initdev, 0x0}, &(0x7f0000000080)=0x14) r1 = socket$packet(0x11, 0x3, 0x300) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = dup2(r2, r3) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r4, 0x8000000) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f00000001c0)={0x3, 0x5}, 0x4) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000040)={r6, 0x1, 0x6, @broadcast}, 0x10) sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x4c, 0x0, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_WOL_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4008890}, 0x4000) rt_sigaction(0x25, &(0x7f0000001f80)={0x0, 0x50000005, 0x0, {[0x2000000000000000]}}, 0x0, 0x8, &(0x7f00000020c0)) [ 779.696138] FAULT_INJECTION: forcing a failure. [ 779.696138] name failslab, interval 1, probability 0, space 0, times 0 [ 779.698615] CPU: 0 PID: 6493 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 779.700068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 779.701834] Call Trace: [ 779.702399] dump_stack+0x107/0x167 [ 779.703175] should_fail.cold+0x5/0xa [ 779.703987] ? create_object.isra.0+0x3a/0xa30 [ 779.704954] should_failslab+0x5/0x20 [ 779.705772] kmem_cache_alloc+0x5b/0x310 [ 779.706646] create_object.isra.0+0x3a/0xa30 [ 779.707581] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 779.708664] kmem_cache_alloc_trace+0x151/0x320 [ 779.709656] ? io_async_queue_proc+0x80/0x80 [ 779.710603] percpu_ref_init+0xd8/0x3d0 [ 779.711437] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 779.712580] io_uring_setup+0x14f6/0x2980 [ 779.713468] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 779.714638] ? wait_for_completion_io+0x270/0x270 [ 779.715819] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 779.717080] ? syscall_enter_from_user_mode+0x1d/0x50 [ 779.718337] do_syscall_64+0x33/0x40 [ 779.719230] entry_SYSCALL_64_after_hwframe+0x67/0xd1 00:12:59 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) [ 779.720443] RIP: 0033:0x7fcf423d9b19 [ 779.721434] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 779.725870] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 779.727694] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 779.728342] FAT-fs (loop6): bogus number of reserved sectors [ 779.729389] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 779.729402] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 779.729418] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 779.730118] FAT-fs (loop6): Can't find a valid FAT filesystem [ 779.731820] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 779.751601] device lo entered promiscuous mode [ 779.756266] device lo left promiscuous mode [ 779.771071] device lo entered promiscuous mode [ 779.774654] device lo left promiscuous mode 00:12:59 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 20) 00:12:59 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:12:59 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000000)={0x20, 0x24c, 0x2, 0x8000, 0x429, 0x8, 0x0, 0xbbbe}, &(0x7f0000000040)={0x10001, 0xfe, 0x5, 0xffffffffbc0f1a24, 0x1, 0x4a6d4e5d, 0x9, 0xed0}, &(0x7f0000000080)={0x1, 0x6, 0x7fffffff, 0xd8c, 0x100000000, 0x1, 0x976, 0x100000001}, &(0x7f0000000100)={r0, r1+10000000}, &(0x7f0000000180)={&(0x7f0000000140)={[0x1]}, 0x8}) [ 779.815064] FAULT_INJECTION: forcing a failure. [ 779.815064] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 779.816466] CPU: 1 PID: 6507 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 779.817248] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 779.818204] Call Trace: [ 779.818519] dump_stack+0x107/0x167 [ 779.818935] should_fail.cold+0x5/0xa [ 779.819383] _copy_to_user+0x2e/0x180 [ 779.819831] io_uring_setup+0x11b5/0x2980 [ 779.820307] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 779.820893] ? wait_for_completion_io+0x270/0x270 [ 779.821461] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 779.822072] ? syscall_enter_from_user_mode+0x1d/0x50 [ 779.822665] do_syscall_64+0x33/0x40 [ 779.823091] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 779.823710] RIP: 0033:0x7fcf423d9b19 [ 779.824229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 779.826368] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 779.827248] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 779.828066] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 779.828882] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 779.829707] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 779.830527] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:12:59 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x10062, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:12:59 executing program 4: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 779.869826] FAT-fs (loop6): bogus number of reserved sectors [ 779.870622] FAT-fs (loop6): Can't find a valid FAT filesystem 00:12:59 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x1010, r0, 0x0) write$binfmt_elf64(r0, &(0x7f0000000000)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x4, 0xf8, 0xfd, 0x0, 0x2, 0x3, 0x0, 0x208, 0x40, 0x154, 0x9, 0x3, 0x38, 0x1, 0x6, 0x1, 0x400}, [{0x4, 0x401, 0x6, 0x3ff, 0x7, 0x8, 0x200, 0x68}, {0x5, 0xfffffffa, 0x800, 0x5, 0x80000001, 0x8, 0x2, 0x5e5}], "e1ad0455f33385bf3a98cd7a8c1ded2d72fefb0a4186585a157de9747ddb23cbc89d458d2892e4b7e53227ee9e43a459dc65cc20df489c6975866cca54922990811350ec7135a2ac9fd9c757b4c05cd2f6bd4b7119840487724f04b20fa048cf7f7b752bbdd808d618ae84cdf24d1cb87d056bd758875d3e51fd61065ae2727e9a833af192fab841545b16cdc5d8a83eea47cccb5f71ddb29fc64887639fcb", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xa4f) syz_io_uring_submit(r1, 0x0, &(0x7f0000000a80)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x9) 00:12:59 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 21) [ 779.928820] FAULT_INJECTION: forcing a failure. [ 779.928820] name failslab, interval 1, probability 0, space 0, times 0 [ 779.930221] CPU: 1 PID: 6522 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 779.930994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 779.931934] Call Trace: [ 779.932236] dump_stack+0x107/0x167 [ 779.932659] should_fail.cold+0x5/0xa [ 779.933090] ? __d_alloc+0x2a/0x990 [ 779.933510] should_failslab+0x5/0x20 [ 779.933952] kmem_cache_alloc+0x5b/0x310 [ 779.934427] __d_alloc+0x2a/0x990 [ 779.934830] ? find_held_lock+0x2c/0x110 [ 779.935418] d_alloc_pseudo+0x19/0x70 [ 779.935899] alloc_file_pseudo+0xce/0x250 [ 779.936375] ? trace_hardirqs_on+0x5b/0x180 [ 779.936858] ? alloc_file+0x5a0/0x5a0 [ 779.937299] anon_inode_getfile+0xc8/0x1f0 [ 779.937795] io_uring_setup+0x138b/0x2980 [ 779.938277] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 779.938860] ? wait_for_completion_io+0x270/0x270 [ 779.939412] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 779.940009] ? syscall_enter_from_user_mode+0x1d/0x50 [ 779.940594] do_syscall_64+0x33/0x40 [ 779.941022] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 779.941596] RIP: 0033:0x7fcf423d9b19 [ 779.942029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 779.944096] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 779.944972] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 779.945779] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 779.946588] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 779.947399] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 779.948197] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:13:14 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) semctl$SEM_STAT_ANY(r3, 0x2, 0x14, &(0x7f00000010c0)=""/79) 00:13:14 executing program 1: readv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/203, 0xcb}, {&(0x7f0000000100)=""/16, 0x10}, {&(0x7f0000000140)=""/190, 0xbe}, {&(0x7f0000000200)=""/61, 0x3d}, {&(0x7f0000000240)=""/54, 0x36}, {&(0x7f0000000280)=""/238, 0xee}, {&(0x7f0000000380)=""/153, 0x99}], 0x7) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:14 executing program 7: rt_sigaction(0x35, &(0x7f0000001f80)={0x0, 0x0, 0x0, {[0x3]}}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:14 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:13:14 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:13:14 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 22) 00:13:14 executing program 0: r0 = syz_io_uring_setup(0x3a71, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x4, 0xfffffffe}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000c80)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x1, @mcast2, 0x80}, 0x1c, &(0x7f0000000980)=[{&(0x7f0000000340)="b18328e5deb3c990bb5344e9959f911cf01248c1be97474f71aa1c4b0913bea34b46420114adfb2e1f67eed97bb223573233fc92a7a5f61f848a855bf1b33076b07106dad4927531120a748b117ce8ddbb3f", 0x52}, {&(0x7f00000003c0)="5ddcef76803e84d30a699c0adb18c88129fa642aafd89c34e84809bf2b345c3e56d71f8efad9043a18a3f55155603fcf26f56f3e4316a5c4d1fd37c3b961a627a9f43bcddc5d7037f02468be329c2abc41b54eb4", 0x54}, {&(0x7f0000000500)="3e8ce47177def12b2639aace44523bd8d2dcf1b67a792ac01094099709a398bc1d7e349b9fc06a8e5f911d98d0bd78f1fab043a8e60f11f7232e944b39677ee147b9fffa15d633f95bf521c4f022c99ea22570784e760a8979fbf2aa8ddb191f4aa67282490585ea8d6f841c79f562e760911d5850de6d0d6f3adff071a6e70e02f62d76b18205135d5a9ba65b97e831e54fbe38c76593a036c0c6f8d559861352423bec26f8736a0561a1b93dfb16fda1568f", 0xb3}, {&(0x7f0000000280)="5a67e0b1416d3b2ac164845c033c7f190a342267bbf01c07b27add4cb831c3a22617d8f1de226c", 0x27}, {&(0x7f00000005c0)="1bdf39f106d849f79a75aba31263ae27ae8afc01a5da29ab6bcc5a3403591b0c55a5a32a355ee811e9761886fb8b94a7ed7feb249035e64e20d22c2e0875e22e119d5df237c6034de49af87aab4994039f177c5eea2939dc1cfd515cf2bcbc6fae2e23352bc41394a8c78f81ea39f6f68fa7f25478f5bb299a1c00062532af43e84a901cc76d954f08f4b097cc4ff6bad0041da6235de0b160d07e43ffb2b0ab1124f12fc2e4be36ec5d3dc001f56fe6c52000c9d37f723f984d8a0269a5c9e3773e6e89e3cb68a9eacf6e8035b1ac4c", 0xd0}, {&(0x7f00000006c0)="ed704fde521ecff25d0d81e5ab9d3273809369e918fe2700b2175776cb7742ff4e83c21a1ee21d96da570ae12d2c00a3ea65bf35cebccf1162adf2e83f834c55e9630db21d8910a7beae87efc0a49667b84145517e0948bbd1b441ddef16be41ad064e266a3be3db4236d328c8903589aa50c59225a4f7f2bb29e27a1d46b493ae489705d374da0a36bdc2ee58d59d4f3f184bcf", 0x94}, {&(0x7f0000000440)="381e39502cf45fd396e267c8efd0d55d", 0x10}, {&(0x7f0000000780)="ebec358273196a336a20e26245eb4559600b8120da", 0x15}, {&(0x7f00000007c0)="f22da5e3118cb93b650c133805a0bd678deb40427d684e0077a3ab5b55ccd83ed4dbe16581a9762880d6b79fc41b15a00778cd34ba127b2432446b08e8b7bdffed54e2a5dd7afb5c4ed0f6f21569ddf2f6396bc1a2eb6b527069453dbb8bc35f01775953de187258ff6678c1a5b8b1d189d578787ec3f172403bc67cea396a50f9606b8f83c8e7bc34063b81be397ce1d777b87f2bca", 0x96}, {&(0x7f0000000880)="849016341788df9bad322f4ab5f6fc76a5614b1afbc1c7108248d1f6d4f84ae84e051549674c4d77dc6b16821a5e4977b295fc7fa69a86918e9f491f7e1c9a6ce99de2d19ef51a41f73b2de0453b78545c819902fecc4050dad947ede411cfa993d9b56d98aaa019b841b58f74f3bb3b8e1c1e7dcc37d19a401240dc8c3802cf69ac2bb4638ae6a069073d94da5b0bbde652d97f8af89c526983a9f40393af1e76655f9119940a5c3013ea35c137aed3762cb598057f2a953d5dd75574474b5209a1fb0fbb", 0xc5}], 0xa, &(0x7f0000000a40)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0x400}}, @dstopts={{0xb8, 0x29, 0x37, {0x1, 0x13, '\x00', [@pad1, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @generic={0x3, 0x80, "2d973c23b304eb741c35b8a24b3bfd04fd986980a82216abaacbc02996887188d7669e7022c389b4aaf2c9b4ab5a30fdcd4e72411da44b697f83e22e656667d12c022b167b05b833cc0b8245993b28e5c85132b635e251690aa739af18aff0dd2da3892c8e344a89e03b6cc00084e8b2fa7d5644733fdbb0041a67ba15bc2230"}, @ra={0x5, 0x2, 0x5}, @enc_lim={0x4, 0x1, 0x81}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0xfffffffe}}, @rthdr={{0x78, 0x29, 0x39, {0x3c, 0xc, 0x2, 0x0, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @empty, @private0, @mcast1, @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}]}}}, @hopopts={{0x30, 0x29, 0x36, {0xff, 0x2, '\x00', [@hao={0xc9, 0x10, @loopback}]}}}, @dstopts_2292={{0x28, 0x29, 0x4, {0x3b, 0x1, '\x00', [@jumbo={0xc2, 0x4, 0x1}, @pad1]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x24f7}}, @pktinfo={{0x24, 0x29, 0x32, {@mcast2}}}, @tclass={{0x14, 0x29, 0x43, 0x8}}], 0x228}}], 0x1, 0x4895) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@nl=@proc, 0x80, 0x0, 0x0, &(0x7f0000000380)=ANY=[], 0x30}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r4, r2, &(0x7f0000000300)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0}, 0x80000001) r5 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r6 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r5, r6) r7 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = syz_io_uring_setup(0x630e, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x3ca}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r11 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r11, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x0) r13 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r8, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r8, 0x8000000) syz_io_uring_submit(r13, 0x0, &(0x7f0000000200)=@IORING_OP_SPLICE={0x1e, 0x5, 0x0, @fd_index=0x8, 0x5, {0x0, r7}, 0x9, 0x0, 0x0, {0x0, r12, r8}}, 0x401) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x1, 0x4007, @fd=r5, 0xfffffffffffffff7, 0x0, 0x0, 0x6, 0x0, {0x0, r12}}, 0x4) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:14 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 794.651095] FAULT_INJECTION: forcing a failure. [ 794.651095] name failslab, interval 1, probability 0, space 0, times 0 [ 794.653520] CPU: 0 PID: 6535 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 794.654952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 794.656671] Call Trace: [ 794.657221] dump_stack+0x107/0x167 [ 794.657984] should_fail.cold+0x5/0xa [ 794.658776] ? create_object.isra.0+0x3a/0xa30 [ 794.659722] should_failslab+0x5/0x20 [ 794.660508] kmem_cache_alloc+0x5b/0x310 [ 794.661352] create_object.isra.0+0x3a/0xa30 [ 794.662269] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 794.663329] kmem_cache_alloc+0x159/0x310 [ 794.664197] __d_alloc+0x2a/0x990 [ 794.664912] ? find_held_lock+0x2c/0x110 [ 794.665769] d_alloc_pseudo+0x19/0x70 [ 794.666574] alloc_file_pseudo+0xce/0x250 [ 794.667450] ? trace_hardirqs_on+0x5b/0x180 [ 794.668352] ? alloc_file+0x5a0/0x5a0 [ 794.669165] anon_inode_getfile+0xc8/0x1f0 [ 794.670062] io_uring_setup+0x138b/0x2980 [ 794.670944] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 794.672009] ? wait_for_completion_io+0x270/0x270 [ 794.673043] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 794.674154] ? syscall_enter_from_user_mode+0x1d/0x50 [ 794.675242] do_syscall_64+0x33/0x40 [ 794.676022] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 794.677098] RIP: 0033:0x7fcf423d9b19 [ 794.677887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 794.681758] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 794.683363] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 794.684863] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 794.686369] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 794.687867] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 794.689373] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 794.702765] loop6: detected capacity change from 0 to 32768 [ 794.722245] FAT-fs (loop6): bogus number of reserved sectors [ 794.723549] FAT-fs (loop6): Can't find a valid FAT filesystem 00:13:14 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0xfffffffffffffc01, 0x1, 0x2, 0x0, 0x9a0d, 0xfff, 0x100000001, 0x6ab}, &(0x7f0000000040)={0x10001, 0xfffffffffffffffe, 0x9, 0xf4aa, 0x2, 0x1, 0xffffffffffffffc1, 0x80}, &(0x7f0000000080)={0x2, 0x8001, 0x6c7, 0xfff, 0x7, 0x8, 0x200, 0x7}, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)={&(0x7f0000000100), 0x8}) mq_timedreceive(0xffffffffffffffff, &(0x7f0000000180)=""/111, 0x6f, 0x7ff, &(0x7f0000000200)={0x77359400}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000240)=0x101) 00:13:14 executing program 1: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) accept4$inet(r0, &(0x7f0000000040)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10, 0x81800) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:14 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x1, 0x4, 0x6, 0x9e}) 00:13:14 executing program 0: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x80000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = syz_open_dev$tty1(0xc, 0x4, 0x3) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0xff) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="01ffffffffffffff2e2f66696c653000fd0425cbeaf00309a78cfb26478ba58b5bbe337a6b302730a8f9af48d16f9e385c5c4137fedea433d7f431f6d984234fc5475ceb1a91593100"/83]) ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="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"]) ioctl$TIOCGWINSZ(r2, 0x5413, &(0x7f00000000c0)) ioctl$PIO_SCRNMAP(r1, 0x4b41, &(0x7f0000000180)="3a7aed82106c9facba81ded76aa49a8c4dd19b5118f4cad86b8e96f00129acfa2a4a61") fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000009c0)) ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000040)=0x4) ioctl$VT_WAITACTIVE(r2, 0x5607) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) fchmod(0xffffffffffffffff, 0x80) timer_gettime(0x0, &(0x7f0000000080)) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r4, 0xf507, 0x0) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 00:13:14 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 23) 00:13:14 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:13:14 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 794.879067] FAULT_INJECTION: forcing a failure. [ 794.879067] name failslab, interval 1, probability 0, space 0, times 0 [ 794.881699] CPU: 1 PID: 6565 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 794.883238] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 794.885003] Call Trace: [ 794.885564] dump_stack+0x107/0x167 [ 794.886350] should_fail.cold+0x5/0xa [ 794.887162] ? __alloc_file+0x21/0x320 [ 794.887978] should_failslab+0x5/0x20 [ 794.888787] kmem_cache_alloc+0x5b/0x310 [ 794.889654] __alloc_file+0x21/0x320 [ 794.890451] alloc_empty_file+0x6d/0x170 [ 794.891318] alloc_file+0x5e/0x5a0 [ 794.892085] alloc_file_pseudo+0x16a/0x250 [ 794.892978] ? alloc_file+0x5a0/0x5a0 [ 794.893798] anon_inode_getfile+0xc8/0x1f0 [ 794.894712] io_uring_setup+0x138b/0x2980 [ 794.895595] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 794.896692] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 794.897808] ? syscall_enter_from_user_mode+0x1d/0x50 [ 794.898930] do_syscall_64+0x33/0x40 [ 794.899724] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 794.900810] RIP: 0033:0x7fcf423d9b19 [ 794.901598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 794.905528] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 794.907150] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 794.908659] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 794.910187] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 794.911705] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 794.913222] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:13:14 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) [ 794.924557] loop6: detected capacity change from 0 to 32768 [ 794.933481] FAT-fs (loop6): bogus number of reserved sectors [ 794.934926] FAT-fs (loop6): Can't find a valid FAT filesystem 00:13:28 executing program 7: rt_sigaction(0x40000038, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:28 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) r3 = semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) semtimedop(r3, &(0x7f0000000000), 0x0, &(0x7f0000000040)) 00:13:28 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 1) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:13:28 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:13:28 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 24) 00:13:28 executing program 1: r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = dup2(r0, r1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r2, 0x8000000) ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, &(0x7f0000000000)={{r2}, {@val, @actul_num={@val=0x2b, 0x9, 0x6b}}}) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:28 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:13:28 executing program 0: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x2000000000000000}, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8102}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = pkey_alloc(0x0, 0x7) r2 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, r2) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) r3 = creat(&(0x7f0000000080)='./file1\x00', 0x109) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r1) pkey_mprotect(&(0x7f0000ff1000/0x1000)=nil, 0x1000, 0x9, r1) ftruncate(r3, 0xfffffffffffffffe) pkey_mprotect(&(0x7f0000ff0000/0x1000)=nil, 0x1000, 0x8, r1) creat(&(0x7f00000001c0)='./file1/file0\x00', 0x11) pkey_mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x6, 0xffffffffffffffff) mbind(&(0x7f0000fed000/0x4000)=nil, 0x4000, 0x3, &(0x7f0000000040)=0x7, 0xdc, 0x5) pkey_mprotect(&(0x7f0000ff6000/0x2000)=nil, 0x2000, 0x3000002, r1) fcntl$setstatus(r0, 0x4, 0x400) r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r3) fallocate(r4, 0x0, 0x0, 0x8800000) [ 808.615894] FAULT_INJECTION: forcing a failure. [ 808.615894] name failslab, interval 1, probability 0, space 0, times 0 [ 808.618453] CPU: 0 PID: 6590 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 808.619761] FAULT_INJECTION: forcing a failure. [ 808.619761] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 808.619906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 808.619921] Call Trace: [ 808.624758] dump_stack+0x107/0x167 [ 808.625538] should_fail.cold+0x5/0xa [ 808.626366] ? create_object.isra.0+0x3a/0xa30 [ 808.627344] should_failslab+0x5/0x20 [ 808.628155] kmem_cache_alloc+0x5b/0x310 [ 808.629027] create_object.isra.0+0x3a/0xa30 [ 808.629966] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 808.631066] kmem_cache_alloc+0x159/0x310 [ 808.631957] __alloc_file+0x21/0x320 [ 808.632754] alloc_empty_file+0x6d/0x170 [ 808.633624] alloc_file+0x5e/0x5a0 [ 808.634398] alloc_file_pseudo+0x16a/0x250 [ 808.635299] ? alloc_file+0x5a0/0x5a0 [ 808.636134] anon_inode_getfile+0xc8/0x1f0 [ 808.637041] io_uring_setup+0x138b/0x2980 [ 808.637934] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 808.639022] ? wait_for_completion_io+0x270/0x270 [ 808.640075] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 808.641198] ? syscall_enter_from_user_mode+0x1d/0x50 [ 808.642308] do_syscall_64+0x33/0x40 [ 808.643101] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 808.644192] RIP: 0033:0x7fcf423d9b19 [ 808.644984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 808.648909] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 808.650528] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 808.652045] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 808.653564] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 808.655101] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 808.656611] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 808.658181] CPU: 1 PID: 6597 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 808.658984] loop6: detected capacity change from 0 to 32768 [ 808.659667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 808.659674] Call Trace: [ 808.659702] dump_stack+0x107/0x167 [ 808.659726] should_fail.cold+0x5/0xa [ 808.664801] _copy_from_user+0x2e/0x1b0 [ 808.665660] move_addr_to_kernel.part.0+0x31/0x110 [ 808.666722] __sys_sendto+0x166/0x320 [ 808.667540] ? __ia32_sys_getpeername+0xb0/0xb0 [ 808.668537] ? lock_downgrade+0x6d0/0x6d0 [ 808.669438] ? __mutex_unlock_slowpath+0xe1/0x600 [ 808.669957] FAT-fs (loop6): bogus number of reserved sectors [ 808.670487] ? wait_for_completion_io+0x270/0x270 [ 808.670510] ? rcu_read_lock_any_held+0x75/0xa0 [ 808.670537] ? vfs_write+0x354/0xb10 [ 808.671777] FAT-fs (loop6): Can't find a valid FAT filesystem [ 808.672755] ? fput_many+0x2f/0x1a0 [ 808.672779] ? ksys_write+0x1a9/0x260 [ 808.677282] ? __ia32_sys_read+0xb0/0xb0 [ 808.678156] __x64_sys_sendto+0xdd/0x1b0 [ 808.679018] ? syscall_enter_from_user_mode+0x1d/0x50 [ 808.680115] do_syscall_64+0x33/0x40 [ 808.680903] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 808.681987] RIP: 0033:0x7f36610dbb19 [ 808.682784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 808.686686] RSP: 002b:00007f365e651188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 808.688294] RAX: ffffffffffffffda RBX: 00007f36611eef60 RCX: 00007f36610dbb19 [ 808.689802] RDX: 0000000000000004 RSI: 0000000020000040 RDI: 0000000000000004 [ 808.691312] RBP: 00007f365e6511d0 R08: 00000000200000c0 R09: 0000000000000080 [ 808.692818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 808.694332] R13: 00007ffc0339c84f R14: 00007f365e651300 R15: 0000000000022000 00:13:28 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f00000002c0)={0x1, 0x100000001, 0x8, 0x3, 0x2, 0x2b, 0x10001, 0x7fffffff}, &(0x7f0000000300)={0x1f, 0x7, 0x1, 0xa8f2, 0x9600000, 0x3, 0x8001, 0x80000000}, &(0x7f0000000340)={0x11, 0x41c, 0x80000001, 0x3, 0x6, 0x2, 0x800, 0x39a}, &(0x7f0000000380)={0x0, 0x989680}, &(0x7f0000000400)={&(0x7f00000003c0)={[0x9]}, 0x8}) io_pgetevents(0x0, 0x200, 0x4, &(0x7f0000000180)=[{}, {}, {}, {}], &(0x7f0000000200)={0x77359400}, &(0x7f0000000280)={&(0x7f0000000240)={[0x5]}, 0x8}) io_getevents(0x0, 0xe, 0x5, &(0x7f0000000440)=[{}, {}, {}, {}, {}], 0x0) pselect6(0x40, &(0x7f0000000000)={0x5, 0x0, 0x4, 0x883, 0x2, 0x5, 0x7c, 0x8}, &(0x7f0000000040)={0x1, 0x1, 0x55, 0x400, 0x4, 0x10000, 0xa95, 0x4}, &(0x7f0000000080)={0x10000, 0x99b, 0x2, 0x800000002, 0x100000001, 0x366, 0xffffffffffff9c38, 0x1ff}, &(0x7f0000000500)={0x0, 0x3938700}, &(0x7f0000000140)={&(0x7f0000000100)={[0x7f]}, 0x8}) 00:13:28 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 25) 00:13:28 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 808.795658] FAULT_INJECTION: forcing a failure. [ 808.795658] name failslab, interval 1, probability 0, space 0, times 0 [ 808.798148] CPU: 0 PID: 6609 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 808.799594] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 808.801345] Call Trace: [ 808.801905] dump_stack+0x107/0x167 [ 808.802684] should_fail.cold+0x5/0xa [ 808.803491] ? security_file_alloc+0x34/0x170 [ 808.804440] should_failslab+0x5/0x20 [ 808.805245] kmem_cache_alloc+0x5b/0x310 [ 808.806109] security_file_alloc+0x34/0x170 [ 808.807015] __alloc_file+0xb7/0x320 [ 808.807803] alloc_empty_file+0x6d/0x170 [ 808.808656] alloc_file+0x5e/0x5a0 [ 808.809408] alloc_file_pseudo+0x16a/0x250 [ 808.810308] ? alloc_file+0x5a0/0x5a0 [ 808.811124] anon_inode_getfile+0xc8/0x1f0 [ 808.812034] io_uring_setup+0x138b/0x2980 [ 808.812914] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 808.813976] ? wait_for_completion_io+0x270/0x270 [ 808.815031] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 808.816133] ? syscall_enter_from_user_mode+0x1d/0x50 [ 808.817220] do_syscall_64+0x33/0x40 [ 808.818004] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 808.819095] RIP: 0033:0x7fcf423d9b19 [ 808.819879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 808.823756] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 808.825361] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 808.826880] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 808.828384] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 808.829888] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 808.831406] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:13:28 executing program 1: rt_sigaction(0x238, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) io_setup(0x7fff, &(0x7f0000000040)=0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r1, r2) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r5 = dup2(r3, r4) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r5, 0x8000000) r6 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r7 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r8 = dup2(r6, r7) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r8, 0x8000000) io_submit(r0, 0x3, &(0x7f0000000580)=[&(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x7, r1, &(0x7f0000000280)="d3a301aa9d2ca4b9430f681d43630a891d47874fae2f749d217c6efa5b5e6b3fb0bb543750503cd4883c1b4227b74ce303627867cf7d9cd231f2a019e57d0d8c43420742ad36572bc55bc95d236e0a1a789aa28654670526d7aa4849ed75904b5debe2ebac3819d33dd0f11b07c85f93f12b2e781f7982948791e06b77771aca95a5e6564acc36fc1948e1c4f3e9f28adbec871dbdedb7c03eb6f8b834674298c5", 0xa1, 0x7, 0x0, 0x6}, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x7, 0x1, 0xffffffffffffffff, &(0x7f0000000380)="15f61d3021a6eb8008de13544c3b16c29a423a1c3dc51c39e8ba2f6139457bd18355016985b54a1c4c3309ff004022a0c42695b444c21b4ebe0bdf70ffa3e267ccaab8d19d68e3f5fe9c45e6b1643b72b12f92f48b425a931ab83ada98220f790454c0e8466fa716646704e1315de8130948978203b492e86ed1dd147636b1715a31cbe516166f7591431bae957d407509e6a66d028a8b3090fd7f2fe0e4eeef6514", 0xa2, 0x29, 0x0, 0x3, r5}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x6, 0xa2, 0xffffffffffffffff, &(0x7f0000000480)="8b5ace6698bb9c03a70a46cd8dec3acf08ff7fb446e390d55f3bab712e1542e9ce46041b880352ecf311f58941e73fed0af8276c0ef242f342a0d639c1d6ea9d87523fe001ef373d98a391bb8be12719052993f32048fe906cd3efdce5316848ab14e4b384fd56dad75502e34fc33d0146aac7c59dc4ddb941692fc60b0a89484fe8f95b161f2921ad12003c30fe75c58e5f3554d06d5e51257b58b325e2f05b297a80d33c1fdedebd40c9efbd2c5d1fd03b9c", 0xb3, 0x6, 0x0, 0x4, r8}]) io_pgetevents(r0, 0x8000, 0xa, &(0x7f0000000080)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f00000001c0)={0x77359400}, &(0x7f0000000240)={&(0x7f0000000200)={[0x2]}, 0x8}) setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff, 0xee00}, 0xc) [ 808.843433] loop6: detected capacity change from 0 to 32768 [ 808.861193] FAT-fs (loop6): bogus number of reserved sectors [ 808.862529] FAT-fs (loop6): Can't find a valid FAT filesystem 00:13:28 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:13:28 executing program 7: ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000000)=0x4) r0 = getpid() r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x80, 0xfd, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, @perf_config_ext={0x2, 0x401}, 0x12080, 0x1, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0xc) r2 = getpid() r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r3, 0x29, 0x3, &(0x7f0000001500)=0x8, 0x4) r4 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r4, 0x0) r5 = signalfd4(r4, &(0x7f0000001580)={[0x5]}, 0x8, 0x800) sendto(r3, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r3, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) ioctl$BTRFS_IOC_RESIZE(r3, 0x50009403, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYRES32=r1, @ANYRES16=r2, @ANYRESHEX, @ANYRES32, @ANYRESOCT, @ANYRES64, @ANYRES16, @ANYRESOCT]) r6 = fcntl$getown(r5, 0x9) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xffffff72, &(0x7f0000001500)={&(0x7f0000000080)={0x1424, 0x40, 0x300, 0x70bd26, 0x25dfdbfb, {0xa}, [@generic="1541f3b162d5a99323e38a92a7bf114d863f1908fe601e381cc83b1ef5defb8d290fba2a25f75905973495ef5f0477731156116188aab5217622f7d91809b7ca8e4c76bd7599181938f4cf9c060c5e3d567328bea2cdea0ef1a6e17d52a27a90ab737f839701d486b2d4b0b7ab3eba45cd7d7e941399550b7df3bb902c9f939dab78fbf15420ff5384158a0fcd1af3c0d067a8cc2dc085326a5819d1b3905d60c482bf1aeb6d1e480d48a27bc963fb73d5bbccca634f8f0721", @generic="32708cbadae480419b9cafa57b89e64e9f0b38d6c89b488feeed8ed37794f75b85c2455bb2634781729a1d5be49759cf9ba4b367c50f4b04adcca0e9dcaac64986b197564e33459160a32d927734678abc9cfcf05502a79fbd5bca722206bf527d6ee179789aeb259b33c5f8d222590b1c9bbe65b15623066c9a4588f90924b21ce3fc3dd0decf23ae808021a4ff94bee1b31b088f10d92167161eae0472b8252a5ca6e1e810e07edfa5af42595a934984420c4154264cba2ebc780571ab5269089c", @nested={0x10a6, 0x4, 0x0, 0x1, [@generic="d3753b6a82af06775f96def3fe935b8b6bcfd4030f3bc684bb224cdbf6b51705691892d67c23fdff7d67c9580b6267d16ebc1654b7735910011b6ce76b43cca24a00d282bbb06f366859715133077d94d6ad6f6177", @typed={0x8, 0x22, 0x0, 0x0, @pid=r6}, @generic="a8c4a7a5362ecd882531ffaf4eed94983a4c58692d04cd76be5b659a3f672c12ecbe581f6bb2acc0002a8501e6e6ac653988850adeeff3526d304983c2", @typed={0x8, 0x8e, 0x0, 0x0, @ipv4=@loopback}, @generic="decb0b9479892780d035510f5071b287c2103a079ab26e7f105d470902f2cf8b8f48994dac8e45214d3e53ee1c0c780c18cb4f5b07d6e1624c9239ac79c41ac605a6bde6e66b34510dce707e00ffcb2c91143c812568540efc40d78e962f053c76c0bf5eda2d7115585be83159ae9151868b931fe57b895437b4a7eb60deb264cd4a6be493b4d91865c04099bac763425c70a2652c77574575c41231dba3b6cb028e05fd9bdcf67de6cb7f8d1e13b323addaae2e2ad8f19c22f876b57705d24d101f589f01bcf013e4d8944730c187b2f41ee3b238c9a880de836bb19fed33cdfbc9681e68f16443164e5dcb924789d9f8b1bced959b8bef42c232f0237f96c283cc4852e281cec6b521c70c26b312a4f6b0ee659f9624e5e6828b7415bd0cf710bc195fb9b6966abce03c162cb17350ac34472d0c8d416029dd4e2c10842396ba1d3d08803232884335a21a2b586ac9085e01512f6bae409362f4bc382fbb433203c08feb2e04a0fef4e141b36c9dd8b3cc93359a44b0201cd0bb7f104dac24ac12f662f4e98ac51bbc6fca373cd4677cd3b384766a31fc15643ea76212d2c5a92dde5f7b802eca9e86c52e9dc20ff997a5d806cf1d97a7ed1c34d9ff7046baa042b15c9e8b4fd5dc658c27a656a0b361dbe25ae7bcc1ecd1be78703c54d4e90cb6cf91a582cb97d74394ab18dbe8a08668a112a4591d55de232bd5e3064fe8fd418df5d3f8e6bbcbafaa49d5e2bd3e862b727f80b00af4f8b5d016fabb4c4cf04f1a1c6a6d0ce3404c1ccbdb42cff9b568db84116677969542e222fcd917add8323f261dffdfaf90736011680795cdd74dad4268656fdcb56436baf90a56489514f27bda57eb7f76e472452eebb77d546d0a5a415aae14fe45fde43482f72d204d1a40c3df66fd5f70bfd78b8859c5f0fb6dfe39d64bd7575569e88f5202d90e39b99af0abbb3fcb85e23ea72d3f64dae5af04c7d08e2a0a76145b5da3ff86ba5704b3344132f003d64e8d8790c1cc46336197d728e0878a8350ed0559ba6efdcdbf750fc1d426ad11573337a096315aaf1bfb09fcc7415ce9746f4fcfa7eb2f8b663cee9bd603205db14ae89729fdc3ac6fb7cdc59409b44265224ea830cd5edfca733b71c3eecd8dfc01d7816e406bd40152e513eeeb66abfdbcb80e0fcbc21e86437676aa8de4f30e746a85b20f5e951fd4c2a9ef2172c3648491ffc919991f9f90c4372c24fd7d715d6e0caf4cf9837a9211ff3cd101025888033ae2c73a6eccc311d7c46bf53a5b2a95a7d2a462687b26cd053f8fdaad9dcf5cae1e13e22d03ee316b5e8f0cf96f9441f91c0b380f8be9059eec4ea2c0421b6e627172679a759b33cb708d1fecb7c8c7fb7bb3534e8d9ef7e4624fc1be555edb34b56ddf3d96568062edfb43f94e8829dac03641b15136df40beea8bebb9b94609663f5e380f977b38c765c8211712325ec83e91089135598642c3205437b0ba2e52ca4074080e421c9b716e416a0b78ee5b91a94139b22ffd5e94ac46fd3955ac6b7bf63a66a7d5b1abc52efb571697a1af953463302b9c93cb89b110c9f27bb96db051eb8af3cda964bad11d0c3a664e3e50440c9f2040ce2c24dace936b19ba58a09b13a0e4ff1ee27d1d1ecd34cad334983015f2de2a886e5aaed75d5803ac54abd6a18e9826adb5d0033bbf05d7f17bf66190706c54a04714f342b3689e9742b1202a8a6640f11d62331405710625e0c5df71f5b6f5e1df6fd21dd0eb4abf289c006d8e507d5de1c1bf8096e0e634f9a5694d3bcf2ccc394450ade2ddda2bb4ce70fb4c42e19b8089706e2a61e7856e40250e3dd6670963d2dbdd7d75b532e5839695bbc6778c7645996ee2be417cfb98fea10cdf3623a425f5be2e7065335c595f69b6487304240ba6037934daebddc52b12356fa49cf307aea36ba6e53e8dde219aa01fc77397ece7635ab189a4b7315cc1a257b962b219fc363f5be2971c9d2f0e7fda9203bcf9b1d7d06bec87fbc3749d6685f8ed0949291bda8643da9ef6b6b6596955d516524ebc4cc7ddb6bcb340f676504115cf279367c05004a10a1516002034a480c5459264a022744ee43b359abc9c657dc31f648c9d08abe9ed1a33ab35068eba4cd5a92e4766931d638b047c935c56bdedbc6f5c4ff28e0548dcd36d3b6d3b8a5c453dc04123d7f637ecdefce452e0cdea2249b28998c358f7d6da9baa71a1d79682be93a5457031e538d12334b2aad9db3803eecdbef2f6eadad694f78c41231ee71e4346574a256a9d0ab09f968931eeaff760bdc03e402b3cfe3aa9b0a86b01bb29c6b69e05ae7d1ee6b3d0faa50936b7411e1315e0db6ef7a564cfe57454d3205a6642b8493d29c5de69c0aed7f0986940af1025185802f2feda443b37a3b3384580327127f26fd25ae7e2f5fc205ec86217aec7814b670d9ecbe944f9a6d0a044a0a1279e42f14e21b5216003d0a59f1425d0b9ddcdee7f4fd57fbcba48fae13d32c068dbe0811d30268a608ffc14faac07864b12e8c8392d9215b90a0b8df0f82e6127e40afba96c43d9900d839f5088f129e0bb19a8571769622543fe2f1d374f2490bea41ed747cf519f528146699f8f7fef0598cde6a56074b1108b9a9ab899cfb3f2ec9c5327116424597b676f9401202183fff4db9856f2803109bb5f1d21c1a546ad80514b3c1010ba0b3ddd98a63b6cd0eb3113b4a27947871c4fd02624dc5591db746d99b1440508187ac8de88d6a7eba696882e94b133b3fbfc3e6dbae4eb11f61e2d04334ae9d72aaa61dcb02717b0b4d1916dfa06a968930d452bbdc9386c387cc4ce4123a2a7abc0ccd784fb84bebae0215da090b364c0ca5776e491bc40d991631db65b77aac49223fc17b804427ad638d4898fdf35a64f62b7f9ce6302ce9c0930a4e356cfd9332058b87e66c8ee1f11aa8d787e10d2c831b528149e2e9f55ddf2d405c8a3061d94aad458d07aabbf51837dd6e05a9f57f097e7f5130d6824d16239bccb6ffd4809f7088c5db83bc970c1637f9fafb5c0a52fd625f718baecd3d77da9d34e1c2c0412a7ba85fd3d835becf5adb2e8518efc713decab9db5230337e8552320625453bff3e2cf4c7bb64a01913e86292700990c25df21cd5644a138cd2b3b65a1abf39f2a7a222b3d321d67aee4f354d9e6d428924f2dc62dd3b7443df5acb39f4b4e643fd2a913db3021289d2797f77acc1a33193c44c1e77fbe8a1d4f67a3fc290a06870aaa1543cb8f3d61f1921b5dfcd7a42e88dff6b24d301fb67f8b00936eb27a66c050af69db3ad519e8ddfd9f7a77c0fadf1ca9ba3d40c6cbed7c4eb672dd5785e1f16c1d1fa5b27191c0109de75bc66a3c34b0fcc8f0780ddd65dd6e9903f71e3308fbd5a2516477f3c6d7fcee4037582f7067b4e536b49bf38c224e05499659b6e011c012043c39a3ecd27e3963533638782a1c15cb2a3e9500342fba2e8cf02df1446b9cc963ac9a65afbbfd0ced8ea7d4bce8cfde5b65b598019197959a2c476321c131ddf82b4e5c452001c81560d0c0d0ac8f7e5978bf9eff92b77e7a63fe1f18f841885abd847cc8036f7272419563858748c9d36da330af7143aba20ac028eb586fae523c510263a03b96c4ea721ca03370d0c3884ac9bdc6bfd888cc463894c743ba2b2560e71f0ed99a6f439e2d892b2da97cf8bc8f89bd6c51fcbb7e9ed789db9ae1567e513c180de8c1e94222cafd803c5b0ee93b84a3c1e4727f6e7eae86349c7907ed130b2cd151fdc68235d697dfd2f548cec2a00a1d47f9b6bff75f87c58fc32d19045feb80ba72abf7e580679d04d8420146f3f012e338ac06b224e96e9848011fef9f8b20521682033a59683cff0220770a63f7c4f41579ec601085599042da05644ec236c76bbf245f1d0d95085ba1ff9c7871251370cfe6cefe53077c74072aa8f08e8e28bc670f9bd53bfb7871afe0a5df1d562f655510e1df3bd14a5a12f4cd58af0b4fd0822c8e7e2ff9a87c7d77b7a40f93dac13e0d9e5ad350d87ea77c9fa2a39ae76ad7f90c66687f87f820d113876b5d3dda41ecb108b94d5647a48fb40a55d7a06a39004085574765b830be224e66221470cc935765968dbe9e4da00599807b6613fa5f6531fcb75453f893eea77ade4bb7be16319fb2d2b4ecde25cc621a82dd41d9d369b19cc78c5bb0a967bbd1c8d740549d6303a00c50766a0212e4db4bd94e74e0b6afedd9e6a62666fc5e398f1770498aff10fcbaa177f5e74e065138fc4d44e95314f5bb0d2c356727b3540ccd2022a0361f2f11d142fe8dd21ab2d57949a84810ea131e32bb09075fd7aabc1a19ea58540771045f240c159060dc2a44bd0d2acdcaae1a2db010abf55eef44a57c18e54d50b00cf1d4cadabcd7a5d8a93b92fedd4ae951aa503e467b315a22154b69f71105a7f1d9457c9d9a16f7ddcf7f6fa47239518320c4ebd43f264e007aaa2b61eb98f4059aa1093222c289fde7ffe3e8338bd6665147e9165dcb595903325933f42c74b7e279b3e0b3fc81144d8f56eb9f5ccd5c4faca96eae89ce6c7e99c077aaf28d37a8e3d902e680c8ba89c18276686183dd675e5fa586b6a5c0be58bdf38e3ce48a53ee933a7228308a8cdef37f6197f0cfb0e945b88759239832b30d3c48dada857f3a453ac612330f7e791708219dbd34ea13444581c32d960d254f5b6df958ab6733daf9a6eaf8fdd39d1c25b2bc4370077f9c16788825d13fbda96e3a52233f5c08b574f9b895b6b065a177035be5b96793d467532dfdb848792260fd315265c5b17be63609c082df7c5b05cc4d011f628925217cb76d2643248f5084ad0a9bdd33b8b82cee319dd1fdd7bae01b929d821819c0d7315564bf250d814206dbaee5f8c389b9016540c3db2b66995cacfcaf034bc7671e59beee8f7c07f459a924a3f33c5d7804616ed7b79a00fc023af2efd9a2fb504da3dd2a5654d9dcfeef427cb5ff653f07310bd3b8b822248bf438dd4b8282e1ec077c424af4241f136aa5bb8e0e121aa2db01da0b8676eee5a267e02fe4adf598da0b4fd2167b0bc1aa0daa541657295c0f06e58105050b5ad33f528e9ad658df7a0f6e1d271c36af77e4e7fd67eb1dcac0221f83a7fd82300e316b926fdc274dc463d7d305d797336cb6fb6620a68106027601f1c1324a10508421cfb8dbbee1c6db9bcad5af0c3d5260446e9eb68259e2b1e3504f5c1a32c8384beedeae171c33d71ae9e3250a902784714df3d5987c09ffa05124eacc2c5886ff233f3eba13237a8c2cd23d6b404e86412ba0e6de5ffb293e5d34ee4045dccae88fc87b84c604dc1902198699f107d594f90bc4bdda4b8adc0e3e8864b264408966cc5c309860353e2cecac4f9942d7b2912c367f6201550b98369480ec6fba5165fcbd9ce90e5a9b9a8331697b1d4b4ab932ca2dbe5264ccd1497edc8f9f126c0afa9c0dcf1ccd5fa2759442efe4262ee6c80cff886a06ed619c88b4277e27ce2db5ee444063f3d52dbff0d85db58d6cb1cc36ef5b5d42dceedb2675556757ca40aba26aaf9c109b514d2e2ca3bcb7b8fbc95fc5b6de9978b8ef886c4fae59e0e185173ea72b216f8dbe89af3e7224400162d866acd2e43cbb61e780ef4a8f1745b4460395355278c2b2221c1e911d377b0a75477b9602f7e7319f8b6d60b00f674d1d9e4b853f4ecdaeb89c4be0bafda047f569b664d6daf0bdf9a12c8f8aedaebae2f6133f0ab0ea8f818e40614a394def855d96d9241069938609fc95f1dafd599454d821efe4879f2aed291013ad"]}, @typed={0x8, 