etup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:06:42 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x97ffffff00000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:06:42 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:06:42 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xa676000000000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:06:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1229.465037] loop6: detected capacity change from 0 to 135266304 07:06:42 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:06:42 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xa776000000000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:06:42 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fork() [ 1229.572084] loop6: detected capacity change from 0 to 135266304 [ 1229.598750] loop6: detected capacity change from 0 to 135266304 07:06:57 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:06:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:06:57 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:06:57 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:06:57 executing program 3: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:06:57 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fork() 07:06:57 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xa876000000000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:06:57 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1244.664308] loop6: detected capacity change from 0 to 135266304 [ 1244.690860] loop6: detected capacity change from 0 to 135266304 07:06:57 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:12 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:12 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1259.456980] loop6: detected capacity change from 0 to 135266304 07:07:12 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:12 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:12 executing program 3: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:12 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xa976000000000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:07:12 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:07:12 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fork() [ 1259.477729] cgroup: fork rejected by pids controller in /syz3 [ 1259.495681] loop6: detected capacity change from 0 to 135266304 07:07:12 executing program 3: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:12 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xaa76000000000000, 0x0, &(0x7f0000000300), 0x0, 0x0) [ 1259.581737] loop6: detected capacity change from 0 to 135266304 07:07:12 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:12 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:12 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xab76000000000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:07:12 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:12 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:12 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:26 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:07:26 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:26 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xac76000000000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:07:26 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:26 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:26 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:26 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1273.819920] loop6: detected capacity change from 0 to 135266304 07:07:26 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:26 executing program 3: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1273.850764] loop6: detected capacity change from 0 to 135266304 07:07:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:26 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xe4ffffff00000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:07:26 executing program 3: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:26 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:26 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1274.046893] loop6: detected capacity change from 0 to 135266304 07:07:26 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:07:26 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xf0ffffff00000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:07:26 executing program 0: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:26 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:27 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:27 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xf6ffffff00000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:07:27 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1274.379511] loop6: detected capacity change from 0 to 135266304 07:07:41 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:07:41 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:41 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:41 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:41 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:41 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xfdfdffff00000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:07:41 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:41 executing program 3: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1288.316639] loop6: detected capacity change from 0 to 135266304 [ 1288.349678] loop6: detected capacity change from 0 to 135266304 07:07:41 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:41 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:41 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xfdffffff00000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:07:41 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:41 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:41 executing program 3: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:07:41 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) fork() 07:07:41 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1288.615160] loop6: detected capacity change from 0 to 135266304 07:07:57 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:07:57 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:07:57 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) fork() 07:07:57 executing program 0: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1304.389832] loop6: detected capacity change from 0 to 135266304 07:07:57 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:07:57 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xfeeef3ab00000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:07:57 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1304.408379] loop6: detected capacity change from 0 to 135266304 07:07:57 executing program 0: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:14 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:08:14 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:08:14 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) fork() 07:08:14 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:08:14 executing program 0: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:14 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xfeffffff00000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:08:14 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:08:14 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1321.590562] loop6: detected capacity change from 0 to 135266304 [ 1321.618502] loop6: detected capacity change from 0 to 135266304 07:08:14 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xffffffff00000000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:08:14 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) [ 1321.791923] loop6: detected capacity change from 0 to 135266304 07:08:29 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:08:29 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:29 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:08:29 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:08:29 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:29 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:08:29 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xffffffffff600000, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:08:29 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) 07:08:29 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) [ 1336.553090] loop6: detected capacity change from 0 to 135266304 [ 1336.581917] loop6: detected capacity change from 0 to 135266304 07:08:29 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:29 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:08:29 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) 07:08:29 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:29 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000300), 0x0, 0x0) 07:08:29 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) 07:08:29 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:08:53 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:53 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x0, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:08:53 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x2, &(0x7f0000000300), 0x0, 0x0) 07:08:53 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) 07:08:53 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 1) 07:08:53 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:08:53 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:53 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1360.545235] FAULT_INJECTION: forcing a failure. [ 1360.545235] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1360.547178] CPU: 