0x18, 0x0, 0x0, @pid=r0}, @typed={0x4, 0x89}, @typed={0x4, 0x17}, @generic="0604ac51e285bc9c1fcc3ab5dd3fd09120423eff5ca3aed57ac495bd505ec2ceca66ac15f26ae6e81f6211abe098d4ff79b58292a057588800e20f4652d1213f3fc64cb69fd52637e334965747cca2e2ffca4aa5168a41b9be6fddb6b0dd8a262b10a9b74293f81aeda646f538ec364d060b374439f5fc326ca3b3edf056c9560d5632cdcd973ddcddcda51fae1dd07680fd698f9d2ac9ea64832ca8dc4e5e119d8d7ebfbd16c78ac8b000d7e084525f0012df5cd5d55bade6c6606d788baa9981116650e3a7ffc75782d61d7be437f350025f4d1876e06fc9f4f9a37608473cc7da71e82abc35713b78030630b1725e635a788bf9a90fd8e1", @typed={0x8, 0x59, 0x0, 0x0, @pid=r2}, @nested={0xda, 0x43, 0x0, 0x1, [@typed={0x8, 0x51, 0x0, 0x0, @u32=0x7}, @generic="874b08e8c732ae8b1515e64cc0c3a5dd2d8c9ccfeaad618117b5c7e71c4ac879c518999e64da88aeafe736a9a23efd9cd0190af548a5efaf904b47d7b298f997ee5107bad760160034640801af1cccc3f57a9e717030823af3a1ab5cf80f7a40bd25292d18d996ae39709e1c9f3c81df64c1d2d84cff30a260ef64454d9d0f1480722b674bead584e656028bd286f9dc6424da6ad984602cdd191efe87ed21e8deacfc3c174492cd068019a219898bb7eb8e01f22ae16fe182749353f1674dfb145590789ad460f6fcdd6e65c03f"]}]}, 0x1424}, 0x1, 0x0, 0x0, 0x4800}, 0x20000000) rt_sigaction(0xa, &(0x7f0000001f80)={0x0, 0x0, 0x0, {[0x3ff]}}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:28 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 2) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) [ 808.924069] FAULT_INJECTION: forcing a failure. [ 808.924069] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 808.926600] CPU: 0 PID: 6618 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 808.928047] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 808.929797] Call Trace: [ 808.930379] dump_stack+0x107/0x167 [ 808.931163] should_fail.cold+0x5/0xa [ 808.931984] _copy_from_iter_full+0x201/0xa60 [ 808.932935] ? perf_swevent_event+0x6c/0x550 [ 808.933879] rawv6_sendmsg+0x20ff/0x3d60 [ 808.934776] ? dst_output+0x480/0x480 [ 808.935580] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 808.936638] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 808.937717] ? __lockdep_reset_lock+0x180/0x180 [ 808.938713] ? __lockdep_reset_lock+0x180/0x180 [ 808.939711] ? __lockdep_reset_lock+0x180/0x180 [ 808.940698] ? lock_acquire+0x197/0x470 [ 808.941553] ? lock_acquire+0x197/0x470 [ 808.942404] ? find_held_lock+0x2c/0x110 [ 808.943263] ? sock_has_perm+0x1ea/0x280 [ 808.944135] ? selinux_socket_post_create+0x7f0/0x7f0 [ 808.945278] ? dst_output+0x480/0x480 [ 808.946109] inet_sendmsg+0x11d/0x140 [ 808.946917] ? inet_send_prepare+0x540/0x540 [ 808.947847] __sock_sendmsg+0x13c/0x190 [ 808.948702] __sys_sendto+0x21c/0x320 00:13:28 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:13:28 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 26) [ 808.949510] ? __ia32_sys_getpeername+0xb0/0xb0 [ 808.950676] ? lock_downgrade+0x6d0/0x6d0 [ 808.951599] ? __mutex_unlock_slowpath+0xe1/0x600 [ 808.952662] ? ksys_write+0x1a9/0x260 [ 808.953480] ? __ia32_sys_read+0xb0/0xb0 [ 808.954372] __x64_sys_sendto+0xdd/0x1b0 [ 808.955244] ? syscall_enter_from_user_mode+0x1d/0x50 [ 808.956338] do_syscall_64+0x33/0x40 [ 808.957125] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 808.958221] RIP: 0033:0x7f36610dbb19 [ 808.959013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 808.962942] RSP: 002b:00007f365e651188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 808.964562] RAX: ffffffffffffffda RBX: 00007f36611eef60 RCX: 00007f36610dbb19 [ 808.966093] RDX: 0000000000000004 RSI: 0000000020000040 RDI: 0000000000000004 [ 808.967624] RBP: 00007f365e6511d0 R08: 00000000200000c0 R09: 0000000000000080 [ 808.969150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 808.970684] R13: 00007ffc0339c84f R14: 00007f365e651300 R15: 0000000000022000 [ 809.030780] FAULT_INJECTION: forcing a failure. [ 809.030780] name failslab, interval 1, probability 0, space 0, times 0 [ 809.033289] CPU: 0 PID: 6626 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 809.034752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 809.036519] Call Trace: [ 809.037083] dump_stack+0x107/0x167 [ 809.037861] should_fail.cold+0x5/0xa [ 809.038684] ? create_object.isra.0+0x3a/0xa30 [ 809.039656] should_failslab+0x5/0x20 [ 809.040464] kmem_cache_alloc+0x5b/0x310 [ 809.041332] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 809.042510] create_object.isra.0+0x3a/0xa30 [ 809.043437] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 809.044521] kmem_cache_alloc+0x159/0x310 [ 809.045414] security_file_alloc+0x34/0x170 [ 809.046341] __alloc_file+0xb7/0x320 [ 809.047129] alloc_empty_file+0x6d/0x170 [ 809.047992] alloc_file+0x5e/0x5a0 [ 809.048761] alloc_file_pseudo+0x16a/0x250 [ 809.049661] ? alloc_file+0x5a0/0x5a0 [ 809.050499] anon_inode_getfile+0xc8/0x1f0 [ 809.051404] io_uring_setup+0x138b/0x2980 [ 809.052298] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 809.053374] ? wait_for_completion_io+0x270/0x270 [ 809.054436] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 809.055556] ? syscall_enter_from_user_mode+0x1d/0x50 [ 809.056656] do_syscall_64+0x33/0x40 [ 809.057452] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 809.058548] RIP: 0033:0x7fcf423d9b19 [ 809.059338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 809.063261] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 809.064866] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 809.066386] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 809.067899] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 809.069416] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 809.070929] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:13:42 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 3) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:13:42 executing program 1: syz_genetlink_get_family_id$gtp(&(0x7f0000000000), 0xffffffffffffffff) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:42 executing program 0: ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000340)=0x85) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000005c0)}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x7, &(0x7f00000000c0)={0x0, 0x0}) utimes(&(0x7f0000000040)='./file0\x00', &(0x7f0000000240)={{0x77359400}, {r0, r1/1000+60000}}) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) clock_gettime(0x2, &(0x7f0000000000)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff}) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000006, 0x11, r3, 0x8000000) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x2, 0x31c2f1746e5e18ef, @fd_index=0x2, 0x1f, &(0x7f0000000180)=[{&(0x7f0000000100)="ecbe5cd71ad444e8ca182d0a", 0xc}, {&(0x7f0000000440)="64560518d852b1b2508040fed3b573d81f32a271f2fd63325ec1602ee432bd90d6fc9ccc64cdd33722b68bda03abb10dfe709a2aaa48ee5759021f191ce68b9ff398bc118a0e7bf47ce077a4cea6559dd97159eadd875dd06c283db3447d1fd11fdb463440c521a41b574118049a89d4f0eb80ba80e626c08164455a74ab1f9152b9e31cb030659ca4313ef4340d2716d3bb20f70bea915223de4ab795c47a91e8d04b6a93be71bfa926eb51d6ea070c4ca669d31f5c2d97e41d9a03726dc2264a43b1cf844325a51fd7ec2e4d00f810184ad7a1e28902a8ba4f2611935d4b87781dad0e87a7ef44816b5bf7eb44dfca8cf7e941f3b23e56", 0xf8}, {&(0x7f0000000600)="084ca71633dae0a08495fbe753bce56975db590fa0949d67ff4a6c342c5f7eb9b0429f6b6a92b5f01666d154a810a41295e9efc9aa7c4b5ce9009aa576331aa8df0ace6b1ae415025dcb6e2bd20959226532bf92b8f608adf5e17b206d1c84030f2b236f8531b70f88d42c4637a3ce41ef9c0d153d18e0cdb903325cad0f4b05b0f1a65a33a29a2796efc7220da81dae825211b86ce4f5df7c8adb23", 0x9c}], 0x3, 0x10, 0x0, {0x1, r5}}, 0xffffffff) close(r3) r6 = signalfd4(r2, 0x0, 0x0, 0x0) setsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0xb, &(0x7f0000000140)=0x1000, 0x4) r7 = fork() mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x8, 0x1010, r6, 0x8000000) stat(&(0x7f0000000080)='./file0\x00', &(0x7f00000003c0)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0, 0x8004}, 0x10000) ptrace(0x10, r7) ptrace$getregset(0x4204, r7, 0x202, &(0x7f0000000140)={&(0x7f0000001280)=""/4096, 0x1000}) ppoll(&(0x7f00000002c0)=[{0xffffffffffffffff, 0x8080}, {0xffffffffffffffff, 0x1040}, {r3, 0x8247}], 0x3, &(0x7f0000000300)={0x0, 0x3938700}, &(0x7f0000000380), 0x8) 00:13:42 executing program 7: rt_sigaction(0x40, &(0x7f0000001f80)={0x0, 0x0, 0x0, {[0xa]}}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:42 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:13:42 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:13:42 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) semget$private(0x0, 0x4000, 0x0) semctl$SEM_INFO(r0, 0x2, 0x13, &(0x7f0000000000)=""/22) 00:13:42 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 27) [ 822.776038] FAULT_INJECTION: forcing a failure. [ 822.776038] name failslab, interval 1, probability 0, space 0, times 0 [ 822.777770] CPU: 0 PID: 6648 Comm: syz-executor.3 Not tainted 5.10.246 #1 [ 822.778682] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 822.779782] Call Trace: [ 822.780142] dump_stack+0x107/0x167 [ 822.780636] should_fail.cold+0x5/0xa [ 822.781152] ? __alloc_skb+0x6d/0x5b0 [ 822.781659] should_failslab+0x5/0x20 [ 822.782167] kmem_cache_alloc_node+0x55/0x330 [ 822.782767] ? perf_trace_lock+0x2bd/0x490 [ 822.783341] __alloc_skb+0x6d/0x5b0 [ 822.783823] ? __lockdep_reset_lock+0x180/0x180 [ 822.784295] FAULT_INJECTION: forcing a failure. [ 822.784295] name failslab, interval 1, probability 0, space 0, times 0 [ 822.784454] __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 822.787785] ? raw6_destroy+0x30/0x30 [ 822.788304] ? ip6_sk_dst_lookup_flow+0x6f0/0x6f0 [ 822.788943] ? ip6_mtu+0x1e9/0x3d0 [ 822.789418] ? ip6_setup_cork+0xfb7/0x1740 [ 822.789983] ip6_append_data+0x1e6/0x330 [ 822.790535] ? raw6_destroy+0x30/0x30 [ 822.791042] ? raw6_destroy+0x30/0x30 [ 822.791556] rawv6_sendmsg+0x1576/0x3d60 [ 822.792108] ? dst_output+0x480/0x480 [ 822.792612] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 822.793268] ? perf_trace_run_bpf_submit+0xf5/0x190 [ 822.793934] ? __lockdep_reset_lock+0x180/0x180 [ 822.794549] ? __lockdep_reset_lock+0x180/0x180 [ 822.795165] ? __lockdep_reset_lock+0x180/0x180 [ 822.795774] ? lock_acquire+0x197/0x470 [ 822.796302] ? lock_acquire+0x197/0x470 [ 822.796821] ? find_held_lock+0x2c/0x110 [ 822.797350] ? sock_has_perm+0x1ea/0x280 [ 822.797881] ? selinux_socket_post_create+0x7f0/0x7f0 [ 822.798592] ? dst_output+0x480/0x480 [ 822.799099] inet_sendmsg+0x11d/0x140 [ 822.799604] ? inet_send_prepare+0x540/0x540 [ 822.800179] __sock_sendmsg+0x13c/0x190 [ 822.800703] __sys_sendto+0x21c/0x320 [ 822.801208] ? __ia32_sys_getpeername+0xb0/0xb0 [ 822.801812] ? lock_downgrade+0x6d0/0x6d0 [ 822.802393] ? __mutex_unlock_slowpath+0xe1/0x600 [ 822.803053] ? ksys_write+0x1a9/0x260 [ 822.803557] ? __ia32_sys_read+0xb0/0xb0 [ 822.804099] __x64_sys_sendto+0xdd/0x1b0 [ 822.804638] ? syscall_enter_from_user_mode+0x1d/0x50 [ 822.805319] do_syscall_64+0x33/0x40 [ 822.805809] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 822.806495] RIP: 0033:0x7f36610dbb19 [ 822.807005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 822.809554] RSP: 002b:00007f365e651188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 822.810615] RAX: ffffffffffffffda RBX: 00007f36611eef60 RCX: 00007f36610dbb19 [ 822.811601] RDX: 0000000000000004 RSI: 0000000020000040 RDI: 0000000000000004 [ 822.812583] RBP: 00007f365e6511d0 R08: 00000000200000c0 R09: 0000000000000080 [ 822.813570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 822.814566] R13: 00007ffc0339c84f R14: 00007f365e651300 R15: 0000000000022000 [ 822.815601] CPU: 1 PID: 6653 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 822.816026] loop6: detected capacity change from 0 to 32768 [ 822.817263] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 822.817272] Call Trace: [ 822.817308] dump_stack+0x107/0x167 [ 822.817330] should_fail.cold+0x5/0xa [ 822.817354] ? io_uring_alloc_task_context+0x99/0x6a0 [ 822.823657] should_failslab+0x5/0x20 [ 822.824565] kmem_cache_alloc_trace+0x55/0x320 [ 822.825659] io_uring_alloc_task_context+0x99/0x6a0 [ 822.826859] ? io_import_iovec+0x1120/0x1120 [ 822.827905] ? lock_downgrade+0x6d0/0x6d0 [ 822.828889] ? do_raw_spin_lock+0x121/0x260 [ 822.829913] ? rwlock_bug.part.0+0x90/0x90 [ 822.830936] __io_uring_add_tctx_node+0x2c6/0x520 [ 822.832091] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 822.833353] ? alloc_fd+0x2e7/0x670 [ 822.834244] io_uring_setup+0x1fbb/0x2980 [ 822.835246] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 822.836452] ? wait_for_completion_io+0x270/0x270 [ 822.837626] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 822.838883] ? syscall_enter_from_user_mode+0x1d/0x50 [ 822.840117] do_syscall_64+0x33/0x40 [ 822.841004] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 822.842253] RIP: 0033:0x7fcf423d9b19 [ 822.843140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 822.847511] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 822.849317] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 822.851025] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 822.852721] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 822.854423] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 822.856125] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 822.865870] FAT-fs (loop6): bogus number of reserved sectors [ 822.866967] FAT-fs (loop6): Can't find a valid FAT filesystem 00:13:42 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:13:42 executing program 7: r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = dup2(r0, r1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r2, 0x8000000) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r5 = dup2(r3, r4) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r5, 0x8000000) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2) sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x34, r6, 0x18, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0xcc6f, 0x73}}}}, [@NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x20014081) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:42 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:13:42 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 28) [ 822.944506] loop6: detected capacity change from 0 to 32768 [ 822.959113] FAT-fs (loop6): bogus number of reserved sectors [ 822.960587] FAT-fs (loop6): Can't find a valid FAT filesystem 00:13:42 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 4) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:13:42 executing program 7: fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000040)=0x5) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x50000000, 0x0}, 0x0, 0x8, &(0x7f0000000000)) 00:13:42 executing program 1: fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000540)={0x0, 0x0}) perf_event_open(&(0x7f00000004c0)={0x5, 0x80, 0x1f, 0x80, 0x4, 0x1f, 0x0, 0x3, 0x5400e, 0xf, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0xb6, 0x2, @perf_config_ext={0x4, 0x2}, 0x10800, 0x4, 0x9d, 0xc, 0xc0, 0xfffffff8, 0x1000, 0x0, 0xfffffffd, 0x0, 0x3ff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000000), 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000080)=""/247, 0xf7}, {&(0x7f0000000180)=""/236, 0xec}, {&(0x7f0000000280)=""/160, 0xa0}, {&(0x7f0000000340)=""/80, 0x50}], 0x4, &(0x7f0000000400)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}, 0x40) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:42 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readv(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendto$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0) r2 = dup(r1) recvmmsg(r2, &(0x7f0000007940)=[{{0x0, 0x200000, 0x0}}], 0x500, 0x20000022, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r5 = dup2(r3, r4) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r5, 0x8000000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2, 0x100010, r5, 0x0) read(r1, &(0x7f0000000000)=""/29, 0x1d) 00:13:42 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:13:42 executing program 7: rt_sigaction(0x36, &(0x7f0000000000)={0x0, 0x1, 0x0, {[0x8]}}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000040)={0x2, 0x7ff, 0x0, 0x7fff, 0x7, 0x3f, 0x6, 0x1}, &(0x7f0000000080)={0x7419, 0x3f, 0x0, 0x1000, 0x1, 0x2, 0x1ff, 0xff}, &(0x7f00000000c0)={0x4, 0x101, 0x10000, 0x8, 0x8, 0x1, 0x8000, 0x7}, &(0x7f0000000100)={0x77359400}, &(0x7f00000001c0)={&(0x7f0000000140)={[0xea]}, 0x8}) [ 823.057533] FAULT_INJECTION: forcing a failure. [ 823.057533] name failslab, interval 1, probability 0, space 0, times 0 [ 823.060304] CPU: 1 PID: 6682 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 823.061928] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 823.063922] Call Trace: [ 823.064565] dump_stack+0x107/0x167 [ 823.065445] should_fail.cold+0x5/0xa [ 823.066372] ? create_object.isra.0+0x3a/0xa30 [ 823.067464] should_failslab+0x5/0x20 [ 823.068377] kmem_cache_alloc+0x5b/0x310 [ 823.069303] create_object.isra.0+0x3a/0xa30 [ 823.070365] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 823.071583] kmem_cache_alloc_trace+0x151/0x320 [ 823.072703] io_uring_alloc_task_context+0x99/0x6a0 [ 823.073881] ? io_import_iovec+0x1120/0x1120 [ 823.074871] ? lock_downgrade+0x6d0/0x6d0 [ 823.075808] ? do_raw_spin_lock+0x121/0x260 [ 823.076782] ? rwlock_bug.part.0+0x90/0x90 [ 823.077742] __io_uring_add_tctx_node+0x2c6/0x520 [ 823.078844] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 823.080016] ? alloc_fd+0x2e7/0x670 [ 823.080856] io_uring_setup+0x1fbb/0x2980 [ 823.081809] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 823.082965] ? wait_for_completion_io+0x270/0x270 [ 823.084079] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 823.085234] ? syscall_enter_from_user_mode+0x1d/0x50 [ 823.086402] do_syscall_64+0x33/0x40 [ 823.087248] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 823.088398] RIP: 0033:0x7fcf423d9b19 [ 823.089228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 823.093347] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 823.095062] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 823.096648] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 823.098239] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 823.099818] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 823.101408] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:13:56 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) semget$private(0x0, 0x4000, 0x0) 00:13:56 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:13:56 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:13:56 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:13:56 executing program 1: ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f0000000080)) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0x3ff, 0xfff, 0x3, 0x5, 0x8, 0x2, 0x7, 0x5f8}, &(0x7f0000000100)={0x1, 0xcfb, 0x8, 0x100000001, 0x200, 0x2, 0x5, 0x7}, &(0x7f0000000140)={0x6, 0x303, 0xffffffffffff67cd, 0x7f, 0x3, 0x7e2, 0x4}, &(0x7f0000000180), &(0x7f0000000200)={&(0x7f00000001c0)={[0x10000]}, 0x8}) io_pgetevents(0x0, 0x7, 0x0, &(0x7f0000000000), &(0x7f0000000040), 0x0) 00:13:56 executing program 7: r0 = clone3(&(0x7f0000001400)={0x4000000, &(0x7f0000000240), &(0x7f0000000280), &(0x7f00000002c0), {0x28}, &(0x7f0000000300)=""/181, 0xb5, &(0x7f00000003c0)=""/4096, &(0x7f00000013c0)=[0xffffffffffffffff], 0x1}, 0x58) r1 = fsmount(0xffffffffffffffff, 0x0, 0x88) openat$cgroup_ro(r1, &(0x7f0000001540)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0) clone3(&(0x7f00000014c0)={0x40000000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x36}, &(0x7f00000000c0)=""/101, 0x65, &(0x7f0000000140)=""/252, &(0x7f0000001480)=[0x0, r0, 0x0], 0x3}, 0x58) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:13:56 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 29) 00:13:56 executing program 0: epoll_create(0x1) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x9, 0x7e, 0x4, 0x8, 0x0, 0x2, 0x40016, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000000), 0x2}, 0x0, 0x35, 0x9, 0x6, 0x5, 0xfffffffb, 0x2, 0x0, 0x8, 0x0, 0x6}, r0, 0xe, 0xffffffffffffffff, 0x2) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="746f3d00ed00"/15, @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',\x00']) [ 836.717067] loop6: detected capacity change from 0 to 32768 [ 836.721526] FAT-fs (loop6): bogus number of reserved sectors [ 836.722384] FAT-fs (loop6): Can't find a valid FAT filesystem [ 836.763898] FAULT_INJECTION: forcing a failure. [ 836.763898] name failslab, interval 1, probability 0, space 0, times 0 [ 836.766344] CPU: 0 PID: 6718 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 836.767792] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 836.769574] Call Trace: [ 836.770205] dump_stack+0x107/0x167 [ 836.771084] should_fail.cold+0x5/0xa [ 836.771997] ? create_object.isra.0+0x3a/0xa30 [ 836.773086] should_failslab+0x5/0x20 [ 836.773983] kmem_cache_alloc+0x5b/0x310 [ 836.774973] create_object.isra.0+0x3a/0xa30 [ 836.776028] kmemleak_alloc_percpu+0xa0/0x100 [ 836.777106] pcpu_alloc+0x4e2/0x1240 [ 836.778024] __percpu_counter_init+0x10d/0x2d0 [ 836.779150] io_uring_alloc_task_context+0xcc/0x6a0 [ 836.780341] ? io_import_iovec+0x1120/0x1120 [ 836.781391] ? lock_downgrade+0x6d0/0x6d0 [ 836.782388] ? do_raw_spin_lock+0x121/0x260 [ 836.783418] ? rwlock_bug.part.0+0x90/0x90 [ 836.784430] __io_uring_add_tctx_node+0x2c6/0x520 [ 836.785582] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 836.786854] ? alloc_fd+0x2e7/0x670 [ 836.787738] io_uring_setup+0x1fbb/0x2980 [ 836.788735] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 836.789929] ? wait_for_completion_io+0x270/0x270 [ 836.791102] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 836.792349] ? syscall_enter_from_user_mode+0x1d/0x50 [ 836.793572] do_syscall_64+0x33/0x40 [ 836.794461] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 836.795668] RIP: 0033:0x7fcf423d9b19 [ 836.796541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 836.800905] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 836.802727] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 836.804417] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 836.806111] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 836.807818] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 836.809494] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:13:56 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:13:56 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0xd0000002, 0x0}, 0x0, 0x8, &(0x7f0000000000)) r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r0, r1) signalfd4(r0, &(0x7f0000000040)={[0x7]}, 0x8, 0x80800) 00:13:56 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x2, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) [ 836.872690] loop6: detected capacity change from 0 to 32768 00:13:56 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_bp={&(0x7f00000008c0), 0x8}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x1ed982, 0x0) r2 = syz_open_dev$loop(&(0x7f0000000080), 0x4, 0x48042) ioctl$LOOP_SET_FD(r2, 0x4c00, r1) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000180)=ANY=[@ANYBLOB="ff22eedaaf94808fc57c93d6d594d1f50091c67de89e8fb79941da000000004fa4009d154a57a5b0602ad2f2cc2691456a00000000000000e5e5f5b361d2dcd95f621a09056391769a4702272ef8913d29920d3100e6b97b4f80ab076020ff1e4559666a9eed1a16c71c9a00"/121]) sendmsg$inet(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e20, @private=0xa010102}, 0x10, 0x0}, 0x4044048) r3 = fcntl$dupfd(r0, 0x0, r2) sendmsg$inet6(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) write(r3, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61) mknodat$loop(0xffffffffffffffff, &(0x7f0000000240)='./file0/../file0\x00', 0x200, 0x1) dup(0xffffffffffffffff) r4 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = fcntl$getown(r4, 0x9) syz_open_procfs(r5, &(0x7f0000000340)='smaps\x00') syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[]) mkdir(&(0x7f0000000200)='./file0/../file0\x00', 0x204) [ 836.880132] FAT-fs (loop6): bogus number of reserved sectors [ 836.880833] FAT-fs (loop6): Can't find a valid FAT filesystem 00:13:56 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 836.955909] loop4: detected capacity change from 0 to 1073741312 00:14:14 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e6661740002802000040000", 0x13}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:14:14 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:14:14 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x3, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:14:14 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 30) 00:14:14 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) r0 = socket$unix(0x1, 0x5, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) io_setup(0x5, &(0x7f0000000040)=0x0) io_submit(r2, 0x1, &(0x7f0000000400)=[&(0x7f0000000200)={0x0, 0x0, 0x5, 0x0, 0x0, r1, 0x0}]) io_getevents(r2, 0x0, 0x1, &(0x7f0000000440)=[{}], 0x0) io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}]) io_pgetevents(r2, 0x2, 0x5, &(0x7f0000000000)=[{}, {}, {}, {}, {}], &(0x7f00000000c0), 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r3, r4) r5 = inotify_init1(0x0) r6 = openat$urandom(0xffffffffffffff9c, &(0x7f00000006c0), 0x400000, 0x0) r7 = syz_open_dev$usbmon(&(0x7f0000000240), 0x10000007, 0x420000) r8 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r9 = dup2(r7, r8) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r9, 0x8000000) r10 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x9) r11 = openat2(r1, &(0x7f0000000940)='./file1\x00', &(0x7f0000000980)={0x800000, 0x0, 0x4}, 0x18) io_submit(0x0, 0x7, &(0x7f0000000a00)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x3, 0x3, 0xffffffffffffffff, &(0x7f0000000180)="dd80a1dc18b5bfba3d115569cbac37d4752a4a7bbcd4a3", 0x17, 0x401, 0x0, 0x3}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x60, r0, &(0x7f0000000240)="be842967d30d8d6d99094484c45dea1cece2bb34f2b0efd9dcb3019580675435ae9fe856f5179a24cb5207aae84666c9a74f115177b2c9b41e47242c16507706f7136169eab68ece6ef2b3c2b9198386124f68a406ff4eb48396343a6af9fbcc9c379f7b05cb14ef042a6339335d9fefe82aaee0937c573834110f105486deaeb1945f340dd4de361a8f937149ebc2b3a1ace8b9dbc0b43e9d7ca79ae0d2d24d5f3f90b79d0c491306efff9e1bcbb4f4037d175833d64b1519e752022e8f07daf70914548dd9", 0xc6, 0x1, 0x0, 0x2, r1}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x2, 0x200, 0xffffffffffffffff, &(0x7f0000000480)="523897a16ce4d0e0d6b35656c66cec5c2116a11a45087e692d4baf79021fb95cf16fa8b1cc1d0014a815178f2d476f318098b15eb1039b9525881ff4ce7271ff589b70a55524f1255bd1d019b2fa8a13e3ed6e8660933343d961d0ed076fde3309e9f34bbefd031e50a90ccaf3deafa7f24bf0afa748bd9502dd96fd77411a75b8b835e160c7dc191ff776b1d08800b8f6cbde36d615e3fdbc9d88658974", 0x9e, 0x1, 0x0, 0x4}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x7, 0x1, r3, &(0x7f0000000580)="0b658af1", 0x4, 0x9}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x2, 0x9, r5, &(0x7f0000000600)="8913ef319d96d88deaee1ed554e09facecceb95cb065061e6023905cb9b63bcf4c6ecda1e16b181c3116e70f0052a631027bda2bf005e33705b5ff87f441f542e46ef5ba89a17ee597509b47fa35aa2e12689f53369233b8beec99cba2e762b20aec721b31b76001711b31717c276b2b039ce3531a10", 0x76, 0x6d9e, 0x0, 0x4, r1}, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x3, 0x81, r6, &(0x7f0000000700)="7d7c6af97fb8eebccfd1dc916030779f46ff7a568b3086b88094e5f01005136a6c704c2b1a56f5813ea34d30c0fc3cf019880ebc9a91a0de18491698a1526c93a1ffdaccab8bbb88b84f353c80d1736bba51c579af2a11fbd59992e2bd703c5190ef8328465164dabcd082b309ce0fa28ea9a4779e98bb89f131951d46abe2560def0fca473ac00224a3020987522eeb259d265275b2362aa0434403024b43efc3c2a2cbe654a24127588e3e7b9e3d3ae6633665035f478e1ee375fe85042273a734780c503e45fcac8ce9daa26e98c3a9a6a2b1378610", 0xd7, 0x8, 0x0, 0x1, r9}, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x5, 0x970, r10, &(0x7f0000000840)="58f1e4acd9fab3848dc3e6a0384e5a283f1e9fd8f08b2585e241a7e72ef1121495df0858b1ca7ec9cf8684b8bb6dacaa02052c66ea30711850077822fe9c9288633bc7055111c8908f05fdfb2ed0ef85148fe02dc639ca3052812dd2185a3ddb24a3b0d93b6fed10b778c0930cd6bd8a9a1f05a781d0606a259343343daf4b3f68dcde601f3f67a8488d3aa62186256ff2241b2dc1c89a85c10b67b092798ec450d472b726bd971e2f9968ce0b97d6a5cdd6dd7e9af14317e38436511747e552ce2e0857fbd0f77c129f6ccac888311cdb8081a1755102d802b250d8e571b5cd9ade17e7c6a080", 0xe7, 0x1, 0x0, 0x3, r11}]) 00:14:14 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_bp={&(0x7f00000008c0), 0x8}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x1ed982, 0x0) r2 = syz_open_dev$loop(&(0x7f0000000080), 0x4, 0x48042) ioctl$LOOP_SET_FD(r2, 0x4c00, r1) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000180)=ANY=[@ANYBLOB="ff22eedaaf94808fc57c93d6d594d1f50091c67de89e8fb79941da000000004fa4009d154a57a5b0602ad2f2cc2691456a00000000000000e5e5f5b361d2dcd95f621a09056391769a4702272ef8913d29920d3100e6b97b4f80ab076020ff1e4559666a9eed1a16c71c9a00"/121]) sendmsg$inet(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e20, @private=0xa010102}, 0x10, 0x0}, 0x4044048) r3 = fcntl$dupfd(r0, 0x0, r2) sendmsg$inet6(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) write(r3, &(0x7f0000000380)="071e9f7358ec922343d9786f7c2147c81e6890a8016fb53a5ffc4951d0a6a9f38dda8a9bae8f6f3750405ca0111cc8069cb8ebd8c8564cc6aff4e3631e4eb8ebf43b0e3a61bb5878257df934ab1c2df75a49f4d39cf7effe02c00c95f02860e708", 0x61) mknodat$loop(0xffffffffffffffff, &(0x7f0000000240)='./file0/../file0\x00', 0x200, 0x1) dup(0xffffffffffffffff) r4 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = fcntl$getown(r4, 0x9) syz_open_procfs(r5, &(0x7f0000000340)='smaps\x00') syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[]) mkdir(&(0x7f0000000200)='./file0/../file0\x00', 0x204) 00:14:14 executing program 7: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x7f614c1d0a65618d}, 0xc, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="020026bd7000fddbdf25010000000c000600030000000300000000000000050008000100010000000800010003000000080003000000000000000000000000000000f25452e0146db566b1dac828da11", @ANYRES32=r1, @ANYBLOB="0c0006000100000001000000"], 0x58}, 0x1, 0x0, 0x0, 0x40088f1}, 0x4c0d0) pselect6(0x40, &(0x7f0000000000)={0x176, 0x7ff, 0x5, 0xfff, 0x4000000000000007, 0x9, 0x9, 0x9}, &(0x7f0000000040)={0x7, 0x7, 0x5a, 0x6, 0x80000001, 0x7, 0x4, 0x3}, &(0x7f0000000080)={0x6, 0xffffffffffffffff, 0xefc6, 0xa8f, 0x9, 0x10000, 0xffffffffffffffc0, 0x9}, &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0x6]}, 0x8}) 00:14:14 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) [ 854.597880] FAULT_INJECTION: forcing a failure. [ 854.597880] name failslab, interval 1, probability 0, space 0, times 0 [ 854.599405] CPU: 0 PID: 6753 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 854.600275] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 854.601333] Call Trace: [ 854.601680] dump_stack+0x107/0x167 [ 854.602151] should_fail.cold+0x5/0xa [ 854.602654] ? create_object.isra.0+0x3a/0xa30 [ 854.603248] should_failslab+0x5/0x20 [ 854.603730] kmem_cache_alloc+0x5b/0x310 [ 854.604253] create_object.isra.0+0x3a/0xa30 [ 854.604826] kmemleak_alloc_percpu+0xa0/0x100 [ 854.605397] pcpu_alloc+0x4e2/0x1240 [ 854.605883] __percpu_counter_init+0x10d/0x2d0 [ 854.606481] io_uring_alloc_task_context+0xcc/0x6a0 [ 854.607140] ? io_import_iovec+0x1120/0x1120 [ 854.607700] ? lock_downgrade+0x6d0/0x6d0 [ 854.608232] ? do_raw_spin_lock+0x121/0x260 [ 854.608784] ? rwlock_bug.part.0+0x90/0x90 [ 854.609325] __io_uring_add_tctx_node+0x2c6/0x520 [ 854.609934] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 854.610609] ? alloc_fd+0x2e7/0x670 [ 854.611076] io_uring_setup+0x1fbb/0x2980 [ 854.611614] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 854.612257] ? wait_for_completion_io+0x270/0x270 [ 854.612879] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 854.613538] ? syscall_enter_from_user_mode+0x1d/0x50 [ 854.614200] do_syscall_64+0x33/0x40 [ 854.614684] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 854.615337] RIP: 0033:0x7fcf423d9b19 [ 854.615806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 854.618112] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 854.619079] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 854.619983] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 854.620887] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 854.621788] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 854.622692] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 854.647639] loop6: detected capacity change from 0 to 32768 00:14:14 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 31) [ 854.665275] FAT-fs (loop6): invalid media value (0x00) [ 854.666552] FAT-fs (loop6): Can't find a valid FAT filesystem [ 854.667518] loop4: detected capacity change from 0 to 1073741312 [ 854.707455] FAULT_INJECTION: forcing a failure. [ 854.707455] name failslab, interval 1, probability 0, space 0, times 0 [ 854.710147] CPU: 1 PID: 6773 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 854.711648] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 854.713411] Call Trace: [ 854.713966] dump_stack+0x107/0x167 [ 854.714739] should_fail.cold+0x5/0xa [ 854.715536] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 854.716631] should_failslab+0x5/0x20 [ 854.717427] kmem_cache_alloc_trace+0x55/0x320 [ 854.718384] io_uring_alloc_task_context+0x4a3/0x6a0 [ 854.719449] ? io_import_iovec+0x1120/0x1120 [ 854.720366] ? lock_downgrade+0x6d0/0x6d0 [ 854.721256] ? do_raw_spin_lock+0x121/0x260 [ 854.722199] ? rwlock_bug.part.0+0x90/0x90 [ 854.723098] __io_uring_add_tctx_node+0x2c6/0x520 [ 854.724102] ? io_uring_alloc_task_context+0x6a0/0x6a0 00:14:14 executing program 7: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.io_service_bytes\x00', 0x0, 0x0) write$selinux_attr(r0, &(0x7f0000000040)='system_u:object_r:insmod_exec_t:s0\x00', 0x23) [ 854.725193] ? alloc_fd+0x2e7/0x670 [ 854.726165] io_uring_setup+0x1fbb/0x2980 [ 854.727051] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 854.728108] ? wait_for_completion_io+0x270/0x270 [ 854.729140] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 854.730238] ? syscall_enter_from_user_mode+0x1d/0x50 [ 854.731325] do_syscall_64+0x33/0x40 [ 854.732104] entry_SYSCALL_64_after_hwframe+0x67/0xd1 00:14:14 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = dup2(r0, r1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r2, 0x8000000) ioctl$RTC_WKALM_SET(r2, 0x4028700f, &(0x7f0000000140)={0x1, 0x1, {0x37, 0x7, 0xf, 0x7, 0xa, 0x0, 0x4, 0x10a}}) r3 = socket$unix(0x1, 0x5, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000300), 0x200000, 0x0) ioctl$MON_IOCX_MFETCH(r5, 0xc0109207, &(0x7f00000003c0)={&(0x7f0000000380)=[0x0, 0x0, 0x0], 0x3, 0x7}) io_setup(0x5, &(0x7f0000000040)=0x0) io_submit(r6, 0x1, &(0x7f0000000400)=[&(0x7f0000000200)={0x0, 0x0, 0x5, 0x0, 0x0, r4, 0x0}]) io_getevents(r6, 0x0, 0x1, &(0x7f0000000180)=[{}], 0x0) io_submit(r6, 0x1, &(0x7f0000000340)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0}]) r7 = syz_open_dev$mouse(&(0x7f00000001c0), 0x8, 0x1) ioctl$MON_IOCX_GET(r7, 0x40189206, &(0x7f00000002c0)={&(0x7f0000000280), &(0x7f0000000440)=""/185, 0xb9}) io_pgetevents(r6, 0x7f, 0x6, &(0x7f0000000000)=[{}, {}, {}, {}, {}, {}], 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={[0x7]}, 0x8}) [ 854.733176] RIP: 0033:0x7fcf423d9b19 [ 854.734127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 854.737989] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 854.739597] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 854.741092] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 854.742595] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 854.744095] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 854.745618] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:14:14 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:14:14 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0xd9, 0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x0, 0x20080) readv(r0, &(0x7f0000001280)=[{&(0x7f0000000040)=""/252, 0xfc}, {&(0x7f0000000140)=""/55, 0x37}, {&(0x7f0000000180)=""/16, 0x10}, {&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/167, 0xa7}], 0x6) 00:14:14 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 854.819965] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 854.822288] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 854.823751] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 854.825190] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 07 ff c0 00 00 02 00 00:14:14 executing program 0: syz_open_dev$sg(0x0, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) perf_event_open(&(0x7f0000001d80)={0x1, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, @perf_bp={0x0, 0x8}, 0x5c70d, 0x0, 0x2, 0x0, 0x1, 0x0, 0xfff9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000200)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000000c0)={[{@jqfmt_vfsv1}]}) [ 854.826864] blk_update_request: I/O error, dev sr0, sector 2096896 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 854.829216] blk_update_request: I/O error, dev loop4, sector 2096896 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 854.834603] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 854.835551] blk_update_request: I/O error, dev sr0, sector 2096896 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 854.836890] blk_update_request: I/O error, dev loop4, sector 2096896 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 854.838189] Buffer I/O error on dev loop4, logical block 2096896, async page read [ 854.839684] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 854.840394] blk_update_request: I/O error, dev sr0, sector 2096897 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 854.841795] blk_update_request: I/O error, dev loop4, sector 2096897 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 854.843080] Buffer I/O error on dev loop4, logical block 2096897, async page read [ 854.845417] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 854.846058] blk_update_request: I/O error, dev sr0, sector 2096898 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 854.847373] blk_update_request: I/O error, dev loop4, sector 2096898 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 854.847392] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 854.849606] Buffer I/O error on dev loop4, logical block 2096898, async page read [ 854.850241] blk_update_request: I/O error, dev sr0, sector 2096899 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 854.853108] blk_update_request: I/O error, dev loop4, sector 2096899 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 854.853126] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 854.855373] Buffer I/O error on dev loop4, logical block 2096899, async page read [ 854.856036] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 854.857607] Buffer I/O error on dev loop4, logical block 2096900, async page read [ 854.859833] Buffer I/O error on dev loop4, logical block 2096901, async page read [ 854.860229] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 854.862117] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 854.862130] Buffer I/O error on dev loop4, logical block 2096902, async page read [ 854.863774] Buffer I/O error on dev loop4, logical block 2096903, async page read 00:14:14 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e6661740002802000040000", 0x13}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 854.934973] loop0: detected capacity change from 0 to 16776704 [ 854.952122] kauditd_printk_skb: 27 callbacks suppressed [ 854.952156] audit: type=1326 audit(854.834:340): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6789 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 854.960306] audit: type=1326 audit(854.842:341): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6789 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 854.975517] EXT4-fs (loop0): mounted filesystem without journal. Opts: jqfmt=vfsv1,,errors=continue [ 854.978083] loop6: detected capacity change from 0 to 32768 [ 854.982131] FAT-fs (loop6): invalid media value (0x00) [ 854.982936] FAT-fs (loop6): Can't find a valid FAT filesystem [ 854.989056] audit: type=1326 audit(854.871:342): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6789 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 [ 854.995878] audit: type=1326 audit(854.877:343): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=6789 comm="syz-executor.0" exe="/syz-executor.0" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f9fb52f7b19 code=0x7ffc0000 00:14:28 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)) 00:14:28 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x6, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:14:28 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e6661740002802000040000", 0x13}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:14:28 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0x976, 0x4, 0x7, 0xe000000000000, 0x3, 0x7fffffff, 0x7fffffff, 0xfff}, &(0x7f0000000040)={0x1, 0x6, 0x6, 0x8, 0x4, 0x80000000, 0x3f, 0x7ff}, &(0x7f0000000080)={0x3985, 0x1, 0xe60a, 0x2, 0x7fffffff, 0x1, 0x86, 0x71d6623f}, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)={&(0x7f0000000100)={[0x3f]}, 0x8}) r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x3, 0x8010, 0xffffffffffffffff, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = dup2(r2, r3) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r4, 0x8000000) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r4, 0x40049366, &(0x7f00000001c0)=0x2) syz_io_uring_submit(r0, 0x0, &(0x7f0000000180)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd_index, 0x0, 0x0, 0x0, {0x300}, 0x1, {0x0, r1}}, 0x5) 00:14:28 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:14:28 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 32) 00:14:28 executing program 0: r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x3) r2 = dup(r1) perf_event_open$cgroup(&(0x7f0000000340)={0x3, 0x80, 0x72, 0xe3, 0xff, 0xf, 0x0, 0x200, 0x4000, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x5, 0x2, @perf_config_ext={0x7ff, 0xc9a}, 0x10, 0x4, 0x4, 0x0, 0xa8, 0x7f, 0xff, 0x0, 0x3, 0x0, 0x2dd}, r2, 0xd, 0xffffffffffffffff, 0x9) io_submit(0x0, 0x2, &(0x7f0000000300)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x7, 0xfffc, r1, &(0x7f0000000000)="4d3d4944298110982f283f2fe9328877e77e1cd8294c6688e693931b1cadfa448fc4d70f6a96934b394afde3d4ad78710c40aff95f0a0219778137f3cc0d639d9973b9a1fb424d79f1284715a21591eda920a4b2b9ea960a9d034291cebf2d8a7cd4975bd66978320b933cb35b08c949fddb5aca3bcb6d6b3cd47bd55a9af88dcfbb2a9bb6b647b63bd8d3a8db949c8b3e2bbc81ccdc31a2d7678e7f32ff095d99329b0189607bb14bbe9796816f3687f8922e31937236deedc91ab52933ec207c5ab53f1979", 0xc6, 0x80000000, 0x0, 0x3}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, &(0x7f00000001c0)="19ef1ea020d03599f1c39742dab3440dc817427cf51284d751d8f7b0fca4e9fe232f96366eb768954e1f85149166d9e8c756d29b2a2885b0a331f68bdc776756783f10862d7ae86ecc247c2d6163b144eb329b238b0e32da7501381f6503ca4848695187a6e6abc0b8baa1a52c760751026da6119ca5990df58dc45887afc27ef94f7b0007fec8a11624fc9c4e2a7d58f8a8fa1ae018fcc5846be677d865bc905c285e32f5e92ba40ea1c7eef5f990e06abfe079d7b0d6b901f7b4ca5c71820fd798f3c436de72ed7faa3eb3674fa4b9509cb91ca333fc4e", 0xd8, 0x84, 0x0, 0x2}]) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000400)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) syz_io_uring_setup(0x58a, &(0x7f00000004c0)={0x0, 0xca59, 0x0, 0x3, 0x279, 0x0, r3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000540), &(0x7f0000000580)) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r5 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r4, r5) ioctl$int_in(r5, 0x5421, &(0x7f00000003c0)=0x9) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000014c0)='./file0\x00', 0x40004, 0x3, &(0x7f0000000f40)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f00000800000004", 0x1b, 0x2100}], 0x0, &(0x7f00000004c0)=ANY=[]) fcntl$setpipe(r0, 0x407, 0x9) 00:14:28 executing program 7: r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = dup2(r0, r1) ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00'/12, @ANYRES32=r1, @ANYBLOB="000000000000154f2e2f66696c653000"]) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/block/loop0', 0x400000, 0x10) openat(r4, &(0x7f00000000c0)='./file0\x00', 0x0, 0x100) fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f0000000040)) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) r5 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r6 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r5, r6) r7 = syz_genetlink_get_family_id$fou(&(0x7f0000000480), r2) sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x54, r7, 0x400, 0x70bd29, 0x25dfdbfc, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x4}, @FOU_ATTR_LOCAL_V4={0x8, 0x6, @rand_addr=0x64010101}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_PEER_V4={0x8, 0x8, @loopback}, @FOU_ATTR_TYPE={0x5, 0x4, 0x4}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_V4={0x8, 0x8, @private=0xa010100}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x32}]}, 0x54}, 0x1, 0x0, 0x0, 0x28000000}, 0x4000) ioctl$F2FS_IOC_RESIZE_FS(r5, 0x4008f510, &(0x7f00000002c0)=0x7) pselect6(0x40, &(0x7f0000000000)={0x6, 0x4, 0xa987, 0x9, 0x98e, 0x7, 0x101, 0x9}, &(0x7f0000000140)={0x0, 0x0, 0x5, 0x144ba589, 0x4, 0xffff, 0x1, 0x7ff}, &(0x7f0000000180)={0x100000000, 0x14000000, 0x0, 0x9, 0xffffffffffffff01, 0x705, 0x80000000, 0x3}, &(0x7f00000001c0)={0x77359400}, &(0x7f0000000280)={&(0x7f0000000200)={[0x5]}, 0x8}) 00:14:28 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)) [ 868.396334] loop6: detected capacity change from 0 to 32768 [ 868.431310] FAULT_INJECTION: forcing a failure. [ 868.431310] name failslab, interval 1, probability 0, space 0, times 0 [ 868.433677] CPU: 0 PID: 6825 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 868.435135] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 868.436882] Call Trace: [ 868.437444] dump_stack+0x107/0x167 [ 868.438208] should_fail.cold+0x5/0xa [ 868.439040] ? create_object.isra.0+0x3a/0xa30 [ 868.440008] should_failslab+0x5/0x20 [ 868.440809] kmem_cache_alloc+0x5b/0x310 00:14:28 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) semctl$IPC_RMID(r0, 0x0, 0xb) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)) [ 868.441667] create_object.isra.0+0x3a/0xa30 [ 868.442713] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 868.443806] kmem_cache_alloc_trace+0x151/0x320 [ 868.444784] io_uring_alloc_task_context+0x4a3/0x6a0 [ 868.445854] ? io_import_iovec+0x1120/0x1120 [ 868.446797] ? lock_downgrade+0x6d0/0x6d0 [ 868.447679] ? do_raw_spin_lock+0x121/0x260 [ 868.448589] ? rwlock_bug.part.0+0x90/0x90 [ 868.449485] __io_uring_add_tctx_node+0x2c6/0x520 [ 868.450507] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 868.451637] ? alloc_fd+0x2e7/0x670 [ 868.452403] io_uring_setup+0x1fbb/0x2980 [ 868.453285] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 868.454343] ? wait_for_completion_io+0x270/0x270 [ 868.455396] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 868.456490] ? syscall_enter_from_user_mode+0x1d/0x50 [ 868.457570] do_syscall_64+0x33/0x40 [ 868.458345] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 868.459448] RIP: 0033:0x7fcf423d9b19 [ 868.460225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 868.464129] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 868.465737] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 868.467257] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 868.468765] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 868.470263] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 868.471780] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 868.485160] FAT-fs (loop6): invalid media value (0x00) [ 868.486510] FAT-fs (loop6): Can't find a valid FAT filesystem 00:14:28 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 33) 00:14:28 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0xbeb6]}, 0x8) 00:14:28 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 868.540822] loop0: detected capacity change from 0 to 262144 00:14:28 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:14:28 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x7, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:14:28 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000", 0x1c}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:14:28 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0x2, 0x9a5, 0x80000000, 0x7, 0xc531165, 0x8001, 0x58}, &(0x7f0000000040)={0xfffffffffffffe31, 0x7fffffff, 0x200, 0x800, 0x6, 0x1, 0x80, 0x8}, &(0x7f0000000080)={0x8000, 0x8, 0x2, 0x7, 0x1, 0x7f, 0x400, 0x4}, &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0x9]}, 0x8}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r0, 0x0) quotactl(0x6, &(0x7f0000000180)='./file0\x00', r0, &(0x7f00000001c0)="805a8276bdd069f470f0ea9362735dc49b51f7c5d03b542f2053f6953adcb77141bb7b8bb90316a0e3e31574cd61bad201c55f07c0fe6d57823353864a1ab46df7d35f0e49a16b5b74b448467b4b049246af75fb2c0e27d4f87a5f46aea20f83cb77f909657178c5e6551f518a4487799652553b7b90e75f609668a44f0ff62d6417f5f28f2b24e2f4a23b575413d041b5e4161d009ff7e801660c70a6558c9634883694b93e31b3296df42c985accbfe3") [ 868.612206] EXT4-fs (loop0): corrupt root inode, run e2fsck [ 868.613560] EXT4-fs (loop0): mount failed [ 868.624199] FAULT_INJECTION: forcing a failure. [ 868.624199] name failslab, interval 1, probability 0, space 0, times 0 [ 868.625532] CPU: 1 PID: 6853 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 868.626321] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 868.627293] Call Trace: [ 868.627605] dump_stack+0x107/0x167 [ 868.628026] should_fail.cold+0x5/0xa [ 868.628476] ? io_wq_create+0xeb/0xc00 [ 868.628931] should_failslab+0x5/0x20 [ 868.629364] __kmalloc+0x72/0x390 [ 868.629764] io_wq_create+0xeb/0xc00 [ 868.630200] io_uring_alloc_task_context+0x1f1/0x6a0 [ 868.630795] ? io_import_iovec+0x1120/0x1120 [ 868.631312] ? io_apoll_task_func+0x2d0/0x2d0 [ 868.631827] ? __io_req_find_next+0x300/0x300 [ 868.632336] ? do_raw_spin_lock+0x121/0x260 [ 868.632834] ? rwlock_bug.part.0+0x90/0x90 [ 868.633325] __io_uring_add_tctx_node+0x2c6/0x520 [ 868.633882] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 868.634478] ? alloc_fd+0x2e7/0x670 [ 868.634915] io_uring_setup+0x1fbb/0x2980 [ 868.635398] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 868.635983] ? wait_for_completion_io+0x270/0x270 [ 868.636556] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 868.637164] ? syscall_enter_from_user_mode+0x1d/0x50 [ 868.637763] do_syscall_64+0x33/0x40 [ 868.638196] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 868.638796] RIP: 0033:0x7fcf423d9b19 [ 868.639218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 868.641352] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 868.642235] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 868.643072] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 868.643883] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 868.644708] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 868.645533] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 868.646610] loop6: detected capacity change from 0 to 32768 [ 868.651568] FAT-fs (loop6): bogus number of FAT sectors [ 868.652255] FAT-fs (loop6): Can't find a valid FAT filesystem 00:14:28 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:14:28 executing program 1: rt_sigaction(0x38, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) r0 = socket$unix(0x1, 0x5, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) io_setup(0x5, &(0x7f0000000040)=0x0) io_submit(r2, 0x1, &(0x7f0000000400)=[&(0x7f0000000200)={0x0, 0x0, 0x5, 0x0, 0x0, r1, 0x0}]) io_getevents(r2, 0x0, 0x1, &(0x7f0000000440)=[{}], 0x0) io_submit(r2, 0x1, &(0x7f0000000340)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}]) io_pgetevents(r2, 0x5, 0xa, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000180)={0x0, 0x3938700}, &(0x7f0000000200)={&(0x7f00000001c0)={[0x9]}, 0x8}) 00:14:41 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(0x0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r0, r1+60000000}) 00:14:41 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_STATUS(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)={0x14}, 0x14}}, 0x0) syz_genetlink_get_family_id$nbd(&(0x7f0000000280), r0) syz_genetlink_get_family_id$nbd(&(0x7f0000000880), r0) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), 0xffffffffffffffff) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000480)={'wpan1\x00', 0x0}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r4, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000030c0)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000001c0), 0xffffffffffffffff) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r6, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000003100)={&(0x7f00000030c0)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0) sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)={0x134, 0x0, 0x2, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_SEC_KEY={0xcc, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x2}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "c122aad2bbb1688a844144363b441c677f2d49cd71633ede7e1c4b7037ac3cef"}, @NL802154_KEY_ATTR_ID={0x4}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "40131eafb5019ff66709b24a4d4bdee2"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "a30d12a0142f8ae60d1c85f80c07584d11f1ccc7dae70a9acfd7998dfe241ca6"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "6bb68b58bbc28f1ea848a14a8c42d2d3b5238589723ec2c078f23114a119ed4c"}, @NL802154_KEY_ATTR_ID={0x28, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x20}]}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "6a7203f2aa0e365a434701d2ed5e0e83"}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_SEC_KEY={0x28, 0x25, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x5}, @NL802154_KEY_ATTR_ID={0x1c, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}]}]}]}, 0x134}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:14:41 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:14:41 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x8, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:14:41 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000", 0x1c}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:14:41 executing program 0: ftruncate(0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) r2 = inotify_init1(0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x5, 0x80, 0x20, 0x8, 0x0, 0x0, 0x84208, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000100), 0x4}, 0x10420, 0x5, 0x2, 0x7, 0x2, 0xffffff6c, 0x97, 0x0, 0x6, 0x0, 0x7fff}, 0x0, 0x10, 0xffffffffffffffff, 0x3) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000680)={'#! ', './file1', [{0x20, '}@'}, {0x20, 'sit0\x00'}, {}, {0x20, '}\xde*'}, {0x20, '\x00'}, {0x20, 'wlan0\x00'}, {0x20, '/'}, {0x20, 'sit0\x00'}, {0x20, '^'}, {0x20, 'wlan0\x00'}], 0xa, "e38f393e6ed24ff68d5303a27686c838afdfc5b5b45cd9d5c536b54e15deb07ab6c75c07901485d4ccda01c90cf6"}, 0x61) inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0x43) dup3(r3, r2, 0x0) io_cancel(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x427, r2, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r1, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x2f, 0x2, 0x6a, 0x101, 0x10, @private1, @private2, 0x20, 0x0, 0x61, 0x6}}) syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) socket$inet6_udp(0xa, 0x2, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x0) 00:14:41 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 34) 00:14:41 executing program 7: r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r0, r1) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = dup2(r2, r3) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000000)={"95a2c3950c0f0ce43e2b99d7e101e71c", 0x0, 0x0, {0x9, 0x1000}, {0xfffffffffffffff8, 0xfffffffc}, 0xa93, [0x2, 0x4, 0xa9b, 0x29, 0x882, 0x0, 0x10001, 0x1, 0x10001, 0x3, 0x9, 0x380, 0x40000000000000, 0x8, 0x2]}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r1, 0x50009418, &(0x7f0000000180)={{r2}, r5, 0xc, @inherit={0x60, &(0x7f0000000100)={0x1, 0x3, 0x80, 0x68a6ae2d, {0x38, 0x0, 0x9, 0x3a, 0x3}, [0xfffffffffffffff7, 0x3, 0x7fffffff]}}, @subvolid=0xffffffff00000001}) r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000001180), 0x10000, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r6, 0xc0189372, &(0x7f00000011c0)={{0x1, 0x1, 0x18, r4, {0x7}}, './file0\x00'}) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) [ 881.956798] loop6: detected capacity change from 0 to 32768 [ 881.965384] FAULT_INJECTION: forcing a failure. [ 881.965384] name failslab, interval 1, probability 0, space 0, times 0 [ 881.967880] CPU: 0 PID: 6871 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 881.969350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 881.971136] Call Trace: [ 881.971705] dump_stack+0x107/0x167 [ 881.972487] should_fail.cold+0x5/0xa [ 881.973313] ? create_object.isra.0+0x3a/0xa30 [ 881.974385] should_failslab+0x5/0x20 [ 881.975223] kmem_cache_alloc+0x5b/0x310 [ 881.976096] create_object.isra.0+0x3a/0xa30 [ 881.977088] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 881.978176] __kmalloc+0x16e/0x390 [ 881.978956] io_wq_create+0xeb/0xc00 [ 881.979763] io_uring_alloc_task_context+0x1f1/0x6a0 [ 881.980851] ? io_import_iovec+0x1120/0x1120 [ 881.981792] ? io_apoll_task_func+0x2d0/0x2d0 [ 881.982749] ? __io_req_find_next+0x300/0x300 [ 881.983710] ? do_raw_spin_lock+0x121/0x260 [ 881.984631] ? rwlock_bug.part.0+0x90/0x90 [ 881.985545] __io_uring_add_tctx_node+0x2c6/0x520 [ 881.986576] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 881.987701] ? alloc_fd+0x2e7/0x670 [ 881.988488] io_uring_setup+0x1fbb/0x2980 [ 881.989380] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 881.990462] ? wait_for_completion_io+0x270/0x270 [ 881.991503] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 881.992612] ? syscall_enter_from_user_mode+0x1d/0x50 [ 881.993689] do_syscall_64+0x33/0x40 [ 881.994474] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 881.995553] RIP: 0033:0x7fcf423d9b19 [ 881.996332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 882.000189] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 882.001789] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 882.003312] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 882.004830] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 882.006321] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 882.007832] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 882.023184] FAT-fs (loop6): bogus number of FAT sectors [ 882.023854] FAT-fs (loop6): Can't find a valid FAT filesystem 00:14:41 executing program 7: rt_sigaction(0x35, &(0x7f0000001f80)={0x0, 0x90000000, 0x0, {[0x7c]}}, 0x0, 0x8, &(0x7f00000020c0)) 00:14:41 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(0x0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r0, r1+60000000}) [ 882.048774] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 882.049919] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 882.050738] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 882.051538] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 882.052440] print_req_error: 8 callbacks suppressed [ 882.052451] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0 [ 882.054684] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.055568] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 882.056734] Buffer I/O error on dev sr0, logical block 0, async page read [ 882.057706] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.058427] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 882.059590] Buffer I/O error on dev sr0, logical block 1, async page read [ 882.060559] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.061242] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 882.062407] Buffer I/O error on dev sr0, logical block 2, async page read [ 882.063412] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.064051] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 882.065233] Buffer I/O error on dev sr0, logical block 3, async page read [ 882.066532] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.067182] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 882.068342] Buffer I/O error on dev sr0, logical block 4, async page read [ 882.069285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.069902] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 882.071078] Buffer I/O error on dev sr0, logical block 5, async page read [ 882.072461] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.073092] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 882.074241] Buffer I/O error on dev sr0, logical block 6, async page read [ 882.075311] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.075928] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 882.077071] Buffer I/O error on dev sr0, logical block 7, async page read 00:14:42 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, 0x0, 0x0) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:14:42 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 35) 00:14:42 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x9, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:14:42 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000", 0x1c}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 882.155781] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.156992] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 882.159503] Buffer I/O error on dev sr0, logical block 0, async page read [ 882.161122] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.162306] Buffer I/O error on dev sr0, logical block 1, async page read [ 882.164105] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.165432] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.166808] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.167374] loop6: detected capacity change from 0 to 32768 [ 882.168120] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.169941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.173345] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 882.194265] FAULT_INJECTION: forcing a failure. [ 882.194265] name failslab, interval 1, probability 0, space 0, times 0 [ 882.195617] CPU: 1 PID: 6904 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 882.196392] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 882.197331] Call Trace: [ 882.197634] dump_stack+0x107/0x167 [ 882.198046] should_fail.cold+0x5/0xa [ 882.198481] ? io_wq_create+0x6ef/0xc00 [ 882.198937] should_failslab+0x5/0x20 [ 882.199379] kmem_cache_alloc_node_trace+0x59/0x340 [ 882.199943] io_wq_create+0x6ef/0xc00 [ 882.200374] io_uring_alloc_task_context+0x1f1/0x6a0 [ 882.200945] ? io_import_iovec+0x1120/0x1120 [ 882.201442] ? io_apoll_task_func+0x2d0/0x2d0 [ 882.201948] ? __io_req_find_next+0x300/0x300 [ 882.202454] ? do_raw_spin_lock+0x121/0x260 [ 882.202947] ? rwlock_bug.part.0+0x90/0x90 [ 882.203433] __io_uring_add_tctx_node+0x2c6/0x520 [ 882.203977] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 882.204573] ? alloc_fd+0x2e7/0x670 [ 882.204989] io_uring_setup+0x1fbb/0x2980 [ 882.205470] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 882.206041] ? wait_for_completion_io+0x270/0x270 [ 882.206601] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 882.207201] ? syscall_enter_from_user_mode+0x1d/0x50 [ 882.207788] do_syscall_64+0x33/0x40 [ 882.208216] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 882.208793] RIP: 0033:0x7fcf423d9b19 [ 882.209213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 882.211304] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 882.212159] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 882.212964] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 882.213775] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 882.214585] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 882.215407] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:14:42 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 36) [ 882.312496] FAT-fs (loop6): bogus number of FAT sectors [ 882.313200] FAT-fs (loop6): Can't find a valid FAT filesystem [ 882.315853] FAULT_INJECTION: forcing a failure. [ 882.315853] name failslab, interval 1, probability 0, space 0, times 0 [ 882.318375] CPU: 0 PID: 6910 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 882.319830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 882.321568] Call Trace: [ 882.322125] dump_stack+0x107/0x167 [ 882.322899] should_fail.cold+0x5/0xa [ 882.323706] ? create_object.isra.0+0x3a/0xa30 [ 882.324661] should_failslab+0x5/0x20 [ 882.325460] kmem_cache_alloc+0x5b/0x310 [ 882.326313] ? io_wq_create+0x114/0xc00 [ 882.327157] create_object.isra.0+0x3a/0xa30 [ 882.328076] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 882.329145] kmem_cache_alloc_node_trace+0x16d/0x340 [ 882.330216] io_wq_create+0x6ef/0xc00 [ 882.331031] io_uring_alloc_task_context+0x1f1/0x6a0 [ 882.332101] ? io_import_iovec+0x1120/0x1120 [ 882.333027] ? io_apoll_task_func+0x2d0/0x2d0 [ 882.333967] ? __io_req_find_next+0x300/0x300 [ 882.334909] ? do_raw_spin_lock+0x121/0x260 [ 882.335821] ? rwlock_bug.part.0+0x90/0x90 [ 882.336718] __io_uring_add_tctx_node+0x2c6/0x520 [ 882.337730] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 882.338830] ? alloc_fd+0x2e7/0x670 [ 882.339618] io_uring_setup+0x1fbb/0x2980 [ 882.340497] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 882.341569] ? wait_for_completion_io+0x270/0x270 [ 882.342605] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 882.343724] ? syscall_enter_from_user_mode+0x1d/0x50 [ 882.344818] do_syscall_64+0x33/0x40 [ 882.345600] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 882.346678] RIP: 0033:0x7fcf423d9b19 [ 882.347461] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 882.351306] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 882.352898] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 882.354405] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 882.355913] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 882.357406] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 882.358904] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 896.496618] FAULT_INJECTION: forcing a failure. [ 896.496618] name failslab, interval 1, probability 0, space 0, times 0 [ 896.499619] CPU: 0 PID: 6917 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 896.501351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 896.503489] Call Trace: [ 896.504168] dump_stack+0x107/0x167 [ 896.505091] should_fail.cold+0x5/0xa [ 896.506069] ? __io_uring_add_tctx_node+0x15c/0x520 [ 896.507356] should_failslab+0x5/0x20 [ 896.508347] kmem_cache_alloc_trace+0x55/0x320 [ 896.509525] __io_uring_add_tctx_node+0x15c/0x520 [ 896.510762] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 896.512115] ? alloc_fd+0x2e7/0x670 [ 896.513058] io_uring_setup+0x1fbb/0x2980 [ 896.514131] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 896.515458] ? wait_for_completion_io+0x270/0x270 [ 896.516731] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 896.516865] loop6: detected capacity change from 0 to 32768 [ 896.518060] ? syscall_enter_from_user_mode+0x1d/0x50 [ 896.518086] do_syscall_64+0x33/0x40 [ 896.518116] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 896.522908] RIP: 0033:0x7fcf423d9b19 [ 896.523879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 896.528619] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 896.530546] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 896.532389] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 896.532679] FAT-fs (loop6): bogus number of FAT sectors [ 896.534220] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 896.534232] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 896.534244] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 896.540034] FAT-fs (loop6): Can't find a valid FAT filesystem 00:14:56 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 37) 00:14:56 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5b4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:14:56 executing program 7: r0 = open(&(0x7f0000000100)='./file0\x00', 0x402002, 0x1c) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'veth0_to_hsr\x00'}) r1 = syz_open_dev$usbmon(&(0x7f0000000080), 0x8, 0x80) ioctl$BTRFS_IOC_QGROUP_LIMIT(r1, 0x8030942b, &(0x7f00000000c0)={0xffffffff, {0x15, 0x4229e331, 0x101, 0x3c, 0x2}}) msgrcv(0x0, &(0x7f0000000000)={0x0, ""/107}, 0x73, 0x3, 0x2000) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) msgget(0x3, 0x200) 00:14:56 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) semop(0x0, &(0x7f0000000040)=[{0x0, 0x4, 0x82b4d8da1ae7c66c}], 0x1) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(0x0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r0, r1+60000000}) 00:14:56 executing program 0: ftruncate(0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) r2 = inotify_init1(0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x5, 0x80, 0x20, 0x8, 0x0, 0x0, 0x84208, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000100), 0x4}, 0x10420, 0x5, 0x2, 0x7, 0x2, 0xffffff6c, 0x97, 0x0, 0x6, 0x0, 0x7fff}, 0x0, 0x10, 0xffffffffffffffff, 0x3) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000680)={'#! ', './file1', [{0x20, '}@'}, {0x20, 'sit0\x00'}, {}, {0x20, '}\xde*'}, {0x20, '\x00'}, {0x20, 'wlan0\x00'}, {0x20, '/'}, {0x20, 'sit0\x00'}, {0x20, '^'}, {0x20, 'wlan0\x00'}], 0xa, "e38f393e6ed24ff68d5303a27686c838afdfc5b5b45cd9d5c536b54e15deb07ab6c75c07901485d4ccda01c90cf6"}, 0x61) inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0x43) dup3(r3, r2, 0x0) io_cancel(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x427, r2, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r1, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x2f, 0x2, 0x6a, 0x101, 0x10, @private1, @private2, 0x20, 0x0, 0x61, 0x6}}) syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) socket$inet6_udp(0xa, 0x2, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x0) 00:14:56 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, 0x0, 0x0) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:14:56 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000", 0x21}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:14:56 executing program 1: sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100028bd7000fedbdf2505000000050033000100000008000300", @ANYRES32=0x0, @ANYBLOB="081b585d47bc56d12c4dc35f89feb262e6ada046440e8ed7e17362ba5c391d3ccd8cc682ee4de1ac5fad675e4090e254399eaf59796f2461aa6f39b8ba687a25a70eeeffcf786fb97405f3"], 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x4000080) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/netpoll', 0x80000, 0x143) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000400)={&(0x7f0000000a40)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="000226bd7000ffdbdf2502000000050003000c00000008000600ac1414aa0500020002000000060001004e20000006000a004e210000060001004e2300000400050008000b00", @ANYRES32=0x0, @ANYBLOB="050003002b0000000f49dcffebfc568b1acd0500020000000000"], 0x60}, 0x1, 0x0, 0x0, 0x4}, 0x40011) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0x5, 0x3, 0x1ff, 0x20, 0x7, 0x8001, 0x7178, 0x8c2}, &(0x7f0000000040)={0x1, 0xfffffffffffffd02, 0xffffffffffffffc1, 0x0, 0xffffffff, 0x80000001, 0xfffffffffffffff8, 0x5}, &(0x7f0000000180)={0x3, 0x2, 0x8, 0x81, 0x9, 0x1, 0x3}, &(0x7f0000000080)={0x77359400}, &(0x7f0000000140)={&(0x7f0000000100)={[0x80]}, 0x8}) futimesat(r0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={{0x77359400}, {0x77359400}}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000a00)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000009c0)={&(0x7f0000000ac0)={0x508, r2, 0x100, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xffffffff}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2d}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x78}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xc64c}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x385}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1720}], @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x2}, @NL80211_ATTR_IE={0x129, 0x2a, [@dsss={0x3, 0x1, 0x2}, @preq={0x82, 0x78, @ext={{0x1}, 0xca, 0x3f, 0x1f, @device_b, 0x6, @device_a, 0x4, 0x3daf, 0x8, [{{0x1, 0x0, 0x1}, @device_b, 0x3c}, {{0x0, 0x0, 0x1}, @device_b, 0x2}, {{0x1, 0x0, 0x1}}, {{0x1, 0x0, 0x1}, @broadcast}, {{0x1}, @device_a, 0x100}, {{}, @broadcast, 0x9}, {{}, @device_b, 0xd11}, {{}, @broadcast, 0x323}]}}, @sec_chan_ofs={0x3e, 0x1}, @fast_bss_trans={0x37, 0xa3, {0x4, 0x2, "559955034574f2efd74b6ef4e18445a8", "d248a40706d7af907c1ec5eba1062a20bb99e22314ebbbfc4b7a9f19bece5e2d", "2e79bbd31d803b73c9f26285ab396a976cb3bdb20e7e2b2b1964f1615da66aa5", [{0x1, 0x26, "2c017a462ff55e2839d448f103b84d644e655b8e3199707725649f320efd8ee57389615e2b94"}, {0x4, 0x27, "5be1aa87a0a8ea7e19c84ebf4ffd3978767e9fc296668702ddc93cd3584b2e66a780559905d3e2"}]}}]}, @NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0x70000, {0xfffb, 0x200, 0x881d, 0x8}}}, @NL80211_ATTR_WIPHY_FREQ_HINT={0x8, 0xc9, @random=0x16f8}, @NL80211_ATTR_IE={0x164, 0x2a, [@gcr_ga={0xbd, 0x6, @device_b}, @mesh_chsw={0x76, 0x6, {0x40, 0xff, 0x26, 0x3}}, @mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x2, 0x2f, 0x49}}, @rann={0x7e, 0x15, {{0x1, 0x4b}, 0x0, 0x0, @device_a, 0x1, 0x5, 0x6}}, @tim={0x5, 0x18, {0x7d, 0xf9, 0x3f, "eeec8b9fb170c66004087fd442cf0f9e0b31ead13d"}}, @ssid={0x0, 0xc, @random="0c725c12661d84719323ab05"}, @ssid={0x0, 0x6, @default_ap_ssid}, @random_vendor={0xdd, 0xfe, "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"}]}, @fils_params=[@NL80211_ATTR_FILS_ERP_USERNAME={0xf, 0xf9, "a2d7306e912dcf6a046de9"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x4}, @NL80211_ATTR_FILS_ERP_REALM={0x7c, 0xfa, "975d31c7831bf1bb79c171ce9df9cc0f3b3d262143c5e23bb0437392f1a8ee4591406198a566e3252d296fee1e1551a604ae037d898d26a8b09f79efe6ca2b8f070a66eca61de0d9c8b22a12888e63fb4230a6d740c9dd71e879076726f7cd584640f07c136d2797c42da9a54e7fca15f11459a3b095da59"}, @NL80211_ATTR_FILS_ERP_REALM={0x3a, 0xfa, "cc5c265d18681babd5e7710958d0ae07b60251a37412f33f8a64c6540e3fb1ae9d6c25a9bc4b2820d8673b88a01c1f61b4618cfc91bf"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x11, 0xf9, "03e8e945ac80ca657c6f245c02"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x6, 0xf9, "c60e"}, @NL80211_ATTR_FILS_ERP_RRK={0xf5, 0xfc, "e1d78d8197b10afc7a6c61c7edc137818dcc59a2612646f037eea46577518270e1a17dd37657738480b9eb4fa008ac40c766edb424e074b59dca3d4c1e5322cc6281d9c6794d723c9b1ed949570c1402a2c10907be9f640500abaec4d32cc811e87a5a66ddfb7b1795187ff8df97bef525c9f00fba3dd1358746885e8d7f395dcd02a54d6c90337a3bc6d542d2490554bc44485db2c78615845880bac25aef52d4fb5a96866199a2ce90cff4fc4a3f7d2b137018f56c6fc037017c9dae4517aa4c3e2a46b8cd02c9910f23105b0aee3e97b9cf3d79c184d93b65c38164d210c098f4454aefd147102bd8db3b4718c1d59a"}]]}, 0x508}, 0x1, 0x0, 0x0, 0xa95943e8e3c27814}, 0x24000080) 00:14:56 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000", 0x21}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:14:56 executing program 2: semget$private(0x0, 0x4, 0x100) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x120, 0x400000000000, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) [ 896.636778] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.638372] print_req_error: 7 callbacks suppressed [ 896.638390] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 896.642292] buffer_io_error: 6 callbacks suppressed [ 896.642303] Buffer I/O error on dev sr0, logical block 0, async page read [ 896.645479] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.646882] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 7 prio class 0 [ 896.649428] Buffer I/O error on dev sr0, logical block 1, async page read [ 896.651243] Buffer I/O error on dev sr0, logical block 2, async page read [ 896.653055] Buffer I/O error on dev sr0, logical block 3, async page read [ 896.654858] Buffer I/O error on dev sr0, logical block 4, async page read [ 896.656673] Buffer I/O error on dev sr0, logical block 5, async page read [ 896.658466] Buffer I/O error on dev sr0, logical block 6, async page read [ 896.660298] Buffer I/O error on dev sr0, logical block 7, async page read [ 896.677919] loop6: detected capacity change from 0 to 32768 00:14:56 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, 0x0, 0x0) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:14:56 executing program 7: rt_sigaction(0x39, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) 00:14:56 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) io_pgetevents(0x0, 0x7, 0x4, &(0x7f0000000000)=[{}, {}, {}, {}], &(0x7f0000000080), &(0x7f0000000100)={&(0x7f00000000c0)={[0xcd4c259]}, 0x8}) 00:14:56 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) [ 896.735340] FAT-fs (loop6): bogus number of FAT sectors [ 896.736580] FAT-fs (loop6): Can't find a valid FAT filesystem 00:14:56 executing program 0: ftruncate(0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000140)='./file1\x00', 0x101000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x402}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) io_setup(0x3, &(0x7f0000000000)=0x0) r2 = inotify_init1(0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f00000003c0)={0x3, 0x80, 0x5, 0x80, 0x20, 0x8, 0x0, 0x0, 0x84208, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000100), 0x4}, 0x10420, 0x5, 0x2, 0x7, 0x2, 0xffffff6c, 0x97, 0x0, 0x6, 0x0, 0x7fff}, 0x0, 0x10, 0xffffffffffffffff, 0x3) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000680)={'#! ', './file1', [{0x20, '}@'}, {0x20, 'sit0\x00'}, {}, {0x20, '}\xde*'}, {0x20, '\x00'}, {0x20, 'wlan0\x00'}, {0x20, '/'}, {0x20, 'sit0\x00'}, {0x20, '^'}, {0x20, 'wlan0\x00'}], 0xa, "e38f393e6ed24ff68d5303a27686c838afdfc5b5b45cd9d5c536b54e15deb07ab6c75c07901485d4ccda01c90cf6"}, 0x61) inotify_add_watch(r2, &(0x7f0000000000)='./file0\x00', 0x43) dup3(r3, r2, 0x0) io_cancel(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x427, r2, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r1, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000000300)={'syztnl1\x00', &(0x7f0000000240)={'sit0\x00', 0x0, 0x2f, 0x2, 0x6a, 0x101, 0x10, @private1, @private2, 0x20, 0x0, 0x61, 0x6}}) syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) socket$inet6_udp(0xa, 0x2, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x0) 00:14:56 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 38) 00:14:56 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) pselect6(0x40, &(0x7f0000000000)={0x4, 0x7, 0xfb1, 0x4, 0x6, 0x3, 0x0, 0x8}, &(0x7f0000000040)={0xb1e3, 0x1, 0x0, 0x5, 0xc49, 0x6, 0x2, 0x3}, &(0x7f0000000080)={0x9, 0x9, 0x1ff, 0xed41, 0x7, 0x2, 0xffff, 0x4}, &(0x7f00000000c0)={0x0, 0x3938700}, &(0x7f0000000140)={&(0x7f0000000100)={[0x4]}, 0x8}) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000180)={0x5, 0x7, 0x7ff, 0x9, 0x3, 0x6, 0x80, 0x25}, &(0x7f00000001c0)={0x6, 0x5, 0x82, 0x7fff, 0x40001, 0x80000000, 0x20, 0xffffffffffff0000}, &(0x7f0000000200)={0x0, 0x0, 0x2, 0x200, 0x100, 0x9d0, 0x0, 0x663}, &(0x7f00000002c0)={r0, r1+10000000}, &(0x7f0000000300)={&(0x7f0000000340)={[0xfffffffffffff280]}, 0x8}) 00:14:56 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 896.837122] FAULT_INJECTION: forcing a failure. [ 896.837122] name failslab, interval 1, probability 0, space 0, times 0 [ 896.840094] CPU: 0 PID: 6955 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 896.841841] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 896.843988] Call Trace: [ 896.844678] dump_stack+0x107/0x167 [ 896.845609] should_fail.cold+0x5/0xa [ 896.846577] ? create_object.isra.0+0x3a/0xa30 [ 896.847779] should_failslab+0x5/0x20 [ 896.848760] kmem_cache_alloc+0x5b/0x310 [ 896.849609] create_object.isra.0+0x3a/0xa30 [ 896.850728] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 896.852034] kmem_cache_alloc_trace+0x151/0x320 [ 896.853022] __io_uring_add_tctx_node+0x15c/0x520 [ 896.854249] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 896.855409] ? alloc_fd+0x2e7/0x670 [ 896.856188] io_uring_setup+0x1fbb/0x2980 [ 896.857055] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 896.858332] ? wait_for_completion_io+0x270/0x270 [ 896.859355] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 896.860687] ? syscall_enter_from_user_mode+0x1d/0x50 [ 896.861762] do_syscall_64+0x33/0x40 [ 896.862724] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 896.863848] RIP: 0033:0x7fcf423d9b19 [ 896.864621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 896.869311] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 896.871027] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 896.872511] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 896.873974] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 896.875453] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 896.876921] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:14:56 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000", 0x21}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:14:56 executing program 7: ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x800}}, './file0\x00'}) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = dup2(r2, r3) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r4, 0x8000000) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000080)=[r0, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4], 0xa) [ 896.949734] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.950925] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 896.953061] Buffer I/O error on dev sr0, logical block 0, async page read [ 896.954924] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.956113] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 896.958228] Buffer I/O error on dev sr0, logical block 1, async page read [ 896.960111] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.961287] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 896.963774] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.964953] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 896.967517] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.968686] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 896.971182] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.972362] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 896.974858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.976038] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 896.978563] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 896.980460] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 00:14:56 executing program 1: r0 = accept(0xffffffffffffffff, &(0x7f0000000880)=@tipc=@id, &(0x7f0000000080)=0x80) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000000, 0x2010, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) r2 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) getsockname$unix(r2, 0x0, &(0x7f00000000c0)) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, r2, 0x8000000) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000000240)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r4}}, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_WRITEV={0x2, 0x1, 0x4007, @fd_index=0x9, 0xa, &(0x7f0000000040)=[{&(0x7f0000000300)="f4196eb2a49e0c86148c43308cda45eadc88be5f29b36fdabf443a0a1085e00bb2e721ac6c982ee84cfacfe5d525aa3b4929ffe1abdfd503e2c6b78cc99eabb47b069b7468dbff4fdf5dd524b47ab13478d114316043c549a2d4f79035d72c2686ab6d3a8fcd6fed1ccd0fd12bebe19be8d30646f3c6ee3a0dcc64f4d77f59e5d98dcc0350ce841af69aef3d909293fc93b18656bc991c5895295a23751df1a5c6da4dbee9b99516ce32775537f574945661db8f46b562874992093663f9608042242a785da63910802bb721babb0ece044510063863bc777a1b7600fe9991da304040f79c", 0xe5}], 0x1, 0x0, 0x1, {0x1}}, 0x9) syz_io_uring_submit(r1, 0x0, &(0x7f0000000280)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x9, 0x3, &(0x7f0000000740)="dfbc5790a0b1791c1da2d75e0d4318c2008fea4c1836afd41ce9629568ccd39f9019ebfbc8938b2adec0e2e7c954b314b4aa230b8e3b20ae303c0a27521c2f6c69b34283cce19d6f1979b3b8a13e71a45f79c6caf3b5469733f0aa7a6094688f862d778e69eea361c3cee1edfd56a7f208488277251c7e1a84522a4fa068b741cacab98d3614", 0x82, 0x0, 0x0, {0x3, r4}}, 0x401) r5 = syz_io_uring_setup(0x3a71, &(0x7f0000000080)={0x0, 0x2, 0x1, 0x2, 0x14b, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000840)=0x0, &(0x7f0000000100)=0x0) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r8, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@nl=@proc, 0x80, 0x0, 0x0, &(0x7f0000000380)=ANY=[], 0x30}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x200000e, 0x13, r5, 0x0) r9 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r5, 0x8000000) syz_io_uring_submit(r9, r7, &(0x7f0000000300)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0}, 0x80000001) syz_io_uring_submit(r1, r7, &(0x7f0000000180)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r0}, 0x28000) accept(r0, &(0x7f00000000c0)=@pppoe={0x18, 0x0, {0x0, @link_local}}, &(0x7f0000000140)=0x80) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000200)=""/28, 0x1c}, {&(0x7f0000000340)=""/157, 0x9d}, {&(0x7f0000000400)=""/188, 0xbc}, {&(0x7f00000004c0)=""/231, 0xe7}, {&(0x7f0000000240)=""/22, 0x16}, {&(0x7f00000005c0)=""/242, 0xf2}], 0x6) 00:14:56 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 897.038777] loop6: detected capacity change from 0 to 32768 00:14:56 executing program 7: getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000040)={{{@in=@initdev, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={""/10, ""/2, @multicast2}}, 0x0, @in6=@mcast2}}, &(0x7f0000000140)=0xe8) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r1, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f0000000180)=@getae={0x1fc, 0x1f, 0x0, 0x70bd2b, 0x25dfdbfe, {{@in=@empty, 0x4d4, 0x2, 0x2b}, @in=@empty, 0x81}, [@tfcpad={0x8, 0x16, 0x9c2}, @mark={0xc, 0x15, {0x35075d, 0xfff}}, @policy={0xac, 0x7, {{@in=@private=0xa010101, @in=@dev={0xac, 0x14, 0x14, 0xf}, 0x4e21, 0x3f, 0x4e21, 0x9, 0xa, 0x20, 0xa0, 0x29, r0, r1}, {0x7, 0xfffffffffffffffe, 0x394, 0x7, 0x401, 0x6a8, 0x4, 0x6}, {0x80000000, 0x3, 0xffffffff00000000, 0x6}, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1}}, @XFRMA_SET_MARK_MASK={0x8, 0x1e, 0xbf0}, @algo_comp={0xf2, 0x3, {{'lzs\x00'}, 0x550, "cc181bf4e554dd68e35a8033134fd377d912a0000af6a892f5d235cdb28bbdcd0e02af9e981aa728d70f73744361f58a019274cd1579de4123d9c7b47afbea6160d8ac476ac724aac5025d8f7e5dd3f1417c5fd8cde29e04297ea89e6643ec77292fe089e1041fe35f5550c90e3a4f59b47ada3e2bca20d110147548cfc7ce7bfe96188100e40f64e73fcde8f9ab93d1d392e80122601224453074a8753acdb9bc0dc2d83776c2c766b8"}}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x44000}, 0x0) rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) [ 897.090606] FAT-fs (loop6): bogus number of FAT sectors [ 897.091925] FAT-fs (loop6): Can't find a valid FAT filesystem 00:14:56 executing program 0: r0 = syz_io_uring_complete(0x0) r1 = syz_open_pts(0xffffffffffffffff, 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x5c0, 0x0) ioctl$TIOCGWINSZ(r3, 0x5413, &(0x7f0000000280)) fstatfs(r1, &(0x7f0000000300)=""/148) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = syz_io_uring_setup(0x3a7b, &(0x7f0000000480), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000080)) pread64(0xffffffffffffffff, &(0x7f0000000080)=""/142, 0x8e, 0x0) r5 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCADDRT(r5, 0x890b, &(0x7f0000000640)={0x0, @generic={0x0, "106b58db77fc3cf8f94e1100cb65"}, @vsock={0x28, 0x0, 0x2711, @my=0x0}, @l2tp={0x2, 0x0, @empty, 0x1}, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffffc}) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f00000002c0)={0x7, 0x40, 0x6f3, 0x38, 0x4}, 0x14) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) io_uring_enter(r4, 0x58ad, 0x3, 0x6, 0x0, 0x0) ioctl$TCXONC(r2, 0x540a, 0x3) clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) getsockopt$IP6T_SO_GET_REVISION_TARGET(r6, 0x29, 0x45, &(0x7f0000000140)={'icmp6\x00'}, &(0x7f0000000180)=0x1e) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) 00:14:57 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x34000, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:15:10 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000180)={0xfffffffffffffffa, 0x0, 0x1, 0x11151018, 0x7, 0x5, 0x8000, 0xd3}, &(0x7f00000001c0)={0x0, 0x363f, 0x5, 0x4, 0x5, 0x4, 0x7, 0x3}, &(0x7f0000000200)={0xfffffffffffffffe, 0x8, 0x80, 0xfffffffffffffffe, 0x3, 0x4, 0x8, 0x9709}, &(0x7f0000000280)={r0, r1+10000000}, &(0x7f0000000300)={&(0x7f00000002c0)={[0x8]}, 0x8}) pselect6(0x40, &(0x7f0000000000)={0x101, 0x3, 0x2, 0x20, 0x2, 0x9, 0x3, 0x2}, &(0x7f0000000040)={0xffffffffffffffe0, 0x1, 0x8001, 0x5, 0x6, 0x0, 0x1, 0x3}, &(0x7f0000000080)={0xffff, 0x4, 0x2000000000000, 0x77ce, 0x2, 0x3, 0x2, 0x8c}, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000140)={&(0x7f0000000100)={[0x8]}, 0x8}) 00:15:10 executing program 2: semget$private(0x0, 0x4, 0x100) r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:15:10 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 39) 00:15:10 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000000)) socket$inet6_udplite(0xa, 0x2, 0x88) rt_sigtimedwait(&(0x7f00000001c0)={[0x3]}, &(0x7f0000000200), &(0x7f0000000280)={0x77359400}, 0x8) pselect6(0x40, &(0x7f0000000040)={0x7, 0x9, 0x8, 0x200, 0x1, 0xc85, 0x6, 0x800}, &(0x7f0000000080)={0xf882, 0x0, 0x8000, 0x81, 0xffffffffffffffff, 0x7, 0x0, 0xfffffffffffffffb}, &(0x7f00000000c0)={0x7, 0x6, 0xd951, 0x7, 0x1a4, 0x1f, 0x3f, 0x5}, &(0x7f0000000100)={0x0, 0x989680}, &(0x7f0000000180)={&(0x7f0000000140)={[0x7fff]}, 0x8}) 00:15:10 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x20000044, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:15:10 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f800002000400003000000000000", 0x23}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:15:10 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:15:10 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 910.386556] loop6: detected capacity change from 0 to 32768 [ 910.403506] FAT-fs (loop6): bogus number of FAT sectors [ 910.404729] FAT-fs (loop6): Can't find a valid FAT filesystem [ 910.409709] FAULT_INJECTION: forcing a failure. [ 910.409709] name failslab, interval 1, probability 0, space 0, times 0 [ 910.412652] CPU: 0 PID: 7013 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 910.414172] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 910.416035] Call Trace: [ 910.416631] dump_stack+0x107/0x167 [ 910.417450] should_fail.cold+0x5/0xa [ 910.418309] ? xas_alloc+0x336/0x440 [ 910.419162] should_failslab+0x5/0x20 [ 910.420029] kmem_cache_alloc+0x5b/0x310 [ 910.420939] ? stack_trace_consume_entry+0x160/0x160 [ 910.422052] xas_alloc+0x336/0x440 [ 910.422873] xas_create+0x34a/0x10d0 [ 910.423732] ? kernel_text_address+0xf2/0x120 [ 910.424732] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 910.425924] xas_store+0x8c/0x1c40 00:15:10 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) [ 910.426730] __xa_store+0x164/0x2d0 [ 910.427694] ? xa_delete_node+0x280/0x280 [ 910.428684] ? trace_hardirqs_on+0x5b/0x180 [ 910.429649] xa_store+0x31/0x50 [ 910.430372] __io_uring_add_tctx_node+0x1cf/0x520 [ 910.431513] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 910.432671] ? alloc_fd+0x2e7/0x670 [ 910.433514] io_uring_setup+0x1fbb/0x2980 [ 910.434466] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 910.435605] ? wait_for_completion_io+0x270/0x270 [ 910.436720] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 910.437870] ? syscall_enter_from_user_mode+0x1d/0x50 [ 910.439025] do_syscall_64+0x33/0x40 [ 910.439900] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 910.441052] RIP: 0033:0x7fcf423d9b19 [ 910.441898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 910.445980] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 910.447692] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 910.449275] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 910.450875] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 910.452489] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 910.454089] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:15:10 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0xfffffdef, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:15:10 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f800002000400003000000000000", 0x23}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 910.562896] loop6: detected capacity change from 0 to 32768 [ 910.569805] FAT-fs (loop6): bogus number of FAT sectors [ 910.571115] FAT-fs (loop6): Can't find a valid FAT filesystem 00:15:25 executing program 7: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0, {[0xfffffffffffffffc]}}, 0x0, 0x8, &(0x7f00000020c0)) 00:15:25 executing program 1: rt_sigaction(0x38, &(0x7f0000001f80)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f00000020c0)) rt_sigsuspend(&(0x7f0000000000)={[0x1000]}, 0x8) 00:15:25 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:15:25 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 40) 00:15:25 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:15:25 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:15:25 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f800002000400003000000000000", 0x23}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:15:25 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x2, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) [ 925.284631] loop6: detected capacity change from 0 to 32768 [ 925.291209] FAT-fs (loop6): bogus number of FAT sectors [ 925.291842] FAT-fs (loop6): Can't find a valid FAT filesystem 00:15:25 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000", 0x24}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 925.322454] FAULT_INJECTION: forcing a failure. [ 925.322454] name failslab, interval 1, probability 0, space 0, times 0 [ 925.323781] CPU: 1 PID: 7048 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 925.324571] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 925.325535] Call Trace: [ 925.325840] dump_stack+0x107/0x167 [ 925.326260] should_fail.cold+0x5/0xa [ 925.326706] ? xas_alloc+0x336/0x440 [ 925.327135] should_failslab+0x5/0x20 [ 925.327655] kmem_cache_alloc+0x5b/0x310 [ 925.328129] ? stack_trace_consume_entry+0x160/0x160 [ 925.328714] xas_alloc+0x336/0x440 [ 925.329125] xas_create+0x34a/0x10d0 [ 925.329565] ? kernel_text_address+0xf2/0x120 [ 925.330087] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 925.330691] xas_store+0x8c/0x1c40 [ 925.331106] __xa_store+0x164/0x2d0 [ 925.331537] ? xa_delete_node+0x280/0x280 [ 925.332016] ? trace_hardirqs_on+0x5b/0x180 [ 925.332516] xa_store+0x31/0x50 [ 925.332900] __io_uring_add_tctx_node+0x1cf/0x520 [ 925.333453] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 925.334057] ? alloc_fd+0x2e7/0x670 [ 925.334485] io_uring_setup+0x1fbb/0x2980 [ 925.334967] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 925.335563] ? wait_for_completion_io+0x270/0x270 [ 925.336129] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 925.336733] ? syscall_enter_from_user_mode+0x1d/0x50 [ 925.337324] do_syscall_64+0x33/0x40 [ 925.337752] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 925.338343] RIP: 0033:0x7fcf423d9b19 [ 925.338774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 925.340908] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 925.341779] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 925.342597] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 925.343422] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 925.344239] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 925.345061] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 925.357791] loop6: detected capacity change from 0 to 32768 [ 925.360739] FAT-fs (loop6): bogus number of FAT sectors [ 925.361421] FAT-fs (loop6): Can't find a valid FAT filesystem 00:15:25 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000", 0x24}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) 00:15:25 executing program 7: rt_sigaction(0x35, &(0x7f0000001f80)={0x0, 0x48000001, 0x0, {[0x7f]}}, 0x0, 0x8, &(0x7f00000020c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0x8000000) r2 = socket$inet_tcp(0x2, 0x1, 0x0) r3 = syz_io_uring_setup(0x630e, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x3ca}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r7}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) syz_io_uring_submit(r8, r5, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) r9 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) getsockname$unix(r9, 0x0, &(0x7f00000000c0)) r10 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, r9, 0x8000000) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r10, 0x0, &(0x7f0000000240)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r11}}, 0x6) syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_WRITEV={0x2, 0x1, 0x4007, @fd=r6, 0x9, &(0x7f0000000040)=[{&(0x7f0000000300)="f4196eb2a49e0c86148c43308cda45eadc88be5f29b36fdabf443a0a1085e00bb2e721ac6c982ee84cfacfe5d525aa3b4929ffe1abdfd503e2c6b78cc99eabb47b069b7468dbff4fdf5dd524b47ab13478d114316043c549a2d4f79035d72c2686ab6d3a8fcd6fed1ccd0fd12bebe19be8d30646f3c6ee3a0dcc64f4d77f59e5d98dcc0350ce841af69aef3d909293fc93b18656bc991c5895295a23751df1a5c6da4dbee9b99516ce32775537f574945661db8f46b562874992093663f9608042242a785da63910802bb721babb0ece044510063863bc777a1b7600fe9991da304040f79c", 0xe5}], 0x1, 0x1e, 0x1, {0x2, r11}}, 0x6) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000340)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x5, 0x0, 0xffffffffffffffff, 0x0, r2, 0x2, 0x0, 0x0, {0x0, r11}}, 0x3) pselect6(0x40, &(0x7f0000000180)={0xfff, 0x5, 0x1, 0x5, 0xdae0, 0x3, 0x10000, 0x6}, &(0x7f00000001c0)={0x9, 0x2, 0x800, 0x1, 0x2, 0xffffffffffffff96, 0x5, 0x9}, &(0x7f0000000200)={0x5, 0xbfbc, 0x0, 0x670, 0x80000000, 0x5, 0x6, 0x100000001}, &(0x7f0000000280)={r0, r1+10000000}, &(0x7f0000000300)={&(0x7f00000002c0)={[0xffffffffffffff80]}, 0x8}) pselect6(0x40, &(0x7f0000000000)={0x80, 0x7fffffff, 0x1000, 0x7, 0xffff, 0xff, 0x9, 0x826}, &(0x7f0000000040)={0x2, 0xa9a, 0x9, 0x6, 0x20, 0x8001, 0x2, 0x2}, &(0x7f0000000080)={0x3, 0x20000, 0x2, 0x7, 0x80000001, 0x3, 0xffffffffffffa586, 0x3}, &(0x7f00000000c0)={0x77359400}, &(0x7f0000000140)={&(0x7f0000000100)={[0xe000000]}, 0x8}) [ 925.406261] loop6: detected capacity change from 0 to 32768 00:15:25 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 41) [ 925.464840] FAT-fs (loop6): bogus number of FAT sectors [ 925.466089] FAT-fs (loop6): Can't find a valid FAT filesystem [ 925.516459] FAULT_INJECTION: forcing a failure. [ 925.516459] name failslab, interval 1, probability 0, space 0, times 0 [ 925.518865] CPU: 0 PID: 7067 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 925.520323] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 925.522064] Call Trace: [ 925.522629] dump_stack+0x107/0x167 [ 925.523406] should_fail.cold+0x5/0xa [ 925.524213] ? xas_alloc+0x336/0x440 [ 925.524992] should_failslab+0x5/0x20 [ 925.525794] kmem_cache_alloc+0x5b/0x310 [ 925.526650] xas_alloc+0x336/0x440 [ 925.527410] xas_create+0x34a/0x10d0 [ 925.528203] ? kernel_text_address+0xf2/0x120 [ 925.529149] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 925.530229] xas_store+0x8c/0x1c40 [ 925.530978] __xa_store+0x164/0x2d0 [ 925.531735] ? xa_delete_node+0x280/0x280 [ 925.532601] ? trace_hardirqs_on+0x5b/0x180 [ 925.533482] xa_store+0x31/0x50 [ 925.534156] __io_uring_add_tctx_node+0x1cf/0x520 [ 925.535168] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 925.536280] ? alloc_fd+0x2e7/0x670 [ 925.537075] io_uring_setup+0x1fbb/0x2980 [ 925.537974] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 925.539066] ? wait_for_completion_io+0x270/0x270 [ 925.540132] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 925.541258] ? syscall_enter_from_user_mode+0x1d/0x50 [ 925.542368] do_syscall_64+0x33/0x40 [ 925.543168] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 925.544276] RIP: 0033:0x7fcf423d9b19 [ 925.545072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 925.549050] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 925.550690] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 925.552238] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 925.553777] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 925.555316] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 925.556861] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:15:39 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) 00:15:39 executing program 2: r0 = semget$private(0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:15:39 executing program 7: r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x4) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000600)=ANY=[@ANYBLOB="010000000100000018000000e1305a145707a5ffd768f82ca1b6903501f7d46d77d1eecc3d87222d8942582035c78b4bb0d6b62f09d680849ff78f15f58a7a03f145a74aa715da642e00a2f18b22e3308d8c2cef5239f951aeeb5f30c1b8796f2e84aabfb7d6adf8d2bf5058266e8e67eaae3b", @ANYRES32=r0, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="2ea611b169578ff982c297b3fe47679c0766696c653100"]) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r1) r4 = socket$nl_generic(0x10, 0x3, 0x10) dup(r2) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r6, @ANYBLOB='\b\x00?'], 0x24}}, 0x0) r7 = fcntl$dupfd(r4, 0x406, 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_INTERFACE(r2, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f0000000500)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="04002abd700002000000000000000c00990040000000300000008ac6f0ec595364a611924e6adb58623134f9c5c4eb3a489e37db7f8e6c365dd808c8f5a30ee08972a7d938f4d65e1b4815824ef0dbc15124bc6016010813f550793a9c13a22e11ee6cc13539a0dcbf1cb65abfbcbdf8cd036b11081239838fe3f5b1c91d3bd845741995589ecbbfd924723da3a178450fcef23f937a8e57a971528561f671077cbcd957a9dd1a59d99d096b5daec630db188ea55acbcf04c349595b0cda18972e46c86e9f269ffe1ebc8884c21e56e70b65ab31"], 0x20}, 0x1, 0x0, 0x0, 0x44024}, 0x800) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000001440)={{}, 0x0, 0x2, @unused=[0x1], @name="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"}) ioctl$FS_IOC_SETFSLABEL(r1, 0x41009432, &(0x7f0000000280)="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") socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), r7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10000000000000, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@lazytime}, {@jqfmt_vfsold}]}) 00:15:39 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:15:39 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x3, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:15:39 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f80000200040000300000000000000", 0x24}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}, {@rodir}]}) [ 940.139065] FAULT_INJECTION: forcing a failure. [ 940.139065] name failslab, interval 1, probability 0, space 0, times 0 [ 940.141776] CPU: 0 PID: 7082 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 940.143341] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 940.145267] Call Trace: [ 940.145378] loop6: detected capacity change from 0 to 32768 [ 940.145883] dump_stack+0x107/0x167 [ 940.147975] should_fail.cold+0x5/0xa [ 940.148864] ? create_object.isra.0+0x3a/0xa30 [ 940.149929] should_failslab+0x5/0x20 [ 940.150341] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7081 comm=syz-executor.7 [ 940.150821] kmem_cache_alloc+0x5b/0x310 [ 940.150850] ? mark_held_locks+0x9e/0xe0 [ 940.155260] create_object.isra.0+0x3a/0xa30 [ 940.156205] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 940.157277] kmem_cache_alloc+0x159/0x310 [ 940.158160] xas_alloc+0x336/0x440 [ 940.158908] xas_create+0x34a/0x10d0 [ 940.159709] ? kernel_text_address+0xf2/0x120 [ 940.160652] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 940.161757] xas_store+0x8c/0x1c40 [ 940.162534] __xa_store+0x164/0x2d0 [ 940.163301] ? xa_delete_node+0x280/0x280 [ 940.164185] ? trace_hardirqs_on+0x5b/0x180 [ 940.165103] xa_store+0x31/0x50 [ 940.165813] __io_uring_add_tctx_node+0x1cf/0x520 [ 940.166832] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 940.167957] ? alloc_fd+0x2e7/0x670 [ 940.168741] io_uring_setup+0x1fbb/0x2980 [ 940.169621] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 940.170683] ? wait_for_completion_io+0x270/0x270 [ 940.171725] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 940.172830] ? syscall_enter_from_user_mode+0x1d/0x50 [ 940.173914] do_syscall_64+0x33/0x40 [ 940.174697] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 940.175777] RIP: 0033:0x7fcf423d9b19 [ 940.176561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 940.180432] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 940.182035] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 940.183531] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 00:15:40 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 42) 00:15:40 executing program 1: [ 940.185035] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="ed41000000080000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000ba56a6e5000000000000000000000000000000000000000000000000ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000006000000000000000000000000000000000000000000000000000000000000000000000000000000078ce27cf000000000000000000000000000000000000000000000000ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3837363538343334302f66696c65302f66696c653000000000000000000000000000000000000000000000ee3520d6000000000000000000000000000000000000000000000000ed8100000a000000e1f4655fe1f4655fe1f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000070000000000000000000000000000000000000000000000000000000000000000000000000000000070f9333800000000000000000000000000000000000000000000000ed81000028230000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000090000000000000000000000000000000000000000000000000000000000000000000000000000000a9530bd8000000000000000000000000000000000000000000000000ed81000064000000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000a1aee7ad00"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) [ 940.186796] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 940.188371] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 940.203758] loop1: detected capacity change from 0 to 1048576 [ 940.211621] FAT-fs (loop6): bogus number of FAT sectors [ 940.212839] FAT-fs (loop6): Can't find a valid FAT filesystem 00:15:40 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) [ 940.221995] loop7: detected capacity change from 0 to 135266304 [ 940.240229] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities 00:15:40 executing program 2: r0 = semget$private(0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:15:40 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) [ 940.284925] loop1: detected capacity change from 0 to 1048576 00:15:40 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x4, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:15:40 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 43) [ 940.328238] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 940.337794] EXT4-fs (loop7): mounted filesystem without journal. Opts: lazytime,jqfmt=vfsold,,errors=continue 00:15:40 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, 0x0) 00:15:40 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) [ 940.382523] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=7104 comm=syz-executor.7 [ 940.430006] loop6: detected capacity change from 0 to 32768 [ 940.446377] FAULT_INJECTION: forcing a failure. [ 940.446377] name failslab, interval 1, probability 0, space 0, times 0 [ 940.448831] CPU: 0 PID: 7111 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 940.450271] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 940.452023] Call Trace: [ 940.452581] dump_stack+0x107/0x167 [ 940.453351] should_fail.cold+0x5/0xa [ 940.454147] ? xas_alloc+0x336/0x440 [ 940.454930] should_failslab+0x5/0x20 [ 940.455732] kmem_cache_alloc+0x5b/0x310 [ 940.456589] xas_alloc+0x336/0x440 [ 940.457360] xas_create+0x34a/0x10d0 [ 940.458153] ? kernel_text_address+0xf2/0x120 [ 940.459123] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 940.460263] xas_store+0x8c/0x1c40 [ 940.461048] __xa_store+0x164/0x2d0 [ 940.461838] ? xa_delete_node+0x280/0x280 [ 940.462746] ? trace_hardirqs_on+0x5b/0x180 [ 940.463695] xa_store+0x31/0x50 [ 940.464411] __io_uring_add_tctx_node+0x1cf/0x520 [ 940.465450] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 940.466580] ? alloc_fd+0x2e7/0x670 [ 940.467378] io_uring_setup+0x1fbb/0x2980 [ 940.468291] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 940.469381] ? wait_for_completion_io+0x270/0x270 [ 940.470442] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 940.471580] ? syscall_enter_from_user_mode+0x1d/0x50 [ 940.472699] do_syscall_64+0x33/0x40 [ 940.473502] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 940.474605] RIP: 0033:0x7fcf423d9b19 [ 940.475408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 940.479392] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 940.481044] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 940.482587] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 940.484140] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 940.485681] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 940.487222] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 955.141361] FAULT_INJECTION: forcing a failure. [ 955.141361] name failslab, interval 1, probability 0, space 0, times 0 [ 955.143861] CPU: 0 PID: 7125 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 955.145352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 955.147213] Call Trace: [ 955.147809] dump_stack+0x107/0x167 [ 955.148608] should_fail.cold+0x5/0xa [ 955.149435] ? create_object.isra.0+0x3a/0xa30 [ 955.150427] should_failslab+0x5/0x20 [ 955.151255] kmem_cache_alloc+0x5b/0x310 [ 955.152147] ? mark_held_locks+0x9e/0xe0 [ 955.153034] create_object.isra.0+0x3a/0xa30 [ 955.153991] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 955.155097] kmem_cache_alloc+0x159/0x310 [ 955.156014] xas_alloc+0x336/0x440 [ 955.156794] xas_create+0x34a/0x10d0 [ 955.157614] ? queued_spin_lock_slowpath+0xcc/0x8c0 [ 955.158702] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 955.159852] xas_store+0x8c/0x1c40 [ 955.160640] __xa_store+0x164/0x2d0 [ 955.161430] ? xa_delete_node+0x280/0x280 [ 955.162334] ? trace_hardirqs_on+0x5b/0x180 [ 955.163274] xa_store+0x31/0x50 [ 955.164001] __io_uring_add_tctx_node+0x1cf/0x520 [ 955.165044] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 955.166180] ? alloc_fd+0x2e7/0x670 [ 955.166977] io_uring_setup+0x1fbb/0x2980 [ 955.167892] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 955.168987] ? wait_for_completion_io+0x270/0x270 [ 955.170058] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 955.171193] ? syscall_enter_from_user_mode+0x1d/0x50 [ 955.172328] do_syscall_64+0x33/0x40 [ 955.173134] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 955.174243] RIP: 0033:0x7fcf423d9b19 [ 955.175044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 955.179051] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 955.180703] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 955.182252] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 955.183802] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 955.185344] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 955.186882] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 955.213618] loop1: detected capacity change from 0 to 1048576 00:15:55 executing program 2: r0 = semget$private(0x0, 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:15:55 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:15:55 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 44) 00:15:55 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, 0x0) 00:15:55 executing program 0: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:15:55 executing program 7: perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0xe9, 0xfa, 0x1, 0x6, 0x0, 0x7fffffff, 0x0, 0x9, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_bp={&(0x7f0000000000), 0x8}, 0x10080, 0x5, 0x800, 0x3, 0x7, 0xfffffffb, 0x8001, 0x0, 0x4, 0x0, 0x1}, 0xffffffffffffffff, 0xd, 0xffffffffffffffff, 0x2) setpriority(0x0, 0xffffffffffffffff, 0x5) r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8004204}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000003500040027bd7000ffdbdf25170000009a1299d60522c86a426418ed0cb951bfcfa2cd12884547a020cab815f815aa16094c83f9674816bf0c240e46ef3e4a4456f105ba18d479cb2856d4a9168d17e326a39231c6f76a6cf355230828a539ce709ebd7494c0e72830a0b9bb211281c6d88feaf7006a9bff6210bb3a02ed46e4fa78cfca31c1b0fae5"], 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x10) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f0000000280)={0x7ff, 0x7, 0x0, 0x800}, 0x10) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffa}, 0x90200, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getdents64(0xffffffffffffffff, &(0x7f00000007c0)=""/180, 0x200007d8) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x482, &(0x7f0000000340)=""/130, &(0x7f0000000100)=0x82) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) unlinkat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0) unshare(0x48020200) 00:15:55 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x5, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:15:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="ed41000000080000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000ba56a6e5000000000000000000000000000000000000000000000000ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000006000000000000000000000000000000000000000000000000000000000000000000000000000000078ce27cf000000000000000000000000000000000000000000000000ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3837363538343334302f66696c65302f66696c653000000000000000000000000000000000000000000000ee3520d6000000000000000000000000000000000000000000000000ed8100000a000000e1f4655fe1f4655fe1f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000070000000000000000000000000000000000000000000000000000000000000000000000000000000070f9333800000000000000000000000000000000000000000000000ed81000028230000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000090000000000000000000000000000000000000000000000000000000000000000000000000000000a9530bd8000000000000000000000000000000000000000000000000ed81000064000000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000a1aee7ad00"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) [ 955.226724] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 955.228415] loop7: detected capacity change from 0 to 33559552 00:15:55 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, 0x0) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)) [ 955.233691] loop6: detected capacity change from 0 to 32768 [ 955.251917] FAT-fs (loop7): Unrecognized mount option "" or missing value 00:15:55 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) 00:15:55 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x6, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:15:55 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, 0x0) 00:15:55 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, 0x0) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)) 00:15:55 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) [ 955.405058] loop6: detected capacity change from 0 to 32768 00:15:55 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 45) [ 955.427041] loop1: detected capacity change from 0 to 1048576 [ 955.451405] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities 00:15:55 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}, {@shortname_lower}]}) [ 955.538496] loop6: detected capacity change from 0 to 32768 [ 955.542788] FAULT_INJECTION: forcing a failure. [ 955.542788] name failslab, interval 1, probability 0, space 0, times 0 [ 955.545480] CPU: 0 PID: 7163 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 955.546970] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 955.548769] Call Trace: [ 955.549078] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 955.549344] dump_stack+0x107/0x167 [ 955.549374] should_fail.cold+0x5/0xa [ 955.552728] ? create_object.isra.0+0x3a/0xa30 [ 955.553726] should_failslab+0x5/0x20 [ 955.554547] kmem_cache_alloc+0x5b/0x310 [ 955.555430] ? mark_held_locks+0x9e/0xe0 [ 955.556316] create_object.isra.0+0x3a/0xa30 [ 955.557261] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 955.558365] kmem_cache_alloc+0x159/0x310 [ 955.559268] xas_alloc+0x336/0x440 [ 955.560047] xas_create+0x34a/0x10d0 [ 955.560862] ? kernel_text_address+0xf2/0x120 [ 955.561834] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 955.562974] xas_store+0x8c/0x1c40 [ 955.563767] __xa_store+0x164/0x2d0 [ 955.564561] ? xa_delete_node+0x280/0x280 [ 955.565468] ? trace_hardirqs_on+0x5b/0x180 [ 955.566407] xa_store+0x31/0x50 [ 955.567122] __io_uring_add_tctx_node+0x1cf/0x520 [ 955.568228] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 955.569367] ? alloc_fd+0x2e7/0x670 [ 955.570167] io_uring_setup+0x1fbb/0x2980 [ 955.571070] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 955.572176] ? wait_for_completion_io+0x270/0x270 [ 955.573236] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 955.574371] ? syscall_enter_from_user_mode+0x1d/0x50 [ 955.575485] do_syscall_64+0x33/0x40 [ 955.576294] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 955.577403] RIP: 0033:0x7fcf423d9b19 [ 955.578208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 955.582209] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 955.583874] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 955.585421] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 955.586967] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 955.588522] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 955.590067] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 955.624458] loop7: detected capacity change from 0 to 33559552 [ 955.645990] FAT-fs (loop7): Unrecognized mount option "" or missing value [ 972.344603] loop1: detected capacity change from 0 to 1048576 00:16:12 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x0, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:16:12 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x7, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:16:12 executing program 7: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x38, 0x2, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = dup2(r1, r2) r4 = socket$packet(0x11, 0x3, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000040)={r6, 0x1, 0x6, @broadcast}, 0x10) r7 = socket$packet(0x11, 0x3, 0x300) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000040)={r9, 0x1, 0x6, @broadcast}, 0x10) r10 = socket$packet(0x11, 0x3, 0x300) r11 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r10, 0x107, 0x1, &(0x7f0000000040)={r12, 0x1, 0x6, @broadcast}, 0x10) sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000014c0)={&(0x7f0000001540)=ANY=[@ANYBLOB='p\n\x00\x00', @ANYRES16=0x0, @ANYBLOB="040025bd7000ffdbdf250300000008000100", @ANYRES32=0x0, @ANYBLOB="3c00028038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004000200000008000100", @ANYRES32=0x0, @ANYBLOB="38010280400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000400000008000600", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b00000008000400040000000800070000000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000600000008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006c625f73746174735f726566726573685f696e74657276616c000000000000000500030003000000080004000100000008000100", @ANYRES32=0x0, @ANYBLOB="6c0102803c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400ff000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004000900000008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f686173685f737461747300000000000000000000000000000000000000050003000b000000080004000300000008000700000000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="3c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="b80002803c00010024000100757365725f6c696e6b757000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004000080000040000100240001006d6f64650000000000000000000000000000000000000000000000000000000005000300050000000e00040062726f61646361737400000008000100", @ANYRES32=0x0, @ANYBLOB="b800028038000100240001006c625f73746174735f726566726573685f696e74657276616c000000000000000500030003000000080004000500000038000100240001006e6f746966795f70656572735f636f756e740000000000000000000000000000050003000300000008000400ffffff7f44000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b00000014000400020001c0f7ffffff0800073fff0f000008000100", @ANYRES32=0x0, @ANYBLOB="a801028038000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004000600000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="080007000000000038000100240001006d636173745f72656a6f696e5f636f756e740000000000000000000000000000050003000300000008000400030000003c00010024000100757365725f6c696e6b75705f656e61626c65640000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB="40000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="080007000000000038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004001f00000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="080007000000000008000100", @ANYRES32=0x0, @ANYBLOB="3401028038000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004000100008040000100240001006c625f706f72745f737461747300000000000000000000000000000000000000050003000b000000080004000010000008000600", @ANYRES32=r6, @ANYBLOB="04000000004000006c625f74785f68617368f2f13e54bd9dd95dbb5fc4e45f746f5f706f72000a1b4ffbb0180837c9bd0000000000000000000000000000b21183a2046a73eeca31f2d671ef9eac756c509ef82dea82fa1b4dddc4c54190e58f172a6cab85aa64dff04d22c1f1d7692aa9411960cdf7c7d2a44365cfa4bc51441330f59e4ba51b559b35a60fdf16d72a95c1608ddb66bcaf1fea10e89a18e710a0c92efcbf86fa07b6f08d9cce", @ANYRES32=0x0, @ANYBLOB="0800070000000000400001002400010071756575655f69640000000000000000000000000000000000000000000000000500030003000000080004001f00000008000600", @ANYRES32=r9, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f636f756e7400000000000000000000000000000500030003000000080004000600000008000100", @ANYRES32=0x0, @ANYBLOB="3402028040000100240001006d6f64650000000000000000000000000000000000000000000000000000000005000300050000000f000400726f756e64726f62696e000040000100240001006c625f74785f686173685f746f5f706f72745f6d617070696e67000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB="38000100240001006d636173745f72656a6f696e5f696e74657276616c00000000000000000000000500030003000000080004002c2b9a0438000100240001006c625f73746174735f726566726573685f696e74657276616c000000000000000500030003000000080004000000000040000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e00000008000400b200000008000600", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r12, @ANYBLOB="b400028074000100240001006270665f686173685f66756e6300000000000000000000000000000000000000050003000b00000044000400000020c1ffffffff0600c53f030000008000010681000000ffff08ff070000000900080100000000faff00020700000002006e010700000000801f05d80100003c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=0x0, @ANYBLOB], 0xa70}, 0x1, 0x0, 0x0, 0x20040090}, 0x24040000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r3, 0x8000000) sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000040)={&(0x7f0000000240)={0x148, 0x0, 0x1, 0x3, 0x0, 0x0, {}, [@CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x4}, @CTA_SEQ_ADJ_REPLY={0x44, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x3f}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x18}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0xe3d5}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x81}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6ff}]}, @CTA_PROTOINFO={0x10, 0x4, 0x0, 0x1, @CTA_PROTOINFO_TCP={0xc, 0x1, 0x0, 0x1, [@CTA_PROTOINFO_TCP_WSCALE_REPLY={0x5, 0x3, 0x40}]}}, @CTA_PROTOINFO={0x48, 0x4, 0x0, 0x1, @CTA_PROTOINFO_TCP={0x44, 0x1, 0x0, 0x1, [@CTA_PROTOINFO_TCP_FLAGS_ORIGINAL={0x6, 0x4, {0x80, 0x39}}, @CTA_PROTOINFO_TCP_WSCALE_ORIGINAL={0x5, 0x2, 0x2}, @CTA_PROTOINFO_TCP_FLAGS_REPLY={0x6, 0x5, {0x3f, 0x5}}, @CTA_PROTOINFO_TCP_FLAGS_ORIGINAL={0x6, 0x4, {0x8, 0x40}}, @CTA_PROTOINFO_TCP_WSCALE_REPLY={0x5, 0x3, 0xe4}, @CTA_PROTOINFO_TCP_FLAGS_REPLY={0x6, 0x5, {0x4, 0x93}}, @CTA_PROTOINFO_TCP_FLAGS_REPLY={0x6, 0x5, {0x3f, 0x3}}, @CTA_PROTOINFO_TCP_FLAGS_REPLY={0x6, 0x5, {0x9, 0x8}}]}}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, @CTA_HELP={0x14, 0x5, 0x0, 0x1, {0xe, 0x1, 'irc-20000\x00'}}, @CTA_TUPLE_MASTER={0x64, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @private0}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}]}, 0x148}, 0x1, 0x0, 0x0, 0x840}, 0x40) 00:16:12 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="ed41000000080000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000ba56a6e5000000000000000000000000000000000000000000000000ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000006000000000000000000000000000000000000000000000000000000000000000000000000000000078ce27cf000000000000000000000000000000000000000000000000ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3837363538343334302f66696c65302f66696c653000000000000000000000000000000000000000000000ee3520d6000000000000000000000000000000000000000000000000ed8100000a000000e1f4655fe1f4655fe1f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000070000000000000000000000000000000000000000000000000000000000000000000000000000000070f9333800000000000000000000000000000000000000000000000ed81000028230000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000090000000000000000000000000000000000000000000000000000000000000000000000000000000a9530bd8000000000000000000000000000000000000000000000000ed81000064000000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000a1aee7ad00"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) 00:16:12 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, 0x0) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)) 00:16:12 executing program 0: socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:16:12 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}]}) 00:16:12 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 46) [ 972.355797] FAULT_INJECTION: forcing a failure. [ 972.355797] name failslab, interval 1, probability 0, space 0, times 0 [ 972.358535] CPU: 1 PID: 7189 Comm: syz-executor.5 Not tainted 5.10.246 #1 00:16:12 executing program 0: socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) [ 972.359998] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 972.361871] Call Trace: [ 972.362433] dump_stack+0x107/0x167 [ 972.363200] should_fail.cold+0x5/0xa [ 972.364012] ? create_object.isra.0+0x3a/0xa30 [ 972.364970] should_failslab+0x5/0x20 [ 972.365772] kmem_cache_alloc+0x5b/0x310 [ 972.366629] ? mark_held_locks+0x9e/0xe0 [ 972.367486] create_object.isra.0+0x3a/0xa30 [ 972.368418] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 972.369492] kmem_cache_alloc+0x159/0x310 [ 972.370369] xas_alloc+0x336/0x440 [ 972.371120] xas_create+0x34a/0x10d0 [ 972.371925] ? kernel_text_address+0xf2/0x120 [ 972.372869] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 972.373973] xas_store+0x8c/0x1c40 [ 972.374735] __xa_store+0x164/0x2d0 [ 972.375507] ? xa_delete_node+0x280/0x280 [ 972.376393] ? trace_hardirqs_on+0x5b/0x180 [ 972.377308] xa_store+0x31/0x50 [ 972.378005] __io_uring_add_tctx_node+0x1cf/0x520 [ 972.379021] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 972.380130] ? alloc_fd+0x2e7/0x670 [ 972.380906] io_uring_setup+0x1fbb/0x2980 [ 972.381785] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 972.382848] ? wait_for_completion_io+0x270/0x270 [ 972.383882] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 972.384993] ? syscall_enter_from_user_mode+0x1d/0x50 [ 972.386079] do_syscall_64+0x33/0x40 [ 972.386859] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 972.387940] RIP: 0033:0x7fcf423d9b19 [ 972.388721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 972.392596] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 972.394193] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 972.395688] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 972.397200] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 972.398698] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 972.400204] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 972.422432] loop6: detected capacity change from 0 to 32768 [ 972.426565] device lo entered promiscuous mode [ 972.432453] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities 00:16:12 executing program 2: semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(0x0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r0, r1+60000000}) [ 972.452615] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 972.459944] device lo left promiscuous mode 00:16:12 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="ed41000000080000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000ba56a6e5000000000000000000000000000000000000000000000000ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000006000000000000000000000000000000000000000000000000000000000000000000000000000000078ce27cf000000000000000000000000000000000000000000000000ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3837363538343334302f66696c65302f66696c653000000000000000000000000000000000000000000000ee3520d6000000000000000000000000000000000000000000000000ed8100000a000000e1f4655fe1f4655fe1f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000070000000000000000000000000000000000000000000000000000000000000000000000000000000070f9333800000000000000000000000000000000000000000000000ed81000028230000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000090000000000000000000000000000000000000000000000000000000000000000000000000000000a9530bd8000000000000000000000000000000000000000000000000ed81000064000000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000a1aee7ad00"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) 00:16:12 executing program 7: r0 = socket$netlink(0x10, 0x3, 0xc) sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000016580)={0x0, 0x0, &(0x7f0000016540)={&(0x7f0000000040)={0x18, 0x0, 0x0, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_HEADER={0x4}]}, 0x18}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=@newsa={0xf0, 0x10, 0x0, 0x0, 0x0, {{@in6=@loopback, @in=@multicast1}, {@in6=@dev, 0x4d3}, @in=@multicast2}}, 0xf0}}, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r1, r2) ioctl$BTRFS_IOC_START_SYNC(r2, 0x80089418, &(0x7f0000000000)) 00:16:12 executing program 0: socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:16:12 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 47) 00:16:12 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x8, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:16:12 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}]}) [ 972.599420] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.7'. [ 972.603021] loop1: detected capacity change from 0 to 1048576 [ 972.622659] FAULT_INJECTION: forcing a failure. [ 972.622659] name failslab, interval 1, probability 0, space 0, times 0 [ 972.624335] CPU: 0 PID: 7215 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 972.625442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 972.626764] Call Trace: [ 972.627201] dump_stack+0x107/0x167 [ 972.627786] should_fail.cold+0x5/0xa [ 972.628420] ? xas_alloc+0x336/0x440 [ 972.629026] should_failslab+0x5/0x20 [ 972.629645] kmem_cache_alloc+0x5b/0x310 [ 972.630304] xas_alloc+0x336/0x440 [ 972.630879] xas_create+0x34a/0x10d0 [ 972.631486] ? kernel_text_address+0xf2/0x120 [ 972.632224] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 972.633075] xas_store+0x8c/0x1c40 [ 972.633669] __xa_store+0x164/0x2d0 [ 972.634260] ? xa_delete_node+0x280/0x280 [ 972.634944] ? trace_hardirqs_on+0x5b/0x180 [ 972.635651] xa_store+0x31/0x50 [ 972.636198] __io_uring_add_tctx_node+0x1cf/0x520 [ 972.636976] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 972.637821] ? alloc_fd+0x2e7/0x670 [ 972.638419] io_uring_setup+0x1fbb/0x2980 [ 972.639085] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 972.639908] ? wait_for_completion_io+0x270/0x270 [ 972.640704] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 972.641544] ? syscall_enter_from_user_mode+0x1d/0x50 [ 972.642363] do_syscall_64+0x33/0x40 [ 972.642956] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 972.643770] RIP: 0033:0x7fcf423d9b19 [ 972.644366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 972.647298] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 972.648518] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 972.649403] loop6: detected capacity change from 0 to 32768 [ 972.649646] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 972.649656] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 972.649673] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 972.654277] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 972.656429] netlink: 220 bytes leftover after parsing attributes in process `syz-executor.7'. [ 972.657792] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 00:16:25 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x10, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:16:25 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x0, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:16:25 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 48) 00:16:25 executing program 2: semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(0x0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r0, r1+60000000}) 00:16:25 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_win95}]}) 00:16:25 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x0) pwrite64(r1, &(0x7f00000000c0)="a3", 0x1, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, r0, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = dup2(r2, r3) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r4, 0x8000000) r5 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r6 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) dup2(r5, r6) clock_gettime(0x0, &(0x7f0000003800)={0x0, 0x0}) recvmmsg(r1, &(0x7f0000003600)=[{{&(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000080)=""/43, 0x2b}], 0x1, &(0x7f0000000200)=""/207, 0xcf}, 0x8}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000300)=""/161, 0xa1}, {&(0x7f00000003c0)=""/99, 0x63}, {&(0x7f0000000440)=""/113, 0x71}, {&(0x7f00000004c0)=""/197, 0xc5}, {&(0x7f00000005c0)=""/207, 0xcf}, {&(0x7f00000038c0)=""/197, 0xc5}, {&(0x7f00000007c0)=""/220, 0xdc}], 0x7, &(0x7f0000000940)=""/14, 0xe}, 0x8}, {{&(0x7f0000000980)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev}}}, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000a00)=""/83, 0x53}, {&(0x7f0000000a80)=""/208, 0xd0}, {&(0x7f0000000b80)=""/234, 0xea}], 0x3, &(0x7f0000000cc0)=""/167, 0xa7}, 0xb84}, {{&(0x7f0000000d80)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, &(0x7f00000010c0)=[{&(0x7f0000000e00)=""/214, 0xd6}, {&(0x7f0000000f00)=""/46, 0x2e}, {&(0x7f0000000f40)=""/119, 0x77}, {&(0x7f0000000fc0)=""/197, 0xc5}, {&(0x7f0000001e00)=""/4096, 0x1000}], 0x5, &(0x7f0000001140)=""/239, 0xef}, 0x8}, {{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f0000001240)=""/224, 0xe0}, {&(0x7f0000001340)=""/240, 0xf0}, {&(0x7f0000001440)=""/126, 0x7e}, {&(0x7f00000014c0)=""/136, 0x88}, {&(0x7f0000001580)=""/222, 0xde}, {&(0x7f0000001680)=""/201, 0xc9}, {&(0x7f0000001780)=""/190, 0xbe}, {&(0x7f0000001840)=""/148, 0x94}, {&(0x7f0000001900)=""/99, 0x63}], 0x9, &(0x7f0000001a40)=""/236, 0xec}}, {{&(0x7f0000001b40)=@sco, 0x80, &(0x7f0000002f80)=[{&(0x7f0000001bc0)=""/83, 0x53}, {&(0x7f0000001c40)=""/124, 0x7c}, {&(0x7f0000002e00)=""/208, 0xd0}, {&(0x7f0000001cc0)=""/151, 0x97}, {&(0x7f0000002f00)=""/100, 0x64}], 0x5, &(0x7f0000003000)=""/15, 0xf}, 0xffff8001}, {{&(0x7f0000003040)=@tipc, 0x80, &(0x7f0000003140)=[{&(0x7f00000030c0)=""/120, 0x78}], 0x1, &(0x7f0000003180)=""/143, 0x8f}, 0x1}, {{&(0x7f0000003240)=@pppoe={0x18, 0x0, {0x0, @multicast}}, 0x80, &(0x7f0000003540)=[{&(0x7f00000032c0)=""/102, 0x66}, {&(0x7f0000003340)=""/52, 0x34}, {&(0x7f0000003380)=""/35, 0x23}, {&(0x7f00000033c0)=""/109, 0x6d}, {&(0x7f0000003440)=""/88, 0x58}, {&(0x7f00000034c0)=""/110, 0x6e}], 0x6, &(0x7f00000035c0)=""/5, 0x5}, 0x5}], 0x8, 0x1, &(0x7f0000003840)={r7, r8+60000000}) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f0000003880)={{0x1, 0x1, 0x18, r6, {r9}}, './file1\x00'}) 00:16:25 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:16:25 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) [ 985.907093] FAULT_INJECTION: forcing a failure. [ 985.907093] name failslab, interval 1, probability 0, space 0, times 0 [ 985.908476] CPU: 1 PID: 7233 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 985.909325] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 985.910309] Call Trace: [ 985.910695] dump_stack+0x107/0x167 [ 985.910989] loop6: detected capacity change from 0 to 32768 [ 985.911147] should_fail.cold+0x5/0xa [ 985.911163] ? create_object.isra.0+0x3a/0xa30 [ 985.911173] should_failslab+0x5/0x20 [ 985.911185] kmem_cache_alloc+0x5b/0x310 [ 985.911197] ? mark_held_locks+0x9e/0xe0 [ 985.911216] create_object.isra.0+0x3a/0xa30 [ 985.915569] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 985.916258] kmem_cache_alloc+0x159/0x310 [ 985.916791] xas_alloc+0x336/0x440 [ 985.917271] xas_create+0x34a/0x10d0 [ 985.917715] ? kernel_text_address+0xf2/0x120 [ 985.918246] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 985.918865] xas_store+0x8c/0x1c40 [ 985.919279] __xa_store+0x164/0x2d0 [ 985.919691] ? xa_delete_node+0x280/0x280 [ 985.920185] ? trace_hardirqs_on+0x5b/0x180 [ 985.920697] xa_store+0x31/0x50 [ 985.921141] __io_uring_add_tctx_node+0x1cf/0x520 [ 985.921693] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 985.922385] ? alloc_fd+0x2e7/0x670 [ 985.922874] io_uring_setup+0x1fbb/0x2980 [ 985.923372] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 985.924017] ? wait_for_completion_io+0x270/0x270 [ 985.924608] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 985.925211] ? syscall_enter_from_user_mode+0x1d/0x50 [ 985.925818] do_syscall_64+0x33/0x40 [ 985.926262] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 985.926970] RIP: 0033:0x7fcf423d9b19 [ 985.927479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 985.930059] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 985.931113] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 985.932123] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 985.933117] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 985.934096] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 985.935073] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:16:25 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 49) 00:16:25 executing program 2: semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(0x0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x4, 0xffd1}], 0x3, &(0x7f0000000180)={r0, r1+60000000}) [ 985.993989] FAULT_INJECTION: forcing a failure. [ 985.993989] name failslab, interval 1, probability 0, space 0, times 0 [ 985.996773] CPU: 0 PID: 7246 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 985.998388] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 986.000324] Call Trace: [ 986.000942] dump_stack+0x107/0x167 [ 986.001797] should_fail.cold+0x5/0xa [ 986.002688] ? xas_alloc+0x336/0x440 [ 986.003545] should_failslab+0x5/0x20 [ 986.004440] kmem_cache_alloc+0x5b/0x310 [ 986.005388] xas_alloc+0x336/0x440 [ 986.006226] xas_create+0x34a/0x10d0 [ 986.007099] ? kernel_text_address+0xf2/0x120 [ 986.008152] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 986.009372] xas_store+0x8c/0x1c40 [ 986.010218] __xa_store+0x164/0x2d0 [ 986.011076] ? xa_delete_node+0x280/0x280 [ 986.012041] ? trace_hardirqs_on+0x5b/0x180 [ 986.013046] xa_store+0x31/0x50 [ 986.013816] __io_uring_add_tctx_node+0x1cf/0x520 [ 986.014929] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 986.016147] ? alloc_fd+0x2e7/0x670 [ 986.017005] io_uring_setup+0x1fbb/0x2980 [ 986.017976] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 986.019135] ? wait_for_completion_io+0x270/0x270 [ 986.020292] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.021532] ? syscall_enter_from_user_mode+0x1d/0x50 [ 986.022723] do_syscall_64+0x33/0x40 [ 986.023563] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 986.024741] RIP: 0033:0x7fcf423d9b19 [ 986.025596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 986.029800] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 986.031530] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 986.033154] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 986.034760] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 00:16:25 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) [ 986.036398] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 986.038184] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 986.052094] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 986.069263] loop1: detected capacity change from 0 to 1048576 00:16:25 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, 0x0, 0x0, &(0x7f0000000180)={r1, r2+60000000}) 00:16:25 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x2c, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:16:42 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:16:42 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, 0x0, 0x0, &(0x7f0000000180)={r1, r2+60000000}) 00:16:42 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@uni_xlateno}, {@shortname_lower}]}) 00:16:42 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 50) [ 1003.007529] loop6: detected capacity change from 0 to 32768 00:16:42 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x60, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:16:42 executing program 7: execve(0x0, 0x0, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0xc) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80000001}}, '\x00'}) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'}) 00:16:42 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) 00:16:42 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x0, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 1003.013578] FAULT_INJECTION: forcing a failure. [ 1003.013578] name failslab, interval 1, probability 0, space 0, times 0 [ 1003.015221] CPU: 1 PID: 7272 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1003.016166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1003.017380] Call Trace: [ 1003.017759] dump_stack+0x107/0x167 [ 1003.018273] should_fail.cold+0x5/0xa [ 1003.018813] ? create_object.isra.0+0x3a/0xa30 [ 1003.019451] should_failslab+0x5/0x20 [ 1003.019969] kmem_cache_alloc+0x5b/0x310 [ 1003.020556] ? mark_held_locks+0x9e/0xe0 [ 1003.021109] create_object.isra.0+0x3a/0xa30 [ 1003.021705] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1003.022403] kmem_cache_alloc+0x159/0x310 [ 1003.022976] xas_alloc+0x336/0x440 [ 1003.023462] xas_create+0x34a/0x10d0 [ 1003.023975] ? kernel_text_address+0xf2/0x120 [ 1003.024608] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1003.025326] xas_store+0x8c/0x1c40 [ 1003.025823] __xa_store+0x164/0x2d0 [ 1003.026322] ? xa_delete_node+0x280/0x280 [ 1003.026889] ? trace_hardirqs_on+0x5b/0x180 [ 1003.027487] xa_store+0x31/0x50 [ 1003.027946] __io_uring_add_tctx_node+0x1cf/0x520 [ 1003.028639] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1003.029365] ? alloc_fd+0x2e7/0x670 [ 1003.029874] io_uring_setup+0x1fbb/0x2980 [ 1003.030443] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1003.031131] ? wait_for_completion_io+0x270/0x270 [ 1003.031797] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1003.032543] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1003.033243] do_syscall_64+0x33/0x40 [ 1003.033754] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1003.034446] RIP: 0033:0x7fcf423d9b19 [ 1003.034947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1003.037461] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1003.038498] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1003.039476] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1003.040466] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1003.041424] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1003.042378] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1003.063680] loop1: detected capacity change from 0 to 1048576 [ 1003.082791] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 00:16:42 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040), 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:16:42 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, 0x0, 0x0, &(0x7f0000000180)={r1, r2+60000000}) 00:16:43 executing program 7: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000000c0)=ANY=[]) sendmsg$nl_generic(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001d00210c00000000fbdbe7250100020058e1f427ac228a56bc00c90f3fe64eaa1497d1c4f4df5ae2c0158ab966c0f846bab3690419306c10c4dbc57d0b91a0a89005ee18c339bf30575625bcfd9b5dcd52c532e97ffe59c32f0c7e67beee90fe9408fa96bf8d737b747035e19b0df6874fe61a7e8ece1898de5c236a4a9442b195be945b99b06fab0609"], 0x14}}, 0x20000850) setsockopt$inet6_udp_int(r0, 0x11, 0x65, &(0x7f0000000040)=0x6, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x1, 0x8, @mcast2, 0x5}, 0x1c) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffffffff}, 0x409becb7bdfc1d3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) 00:16:43 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x1f4, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:16:43 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', 0x0, 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) 00:16:43 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) 00:16:43 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 51) 00:16:43 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}], 0x2, &(0x7f0000000180)={r1, r2+60000000}) [ 1003.230867] FAULT_INJECTION: forcing a failure. [ 1003.230867] name failslab, interval 1, probability 0, space 0, times 0 [ 1003.232477] CPU: 1 PID: 7303 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1003.233365] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1003.234431] Call Trace: [ 1003.234773] dump_stack+0x107/0x167 [ 1003.235245] should_fail.cold+0x5/0xa [ 1003.235734] ? create_object.isra.0+0x3a/0xa30 [ 1003.236333] should_failslab+0x5/0x20 [ 1003.236825] kmem_cache_alloc+0x5b/0x310 [ 1003.237354] ? mark_held_locks+0x9e/0xe0 [ 1003.237875] create_object.isra.0+0x3a/0xa30 [ 1003.238445] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1003.239097] kmem_cache_alloc+0x159/0x310 [ 1003.239635] xas_alloc+0x336/0x440 [ 1003.240092] xas_create+0x34a/0x10d0 [ 1003.240598] ? kernel_text_address+0xf2/0x120 [ 1003.241175] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1003.241847] xas_store+0x8c/0x1c40 [ 1003.242312] __xa_store+0x164/0x2d0 [ 1003.242785] ? xa_delete_node+0x280/0x280 [ 1003.243320] ? trace_hardirqs_on+0x5b/0x180 [ 1003.243867] xa_store+0x31/0x50 [ 1003.244309] __io_uring_add_tctx_node+0x1cf/0x520 [ 1003.244936] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1003.245595] ? alloc_fd+0x2e7/0x670 [ 1003.246070] io_uring_setup+0x1fbb/0x2980 [ 1003.246610] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1003.247253] ? wait_for_completion_io+0x270/0x270 [ 1003.247879] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1003.248568] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1003.249221] do_syscall_64+0x33/0x40 [ 1003.249702] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1003.250358] RIP: 0033:0x7fcf423d9b19 [ 1003.250831] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1003.253185] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1003.254165] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1003.255065] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1003.255988] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1003.256919] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1003.257823] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1003.945220] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1003.953241] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 00:16:58 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040), 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:16:58 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) 00:16:58 executing program 7: semctl$SEM_INFO(0xffffffffffffffff, 0x1, 0x13, &(0x7f0000000880)=""/4096) r0 = perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) add_key$keyring(0x0, &(0x7f0000000400)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000001880)={0x3, 0x4, @status={[0x2, 0x1, 0x9, 0xffc]}, [0x38, 0x79, 0x1ff, 0x1, 0xfffffffffffff801, 0x7, 0x4, 0x7, 0xffffffffffffffff, 0x80, 0xffffffffffffffff, 0xfffffffffffffee7, 0x5, 0x0, 0x7, 0x1, 0x6, 0x2, 0x5, 0x7a, 0xfffffffffffffff8, 0x75, 0x1, 0x4, 0x1f4, 0x6, 0x80, 0x3, 0x7, 0x2, 0x3, 0x10001, 0x4, 0x8, 0x7, 0x0, 0x1, 0x383, 0x37, 0xfffffffffffffff9, 0xffffffff, 0x9, 0x7, 0x1, 0x7f, 0x100000000, 0xffff, 0x3, 0x100000000, 0x8, 0x5b, 0x2, 0x5b1, 0x200, 0x3, 0x4, 0x7, 0x8, 0xfff, 0x758, 0x6, 0x5, 0x3, 0x100]}) ioctl$KDGKBLED(r1, 0x4b64, &(0x7f0000000440)) add_key$keyring(&(0x7f0000000280), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x1}]}) r2 = add_key$fscrypt_v1(0x0, &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = dup2(0xffffffffffffffff, r3) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r4, 0x8000000) ioctl$GIO_CMAP(r4, 0x4b70, &(0x7f00000002c0)) keyctl$chown(0x4, r2, 0x0, 0x0) add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$KEYCTL_MOVE(0x1e, 0x0, r2, 0x0, 0x0) request_key(&(0x7f0000000100)='asymmetric\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000180)='\\&\\^+%))#7\x00', 0x0) socket$netlink(0x10, 0x3, 0x0) add_key$keyring(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff8) unshare(0x48020200) 00:16:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', 0x0, 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) 00:16:58 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}], 0x2, &(0x7f0000000180)={r1, r2+60000000}) 00:16:58 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x300, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:16:58 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 52) 00:16:58 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, 0x0, 0x0) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 1019.131403] FAULT_INJECTION: forcing a failure. [ 1019.131403] name failslab, interval 1, probability 0, space 0, times 0 [ 1019.133997] CPU: 1 PID: 7328 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1019.135476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1019.137355] Call Trace: [ 1019.137381] dump_stack+0x107/0x167 [ 1019.137402] should_fail.cold+0x5/0xa [ 1019.137422] ? create_object.isra.0+0x3a/0xa30 [ 1019.137439] should_failslab+0x5/0x20 [ 1019.137458] kmem_cache_alloc+0x5b/0x310 [ 1019.137477] ? mark_held_locks+0x9e/0xe0 [ 1019.137498] create_object.isra.0+0x3a/0xa30 00:16:59 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040), 0x0, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:16:59 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 53) [ 1019.137513] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1019.137537] kmem_cache_alloc+0x159/0x310 [ 1019.137561] xas_alloc+0x336/0x440 [ 1019.137582] xas_create+0x34a/0x10d0 [ 1019.137608] ? kernel_text_address+0xf2/0x120 [ 1019.137628] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1019.137648] xas_store+0x8c/0x1c40 [ 1019.137680] __xa_store+0x164/0x2d0 [ 1019.137701] ? xa_delete_node+0x280/0x280 00:16:59 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', 0x0, 0x100000, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) 00:16:59 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x3e8, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:16:59 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}], 0x2, &(0x7f0000000180)={r1, r2+60000000}) 00:16:59 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 1) 00:16:59 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 54) [ 1019.137726] ? trace_hardirqs_on+0x5b/0x180 [ 1019.137753] xa_store+0x31/0x50 [ 1019.137773] __io_uring_add_tctx_node+0x1cf/0x520 [ 1019.137792] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1019.137808] ? alloc_fd+0x2e7/0x670 [ 1019.137837] io_uring_setup+0x1fbb/0x2980 [ 1019.137863] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1019.137905] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1019.137924] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1019.137946] do_syscall_64+0x33/0x40 [ 1019.137964] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1019.137976] RIP: 0033:0x7fcf423d9b19 00:16:59 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea1", 0x2, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) [ 1019.137993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1019.138002] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1019.138021] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1019.138031] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1019.138041] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1019.138051] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1019.138061] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1019.140469] loop1: detected capacity change from 0 to 1048576 [ 1019.158002] loop6: detected capacity change from 0 to 32768 [ 1019.163835] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 1019.262815] FAULT_INJECTION: forcing a failure. [ 1019.262815] name failslab, interval 1, probability 0, space 0, times 0 [ 1019.262837] CPU: 0 PID: 7338 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1019.262846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1019.262853] Call Trace: [ 1019.262878] dump_stack+0x107/0x167 [ 1019.262901] should_fail.cold+0x5/0xa [ 1019.262923] ? create_object.isra.0+0x3a/0xa30 [ 1019.262941] should_failslab+0x5/0x20 [ 1019.262960] kmem_cache_alloc+0x5b/0x310 [ 1019.262980] ? mark_held_locks+0x9e/0xe0 [ 1019.263002] create_object.isra.0+0x3a/0xa30 [ 1019.263018] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1019.263043] kmem_cache_alloc+0x159/0x310 [ 1019.263068] xas_alloc+0x336/0x440 [ 1019.263090] xas_create+0x34a/0x10d0 [ 1019.263117] ? kernel_text_address+0xf2/0x120 [ 1019.263146] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1019.263167] xas_store+0x8c/0x1c40 [ 1019.263201] __xa_store+0x164/0x2d0 [ 1019.263222] ? xa_delete_node+0x280/0x280 [ 1019.263249] ? trace_hardirqs_on+0x5b/0x180 [ 1019.263275] xa_store+0x31/0x50 [ 1019.263297] __io_uring_add_tctx_node+0x1cf/0x520 [ 1019.263316] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1019.263333] ? alloc_fd+0x2e7/0x670 [ 1019.263363] io_uring_setup+0x1fbb/0x2980 [ 1019.263391] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1019.263407] ? wait_for_completion_io+0x270/0x270 [ 1019.263449] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1019.263469] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1019.263492] do_syscall_64+0x33/0x40 [ 1019.263511] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1019.263523] RIP: 0033:0x7fcf423d9b19 [ 1019.263540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1019.263550] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1019.263571] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1019.263581] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1019.263592] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1019.263602] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1019.263613] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1019.319049] FAULT_INJECTION: forcing a failure. [ 1019.319049] name failslab, interval 1, probability 0, space 0, times 0 [ 1019.319071] CPU: 0 PID: 7345 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1019.319080] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1019.319085] Call Trace: [ 1019.319111] dump_stack+0x107/0x167 [ 1019.319141] should_fail.cold+0x5/0xa [ 1019.319163] ? __do_sys_memfd_create+0xfb/0x450 [ 1019.319180] should_failslab+0x5/0x20 [ 1019.319198] __kmalloc+0x72/0x390 [ 1019.319221] __do_sys_memfd_create+0xfb/0x450 [ 1019.319236] ? ksys_write+0x1a9/0x260 [ 1019.319253] ? memfd_file_seals_ptr+0x170/0x170 [ 1019.319277] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1019.319297] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1019.319317] do_syscall_64+0x33/0x40 [ 1019.319336] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1019.319347] RIP: 0033:0x7fee45b4bb19 [ 1019.319362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1019.319372] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1019.319391] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1019.319401] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1019.319411] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1019.319421] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1019.319431] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 [ 1019.357658] loop1: detected capacity change from 0 to 1048576 [ 1019.379845] FAULT_INJECTION: forcing a failure. [ 1019.379845] name failslab, interval 1, probability 0, space 0, times 0 [ 1019.379865] CPU: 0 PID: 7352 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1019.379874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1019.379879] Call Trace: [ 1019.379901] dump_stack+0x107/0x167 [ 1019.379922] should_fail.cold+0x5/0xa [ 1019.379941] ? create_object.isra.0+0x3a/0xa30 [ 1019.379957] should_failslab+0x5/0x20 [ 1019.379975] kmem_cache_alloc+0x5b/0x310 [ 1019.379993] ? mark_held_locks+0x9e/0xe0 [ 1019.380024] create_object.isra.0+0x3a/0xa30 [ 1019.380040] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1019.380063] kmem_cache_alloc+0x159/0x310 [ 1019.380088] xas_alloc+0x336/0x440 [ 1019.380109] xas_create+0x34a/0x10d0 [ 1019.380135] ? kernel_text_address+0xf2/0x120 [ 1019.380155] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1019.380175] xas_store+0x8c/0x1c40 [ 1019.380208] __xa_store+0x164/0x2d0 [ 1019.380228] ? xa_delete_node+0x280/0x280 [ 1019.380254] ? trace_hardirqs_on+0x5b/0x180 [ 1019.380279] xa_store+0x31/0x50 [ 1019.380300] __io_uring_add_tctx_node+0x1cf/0x520 [ 1019.380319] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1019.380335] ? alloc_fd+0x2e7/0x670 [ 1019.380364] io_uring_setup+0x1fbb/0x2980 [ 1019.380391] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1019.380406] ? wait_for_completion_io+0x270/0x270 [ 1019.380446] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1019.380476] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1019.380497] do_syscall_64+0x33/0x40 [ 1019.380515] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1019.380526] RIP: 0033:0x7fcf423d9b19 [ 1019.380542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1019.380551] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1019.380570] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1019.380580] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1019.380590] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1019.380600] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1019.380610] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:17:15 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 2) 00:17:15 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x17, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="ed41000000080000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000ba56a6e5000000000000000000000000000000000000000000000000ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000006000000000000000000000000000000000000000000000000000000000000000000000000000000078ce27cf000000000000000000000000000000000000000000000000ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3837363538343334302f66696c65302f66696c653000000000000000000000000000000000000000000000ee3520d6000000000000000000000000000000000000000000000000ed8100000a000000e1f4655fe1f4655fe1f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000070000000000000000000000000000000000000000000000000000000000000000000000000000000070f9333800000000000000000000000000000000000000000000000ed81000028230000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000090000000000000000000000000000000000000000000000000000000000000000000000000000000a9530bd8000000000000000000000000000000000000000000000000ed81000064000000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000a1aee7ad00"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}, {0x0, 0x0, 0x50000}], 0x0, &(0x7f0000012f00)) 00:17:15 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, 0x0, 0x0) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:17:15 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = openat(r0, &(0x7f00000002c0)='./file0\x00', 0xc8400, 0x15) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000001180)="f2c0b00a0a73e255b2c6", 0xa}], 0x1, 0xff7, 0x0) mmap$usbmon(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x10010, r1, 0x39) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x12, 0xffffffffffffffff, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x3, &(0x7f0000001500)=0x8, 0x4) sendto(0xffffffffffffffff, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x35f, 0x10062, 0x0) ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYRES32, @ANYRES16, @ANYRESHEX, @ANYRES32, @ANYRESOCT, @ANYRES64, @ANYRES16, @ANYRESOCT]) r2 = dup2(r1, r1) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x4, 0xff, 0x2, 0x4, 0x0, 0x81, 0x10203, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x101, 0x4, @perf_config_ext={0x0, 0x1}, 0x8, 0x9, 0x3, 0x3, 0xb85, 0x80, 0x9, 0x0, 0x2, 0x0, 0x3}, 0x0, 0x9, r2, 0x2) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ftruncate(0xffffffffffffffff, 0x0) connect$inet6(r3, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) getsockopt(r3, 0x9530, 0x8, &(0x7f0000001e00)=""/102400, &(0x7f0000000280)=0x19000) finit_module(0xffffffffffffffff, &(0x7f0000000200)='\x00I\x81\x1a\xa5?\x82~@\xf6\xa6s-\x93\xca\xc4oe\xdd~\xf0\x0f\x80\xd1\xcb\xf8\xf2\x15`\xa6\xd2\xef\xb9\x83\xcfL\xa2\'\xfbv\xc4D\x00\xa6i\bQu\x1f\xe2!\xafM\xfcu\x8a\x00)\x8a\x81EB\xf6&\x1f*\x99\xef\xba\xec\xa2P\xdb)\xfa\x9e\xa6\xa9$\x06@\xcb\x98\x9ep=C', 0x2) getsockopt$IP_VS_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x481, &(0x7f0000000000), &(0x7f0000000140)=0xc) setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x41, &(0x7f0000000080)=0x29eb, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 00:17:15 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x500, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:17:15 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 55) 00:17:15 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea1", 0x2, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:17:15 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x0, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) [ 1036.016669] FAULT_INJECTION: forcing a failure. [ 1036.016669] name failslab, interval 1, probability 0, space 0, times 0 [ 1036.019303] CPU: 1 PID: 7372 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1036.020837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1036.022237] FAULT_INJECTION: forcing a failure. [ 1036.022237] name failslab, interval 1, probability 0, space 0, times 0 [ 1036.022678] Call Trace: [ 1036.022703] dump_stack+0x107/0x167 [ 1036.022729] should_fail.cold+0x5/0xa [ 1036.027256] ? create_object.isra.0+0x3a/0xa30 [ 1036.028255] should_failslab+0x5/0x20 [ 1036.029100] kmem_cache_alloc+0x5b/0x310 [ 1036.029994] create_object.isra.0+0x3a/0xa30 [ 1036.030955] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1036.032069] __kmalloc+0x16e/0x390 [ 1036.032864] __do_sys_memfd_create+0xfb/0x450 [ 1036.033842] ? ksys_write+0x1a9/0x260 [ 1036.034671] ? memfd_file_seals_ptr+0x170/0x170 [ 1036.035692] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1036.036853] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1036.037979] do_syscall_64+0x33/0x40 [ 1036.038793] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1036.039909] RIP: 0033:0x7fee45b4bb19 [ 1036.040736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1036.044732] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1036.046393] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1036.047947] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1036.049503] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1036.051046] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1036.052593] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 [ 1036.054175] CPU: 0 PID: 7373 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1036.055650] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1036.057434] Call Trace: [ 1036.058003] dump_stack+0x107/0x167 [ 1036.058784] should_fail.cold+0x5/0xa [ 1036.059599] ? xas_alloc+0x336/0x440 [ 1036.060397] should_failslab+0x5/0x20 [ 1036.061224] kmem_cache_alloc+0x5b/0x310 [ 1036.062097] xas_alloc+0x336/0x440 [ 1036.062859] xas_create+0x34a/0x10d0 [ 1036.063667] ? kernel_text_address+0xf2/0x120 [ 1036.064628] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1036.065760] xas_store+0x8c/0x1c40 [ 1036.066533] __xa_store+0x164/0x2d0 [ 1036.067338] ? xa_delete_node+0x280/0x280 [ 1036.068244] ? trace_hardirqs_on+0x5b/0x180 [ 1036.069179] xa_store+0x31/0x50 [ 1036.069886] __io_uring_add_tctx_node+0x1cf/0x520 [ 1036.070920] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1036.072038] ? alloc_fd+0x2e7/0x670 [ 1036.072834] io_uring_setup+0x1fbb/0x2980 [ 1036.073730] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1036.074814] ? wait_for_completion_io+0x270/0x270 [ 1036.075864] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1036.076992] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1036.078096] do_syscall_64+0x33/0x40 [ 1036.078895] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1036.079996] RIP: 0033:0x7fcf423d9b19 [ 1036.080796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1036.084742] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1036.086361] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1036.087879] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1036.089408] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1036.090926] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1036.092446] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1036.098985] loop1: detected capacity change from 0 to 655360 [ 1036.124500] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities 00:17:16 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea1", 0x2, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:17:16 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {0x0, 0xffd1}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:17:16 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x5dc, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:17:16 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a", 0x3, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) [ 1036.235736] loop6: detected capacity change from 0 to 32768 00:17:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000012f00)) [ 1036.252228] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 00:17:16 executing program 7: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x91) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, 0xffffffffffffffff) mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000000, 0x12, r1, 0xc7d1000) openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x128) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x40406, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x181) r3 = gettid() r4 = getpgrp(r3) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x0, 0xc0, 0x4, 0x20, 0x0, 0x1, 0x22a00, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000200), 0x4}, 0x200, 0xff, 0x8, 0x2, 0x7f, 0x3, 0x9, 0x0, 0x101, 0x0, 0x6}, 0x0, 0x10, 0xffffffffffffffff, 0x1) pwrite64(r2, &(0x7f00000000c0)="04", 0x1, 0x3ff03) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="000200"/12, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fstatfs(r6, &(0x7f0000001300)=""/161) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000001140)={'wlan0\x00'}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000000300)={0x3, [], 0x40, "c3cfc3c32a52a2"}) perf_event_open(&(0x7f00000013c0)={0x3, 0x80, 0x81, 0x2, 0x2, 0x0, 0x0, 0x1, 0x8200, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x5, 0x2, @perf_config_ext={0x8, 0x1418783d}, 0x8, 0x6517, 0x9, 0x0, 0xfffffffffffffffe, 0x8001, 0x5, 0x0, 0x9, 0x0, 0x3}, r4, 0x8, 0xffffffffffffffff, 0x1) dup2(r2, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'team_slave_0\x00'}) 00:17:16 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 56) [ 1036.315419] loop7: detected capacity change from 0 to 33559552 00:17:16 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a", 0x3, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:17:16 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 3) [ 1036.342238] FAULT_INJECTION: forcing a failure. [ 1036.342238] name failslab, interval 1, probability 0, space 0, times 0 [ 1036.344830] CPU: 1 PID: 7404 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1036.346320] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1036.348122] Call Trace: [ 1036.348710] dump_stack+0x107/0x167 [ 1036.349502] should_fail.cold+0x5/0xa [ 1036.350332] ? ___slab_alloc+0x360/0x700 [ 1036.351212] ? create_object.isra.0+0x3a/0xa30 [ 1036.352199] should_failslab+0x5/0x20 [ 1036.353036] kmem_cache_alloc+0x5b/0x310 [ 1036.353922] create_object.isra.0+0x3a/0xa30 [ 1036.354874] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1036.355979] kmem_cache_alloc+0x159/0x310 [ 1036.356895] xas_alloc+0x336/0x440 [ 1036.357669] xas_create+0x34a/0x10d0 [ 1036.358483] ? kernel_text_address+0xf2/0x120 [ 1036.359462] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1036.360600] xas_store+0x8c/0x1c40 [ 1036.361394] __xa_store+0x164/0x2d0 [ 1036.362190] ? xa_delete_node+0x280/0x280 [ 1036.363102] ? trace_hardirqs_on+0x5b/0x180 [ 1036.364048] xa_store+0x31/0x50 [ 1036.364782] __io_uring_add_tctx_node+0x1cf/0x520 [ 1036.365843] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1036.366977] ? alloc_fd+0x2e7/0x670 [ 1036.367783] io_uring_setup+0x1fbb/0x2980 [ 1036.368703] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1036.369808] ? wait_for_completion_io+0x270/0x270 [ 1036.370876] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1036.372020] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1036.373161] do_syscall_64+0x33/0x40 [ 1036.373973] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1036.375095] RIP: 0033:0x7fcf423d9b19 [ 1036.375909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1036.379947] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1036.381744] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1036.383299] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1036.384881] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1036.386430] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1036.387989] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:17:16 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000012f00)) [ 1036.436575] FAULT_INJECTION: forcing a failure. [ 1036.436575] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1036.439109] CPU: 0 PID: 7409 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1036.440584] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1036.442386] Call Trace: [ 1036.442961] dump_stack+0x107/0x167 [ 1036.443743] should_fail.cold+0x5/0xa [ 1036.444572] _copy_from_user+0x2e/0x1b0 [ 1036.445437] __do_sys_memfd_create+0x16d/0x450 [ 1036.446422] ? memfd_file_seals_ptr+0x170/0x170 [ 1036.447427] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1036.448561] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1036.449681] do_syscall_64+0x33/0x40 [ 1036.450484] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1036.451582] RIP: 0033:0x7fee45b4bb19 [ 1036.452375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1036.456292] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1036.457934] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1036.459467] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1036.461007] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1036.462553] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1036.464084] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 00:17:29 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x600, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:17:29 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:17:29 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, 0x0, 0x0) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:17:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000012f00)) 00:17:29 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a", 0x3, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) 00:17:29 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 4) 00:17:29 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 57) 00:17:29 executing program 7: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x0, 0x2, &(0x7f0000000440)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f00000004c0)=ANY=[]) r1 = openat(r0, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x10000000c) write$binfmt_script(r1, &(0x7f00000004c0)={'#! ', './file1', [{0x20, 'vfat\x00'}, {0x20, ')'}, {0x20, '\x00'}, {0x20, 'vfat\x00'}, {0x20, 'vfat\xfb\x9c\x04\xf2y\x00'}, {0x20, 'S'}, {0x20, 'vfa\x9c[\x8a2R\xfd\xf2\xea\xab\xf7\xc0\xb3I\x11D\xaa\xa1F\f4;\xfc]\xf3\xfb\x99\x04\xde%\xe4\xcd\xfa\a\xeb\x80\xeb'}, {0x20, ',\xf2\x8czK\xbe\x84q\xb3xv\xfd\x810\xf5`\x91}\xd7g\xfa\x81\\\xb4I\xf9\x91\xa0\xe2\"\f\xf1\xac\xf2\x1e\xdb\xa7\xfe[\xc0I\xc3\x17\x92\x91|)\xc6\x8c\x0fb\xb8j;\v\xf0I6zrEd\xa3\x9b\xd9\xd1\x0f\xe0\"\xa5\x1e\xeb\x065H \xdb\xbc\xc4\xc1\x1fO\xb8\x1d\xa7a9\xf9\xadY\x17\xf4_\x7f*5\x9aR\x06_\x90>\xbb\x8c\xe72\f\xe0M\xba\x1d\xcb\xd3\x11\xd7tb\x8f*\x82\xd0O\xcfW\xa3\xf5\x8anc\xb0m\x0fZ}\xc3\x14\xf2\xa1vR\f\x0f\xd5\x1cl\x16Sj\t\xca\x02\xa9\xdb\xa8\x9bZ\'\xe0\xb9\x83\xb2\xfa\xcd\xc4E\x87\xf4p\xaeO\x9c\xa6\xcf\x81q\xacai\x9d[\a\xd9SiO6\xf9B,9t\xba0\xe9l\xe2c\x14\xf2~\a8\v\xe5\xc6>\x11{y\xf9\x1e\x00'/225}]}, 0x132) dup(r2) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff) syz_io_uring_setup(0x20401ae9, &(0x7f0000000300)={0x0, 0x4e1c, 0x1, 0x2, 0x31a}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, &(0x7f00000003c0)) ftruncate(r1, 0x60) r3 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet(r3, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000040), 0x4) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r4, 0x29, 0x31, &(0x7f0000000480), 0x4) r5 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r6 = dup2(0xffffffffffffffff, r5) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r6, 0x8000000) ioctl$CDROM_GET_MCN(r6, 0x5311, &(0x7f00000000c0)) [ 1049.426263] FAULT_INJECTION: forcing a failure. [ 1049.426263] name failslab, interval 1, probability 0, space 0, times 0 [ 1049.428878] CPU: 1 PID: 7425 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1049.430337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1049.432083] Call Trace: [ 1049.432645] dump_stack+0x107/0x167 [ 1049.433431] should_fail.cold+0x5/0xa [ 1049.434240] ? xas_alloc+0x336/0x440 [ 1049.435026] should_failslab+0x5/0x20 [ 1049.435835] kmem_cache_alloc+0x5b/0x310 [ 1049.436700] xas_alloc+0x336/0x440 [ 1049.437465] xas_create+0x34a/0x10d0 [ 1049.438264] ? kernel_text_address+0xf2/0x120 [ 1049.439217] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1049.440326] xas_store+0x8c/0x1c40 [ 1049.441108] __xa_store+0x164/0x2d0 [ 1049.441886] ? xa_delete_node+0x280/0x280 [ 1049.442774] ? trace_hardirqs_on+0x5b/0x180 [ 1049.443694] xa_store+0x31/0x50 [ 1049.444400] __io_uring_add_tctx_node+0x1cf/0x520 [ 1049.445425] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1049.446533] ? alloc_fd+0x2e7/0x670 [ 1049.447321] io_uring_setup+0x1fbb/0x2980 [ 1049.448210] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1049.449287] ? wait_for_completion_io+0x270/0x270 [ 1049.450339] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1049.451445] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1049.452538] do_syscall_64+0x33/0x40 [ 1049.453335] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1049.454415] RIP: 0033:0x7fcf423d9b19 [ 1049.455199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1049.459095] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1049.460708] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1049.462218] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1049.463728] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1049.465242] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1049.466758] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1049.487752] FAULT_INJECTION: forcing a failure. [ 1049.487752] name failslab, interval 1, probability 0, space 0, times 0 [ 1049.490263] CPU: 1 PID: 7438 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1049.491711] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1049.493494] Call Trace: [ 1049.494057] dump_stack+0x107/0x167 [ 1049.494831] should_fail.cold+0x5/0xa [ 1049.495644] ? shmem_alloc_inode+0x18/0x40 [ 1049.496535] should_failslab+0x5/0x20 [ 1049.497350] kmem_cache_alloc+0x5b/0x310 [ 1049.498211] ? shmem_destroy_inode+0x70/0x70 [ 1049.499137] shmem_alloc_inode+0x18/0x40 [ 1049.499992] ? shmem_destroy_inode+0x70/0x70 [ 1049.500922] alloc_inode+0x63/0x240 [ 1049.501693] new_inode+0x23/0x250 [ 1049.502428] shmem_get_inode+0x15e/0xbc0 [ 1049.503292] __shmem_file_setup+0xb8/0x320 [ 1049.504183] ? _copy_from_user+0xfb/0x1b0 [ 1049.505073] __do_sys_memfd_create+0x275/0x450 [ 1049.506034] ? memfd_file_seals_ptr+0x170/0x170 [ 1049.507023] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1049.508132] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1049.509234] do_syscall_64+0x33/0x40 [ 1049.510019] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1049.511099] RIP: 0033:0x7fee45b4bb19 [ 1049.511887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1049.515765] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1049.517380] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1049.518900] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1049.520412] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1049.521931] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1049.523256] loop7: detected capacity change from 0 to 32768 [ 1049.523450] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 00:17:29 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:17:29 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, 0x0, 0x0) 00:17:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x16, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}, {0x0, 0x0, 0x407e0}], 0x0, &(0x7f0000012f00)) [ 1049.556438] FAT-fs (loop7): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 00:17:29 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x700, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) [ 1049.572537] loop1: detected capacity change from 0 to 527872 [ 1049.594314] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities 00:17:29 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 5) 00:17:29 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x5, 0x40, 0x1800}, {}], 0x3, &(0x7f0000000180)={r1, r2+60000000}) 00:17:29 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, 0x0, 0x0) [ 1049.615640] FAULT_INJECTION: forcing a failure. [ 1049.615640] name failslab, interval 1, probability 0, space 0, times 0 [ 1049.617019] CPU: 0 PID: 7454 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1049.617803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1049.618739] Call Trace: [ 1049.619044] dump_stack+0x107/0x167 [ 1049.619462] should_fail.cold+0x5/0xa [ 1049.619898] ? create_object.isra.0+0x3a/0xa30 [ 1049.620409] should_failslab+0x5/0x20 [ 1049.620856] kmem_cache_alloc+0x5b/0x310 [ 1049.621325] create_object.isra.0+0x3a/0xa30 [ 1049.621821] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1049.622392] kmem_cache_alloc+0x159/0x310 [ 1049.622856] ? shmem_destroy_inode+0x70/0x70 [ 1049.623349] shmem_alloc_inode+0x18/0x40 [ 1049.623801] ? shmem_destroy_inode+0x70/0x70 [ 1049.624295] alloc_inode+0x63/0x240 [ 1049.624708] new_inode+0x23/0x250 [ 1049.625115] shmem_get_inode+0x15e/0xbc0 [ 1049.625578] __shmem_file_setup+0xb8/0x320 [ 1049.626049] ? _copy_from_user+0xfb/0x1b0 [ 1049.626519] __do_sys_memfd_create+0x275/0x450 [ 1049.627038] ? memfd_file_seals_ptr+0x170/0x170 [ 1049.627569] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1049.628171] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1049.628752] do_syscall_64+0x33/0x40 [ 1049.629183] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1049.629769] RIP: 0033:0x7fee45b4bb19 [ 1049.630187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1049.632254] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1049.633133] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1049.633931] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1049.634730] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1049.635526] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1049.636318] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 00:17:29 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 58) 00:17:29 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {0x0, 0xffd1}], 0x2, &(0x7f0000000180)={r1, r2+60000000}) [ 1049.645704] attempt to access beyond end of device [ 1049.645704] loop7: rw=2049, want=125, limit=64 [ 1049.678021] FAULT_INJECTION: forcing a failure. [ 1049.678021] name failslab, interval 1, probability 0, space 0, times 0 [ 1049.680542] CPU: 1 PID: 7462 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1049.682002] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1049.683796] Call Trace: [ 1049.684358] dump_stack+0x107/0x167 [ 1049.685163] should_fail.cold+0x5/0xa [ 1049.685991] ? create_object.isra.0+0x3a/0xa30 [ 1049.686982] should_failslab+0x5/0x20 [ 1049.687812] kmem_cache_alloc+0x5b/0x310 [ 1049.688700] ? mark_held_locks+0x9e/0xe0 [ 1049.689594] create_object.isra.0+0x3a/0xa30 [ 1049.690545] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1049.691647] kmem_cache_alloc+0x159/0x310 [ 1049.692555] xas_alloc+0x336/0x440 [ 1049.693336] xas_create+0x34a/0x10d0 [ 1049.694139] ? kernel_text_address+0xf2/0x120 [ 1049.695114] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1049.696254] xas_store+0x8c/0x1c40 [ 1049.697057] __xa_store+0x164/0x2d0 [ 1049.697850] ? xa_delete_node+0x280/0x280 [ 1049.698757] ? trace_hardirqs_on+0x5b/0x180 [ 1049.699699] xa_store+0x31/0x50 [ 1049.700418] __io_uring_add_tctx_node+0x1cf/0x520 [ 1049.701472] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1049.702605] ? alloc_fd+0x2e7/0x670 [ 1049.703409] io_uring_setup+0x1fbb/0x2980 [ 1049.704315] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1049.705418] ? wait_for_completion_io+0x270/0x270 [ 1049.706486] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1049.707620] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1049.708745] do_syscall_64+0x33/0x40 [ 1049.709559] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1049.710671] RIP: 0033:0x7fcf423d9b19 [ 1049.711471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1049.715463] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1049.717114] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1049.718659] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1049.720204] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1049.721751] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1049.723298] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1049.735350] loop6: detected capacity change from 0 to 32768 [ 1049.739267] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 1049.797865] FAT-fs (loop7): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 1064.467906] FAULT_INJECTION: forcing a failure. [ 1064.467906] name failslab, interval 1, probability 0, space 0, times 0 [ 1064.469552] CPU: 1 PID: 7477 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1064.470464] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1064.471562] Call Trace: [ 1064.471921] dump_stack+0x107/0x167 [ 1064.472407] should_fail.cold+0x5/0xa [ 1064.472915] ? security_inode_alloc+0x34/0x160 [ 1064.473525] should_failslab+0x5/0x20 [ 1064.474025] kmem_cache_alloc+0x5b/0x310 [ 1064.474566] security_inode_alloc+0x34/0x160 [ 1064.475148] inode_init_always+0xa4e/0xd10 [ 1064.475708] ? shmem_destroy_inode+0x70/0x70 [ 1064.476289] alloc_inode+0x84/0x240 [ 1064.476775] new_inode+0x23/0x250 [ 1064.477243] shmem_get_inode+0x15e/0xbc0 [ 1064.477784] __shmem_file_setup+0xb8/0x320 [ 1064.478340] ? _copy_from_user+0xfb/0x1b0 [ 1064.478887] __do_sys_memfd_create+0x275/0x450 [ 1064.479487] ? memfd_file_seals_ptr+0x170/0x170 [ 1064.480108] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1064.480800] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1064.481493] do_syscall_64+0x33/0x40 [ 1064.481986] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1064.482662] RIP: 0033:0x7fee45b4bb19 [ 1064.483158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1064.486126] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1064.487137] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1064.488080] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1064.489034] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1064.489974] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1064.490908] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 [ 1064.491909] loop1: detected capacity change from 0 to 393216 [ 1064.505095] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities 00:17:44 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {}], 0x2, &(0x7f0000000180)={r1, r2+60000000}) 00:17:44 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x2c00, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:17:44 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:17:44 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, 0x0, 0x0) 00:17:44 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x15, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}, {0x0, 0x0, 0x30000}], 0x0, &(0x7f0000012f00)) 00:17:44 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 6) [ 1064.532470] FAULT_INJECTION: forcing a failure. [ 1064.532470] name failslab, interval 1, probability 0, space 0, times 0 [ 1064.534017] CPU: 1 PID: 7488 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1064.534905] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1064.535991] Call Trace: [ 1064.536337] dump_stack+0x107/0x167 00:17:44 executing program 7: r0 = syz_open_dev$sg(0x0, 0x0, 0x2001) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000004c0)={0x0, 0x0, {0x0, @usage, 0x0}, {0x0, @struct}, {0x0, @struct}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f00000008c0)={r1, 0x5, 0x8}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x0, 0x0) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_tables_matches\x00') pread64(r3, &(0x7f0000002300)=""/4096, 0x1000, 0x9) ioctl$SCSI_IOCTL_DOORLOCK(r3, 0x5380) fallocate(0xffffffffffffffff, 0x1c, 0x688, 0xbb5c) ioctl$SG_IO(r0, 0x2285, &(0x7f0000003300)={0x53, 0xfffffffffffffffe, 0xa8, 0x81, @scatter={0xa, 0x0, &(0x7f0000002040)=[{&(0x7f0000000240)=""/123, 0x7b}, {&(0x7f00000002c0)=""/203, 0xcb}, {&(0x7f0000000180)=""/18, 0x12}, {&(0x7f00000003c0)=""/108, 0x6c}, {&(0x7f0000000cc0)=""/4096, 0x1000}, {&(0x7f0000001cc0)=""/67, 0x43}, {&(0x7f0000001e00)=""/81, 0x51}, {&(0x7f0000001d40)=""/38, 0x26}, {&(0x7f0000001e80)=""/175, 0xaf}, {&(0x7f0000001f40)=""/228, 0xe4}]}, &(0x7f0000002100)="db0d8793a3c66ff3b3d8b9b1e3afd0cf6e07e4b02e0d75323dbde3513aa46d0322e0c31354bb7574bc023f3767bc89fa4a7b2ccd5b5e5c1cf966b160bb903ab90867e1682e46e062aab0aee21bd181b22214cfc05dc90111fa255b1b0ab2268dadbd1559bb49332fe02415a425574284f5a510d904616a86ed3da7d278caee559e92556d6bc65e7e08bcc0eae8589132ed738c2b233cc2e886a1bc0d1bb27ebc58490fbf7884bb08", &(0x7f00000021c0)=""/205, 0x0, 0x0, 0x0, &(0x7f00000022c0)}) fadvise64(0xffffffffffffffff, 0x8001, 0x2, 0x4) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000001c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000003640)={0x200000000, &(0x7f00000000c0)=0xffffffffffffffff, &(0x7f0000000140), &(0x7f0000003400), {0x1}, &(0x7f0000003440)=""/172, 0xac, &(0x7f0000003500)=""/234, &(0x7f0000003600)=[0xffffffffffffffff, 0x0], 0x2, {r2}}, 0x58) fcntl$dupfd(r4, 0x406, r5) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000003380)=ANY=[@ANYBLOB="2c00a5003a7a1b0000000026bdb1f80e72d03cc14897b1cc0e01bfc7a9699cc7af0d775d59e247c5dc47cba7884019e2e847e1ded798ac306a7c348c5104b7a88dd539f9190fcf8e29b8f215550724e3882811620ea96793cf310289"]) 00:17:44 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 59) [ 1064.536814] should_fail.cold+0x5/0xa [ 1064.537485] ? xas_alloc+0x336/0x440 [ 1064.538046] should_failslab+0x5/0x20 [ 1064.538540] kmem_cache_alloc+0x5b/0x310 [ 1064.539074] xas_alloc+0x336/0x440 [ 1064.539535] xas_create+0x34a/0x10d0 [ 1064.540019] ? kernel_text_address+0xf2/0x120 [ 1064.540714] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1064.541449] xas_store+0x8c/0x1c40 [ 1064.541933] __xa_store+0x164/0x2d0 [ 1064.542403] ? xa_delete_node+0x280/0x280 [ 1064.542941] ? trace_hardirqs_on+0x5b/0x180 [ 1064.543498] xa_store+0x31/0x50 [ 1064.543933] __io_uring_add_tctx_node+0x1cf/0x520 [ 1064.544559] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1064.545250] ? alloc_fd+0x2e7/0x670 [ 1064.545732] io_uring_setup+0x1fbb/0x2980 [ 1064.546296] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1064.546950] ? wait_for_completion_io+0x270/0x270 [ 1064.547590] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1064.548269] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1064.548935] do_syscall_64+0x33/0x40 [ 1064.549428] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1064.550091] RIP: 0033:0x7fcf423d9b19 [ 1064.550576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1064.552969] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1064.553965] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1064.554893] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1064.555820] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 00:17:44 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {}], 0x2, &(0x7f0000000180)={r1, r2+60000000}) [ 1064.556745] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1064.557786] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:17:44 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x14, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="ed41000000080000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000ba56a6e5000000000000000000000000000000000000000000000000ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000006000000000000000000000000000000000000000000000000000000000000000000000000000000078ce27cf000000000000000000000000000000000000000000000000ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3837363538343334302f66696c65302f66696c653000000000000000000000000000000000000000000000ee3520d6000000000000000000000000000000000000000000000000ed8100000a000000e1f4655fe1f4655fe1f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000070000000000000000000000000000000000000000000000000000000000000000000000000000000070f9333800000000000000000000000000000000000000000000000ed81000028230000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000090000000000000000000000000000000000000000000000000000000000000000000000000000000a9530bd8000000000000000000000000000000000000000000000000ed81000064000000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000a1aee7ad00"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}, {0x0, 0x0, 0x28000}], 0x0, &(0x7f0000012f00)) [ 1064.613827] loop1: detected capacity change from 0 to 327680 [ 1064.619655] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1064.625899] audit: type=1326 audit(1064.508:344): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125cc24b19 code=0x7ffc0000 [ 1064.628552] audit: type=1326 audit(1064.508:345): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125cc24b19 code=0x7ffc0000 [ 1064.637382] audit: type=1326 audit(1064.519:346): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f125cc24b19 code=0x7ffc0000 00:17:44 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x3f00, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) [ 1064.642672] audit: type=1326 audit(1064.519:347): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125cc24b19 code=0x7ffc0000 [ 1064.651965] audit: type=1326 audit(1064.519:348): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f125cc24b19 code=0x7ffc0000 [ 1064.655995] loop7: detected capacity change from 0 to 16776704 [ 1064.661244] audit: type=1326 audit(1064.524:349): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125cc24b19 code=0x7ffc0000 00:17:44 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 7) [ 1064.670258] audit: type=1326 audit(1064.524:350): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f125cc24b19 code=0x7ffc0000 [ 1064.680479] audit: type=1326 audit(1064.525:351): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f125cc24ad7 code=0x7ffc0000 00:17:44 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x13, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}], 0x0, &(0x7f0000012f00)) 00:17:44 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x3, 0x52e5, 0x1000}, {}], 0x2, &(0x7f0000000180)={r1, r2+60000000}) [ 1064.690502] audit: type=1326 audit(1064.528:352): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f125cbd7ab7 code=0x7ffc0000 [ 1064.697108] audit: type=1326 audit(1064.528:353): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7489 comm="syz-executor.7" exe="/syz-executor.7" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f125cbd7ab7 code=0x7ffc0000 00:17:44 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 1) [ 1064.721769] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,,errors=continue 00:17:44 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x13, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012400)="504d4d00504d4dffe1f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/124, 0x7c, 0x20000}], 0x0, &(0x7f0000012f00)) 00:17:44 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 60) [ 1064.756422] FAULT_INJECTION: forcing a failure. [ 1064.756422] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1064.758943] CPU: 0 PID: 7509 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1064.760336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1064.762044] Call Trace: [ 1064.762593] dump_stack+0x107/0x167 [ 1064.763343] should_fail.cold+0x5/0xa [ 1064.764124] _copy_from_user+0x2e/0x1b0 [ 1064.764947] move_addr_to_kernel.part.0+0x31/0x110 [ 1064.765950] __sys_sendto+0x166/0x320 [ 1064.766727] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1064.767676] ? lock_downgrade+0x6d0/0x6d0 [ 1064.768534] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1064.769531] ? wait_for_completion_io+0x270/0x270 [ 1064.770521] ? rcu_read_lock_any_held+0x75/0xa0 [ 1064.771470] ? vfs_write+0x354/0xb10 [ 1064.772225] ? fput_many+0x2f/0x1a0 [ 1064.772961] ? ksys_write+0x1a9/0x260 [ 1064.773752] ? __ia32_sys_read+0xb0/0xb0 [ 1064.774591] __x64_sys_sendto+0xdd/0x1b0 [ 1064.775426] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1064.776483] do_syscall_64+0x33/0x40 [ 1064.777263] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1064.778319] RIP: 0033:0x7f9fb52f7b19 [ 1064.779080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1064.782844] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1064.784397] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 [ 1064.785883] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1064.787343] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1064.788816] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1064.790628] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 [ 1064.793053] loop1: detected capacity change from 0 to 262144 [ 1064.817321] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1064.820945] FAULT_INJECTION: forcing a failure. [ 1064.820945] name failslab, interval 1, probability 0, space 0, times 0 [ 1064.823291] CPU: 0 PID: 7519 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1064.824696] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1064.826398] Call Trace: [ 1064.826942] dump_stack+0x107/0x167 [ 1064.827689] should_fail.cold+0x5/0xa [ 1064.828478] ? create_object.isra.0+0x3a/0xa30 [ 1064.829418] should_failslab+0x5/0x20 [ 1064.830202] kmem_cache_alloc+0x5b/0x310 [ 1064.831035] create_object.isra.0+0x3a/0xa30 [ 1064.831935] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1064.832990] kmem_cache_alloc+0x159/0x310 [ 1064.833844] security_inode_alloc+0x34/0x160 [ 1064.834747] inode_init_always+0xa4e/0xd10 [ 1064.835714] ? shmem_destroy_inode+0x70/0x70 [ 1064.836823] alloc_inode+0x84/0x240 [ 1064.837655] new_inode+0x23/0x250 [ 1064.838388] shmem_get_inode+0x15e/0xbc0 [ 1064.839249] __shmem_file_setup+0xb8/0x320 [ 1064.840158] ? _copy_from_user+0xfb/0x1b0 [ 1064.841053] __do_sys_memfd_create+0x275/0x450 [ 1064.842021] ? memfd_file_seals_ptr+0x170/0x170 [ 1064.843015] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1064.844109] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1064.845194] do_syscall_64+0x33/0x40 [ 1064.845967] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1064.847027] RIP: 0033:0x7fee45b4bb19 [ 1064.847830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1064.851698] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1064.853297] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1064.854768] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1064.856261] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1064.857767] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1064.859261] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 [ 1064.870048] FAULT_INJECTION: forcing a failure. [ 1064.870048] name failslab, interval 1, probability 0, space 0, times 0 [ 1064.871442] CPU: 1 PID: 7517 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1064.872227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1064.873187] Call Trace: [ 1064.873500] dump_stack+0x107/0x167 [ 1064.873919] should_fail.cold+0x5/0xa [ 1064.874360] ? create_object.isra.0+0x3a/0xa30 [ 1064.874881] should_failslab+0x5/0x20 [ 1064.875314] kmem_cache_alloc+0x5b/0x310 [ 1064.875786] ? mark_held_locks+0x9e/0xe0 [ 1064.876254] create_object.isra.0+0x3a/0xa30 [ 1064.876752] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1064.877346] kmem_cache_alloc+0x159/0x310 [ 1064.877835] xas_alloc+0x336/0x440 [ 1064.878242] xas_create+0x34a/0x10d0 [ 1064.878676] ? kernel_text_address+0xf2/0x120 [ 1064.879188] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1064.879792] xas_store+0x8c/0x1c40 [ 1064.880205] __xa_store+0x164/0x2d0 [ 1064.880620] ? xa_delete_node+0x280/0x280 [ 1064.881106] ? trace_hardirqs_on+0x5b/0x180 [ 1064.881609] xa_store+0x31/0x50 [ 1064.881990] __io_uring_add_tctx_node+0x1cf/0x520 [ 1064.882541] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1064.883143] ? alloc_fd+0x2e7/0x670 [ 1064.883559] io_uring_setup+0x1fbb/0x2980 [ 1064.884039] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1064.884622] ? wait_for_completion_io+0x270/0x270 [ 1064.885192] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1064.885791] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1064.886383] do_syscall_64+0x33/0x40 [ 1064.886808] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1064.887397] RIP: 0033:0x7fcf423d9b19 [ 1064.887823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1064.889940] RSP: 002b:00007fcf3f94f108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1064.890813] RAX: ffffffffffffffda RBX: 00007fcf424ecf60 RCX: 00007fcf423d9b19 [ 1064.891630] RDX: 0000000020ffc000 RSI: 0000000020000080 RDI: 0000000000000004 [ 1064.892443] RBP: 0000000020000080 R08: 0000000020000140 R09: 0000000020000140 [ 1064.893265] R10: 0000000020000040 R11: 0000000000000202 R12: 0000000020000140 [ 1064.894080] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1064.951347] loop6: detected capacity change from 0 to 32768 [ 1064.958713] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 1078.260419] FAULT_INJECTION: forcing a failure. [ 1078.260419] name failslab, interval 1, probability 0, space 0, times 0 [ 1078.263356] CPU: 0 PID: 7530 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1078.265108] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1078.267237] Call Trace: [ 1078.267913] dump_stack+0x107/0x167 [ 1078.268856] should_fail.cold+0x5/0xa [ 1078.269840] ? __d_alloc+0x2a/0x990 [ 1078.270766] should_failslab+0x5/0x20 [ 1078.271734] kmem_cache_alloc+0x5b/0x310 [ 1078.272765] ? init_special_inode+0x1f0/0x1f0 [ 1078.273932] __d_alloc+0x2a/0x990 [ 1078.274812] d_alloc_pseudo+0x19/0x70 [ 1078.275767] alloc_file_pseudo+0xce/0x250 [ 1078.276807] ? alloc_file+0x5a0/0x5a0 [ 1078.277795] ? shmem_get_inode+0x55c/0xbc0 [ 1078.278877] __shmem_file_setup+0x144/0x320 [ 1078.279986] ? _copy_from_user+0xfb/0x1b0 [ 1078.281041] __do_sys_memfd_create+0x275/0x450 [ 1078.282210] ? memfd_file_seals_ptr+0x170/0x170 [ 1078.283395] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1078.284731] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1078.286054] do_syscall_64+0x33/0x40 [ 1078.287011] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1078.288317] RIP: 0033:0x7fee45b4bb19 [ 1078.289267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1078.293952] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1078.295889] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1078.297994] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1078.299814] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1078.301637] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1078.303449] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 00:17:58 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 8) 00:17:58 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 2) 00:17:58 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x4000, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:17:58 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0xca}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) r2 = perf_event_open(0x0, 0x0, 0xc, 0xffffffffffffffff, 0x3) r3 = signalfd(0xffffffffffffffff, 0x0, 0x0) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x104, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000540)=ANY=[@ANYBLOB="010096d1a3ce25862fb605eea17035aba13fa55600d1d4c7f06375006300", @ANYBLOB="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"]) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x44000) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_TREE_SEARCH(r3, 0xd0009411, &(0x7f000004cc80)={{0x0, 0x2, 0xfffffffffffffff9, 0x6d, 0xa6, 0x0, 0x4e4, 0xe49f, 0x4, 0x7fffffff, 0x5, 0x2, 0xe6b, 0x0, 0x20}}) fallocate(r4, 0xa, 0x800, 0x7) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f000004dc80)) lseek(r0, 0x9, 0x3) lseek(r1, 0x0, 0x2) r10 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x128) copy_file_range(r10, 0x0, r1, 0x0, 0x200f5ef, 0x0) 00:17:58 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:17:58 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{0x0, 0xffd1}], 0x1, &(0x7f0000000180)={r1, r2+60000000}) 00:17:58 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 61) 00:17:58 executing program 1: [ 1078.309017] FAULT_INJECTION: forcing a failure. syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x12, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}], 0x0, &(0x7f0000012f00)) [ 1078.309017] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1078.310733] CPU: 1 PID: 7540 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1078.311556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1078.312503] Call Trace: [ 1078.312825] dump_stack+0x107/0x167 [ 1078.313268] should_fail.cold+0x5/0xa [ 1078.313714] _copy_from_iter_full+0x201/0xa60 [ 1078.314243] ? lock_chain_count+0x20/0x20 [ 1078.314733] rawv6_sendmsg+0x20ff/0x3d60 [ 1078.315221] ? dst_output+0x480/0x480 [ 1078.315669] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1078.316279] ? lock_acquire+0x197/0x470 [ 1078.316742] ? lock_acquire+0x197/0x470 [ 1078.317208] ? find_held_lock+0x2c/0x110 [ 1078.317681] ? sock_has_perm+0x1ea/0x280 [ 1078.318159] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1078.318773] ? dst_output+0x480/0x480 [ 1078.319218] inet_sendmsg+0x11d/0x140 [ 1078.319659] ? inet_send_prepare+0x540/0x540 [ 1078.320332] __sock_sendmsg+0x13c/0x190 [ 1078.320949] __sys_sendto+0x21c/0x320 [ 1078.321404] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1078.321975] ? lock_downgrade+0x6d0/0x6d0 [ 1078.322525] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1078.323257] ? ksys_write+0x1a9/0x260 [ 1078.323822] ? __ia32_sys_read+0xb0/0xb0 [ 1078.324301] __x64_sys_sendto+0xdd/0x1b0 [ 1078.324782] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1078.325399] do_syscall_64+0x33/0x40 [ 1078.325836] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1078.326436] RIP: 0033:0x7f9fb52f7b19 [ 1078.326867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1078.329006] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1078.329899] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 [ 1078.330727] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1078.331572] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1078.332412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1078.333261] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 [ 1078.346677] loop1: detected capacity change from 0 to 159744 [ 1078.354885] FAULT_INJECTION: forcing a failure. [ 1078.354885] name failslab, interval 1, probability 0, space 0, times 0 [ 1078.357800] CPU: 0 PID: 7543 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1078.359330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1078.361192] Call Trace: [ 1078.361788] dump_stack+0x107/0x167 [ 1078.362605] should_fail.cold+0x5/0xa [ 1078.363457] ? vm_area_dup+0x78/0x290 [ 1078.364307] should_failslab+0x5/0x20 [ 1078.365164] kmem_cache_alloc+0x5b/0x310 [ 1078.366077] vm_area_dup+0x78/0x290 [ 1078.366898] ? lock_release+0x680/0x680 [ 1078.367790] ? mark_lock+0xf5/0x2df0 [ 1078.368634] ? lock_chain_count+0x20/0x20 [ 1078.369573] ? mark_lock+0xf5/0x2df0 [ 1078.370091] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1078.370408] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1078.372512] ? lock_chain_count+0x20/0x20 [ 1078.373454] ? mark_lock+0xf5/0x2df0 [ 1078.374287] ? vm_area_alloc+0x110/0x110 [ 1078.375201] ? __lock_acquire+0x1657/0x5b00 [ 1078.376185] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1078.377362] ? vmacache_find+0x55/0x2a0 [ 1078.378254] __split_vma+0xa8/0x4e0 [ 1078.379073] __do_munmap+0xfae/0x1260 [ 1078.379927] ? arch_get_unmapped_area+0x450/0x450 [ 1078.381007] ? lock_release+0x680/0x680 [ 1078.381906] mmap_region+0x7cc/0x1500 [ 1078.382772] do_mmap+0x868/0x1370 [ 1078.383558] vm_mmap_pgoff+0x198/0x1f0 [ 1078.384433] ? randomize_page+0xb0/0xb0 [ 1078.385345] ksys_mmap_pgoff+0x41c/0x560 [ 1078.386253] ? find_mergeable_anon_vma+0x250/0x250 [ 1078.387351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1078.388522] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1078.389685] do_syscall_64+0x33/0x40 [ 1078.390518] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1078.391661] RIP: 0033:0x7fcf423d9b62 [ 1078.392493] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1078.396608] RSP: 002b:00007fcf3f94f0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1078.398314] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf423d9b62 [ 1078.399905] RDX: 0000000000000003 RSI: 00000000000001d0 RDI: 0000000020ffe000 [ 1078.401502] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 1078.403095] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1078.404684] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:17:58 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 9) 00:17:58 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x6000, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:17:58 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}], 0x0, &(0x7f0000012f00)) [ 1078.473411] loop1: detected capacity change from 0 to 155648 [ 1078.487385] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities 00:17:58 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 3) 00:17:58 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x4, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:17:58 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r1, 0x0) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xa, 0x4000010, r1, 0xf7455000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x82d01, 0x0) creat(0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x501000, 0x0) setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file1\x00') dup2(r3, r4) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[@ANYRESHEX=r3], 0x278) sendfile(r0, r2, 0x0, 0x100000001) [ 1078.542435] FAULT_INJECTION: forcing a failure. [ 1078.542435] name failslab, interval 1, probability 0, space 0, times 0 00:17:58 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 62) [ 1078.544948] CPU: 0 PID: 7564 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1078.546493] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1078.548189] Call Trace: [ 1078.548742] dump_stack+0x107/0x167 [ 1078.549503] should_fail.cold+0x5/0xa [ 1078.550298] ? __alloc_skb+0x6d/0x5b0 [ 1078.551078] should_failslab+0x5/0x20 [ 1078.551857] kmem_cache_alloc_node+0x55/0x330 [ 1078.552794] __alloc_skb+0x6d/0x5b0 [ 1078.553557] __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1078.554616] ? raw6_destroy+0x30/0x30 [ 1078.555410] ? ip6_sk_dst_lookup_flow+0x6f0/0x6f0 [ 1078.556400] ? ip6_mtu+0x1e9/0x3d0 [ 1078.557133] ? ip6_setup_cork+0xfb7/0x1740 [ 1078.558008] ip6_append_data+0x1e6/0x330 [ 1078.558837] ? raw6_destroy+0x30/0x30 [ 1078.559622] ? raw6_destroy+0x30/0x30 [ 1078.560406] rawv6_sendmsg+0x1576/0x3d60 [ 1078.561261] ? dst_output+0x480/0x480 [ 1078.562055] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1078.563140] ? lock_acquire+0x197/0x470 [ 1078.563968] ? lock_acquire+0x197/0x470 [ 1078.564795] ? find_held_lock+0x2c/0x110 [ 1078.565637] ? sock_has_perm+0x1ea/0x280 [ 1078.566469] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1078.567543] ? dst_output+0x480/0x480 [ 1078.568336] inet_sendmsg+0x11d/0x140 [ 1078.569119] ? inet_send_prepare+0x540/0x540 [ 1078.570028] __sock_sendmsg+0x13c/0x190 [ 1078.570845] __sys_sendto+0x21c/0x320 [ 1078.571625] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1078.572587] ? lock_downgrade+0x6d0/0x6d0 [ 1078.573466] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1078.574464] ? ksys_write+0x1a9/0x260 [ 1078.575247] ? __ia32_sys_read+0xb0/0xb0 [ 1078.576091] __x64_sys_sendto+0xdd/0x1b0 [ 1078.576928] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1078.578017] do_syscall_64+0x33/0x40 [ 1078.578785] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1078.579842] RIP: 0033:0x7f9fb52f7b19 [ 1078.580614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1078.584409] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1078.585977] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 [ 1078.587431] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1078.588903] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1078.590367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1078.591837] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 [ 1078.606063] loop7: detected capacity change from 0 to 41948160 [ 1078.608427] FAULT_INJECTION: forcing a failure. [ 1078.608427] name failslab, interval 1, probability 0, space 0, times 0 [ 1078.610889] CPU: 0 PID: 7565 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1078.612299] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1078.614038] Call Trace: [ 1078.614592] dump_stack+0x107/0x167 [ 1078.615350] should_fail.cold+0x5/0xa [ 1078.616134] ? create_object.isra.0+0x3a/0xa30 [ 1078.617080] should_failslab+0x5/0x20 [ 1078.617870] kmem_cache_alloc+0x5b/0x310 [ 1078.618717] create_object.isra.0+0x3a/0xa30 [ 1078.619614] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1078.620666] kmem_cache_alloc+0x159/0x310 [ 1078.621527] __d_alloc+0x2a/0x990 [ 1078.622251] d_alloc_pseudo+0x19/0x70 [ 1078.623039] alloc_file_pseudo+0xce/0x250 [ 1078.623889] ? alloc_file+0x5a0/0x5a0 [ 1078.624676] ? shmem_get_inode+0x55c/0xbc0 [ 1078.625563] __shmem_file_setup+0x144/0x320 [ 1078.626450] ? _copy_from_user+0xfb/0x1b0 [ 1078.627312] __do_sys_memfd_create+0x275/0x450 [ 1078.628262] ? memfd_file_seals_ptr+0x170/0x170 [ 1078.629247] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1078.630320] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1078.631382] do_syscall_64+0x33/0x40 [ 1078.632153] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1078.633211] RIP: 0033:0x7fee45b4bb19 [ 1078.633977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1078.637756] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1078.639317] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1078.640786] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1078.642265] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1078.643729] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1078.645199] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 [ 1078.664006] FAULT_INJECTION: forcing a failure. [ 1078.664006] name failslab, interval 1, probability 0, space 0, times 0 [ 1078.666503] CPU: 0 PID: 7568 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1078.667912] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1078.669651] Call Trace: [ 1078.670198] dump_stack+0x107/0x167 [ 1078.670959] should_fail.cold+0x5/0xa [ 1078.671766] ? create_object.isra.0+0x3a/0xa30 [ 1078.672702] should_failslab+0x5/0x20 [ 1078.673511] kmem_cache_alloc+0x5b/0x310 [ 1078.674361] create_object.isra.0+0x3a/0xa30 [ 1078.675270] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1078.676325] kmem_cache_alloc+0x159/0x310 [ 1078.677204] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1078.678281] vm_area_dup+0x78/0x290 [ 1078.679039] ? mark_lock+0xf5/0x2df0 [ 1078.679813] ? lock_chain_count+0x20/0x20 [ 1078.680665] ? mark_lock+0xf5/0x2df0 [ 1078.681444] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1078.682551] ? lock_chain_count+0x20/0x20 [ 1078.683399] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1078.684330] ? trace_hardirqs_on+0x5b/0x180 [ 1078.685221] ? mark_lock+0xf5/0x2df0 [ 1078.685986] ? vm_area_alloc+0x110/0x110 [ 1078.686822] ? __lock_acquire+0x1657/0x5b00 [ 1078.687732] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1078.688803] ? vmacache_find+0x55/0x2a0 [ 1078.689623] __split_vma+0xa8/0x4e0 [ 1078.690389] __do_munmap+0xfae/0x1260 [ 1078.691180] ? arch_get_unmapped_area+0x450/0x450 [ 1078.692165] ? lock_release+0x680/0x680 [ 1078.692973] mmap_region+0x7cc/0x1500 [ 1078.693781] do_mmap+0x868/0x1370 [ 1078.694500] vm_mmap_pgoff+0x198/0x1f0 [ 1078.695304] ? randomize_page+0xb0/0xb0 [ 1078.696152] ksys_mmap_pgoff+0x41c/0x560 [ 1078.696983] ? find_mergeable_anon_vma+0x250/0x250 [ 1078.698027] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1078.699096] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1078.700182] do_syscall_64+0x33/0x40 [ 1078.700946] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1078.702025] RIP: 0033:0x7fcf423d9b62 [ 1078.702791] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1078.706651] RSP: 002b:00007fcf3f94f0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1078.708256] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf423d9b62 [ 1078.709761] RDX: 0000000000000003 RSI: 00000000000001d0 RDI: 0000000020ffe000 [ 1078.711257] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 1078.712755] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1078.714258] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1078.818563] loop6: detected capacity change from 0 to 32768 [ 1078.834593] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 00:18:13 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{}], 0x1, &(0x7f0000000180)={r1, r2+60000000}) 00:18:13 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x80fe, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:18:13 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r1, 0x0) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xa, 0x4000010, r1, 0xf7455000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x82d01, 0x0) creat(0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x501000, 0x0) setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file1\x00') dup2(r3, r4) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[@ANYRESHEX=r3], 0x278) sendfile(r0, r2, 0x0, 0x100000001) 00:18:13 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 4) 00:18:13 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x10, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="ed41000000080000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000ba56a6e5000000000000000000000000000000000000000000000000ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000006000000000000000000000000000000000000000000000000000000000000000000000000000000078ce27cf000000000000000000000000000000000000000000000000ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3837363538343334302f66696c65302f66696c653000000000000000000000000000000000000000000000ee3520d6000000000000000000000000000000000000000000000000ed8100000a000000e1f4655fe1f4655fe1f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000070000000000000000000000000000000000000000000000000000000000000000000000000000000070f9333800000000000000000000000000000000000000000000000ed81000028230000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000090000000000000000000000000000000000000000000000000000000000000000000000000000000a9530bd8000000000000000000000000000000000000000000000000ed81000064000000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000a1aee7ad00"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}], 0x0, &(0x7f0000012f00)) 00:18:13 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:18:13 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 63) 00:18:13 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 10) [ 1093.524519] loop1: detected capacity change from 0 to 151552 [ 1093.528309] FAULT_INJECTION: forcing a failure. [ 1093.528309] name failslab, interval 1, probability 0, space 0, times 0 [ 1093.530811] CPU: 0 PID: 7587 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1093.532282] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1093.534083] Call Trace: [ 1093.534659] dump_stack+0x107/0x167 [ 1093.535446] should_fail.cold+0x5/0xa [ 1093.535603] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1093.536264] ? __alloc_file+0x21/0x320 [ 1093.536283] should_failslab+0x5/0x20 [ 1093.536302] kmem_cache_alloc+0x5b/0x310 [ 1093.536329] __alloc_file+0x21/0x320 [ 1093.541271] alloc_empty_file+0x6d/0x170 [ 1093.542158] alloc_file+0x5e/0x5a0 [ 1093.542928] alloc_file_pseudo+0x16a/0x250 [ 1093.543837] ? alloc_file+0x5a0/0x5a0 [ 1093.544665] ? shmem_get_inode+0x55c/0xbc0 [ 1093.545596] __shmem_file_setup+0x144/0x320 [ 1093.546530] ? _copy_from_user+0xfb/0x1b0 [ 1093.547426] __do_sys_memfd_create+0x275/0x450 [ 1093.548413] ? memfd_file_seals_ptr+0x170/0x170 [ 1093.549432] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1093.550566] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1093.551682] do_syscall_64+0x33/0x40 [ 1093.552487] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1093.553601] RIP: 0033:0x7fee45b4bb19 [ 1093.554405] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1093.558385] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1093.560033] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1093.561585] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1093.563076] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1093.564569] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1093.566063] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 [ 1093.568546] FAULT_INJECTION: forcing a failure. [ 1093.568546] name failslab, interval 1, probability 0, space 0, times 0 [ 1093.570979] CPU: 1 PID: 7586 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1093.572437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1093.574186] Call Trace: [ 1093.574747] dump_stack+0x107/0x167 [ 1093.575517] should_fail.cold+0x5/0xa [ 1093.576321] ? anon_vma_clone+0xdc/0x590 [ 1093.577168] should_failslab+0x5/0x20 [ 1093.577981] kmem_cache_alloc+0x5b/0x310 [ 1093.578841] anon_vma_clone+0xdc/0x590 [ 1093.579676] __split_vma+0x17c/0x4e0 [ 1093.580460] __do_munmap+0xfae/0x1260 [ 1093.581271] ? arch_get_unmapped_area+0x450/0x450 [ 1093.582300] ? lock_release+0x680/0x680 [ 1093.583139] mmap_region+0x7cc/0x1500 [ 1093.583955] do_mmap+0x868/0x1370 [ 1093.584376] FAULT_INJECTION: forcing a failure. [ 1093.584376] name failslab, interval 1, probability 0, space 0, times 0 [ 1093.584701] vm_mmap_pgoff+0x198/0x1f0 [ 1093.584728] ? randomize_page+0xb0/0xb0 [ 1093.588718] ksys_mmap_pgoff+0x41c/0x560 [ 1093.589580] ? find_mergeable_anon_vma+0x250/0x250 [ 1093.590622] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1093.591731] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1093.592820] do_syscall_64+0x33/0x40 [ 1093.593616] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1093.594687] RIP: 0033:0x7fcf423d9b62 [ 1093.595466] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1093.599331] RSP: 002b:00007fcf3f94f0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1093.600938] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf423d9b62 [ 1093.602443] RDX: 0000000000000003 RSI: 00000000000001d0 RDI: 0000000020ffe000 [ 1093.603944] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 1093.605460] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1093.606965] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1093.608499] CPU: 0 PID: 7591 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1093.609963] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1093.611726] Call Trace: [ 1093.612288] dump_stack+0x107/0x167 [ 1093.613056] should_fail.cold+0x5/0xa [ 1093.613873] ? create_object.isra.0+0x3a/0xa30 [ 1093.614834] should_failslab+0x5/0x20 [ 1093.615642] kmem_cache_alloc+0x5b/0x310 [ 1093.616501] ? __lock_acquire+0xbb1/0x5b00 [ 1093.617404] create_object.isra.0+0x3a/0xa30 [ 1093.618331] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1093.619407] kmem_cache_alloc_node+0x169/0x330 [ 1093.620372] __alloc_skb+0x6d/0x5b0 [ 1093.621147] __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1093.622230] ? raw6_destroy+0x30/0x30 [ 1093.623058] ? ip6_sk_dst_lookup_flow+0x6f0/0x6f0 [ 1093.624076] ? ip6_mtu+0x1e9/0x3d0 [ 1093.624831] ? ip6_setup_cork+0xfb7/0x1740 [ 1093.625733] ip6_append_data+0x1e6/0x330 [ 1093.626588] ? raw6_destroy+0x30/0x30 [ 1093.627399] ? raw6_destroy+0x30/0x30 [ 1093.628210] rawv6_sendmsg+0x1576/0x3d60 [ 1093.629084] ? dst_output+0x480/0x480 [ 1093.630084] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1093.631186] ? lock_acquire+0x197/0x470 [ 1093.632017] ? lock_acquire+0x197/0x470 [ 1093.632842] ? find_held_lock+0x2c/0x110 [ 1093.633700] ? sock_has_perm+0x1ea/0x280 [ 1093.634551] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1093.635650] ? dst_output+0x480/0x480 [ 1093.636448] inet_sendmsg+0x11d/0x140 [ 1093.637246] ? inet_send_prepare+0x540/0x540 [ 1093.638171] __sock_sendmsg+0x13c/0x190 [ 1093.638998] __sys_sendto+0x21c/0x320 [ 1093.639796] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1093.640780] ? lock_downgrade+0x6d0/0x6d0 [ 1093.641663] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1093.642690] ? ksys_write+0x1a9/0x260 [ 1093.643482] ? __ia32_sys_read+0xb0/0xb0 [ 1093.644345] __x64_sys_sendto+0xdd/0x1b0 [ 1093.645200] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1093.646283] do_syscall_64+0x33/0x40 [ 1093.647071] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1093.648138] RIP: 0033:0x7f9fb52f7b19 [ 1093.648918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1093.652771] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1093.654356] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 [ 1093.655846] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1093.657342] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1093.658819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1093.660299] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 [ 1093.664023] loop7: detected capacity change from 0 to 41948160 00:18:13 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xf, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="ed41000000080000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000ba56a6e5000000000000000000000000000000000000000000000000ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000006000000000000000000000000000000000000000000000000000000000000000000000000000000078ce27cf000000000000000000000000000000000000000000000000ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3837363538343334302f66696c65302f66696c653000000000000000000000000000000000000000000000ee3520d6000000000000000000000000000000000000000000000000ed8100000a000000e1f4655fe1f4655fe1f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000070000000000000000000000000000000000000000000000000000000000000000000000000000000070f9333800000000000000000000000000000000000000000000000ed81000028230000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000090000000000000000000000000000000000000000000000000000000000000000000000000000000a9530bd8000000000000000000000000000000000000000000000000ed81000064000000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000a1aee7ad00"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}], 0x0, &(0x7f0000012f00)) 00:18:13 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 64) 00:18:13 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{}], 0x1, &(0x7f0000000180)={r1, r2+60000000}) [ 1093.781341] FAULT_INJECTION: forcing a failure. [ 1093.781341] name failslab, interval 1, probability 0, space 0, times 0 [ 1093.783801] CPU: 0 PID: 7600 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1093.785236] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1093.786975] Call Trace: [ 1093.787538] dump_stack+0x107/0x167 [ 1093.788304] should_fail.cold+0x5/0xa [ 1093.789104] ? create_object.isra.0+0x3a/0xa30 [ 1093.790075] should_failslab+0x5/0x20 [ 1093.790871] kmem_cache_alloc+0x5b/0x310 [ 1093.791730] create_object.isra.0+0x3a/0xa30 [ 1093.792656] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1093.793730] kmem_cache_alloc+0x159/0x310 [ 1093.794611] anon_vma_clone+0xdc/0x590 [ 1093.795439] __split_vma+0x17c/0x4e0 [ 1093.796224] __do_munmap+0xfae/0x1260 [ 1093.797024] ? arch_get_unmapped_area+0x450/0x450 [ 1093.798050] ? lock_release+0x680/0x680 [ 1093.798892] mmap_region+0x7cc/0x1500 [ 1093.799700] do_mmap+0x868/0x1370 [ 1093.800440] vm_mmap_pgoff+0x198/0x1f0 [ 1093.801258] ? randomize_page+0xb0/0xb0 [ 1093.802109] ksys_mmap_pgoff+0x41c/0x560 [ 1093.802967] ? find_mergeable_anon_vma+0x250/0x250 [ 1093.803996] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1093.805100] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1093.806208] do_syscall_64+0x33/0x40 [ 1093.807010] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1093.808114] RIP: 0033:0x7fcf423d9b62 [ 1093.808893] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 00:18:13 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) [ 1093.812748] RSP: 002b:00007fcf3f94f0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1093.814486] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf423d9b62 [ 1093.815993] RDX: 0000000000000003 RSI: 00000000000001d0 RDI: 0000000020ffe000 [ 1093.817514] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 1093.819005] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1093.820512] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1093.870805] loop1: detected capacity change from 0 to 147456 [ 1093.910372] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities 00:18:29 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) semtimedop(r0, &(0x7f0000000100)=[{}], 0x1, &(0x7f0000000180)={r1, r2+60000000}) 00:18:29 executing program 7: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r1, 0x0) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xa, 0x4000010, r1, 0xf7455000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x82d01, 0x0) creat(0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x501000, 0x0) setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r4 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) pivot_root(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file1\x00') dup2(r3, r4) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[@ANYRESHEX=r3], 0x278) sendfile(r0, r2, 0x0, 0x100000001) 00:18:29 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:18:29 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 5) 00:18:29 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0xdc05, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:18:29 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 11) 00:18:29 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 65) 00:18:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xe, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000011f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}], 0x0, &(0x7f0000012f00)) [ 1109.449911] FAULT_INJECTION: forcing a failure. [ 1109.449911] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.452710] CPU: 0 PID: 7621 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1109.454179] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1109.455943] Call Trace: [ 1109.456517] dump_stack+0x107/0x167 [ 1109.457298] should_fail.cold+0x5/0xa [ 1109.458129] ? create_object.isra.0+0x3a/0xa30 [ 1109.459104] should_failslab+0x5/0x20 [ 1109.459920] kmem_cache_alloc+0x5b/0x310 [ 1109.460794] create_object.isra.0+0x3a/0xa30 [ 1109.461738] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1109.462825] kmem_cache_alloc+0x159/0x310 [ 1109.463716] __alloc_file+0x21/0x320 [ 1109.464512] alloc_empty_file+0x6d/0x170 [ 1109.465375] alloc_file+0x5e/0x5a0 [ 1109.466147] alloc_file_pseudo+0x16a/0x250 [ 1109.467049] ? alloc_file+0x5a0/0x5a0 [ 1109.467866] ? shmem_get_inode+0x55c/0xbc0 [ 1109.468528] loop7: detected capacity change from 0 to 41948160 [ 1109.468770] __shmem_file_setup+0x144/0x320 [ 1109.468799] ? _copy_from_user+0xfb/0x1b0 [ 1109.471921] __do_sys_memfd_create+0x275/0x450 [ 1109.472896] ? memfd_file_seals_ptr+0x170/0x170 [ 1109.473903] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1109.475014] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1109.476112] do_syscall_64+0x33/0x40 [ 1109.476902] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1109.478005] RIP: 0033:0x7fee45b4bb19 [ 1109.478951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1109.483850] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1109.485886] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1109.487798] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1109.489750] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1109.491615] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1109.493530] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 [ 1109.502429] FAULT_INJECTION: forcing a failure. [ 1109.502429] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.504831] CPU: 1 PID: 7624 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1109.506300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1109.508040] Call Trace: 00:18:29 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(r0, &(0x7f0000000100)=[{0x0, 0xffd1}], 0x1, 0x0) [ 1109.508617] dump_stack+0x107/0x167 [ 1109.509638] should_fail.cold+0x5/0xa [ 1109.510521] should_failslab+0x5/0x20 [ 1109.511362] __kmalloc_node_track_caller+0x74/0x3b0 [ 1109.512451] ? __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1109.513614] __alloc_skb+0xb1/0x5b0 [ 1109.514422] __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1109.515522] ? raw6_destroy+0x30/0x30 [ 1109.516373] ? ip6_sk_dst_lookup_flow+0x6f0/0x6f0 [ 1109.517438] ? ip6_mtu+0x1e9/0x3d0 [ 1109.518225] ? ip6_setup_cork+0xfb7/0x1740 [ 1109.519147] ip6_append_data+0x1e6/0x330 [ 1109.520032] ? raw6_destroy+0x30/0x30 [ 1109.521020] ? raw6_destroy+0x30/0x30 [ 1109.522066] rawv6_sendmsg+0x1576/0x3d60 [ 1109.523171] ? dst_output+0x480/0x480 [ 1109.524220] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1109.525648] ? lock_acquire+0x197/0x470 [ 1109.526538] ? lock_acquire+0x197/0x470 [ 1109.527406] ? find_held_lock+0x2c/0x110 [ 1109.528302] ? sock_has_perm+0x1ea/0x280 [ 1109.529184] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1109.530349] ? dst_output+0x480/0x480 [ 1109.531174] inet_sendmsg+0x11d/0x140 [ 1109.532008] ? inet_send_prepare+0x540/0x540 [ 1109.532979] __sock_sendmsg+0x13c/0x190 [ 1109.533872] __sys_sendto+0x21c/0x320 [ 1109.534713] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1109.535725] ? lock_downgrade+0x6d0/0x6d0 [ 1109.536656] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1109.537788] ? ksys_write+0x1a9/0x260 [ 1109.538653] ? __ia32_sys_read+0xb0/0xb0 [ 1109.539548] __x64_sys_sendto+0xdd/0x1b0 [ 1109.540451] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1109.541593] do_syscall_64+0x33/0x40 [ 1109.542413] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1109.543538] RIP: 0033:0x7f9fb52f7b19 [ 1109.544368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1109.548395] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1109.550063] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 [ 1109.551621] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1109.553173] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1109.554753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1109.556315] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 [ 1109.559489] loop1: detected capacity change from 0 to 143360 [ 1109.564405] FAULT_INJECTION: forcing a failure. [ 1109.564405] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.566946] CPU: 0 PID: 7629 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1109.568393] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1109.570152] Call Trace: [ 1109.570729] dump_stack+0x107/0x167 [ 1109.571510] should_fail.cold+0x5/0xa [ 1109.572326] ? vm_area_alloc+0x1c/0x110 [ 1109.573172] should_failslab+0x5/0x20 [ 1109.573996] kmem_cache_alloc+0x5b/0x310 [ 1109.574868] vm_area_alloc+0x1c/0x110 [ 1109.575678] mmap_region+0x982/0x1500 [ 1109.576503] do_mmap+0x868/0x1370 [ 1109.577252] vm_mmap_pgoff+0x198/0x1f0 [ 1109.578092] ? randomize_page+0xb0/0xb0 [ 1109.578954] ksys_mmap_pgoff+0x41c/0x560 [ 1109.579826] ? find_mergeable_anon_vma+0x250/0x250 [ 1109.580877] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1109.582003] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1109.583106] do_syscall_64+0x33/0x40 [ 1109.583907] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1109.584992] RIP: 0033:0x7fcf423d9b62 [ 1109.585800] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1109.589697] RSP: 002b:00007fcf3f94f0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1109.591309] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf423d9b62 [ 1109.592816] RDX: 0000000000000003 RSI: 00000000000001d0 RDI: 0000000020ffe000 [ 1109.594336] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 1109.595852] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1109.596824] loop6: detected capacity change from 0 to 32768 [ 1109.597358] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:18:29 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 6) [ 1109.612855] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1109.620998] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 1109.641350] FAULT_INJECTION: forcing a failure. [ 1109.641350] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.643893] CPU: 1 PID: 7638 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1109.645396] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1109.647231] Call Trace: [ 1109.647815] dump_stack+0x107/0x167 [ 1109.648618] should_fail.cold+0x5/0xa [ 1109.649459] ? create_object.isra.0+0x3a/0xa30 [ 1109.650481] should_failslab+0x5/0x20 [ 1109.651316] kmem_cache_alloc+0x5b/0x310 [ 1109.652198] create_object.isra.0+0x3a/0xa30 [ 1109.653160] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1109.654304] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1109.655414] ? __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1109.656544] __alloc_skb+0xb1/0x5b0 [ 1109.657349] __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1109.658471] ? raw6_destroy+0x30/0x30 [ 1109.659319] ? ip6_sk_dst_lookup_flow+0x6f0/0x6f0 [ 1109.660373] ? ip6_mtu+0x1e9/0x3d0 [ 1109.661141] ? ip6_setup_cork+0xfb7/0x1740 [ 1109.662084] ip6_append_data+0x1e6/0x330 [ 1109.662963] ? raw6_destroy+0x30/0x30 [ 1109.663808] ? raw6_destroy+0x30/0x30 [ 1109.664648] rawv6_sendmsg+0x1576/0x3d60 [ 1109.665560] ? dst_output+0x480/0x480 [ 1109.666414] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1109.667575] ? lock_acquire+0x197/0x470 [ 1109.668445] ? lock_acquire+0x197/0x470 [ 1109.669307] ? find_held_lock+0x2c/0x110 [ 1109.670183] ? sock_has_perm+0x1ea/0x280 [ 1109.671067] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1109.672208] ? dst_output+0x480/0x480 [ 1109.673049] inet_sendmsg+0x11d/0x140 [ 1109.673894] ? inet_send_prepare+0x540/0x540 [ 1109.674853] __sock_sendmsg+0x13c/0x190 [ 1109.675724] __sys_sendto+0x21c/0x320 [ 1109.676569] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1109.677616] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1109.678839] ? trace_hardirqs_on+0x5b/0x180 [ 1109.679859] ? __switch_to_asm+0x34/0x60 [ 1109.680728] ? __schedule+0x82c/0x1ea0 [ 1109.681587] ? ksys_write+0x1a9/0x260 [ 1109.682408] __x64_sys_sendto+0xdd/0x1b0 [ 1109.683272] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1109.684356] do_syscall_64+0x33/0x40 [ 1109.685136] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1109.686234] RIP: 0033:0x7f9fb52f7b19 [ 1109.687025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1109.691224] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1109.692841] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 00:18:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xd, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000011e00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}], 0x0, &(0x7f0000012f00)) [ 1109.694493] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1109.696232] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1109.697781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1109.699299] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 00:18:29 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 7) [ 1109.789712] loop1: detected capacity change from 0 to 139264 00:18:29 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 12) [ 1109.818108] FAULT_INJECTION: forcing a failure. [ 1109.818108] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.820569] CPU: 1 PID: 7648 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1109.822046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1109.823820] Call Trace: [ 1109.823985] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1109.824394] dump_stack+0x107/0x167 [ 1109.824417] should_fail.cold+0x5/0xa [ 1109.824438] ? __alloc_skb+0x6d/0x5b0 [ 1109.824463] should_failslab+0x5/0x20 [ 1109.829758] kmem_cache_alloc_node+0x55/0x330 [ 1109.830957] __alloc_skb+0x6d/0x5b0 [ 1109.831942] __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1109.833159] ? raw6_destroy+0x30/0x30 [ 1109.834014] ? ip6_sk_dst_lookup_flow+0x6f0/0x6f0 [ 1109.835043] ? ip6_mtu+0x1e9/0x3d0 [ 1109.835798] ? ip6_setup_cork+0xfb7/0x1740 [ 1109.836700] ip6_append_data+0x1e6/0x330 [ 1109.837586] ? raw6_destroy+0x30/0x30 [ 1109.838402] ? raw6_destroy+0x30/0x30 [ 1109.839208] rawv6_sendmsg+0x1576/0x3d60 [ 1109.840085] ? dst_output+0x480/0x480 [ 1109.840918] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1109.842062] ? lock_acquire+0x197/0x470 [ 1109.842917] ? lock_acquire+0x197/0x470 [ 1109.843764] ? find_held_lock+0x2c/0x110 [ 1109.844628] ? sock_has_perm+0x1ea/0x280 [ 1109.845524] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1109.846645] ? dst_output+0x480/0x480 [ 1109.847461] inet_sendmsg+0x11d/0x140 [ 1109.848271] ? inet_send_prepare+0x540/0x540 [ 1109.849199] __sock_sendmsg+0x13c/0x190 [ 1109.850075] __sys_sendto+0x21c/0x320 [ 1109.850905] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1109.851892] ? lock_downgrade+0x6d0/0x6d0 [ 1109.852789] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1109.853994] ? ksys_write+0x1a9/0x260 [ 1109.855006] ? __ia32_sys_read+0xb0/0xb0 [ 1109.856023] __x64_sys_sendto+0xdd/0x1b0 [ 1109.856894] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1109.858001] do_syscall_64+0x33/0x40 [ 1109.858793] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1109.859889] RIP: 0033:0x7f9fb52f7b19 [ 1109.860689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1109.864616] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1109.866246] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 [ 1109.867768] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1109.869293] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1109.870827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1109.872380] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 00:18:29 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x0, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:18:29 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 66) 00:18:29 executing program 7: ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000100)=0x1) r0 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000240), 0x0, 0x0) r2 = dup2(r0, r1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0xc, 0x40010, r2, 0x8000000) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000140)) syz_open_dev$usbmon(&(0x7f0000000280), 0x3, 0x9c401) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000580)="eb3c906d6b66732e66027400020801000470008400f8016256430dc5d0a1cef76b2f1a5a65a04aab9ec343d6116a0c98382323d544b160114ea1e2bbf8d7df3aafc00002eb648ad4c16f4f91a29444d68114309cefdf08027f42260fd66ce0a1b087f8a22cc52e923f23a1f9154ae23d73260b4a12517be50dde4218943dca07cdfe0d85546ae10cc2897de71a981864cb08c6ae1994c720a2acd1a10438b1c9a53d31660bf2dfd5fde9bcc3a26116f568c3ec4f67d9d54faec9181a33d28b4dd4b074fa4ea7277783b45630b7feef88171b1b62bf50bfacda9247d947b4b2a4d034e0f67aca2b5aa008df763d9b402a84b9ebc6ddc6355fbc619fd77353c071bf5754e91465d14858fd13c91c4afd8eeb440c0349eb91c220d6976a75802cd52d4809d73af4514ed1f584594f395ac4582f746e0985e3884a5c3b28904ab1bc1bced9a670634eb1621d46a0f533d944a86c59b2e7b1b40f165b288e80cfe184ea65484bad29067399323cdb3bfc59b4b52e901238724f21b3c0745e6c7b6021b9d87fcc9d81eb7907dd013adead4cea71102700f737c9ce868afbcbe9e574f33505189221ebb1843b22511af82f30dd575d47d770abcddda4f36d639ce21817c32d63a013adc26afe109a03a5fad2110a3e7214480ddb22fd8678520b588c0b8002d85bc991444c316d707686b0ce1dc75759afa0252d", 0x1f7}, {0x0, 0x0, 0x1001000a00}], 0xa0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) creat(0x0, 0x0) syz_mount_image$nfs4(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', 0x3, 0x0, &(0x7f0000000280), 0x28f5012, &(0x7f0000000300)={[{'/dev/usbmon#\x00'}, {':'}, {'\x89!w\\'}, {'/dev/usbmon#\x00'}, {'/dev/usbmon#\x00'}, {'vfat\x00'}], [{@appraise}]}) setsockopt$WPAN_SECURITY_LEVEL(0xffffffffffffffff, 0x0, 0x2, &(0x7f0000000240)=0x2, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) write$binfmt_elf64(r3, &(0x7f0000000440)=ANY=[@ANYBLOB="7f454c46042e000000000000000000000000000000000000000000008000000040000000000000007003000000f6fffffe010000000038000200ffff00005afd070000000000000000000000000000003bdf00000000000005000000000000000000000000000000000000000000000000000000000000000000b200000000000000000000d35bd70f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e5ff"], 0x278) sendfile(r3, r4, 0x0, 0x100000001) 00:18:29 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0xe803, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) [ 1109.962488] FAULT_INJECTION: forcing a failure. [ 1109.962488] name failslab, interval 1, probability 0, space 0, times 0 [ 1109.965105] CPU: 0 PID: 7655 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1109.966691] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1109.968611] Call Trace: [ 1109.969248] dump_stack+0x107/0x167 [ 1109.970123] should_fail.cold+0x5/0xa [ 1109.971003] ? security_file_alloc+0x34/0x170 [ 1109.972040] should_failslab+0x5/0x20 [ 1109.972925] kmem_cache_alloc+0x5b/0x310 [ 1109.973882] security_file_alloc+0x34/0x170 [ 1109.974867] __alloc_file+0xb7/0x320 [ 1109.975735] alloc_empty_file+0x6d/0x170 [ 1109.976666] alloc_file+0x5e/0x5a0 [ 1109.977499] alloc_file_pseudo+0x16a/0x250 [ 1109.978520] ? alloc_file+0x5a0/0x5a0 [ 1109.979428] ? shmem_get_inode+0x55c/0xbc0 [ 1109.980410] __shmem_file_setup+0x144/0x320 [ 1109.981396] ? _copy_from_user+0xfb/0x1b0 [ 1109.982547] __do_sys_memfd_create+0x275/0x450 [ 1109.983600] ? memfd_file_seals_ptr+0x170/0x170 [ 1109.984669] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1109.985925] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1109.987099] do_syscall_64+0x33/0x40 [ 1109.987959] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1109.989137] RIP: 0033:0x7fee45b4bb19 [ 1109.990046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1109.994257] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1109.995993] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1109.997662] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1109.999313] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1110.000952] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1110.002624] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 [ 1110.024042] FAULT_INJECTION: forcing a failure. [ 1110.024042] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.026770] CPU: 1 PID: 7658 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1110.028476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1110.030319] Call Trace: [ 1110.030890] dump_stack+0x107/0x167 [ 1110.031682] should_fail.cold+0x5/0xa [ 1110.032574] ? create_object.isra.0+0x3a/0xa30 [ 1110.033825] should_failslab+0x5/0x20 [ 1110.035014] kmem_cache_alloc+0x5b/0x310 [ 1110.036130] create_object.isra.0+0x3a/0xa30 [ 1110.037280] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1110.038389] kmem_cache_alloc+0x159/0x310 00:18:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="ed41000000080000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000ba56a6e5000000000000000000000000000000000000000000000000ed8100001a040000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000006000000000000000000000000000000000000000000000000000000000000000000000000000000078ce27cf000000000000000000000000000000000000000000000000ffa1000026000000e1f4655fe1f4655fe1f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3837363538343334302f66696c65302f66696c653000000000000000000000000000000000000000000000ee3520d6000000000000000000000000000000000000000000000000ed8100000a000000e1f4655fe1f4655fe1f4655f00000000000001008000000000000800010000000af301000400000000000000000000000100000070000000000000000000000000000000000000000000000000000000000000000000000000000000070f9333800000000000000000000000000000000000000000000000ed81000028230000e1f4655fe1f4655fe1f4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000090000000000000000000000000000000000000000000000000000000000000000000000000000000a9530bd8000000000000000000000000000000000000000000000000ed81000064000000e1f4655fe1f4655fe1f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000a1aee7ad00"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}], 0x0, &(0x7f0000012f00)) [ 1110.039395] vm_area_alloc+0x1c/0x110 [ 1110.040240] mmap_region+0x982/0x1500 [ 1110.041066] do_mmap+0x868/0x1370 [ 1110.041835] vm_mmap_pgoff+0x198/0x1f0 [ 1110.042670] ? randomize_page+0xb0/0xb0 [ 1110.043551] ksys_mmap_pgoff+0x41c/0x560 [ 1110.044418] ? find_mergeable_anon_vma+0x250/0x250 [ 1110.045490] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1110.046620] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1110.047738] do_syscall_64+0x33/0x40 [ 1110.048538] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1110.049654] RIP: 0033:0x7fcf423d9b62 [ 1110.050452] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1110.054405] RSP: 002b:00007fcf3f94f0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1110.056045] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf423d9b62 [ 1110.057581] RDX: 0000000000000003 RSI: 00000000000001d0 RDI: 0000000020ffe000 [ 1110.059094] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 1110.060629] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1110.062157] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 00:18:29 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xc, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000011d00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}], 0x0, &(0x7f0000012f00)) 00:18:30 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 13) 00:18:30 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0xf401, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:18:30 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 8) [ 1110.213376] FAULT_INJECTION: forcing a failure. [ 1110.213376] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.216118] CPU: 1 PID: 7667 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1110.217592] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1110.219331] Call Trace: [ 1110.219896] dump_stack+0x107/0x167 [ 1110.220682] should_fail.cold+0x5/0xa [ 1110.221499] ? create_object.isra.0+0x3a/0xa30 [ 1110.222456] should_failslab+0x5/0x20 [ 1110.223257] kmem_cache_alloc+0x5b/0x310 [ 1110.224119] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1110.225279] create_object.isra.0+0x3a/0xa30 [ 1110.226202] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1110.227281] kmem_cache_alloc+0x159/0x310 [ 1110.228158] security_file_alloc+0x34/0x170 [ 1110.229061] __alloc_file+0xb7/0x320 [ 1110.229850] alloc_empty_file+0x6d/0x170 [ 1110.230702] alloc_file+0x5e/0x5a0 [ 1110.231445] alloc_file_pseudo+0x16a/0x250 [ 1110.232322] ? alloc_file+0x5a0/0x5a0 [ 1110.233117] ? shmem_get_inode+0x55c/0xbc0 [ 1110.234018] __shmem_file_setup+0x144/0x320 [ 1110.234920] ? _copy_from_user+0xfb/0x1b0 [ 1110.235781] __do_sys_memfd_create+0x275/0x450 [ 1110.236736] ? memfd_file_seals_ptr+0x170/0x170 [ 1110.237720] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1110.238822] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1110.239912] do_syscall_64+0x33/0x40 [ 1110.240685] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1110.241757] RIP: 0033:0x7fee45b4bb19 [ 1110.242530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1110.246370] RSP: 002b:00007fee430c0f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f [ 1110.247949] RAX: ffffffffffffffda RBX: 0000000020000200 RCX: 00007fee45b4bb19 [ 1110.249492] RDX: 0000000000008000 RSI: 0000000000000000 RDI: 00007fee45ba50fb [ 1110.250979] RBP: 0000000000000002 R08: 0000000000004000 R09: ffffffffffffffff [ 1110.252461] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000008100000 [ 1110.253960] R13: 0000000020000100 R14: 0000000000008000 R15: 0000000020000040 [ 1110.260433] loop1: detected capacity change from 0 to 135168 [ 1110.286653] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1110.310838] FAULT_INJECTION: forcing a failure. [ 1110.310838] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.313327] CPU: 0 PID: 7671 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1110.314801] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1110.316562] Call Trace: [ 1110.317136] dump_stack+0x107/0x167 [ 1110.317950] should_fail.cold+0x5/0xa [ 1110.318768] ? create_object.isra.0+0x3a/0xa30 [ 1110.319739] should_failslab+0x5/0x20 [ 1110.320549] kmem_cache_alloc+0x5b/0x310 [ 1110.321419] create_object.isra.0+0x3a/0xa30 [ 1110.322384] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1110.323464] kmem_cache_alloc_node+0x169/0x330 [ 1110.324454] __alloc_skb+0x6d/0x5b0 [ 1110.325245] __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1110.326583] ? raw6_destroy+0x30/0x30 [ 1110.327414] ? ip6_sk_dst_lookup_flow+0x6f0/0x6f0 [ 1110.328644] ? ip6_mtu+0x1e9/0x3d0 [ 1110.329409] ? ip6_setup_cork+0xfb7/0x1740 [ 1110.330518] ip6_append_data+0x1e6/0x330 [ 1110.331386] ? raw6_destroy+0x30/0x30 [ 1110.332357] ? raw6_destroy+0x30/0x30 [ 1110.333174] rawv6_sendmsg+0x1576/0x3d60 [ 1110.334252] ? dst_output+0x480/0x480 [ 1110.335098] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1110.336490] ? lock_acquire+0x197/0x470 [ 1110.337355] ? lock_acquire+0x197/0x470 [ 1110.338391] ? find_held_lock+0x2c/0x110 [ 1110.339270] ? sock_has_perm+0x1ea/0x280 [ 1110.340151] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1110.341535] ? dst_output+0x480/0x480 [ 1110.342368] inet_sendmsg+0x11d/0x140 [ 1110.343176] ? inet_send_prepare+0x540/0x540 [ 1110.344116] __sock_sendmsg+0x13c/0x190 [ 1110.344973] __sys_sendto+0x21c/0x320 [ 1110.345801] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1110.346798] ? lock_downgrade+0x6d0/0x6d0 [ 1110.347715] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1110.348774] ? ksys_write+0x1a9/0x260 [ 1110.349618] ? __ia32_sys_read+0xb0/0xb0 [ 1110.350503] __x64_sys_sendto+0xdd/0x1b0 [ 1110.351383] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1110.352494] do_syscall_64+0x33/0x40 [ 1110.353303] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1110.354430] RIP: 0033:0x7f9fb52f7b19 [ 1110.355240] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1110.359252] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1110.360913] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 [ 1110.362487] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1110.364045] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1110.365620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1110.367225] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 00:18:30 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xb, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000011c00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}], 0x0, &(0x7f0000012f00)) [ 1110.430138] loop6: detected capacity change from 0 to 32768 [ 1110.440689] loop1: detected capacity change from 0 to 131072 [ 1110.447430] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1110.461044] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 1110.753876] loop7: detected capacity change from 0 to 41948160 [ 1124.493221] FAULT_INJECTION: forcing a failure. [ 1124.493221] name failslab, interval 1, probability 0, space 0, times 0 [ 1124.494624] CPU: 1 PID: 7692 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1124.495401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1124.496337] Call Trace: [ 1124.496645] dump_stack+0x107/0x167 [ 1124.497060] should_fail.cold+0x5/0xa [ 1124.497490] should_failslab+0x5/0x20 [ 1124.497926] __kmalloc_node_track_caller+0x74/0x3b0 [ 1124.498488] ? __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1124.499092] __alloc_skb+0xb1/0x5b0 [ 1124.499515] __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1124.500093] ? raw6_destroy+0x30/0x30 [ 1124.500535] ? ip6_sk_dst_lookup_flow+0x6f0/0x6f0 [ 1124.501091] ? ip6_mtu+0x1e9/0x3d0 [ 1124.501498] ? ip6_setup_cork+0xfb7/0x1740 [ 1124.501997] ip6_append_data+0x1e6/0x330 [ 1124.502461] ? raw6_destroy+0x30/0x30 [ 1124.502891] ? raw6_destroy+0x30/0x30 [ 1124.503329] rawv6_sendmsg+0x1576/0x3d60 [ 1124.503793] ? dst_output+0x480/0x480 [ 1124.504242] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1124.504855] ? lock_acquire+0x197/0x470 [ 1124.505311] ? lock_acquire+0x197/0x470 [ 1124.505768] ? find_held_lock+0x2c/0x110 [ 1124.506231] ? sock_has_perm+0x1ea/0x280 [ 1124.506693] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1124.507284] ? dst_output+0x480/0x480 00:18:44 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000140)) (fail_nth: 67) 00:18:44 executing program 3: perf_event_open(&(0x7f0000000440)={0x2, 0x80, 0x72, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0xfe80, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, 0x0) 00:18:44 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x46e2, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x1, 0x0, 0x1000000007) r2 = syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0xffff, 0x5, &(0x7f0000000540)=[{&(0x7f0000000100)="64c3c16051d076cc4da4a0a169861826f685a7c98f47d720058f1b4e0eebd3579e5b04e41053b89e9890ee254180f0c70dbd3b9b5f26e752e6cb6611e1bf3d0d0333e5240bd294552a219b9bb2a69f3a68168d6376c8afc7b7f6608d3e9401f1b7033f292061f918caa71a6527299063c3217a7dbd627e19db34305c96c8631a9c0d817500e941e789af2a3416ee13d3fa95a1d6a73d881fc584336415b48154709e6875c126646b28a9b88f0b06b1d88466b9d45b72411b445d8b56dece64b8593ab6d7b45d7f0432e396ee9763725165d0c7516804484bc73707864ca6ebb3e0e078569c36a4ee53eb", 0xea, 0x7}, {&(0x7f0000000200)="d82f9975c8d4172c093fb3cda793bff1359a8fe7adcc6ee3a8286672df393d1a63ec29f5943513b04217f5c1b8504f9dbabfb66bc5beefb38f8c97c948208b398c9a3fba1942cf9b6bb51100f33bcbb40d4989f422a84b085e24ba892375d25250167a0c4f9fca4b9c7f8902daa3de03f56c45bf3617aa64476cd2854e356f8a66e497593c912811220a362a136b3cffc71c15319e39859ae8e367667df1fb2bb197f4e2343c882e", 0xa8, 0x100000001}, {&(0x7f00000003c0)="6b194edaf384a543316abc500df0911ee9dc6dd9fa994c973118646fa3930dd98794672f97ef20a34618f7d86740d1238f159578cf6aad6d1ff6d4b4b7f28ce068219a7c638c249f775db7aa2e0cc17dbe946ce81e86492af1726afc2c904f9655f05315bd7bba3a4b772b0a286653b2b330c7f4cf1d95238360188e9fd377fcb7ec89a1fc066dab7de26187c074188c4a5347d04b65a077e662ac937fa0ee7f7b0d715c2455108385ce25613fd56782b0d4ab3956383d3a60836e0e0dd99614b0684a", 0xc3, 0x24b8}, {&(0x7f00000002c0)="64abbefb8d97561d3a7f957abd59a5d4ca8e4bf4eb12da2ab800484bb71adb79fa3a627c3c19f1205000f9c526a38bf52e11d5a2c6778a66aac9e7f50973da4e823c26e2e1fea1ab7a06d170ffbe42c5f4d0480a3d67f2c54067fd5942f4d267b5875644f6e649732451ffdde05bf2044d539990ffd7605919d7a136e4e888b2882eb60f5f239c281157048d1238ff9fab2af380bad154463001", 0x9a, 0x800}, {&(0x7f00000004c0)="b163943001d94590294690c281a10a8a678d47f901012b111bc38adf05a33f4d20f1d2edc33d7431ca894c3aa05591e3e78aebbf9f51f1c850b7e56528781d18f1d54573515e4f375375b920300b0112988178a739e066a1d262a74c283d823da6fc7f96cc2f86e000a0", 0x6a, 0x7}], 0x2008050, &(0x7f00000005c0)={[{@init_itable}, {@noinit_itable}, {@nogrpid}, {@stripe={'stripe', 0x3d, 0x3ff}}, {@i_version}, {@journal_async_commit}], [{@euid_lt={'euid<', 0xffffffffffffffff}}, {@uid_lt={'uid<', 0xee00}}, {@dont_appraise}]}) openat(r2, &(0x7f0000000680)='./file0\x00', 0x4000, 0x90) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f00000008c0)=@v3, 0x18, 0x0) 00:18:44 executing program 2: r0 = semget$private(0x0, 0x6, 0x0) clock_gettime(0x0, &(0x7f0000000140)) semtimedop(r0, &(0x7f0000000100)=[{0x0, 0xffd1}], 0x1, 0x0) 00:18:44 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 9) [ 1124.507725] inet_sendmsg+0x11d/0x140 [ 1124.508403] ? inet_send_prepare+0x540/0x540 [ 1124.508940] __sock_sendmsg+0x13c/0x190 [ 1124.509388] __sys_sendto+0x21c/0x320 [ 1124.509841] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1124.510365] ? lock_downgrade+0x6d0/0x6d0 [ 1124.510851] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1124.511414] ? ksys_write+0x1a9/0x260 [ 1124.511855] ? __ia32_sys_read+0xb0/0xb0 [ 1124.512326] __x64_sys_sendto+0xdd/0x1b0 [ 1124.512791] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1124.513384] do_syscall_64+0x33/0x40 [ 1124.513815] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1124.514390] RIP: 0033:0x7f9fb52f7b19 [ 1124.514647] FAULT_INJECTION: forcing a failure. [ 1124.514647] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1124.514818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1124.514834] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1124.520225] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 [ 1124.521025] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1124.521834] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1124.522636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1124.523440] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 [ 1124.524271] CPU: 0 PID: 7698 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1124.525749] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1124.527498] Call Trace: [ 1124.528055] dump_stack+0x107/0x167 [ 1124.528832] should_fail.cold+0x5/0xa [ 1124.529656] __alloc_pages_nodemask+0x182/0x600 [ 1124.530653] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1124.531919] ? walk_mem_res+0x170/0x170 [ 1124.532757] alloc_pages_current+0x187/0x280 [ 1124.533702] pte_alloc_one+0x16/0x1a0 [ 1124.534523] __pte_alloc+0x1d/0x330 [ 1124.535291] remap_pfn_range_internal+0x9a3/0xf60 [ 1124.536311] ? lookup_memtype+0x5b/0x200 [ 1124.537175] ? apply_to_existing_page_range+0x40/0x40 [ 1124.538296] remap_pfn_range+0xcd/0x160 [ 1124.539135] ? remap_pfn_range_notrack+0x70/0x70 [ 1124.540132] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1124.541220] io_uring_mmap+0x398/0x530 [ 1124.542069] mmap_file+0x5e/0xe0 [ 1124.542776] mmap_region+0xc4d/0x1500 [ 1124.543591] do_mmap+0x868/0x1370 [ 1124.544324] vm_mmap_pgoff+0x198/0x1f0 [ 1124.545144] ? randomize_page+0xb0/0xb0 [ 1124.546019] ksys_mmap_pgoff+0x41c/0x560 [ 1124.546879] ? find_mergeable_anon_vma+0x250/0x250 [ 1124.547915] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1124.549013] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1124.550138] do_syscall_64+0x33/0x40 [ 1124.550916] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1124.551988] RIP: 0033:0x7fcf423d9b62 [ 1124.552763] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1124.556636] RSP: 002b:00007fcf3f94f0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1124.558255] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf423d9b62 [ 1124.559744] RDX: 0000000000000003 RSI: 00000000000001d0 RDI: 0000000020ffe000 [ 1124.561232] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 1124.562745] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1124.564233] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1124.574719] FAULT_INJECTION: forcing a failure. [ 1124.574719] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1124.576312] CPU: 1 PID: 7701 Comm: syz-executor.6 Not tainted 5.10.246 #1 [ 1124.577087] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1124.578044] Call Trace: [ 1124.578349] dump_stack+0x107/0x167 [ 1124.578764] should_fail.cold+0x5/0xa [ 1124.579218] __alloc_pages_nodemask+0x182/0x600 [ 1124.579749] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1124.580445] ? lock_downgrade+0x6d0/0x6d0 [ 1124.580912] ? lock_acquire+0x197/0x470 [ 1124.581379] alloc_pages_vma+0xbb/0x410 [ 1124.581843] shmem_alloc_page+0x10f/0x1e0 [ 1124.582313] ? shmem_init_inode+0x20/0x20 [ 1124.583025] ? percpu_counter_add_batch+0x8b/0x140 [ 1124.583592] ? __vm_enough_memory+0x184/0x360 [ 1124.584110] shmem_getpage_gfp.constprop.0+0x512/0x1920 [ 1124.584733] ? shmem_unuse_inode+0xf60/0xf60 [ 1124.585235] ? timestamp_truncate+0x1e6/0x2f0 [ 1124.585757] loop1: detected capacity change from 0 to 65536 [ 1124.586410] ? iov_iter_fault_in_readable+0x9a/0x410 [ 1124.586997] shmem_write_begin+0xf7/0x1d0 [ 1124.587477] generic_perform_write+0x20a/0x4f0 [ 1124.588009] ? page_cache_prev_miss+0x310/0x310 [ 1124.588545] ? evict_inodes+0x470/0x470 [ 1124.589007] ? generic_write_checks+0x2ad/0x390 [ 1124.589550] __generic_file_write_iter+0x39d/0x5d0 [ 1124.590128] generic_file_write_iter+0xdb/0x230 [ 1124.590659] ? iov_iter_init+0x3c/0x130 [ 1124.591121] new_sync_write+0x42c/0x660 [ 1124.591578] ? new_sync_read+0x6f0/0x6f0 [ 1124.592044] ? __x64_sys_pwrite64+0x201/0x260 [ 1124.592115] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1124.592561] ? lock_release+0x680/0x680 [ 1124.592589] ? selinux_file_permission+0x92/0x520 [ 1124.592609] ? security_file_permission+0xb1/0xe0 [ 1124.595832] vfs_write+0x7c0/0xb10 [ 1124.596245] __x64_sys_pwrite64+0x201/0x260 [ 1124.596736] ? ksys_pwrite64+0x1b0/0x1b0 [ 1124.597213] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1124.597829] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1124.598424] do_syscall_64+0x33/0x40 [ 1124.598849] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1124.599435] RIP: 0033:0x7fee45afeab7 [ 1124.599863] Code: 08 89 3c 24 48 89 4c 24 18 e8 e5 f8 ff ff 4c 8b 54 24 18 48 8b 54 24 10 41 89 c0 48 8b 74 24 08 8b 3c 24 b8 12 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 04 24 e8 15 f9 ff ff 48 8b [ 1124.601998] RSP: 002b:00007fee430c0f20 EFLAGS: 00000293 ORIG_RAX: 0000000000000012 [ 1124.602853] RAX: ffffffffffffffda RBX: 00007fee45b95970 RCX: 00007fee45afeab7 [ 1124.603654] RDX: 0000000000000025 RSI: 0000000020010000 RDI: 0000000000000004 [ 1124.604457] RBP: 0000000000000002 R08: 0000000000000000 R09: ffffffffffffffff [ 1124.605256] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004 [ 1124.606064] R13: 0000000000000004 R14: 0000000020000200 R15: 0000000000000000 [ 1124.608436] loop7: detected capacity change from 0 to 135266304 [ 1124.611466] ------------[ cut here ]------------ [ 1124.612042] WARNING: CPU: 1 PID: 7698 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 1124.613064] Modules linked in: [ 1124.613470] CPU: 1 PID: 7698 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1124.614292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1124.615291] RIP: 0010:get_pat_info+0x216/0x270 [ 1124.615822] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 31 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 1a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 a5 a2 5a 00 e9 [ 1124.617981] RSP: 0018:ffff88804a97f890 EFLAGS: 00010216 [ 1124.618623] RAX: 0000000000024f64 RBX: ffff8880489bab00 RCX: ffffc90003fb3000 [ 1124.619478] RDX: 0000000000040000 RSI: ffffffff81124466 RDI: 0000000000000007 [ 1124.620330] RBP: ffff88804a97f948 R08: 0000000000000000 R09: ffff88804a97f818 [ 1124.621184] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 1124.622021] R13: 1ffff1100952ff12 R14: 0000000000000000 R15: ffff8880489bab50 [ 1124.622883] FS: 00007fcf3f94f700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 1124.623848] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1124.624544] CR2: 000055555ccd4708 CR3: 00000000482c8000 CR4: 0000000000350ee0 [ 1124.625394] Call Trace: [ 1124.625712] ? pgprot_writethrough+0xc0/0xc0 [ 1124.626245] ? finish_task_switch+0x126/0x5d0 [ 1124.627036] ? finish_task_switch+0xef/0x5d0 [ 1124.627978] untrack_pfn+0xdc/0x240 [ 1124.628922] ? track_pfn_insert+0x150/0x150 [ 1124.629796] ? lock_downgrade+0x6d0/0x6d0 [ 1124.630690] ? uprobe_munmap+0x95/0x560 [ 1124.631562] unmap_single_vma+0x1bc/0x300 [ 1124.632406] zap_page_range_single+0x2ce/0x450 [ 1124.633376] ? unmap_single_vma+0x300/0x300 [ 1124.634964] ? remap_pfn_range_internal+0xc56/0xf60 [ 1124.636769] ? lookup_memtype+0x5b/0x200 [ 1124.637872] ? apply_to_existing_page_range+0x40/0x40 [ 1124.638513] remap_pfn_range+0x139/0x160 [ 1124.638988] ? remap_pfn_range_notrack+0x70/0x70 [ 1124.639564] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1124.640189] io_uring_mmap+0x398/0x530 [ 1124.640644] mmap_file+0x5e/0xe0 [ 1124.641038] mmap_region+0xc4d/0x1500 [ 1124.641513] do_mmap+0x868/0x1370 [ 1124.641927] vm_mmap_pgoff+0x198/0x1f0 [ 1124.642405] ? randomize_page+0xb0/0xb0 [ 1124.642878] ksys_mmap_pgoff+0x41c/0x560 [ 1124.643374] ? find_mergeable_anon_vma+0x250/0x250 [ 1124.643946] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1124.644579] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1124.645204] do_syscall_64+0x33/0x40 [ 1124.645638] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1124.646262] RIP: 0033:0x7fcf423d9b62 [ 1124.646694] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1124.648834] RSP: 002b:00007fcf3f94f0f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1124.649760] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007fcf423d9b62 [ 1124.650610] RDX: 0000000000000003 RSI: 00000000000001d0 RDI: 0000000020ffe000 [ 1124.651461] RBP: 0000000020ffe000 R08: 0000000000000005 R09: 0000000000000000 [ 1124.652311] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1124.653160] R13: 0000000020ffc000 R14: 0000000020000040 R15: 0000000020ffe000 [ 1124.654003] irq event stamp: 1111 [ 1124.654436] hardirqs last enabled at (1121): [] console_unlock+0x92d/0xb40 [ 1124.655453] hardirqs last disabled at (1130): [] console_unlock+0x839/0xb40 [ 1124.656477] softirqs last enabled at (584): [] asm_call_irq_on_stack+0x12/0x20 [ 1124.657536] softirqs last disabled at (571): [] asm_call_irq_on_stack+0x12/0x20 [ 1124.658586] ---[ end trace 39e57ee498cbd623 ]--- 00:18:44 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0xa, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}, {&(0x7f0000011b00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}], 0x0, &(0x7f0000012f00)) 00:18:44 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000040)={[{@shortname_lower}]}) (fail_nth: 14) [ 1124.712461] loop6: detected capacity change from 0 to 32768 [ 1124.732339] loop1: detected capacity change from 0 to 18944 [ 1124.743584] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 1124.767725] FAT-fs (loop6): bogus number of reserved sectors [ 1124.769224] FAT-fs (loop6): Can't find a valid FAT filesystem 00:18:44 executing program 4: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000400)={@mcast1, @local, @mcast1, 0x0, 0x7, 0x7ff, 0x500, 0x800000000000000, 0x62000b}) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000380)={0x6, 0x7, 'syz2\x00'}, &(0x7f00000003c0)=0x28) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0x8000000) getsockopt$IP_SET_OP_GET_BYNAME(r1, 0x1, 0x53, &(0x7f0000000180)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000240)=0x28) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="000100000000002e2f66696c653000"]) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) syz_open_procfs(0x0, 0x0) getpgid(0xffffffffffffffff) rt_sigqueueinfo(0x0, 0x1d, &(0x7f0000000580)={0x1c, 0x7fffffff, 0x80000001}) 00:18:44 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x9, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}, {&(0x7f0000011800)="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"/768, 0x300, 0x2580}], 0x0, &(0x7f0000012f00)) [ 1124.848894] loop1: detected capacity change from 0 to 18944 [ 1124.890643] FAULT_INJECTION: forcing a failure. [ 1124.890643] name failslab, interval 1, probability 0, space 0, times 0 [ 1124.893043] CPU: 0 PID: 7723 Comm: syz-executor.0 Tainted: G W 5.10.246 #1 [ 1124.894761] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1124.896496] Call Trace: [ 1124.897054] dump_stack+0x107/0x167 [ 1124.897843] should_fail.cold+0x5/0xa [ 1124.898633] ? create_object.isra.0+0x3a/0xa30 [ 1124.899609] should_failslab+0x5/0x20 [ 1124.900411] kmem_cache_alloc+0x5b/0x310 [ 1124.901263] create_object.isra.0+0x3a/0xa30 [ 1124.902184] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1124.903244] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1124.904300] ? __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1124.905382] __alloc_skb+0xb1/0x5b0 [ 1124.906179] __ip6_append_data.isra.0+0x2c0d/0x3b90 [ 1124.907234] ? raw6_destroy+0x30/0x30 [ 1124.908043] ? ip6_sk_dst_lookup_flow+0x6f0/0x6f0 [ 1124.909042] ? ip6_mtu+0x1e9/0x3d0 [ 1124.909810] ? ip6_setup_cork+0xfb7/0x1740 [ 1124.910692] ip6_append_data+0x1e6/0x330 [ 1124.911531] ? raw6_destroy+0x30/0x30 [ 1124.912334] ? raw6_destroy+0x30/0x30 [ 1124.913131] rawv6_sendmsg+0x1576/0x3d60 [ 1124.914012] ? dst_output+0x480/0x480 [ 1124.914828] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1124.915936] ? lock_acquire+0x197/0x470 [ 1124.916774] ? lock_acquire+0x197/0x470 [ 1124.917600] ? find_held_lock+0x2c/0x110 [ 1124.918481] ? sock_has_perm+0x1ea/0x280 [ 1124.919331] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1124.920429] ? dst_output+0x480/0x480 [ 1124.921234] inet_sendmsg+0x11d/0x140 [ 1124.922067] ? inet_send_prepare+0x540/0x540 [ 1124.922987] __sock_sendmsg+0x13c/0x190 [ 1124.923826] __sys_sendto+0x21c/0x320 [ 1124.924623] ? __ia32_sys_getpeername+0xb0/0xb0 [ 1124.925586] ? lock_downgrade+0x6d0/0x6d0 [ 1124.926506] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1124.927532] ? ksys_write+0x1a9/0x260 [ 1124.928328] ? __ia32_sys_read+0xb0/0xb0 [ 1124.929188] __x64_sys_sendto+0xdd/0x1b0 [ 1124.930085] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1124.931168] do_syscall_64+0x33/0x40 [ 1124.931942] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1124.933005] RIP: 0033:0x7f9fb52f7b19 [ 1124.933813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1124.937664] RSP: 002b:00007f9fb286d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 1124.939266] RAX: ffffffffffffffda RBX: 00007f9fb540af60 RCX: 00007f9fb52f7b19 [ 1124.940755] RDX: 00000000000005dc RSI: 0000000020000040 RDI: 0000000000000003 [ 1124.942280] RBP: 00007f9fb286d1d0 R08: 00000000200000c0 R09: 0000000000000080 [ 1124.943775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1124.945273] R13: 00007ffea965b45f R14: 00007f9fb286d300 R15: 0000000000022000 [ 1124.951749] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities 00:18:44 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000e1f4655fe1f4655f0100ffff53ef010001000000e0f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38373635383433343000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000a4d0099b099d46eeb5a6d2ef5e9d5ded010040000c00000000000000e0f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000004700000000000000", 0x20, 0x560}, {&(0x7f0000010300)="02000000030000000400000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e0f4655fe0f4655fe0f4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000e0f4655fe1f4655fe1f4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2080}, {&(0x7f0000011600)="8081000000601020e0f4655fe0f4655fe0f4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x2300}, {&(0x7f0000011700)="c041000000400000e0f4655fe0f4655fe0f4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2500}], 0x0, &(0x7f0000012f00)) 00:18:44 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x5dc, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) (fail_nth: 10) VM DIAGNOSIS: 03:31:05 Registers: info registers vcpu 0 RAX=000002dce1ccb164 RBX=0000000000000000 RCX=00000000000006e0 RDX=00000000000002dc RSI=ffff88806ce27980 RDI=00000000000195bb RBP=ffff88806ce27980 RSP=ffff88806ce09ec8 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=00000000000195bb R13=0000000000000000 R14=ffff88806ce2eab8 R15=0000000000000000 RIP=ffffffff810e1371 RFL=00000013 [----A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555579a72400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f365e60f718 CR3=000000004363c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=0000000000000000ffff000000000000 XMM02=0000000000000000ffff000000000000 XMM03=646363353535353530303030203a3252 XMM04=65206666203938206334206666206666 XMM05=6666206165206362203134206230203e XMM06=38652066662066662066662037372039 XMM07=00000000000000000000000000000000 XMM08=3a33524320383037000030303378302f XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000036 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822e5c51 RDI=ffffffff879f8240 RBP=ffffffff879f8200 RSP=ffff88804a97f238 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000036 R13=0000000000000036 R14=ffffffff879f8200 R15=dffffc0000000000 RIP=ffffffff822e5ca8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fcf3f94f700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055555ccd4708 CR3=00000000482c8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000ff0000 XMM01=6a6e695f31313230385f7a7973006273 XMM02=000000000000000000ffffffff000000 XMM03=00007fcf424c07c800007fcf424c07c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000