0 PID: 9735 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1360.548219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1360.549475] Call Trace: [ 1360.549963] dump_stack+0x107/0x167 [ 1360.550673] should_fail.cold+0x5/0xa [ 1360.551394] _copy_from_user+0x2e/0x1b0 [ 1360.552132] io_uring_setup+0x9b/0x2980 [ 1360.552827] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1360.553648] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1360.554445] ? wait_for_completion_io+0x270/0x270 [ 1360.555247] ? rcu_read_lock_any_held+0x75/0xa0 [ 1360.555960] ? vfs_write+0x354/0xb10 [ 1360.556632] ? fput_many+0x2f/0x1a0 [ 1360.557261] ? ksys_write+0x1a9/0x260 [ 1360.557896] ? __ia32_sys_read+0xb0/0xb0 [ 1360.558619] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1360.559426] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.560357] do_syscall_64+0x33/0x40 [ 1360.560981] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1360.561841] RIP: 0033:0x7ff9de16bb19 [ 1360.562481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.565130] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1360.566402] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1360.567456] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1360.568499] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.569530] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1360.570578] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:08:53 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:08:53 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:53 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x3, &(0x7f0000000300), 0x0, 0x0) [ 1360.711895] cgroup: fork rejected by pids controller in /syz0 07:08:53 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 2) 07:08:53 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:08:53 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:08:53 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x4, &(0x7f0000000300), 0x0, 0x0) 07:08:53 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) 07:08:53 executing program 1: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1360.863853] FAULT_INJECTION: forcing a failure. [ 1360.863853] name failslab, interval 1, probability 0, space 0, times 0 [ 1360.865459] CPU: 0 PID: 9866 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1360.866389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1360.867467] Call Trace: [ 1360.867890] dump_stack+0x107/0x167 [ 1360.868471] should_fail.cold+0x5/0xa [ 1360.869033] ? io_uring_setup+0x258/0x2980 [ 1360.869668] should_failslab+0x5/0x20 [ 1360.870185] kmem_cache_alloc_trace+0x55/0x320 [ 1360.870939] io_uring_setup+0x258/0x2980 [ 1360.871538] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1360.872239] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1360.872898] ? wait_for_completion_io+0x270/0x270 [ 1360.873877] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1360.874589] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.875409] do_syscall_64+0x33/0x40 [ 1360.875955] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1360.876640] RIP: 0033:0x7ff9de16bb19 [ 1360.877164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.879397] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1360.880358] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1360.881215] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1360.882077] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.882945] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1360.883802] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:08:53 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:10 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x0, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:09:10 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:10 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) 07:09:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:10 executing program 1: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:10 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:10 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 3) 07:09:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x5, &(0x7f0000000300), 0x0, 0x0) [ 1377.798345] FAULT_INJECTION: forcing a failure. [ 1377.798345] name failslab, interval 1, probability 0, space 0, times 0 [ 1377.799732] CPU: 1 PID: 9994 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1377.800501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1377.801453] Call Trace: [ 1377.801774] dump_stack+0x107/0x167 [ 1377.802188] should_fail.cold+0x5/0xa [ 1377.802646] ? create_object.isra.0+0x3a/0xa30 [ 1377.803164] should_failslab+0x5/0x20 [ 1377.803611] kmem_cache_alloc+0x5b/0x310 [ 1377.804076] create_object.isra.0+0x3a/0xa30 [ 1377.804590] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1377.805170] kmem_cache_alloc_trace+0x151/0x320 [ 1377.805711] io_uring_setup+0x258/0x2980 [ 1377.806172] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1377.806743] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1377.807332] ? wait_for_completion_io+0x270/0x270 [ 1377.807898] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1377.808498] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1377.809093] do_syscall_64+0x33/0x40 [ 1377.809521] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1377.810112] RIP: 0033:0x7ff9de16bb19 [ 1377.810555] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1377.812688] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1377.813558] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1377.814377] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1377.815200] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1377.816006] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1377.816819] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:09:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:10 executing program 1: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x6, &(0x7f0000000300), 0x0, 0x0) 07:09:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x7, &(0x7f0000000300), 0x0, 0x0) 07:09:10 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) 07:09:10 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:10 executing program 1: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) 07:09:26 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x0, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:09:26 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) 07:09:26 executing program 1: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:26 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x8, &(0x7f0000000300), 0x0, 0x0) 07:09:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) 07:09:26 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:26 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 4) 07:09:26 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1393.378335] FAULT_INJECTION: forcing a failure. [ 1393.378335] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 1393.381369] CPU: 0 PID: 10248 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1393.383022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1393.384964] Call Trace: [ 1393.385714] dump_stack+0x107/0x167 [ 1393.386783] should_fail.cold+0x5/0xa [ 1393.387944] __alloc_pages_nodemask+0x182/0x600 [ 1393.389189] ? lock_release+0x680/0x680 [ 1393.390230] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1393.391934] ? lock_downgrade+0x6d0/0x6d0 [ 1393.393277] alloc_pages_current+0x187/0x280 [ 1393.394514] kmalloc_order+0x35/0x160 [ 1393.395663] kmalloc_order_trace+0x14/0xa0 [ 1393.396827] io_uring_setup+0x33c/0x2980 [ 1393.397952] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1393.399255] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1393.400470] ? wait_for_completion_io+0x270/0x270 [ 1393.402271] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1393.403582] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1393.405012] do_syscall_64+0x33/0x40 [ 1393.405991] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1393.407258] RIP: 0033:0x7ff9de16bb19 [ 1393.408211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1393.412323] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1393.414161] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1393.415839] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1393.417499] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1393.419172] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1393.420847] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:09:26 executing program 1: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:26 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 5) 07:09:26 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) 07:09:26 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x18, &(0x7f0000000300), 0x0, 0x0) [ 1393.567165] FAULT_INJECTION: forcing a failure. [ 1393.567165] name failslab, interval 1, probability 0, space 0, times 0 [ 1393.569695] CPU: 1 PID: 10363 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1393.571202] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1393.572964] Call Trace: [ 1393.573535] dump_stack+0x107/0x167 [ 1393.574302] should_fail.cold+0x5/0xa [ 1393.575134] ? create_object.isra.0+0x3a/0xa30 [ 1393.576104] should_failslab+0x5/0x20 [ 1393.576911] kmem_cache_alloc+0x5b/0x310 [ 1393.577787] create_object.isra.0+0x3a/0xa30 [ 1393.578738] ? kasan_unpoison_shadow+0x33/0x50 [ 1393.579720] kmalloc_order+0xfe/0x160 [ 1393.580536] kmalloc_order_trace+0x14/0xa0 [ 1393.581439] io_uring_setup+0x33c/0x2980 [ 1393.582317] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1393.583375] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1393.584453] ? wait_for_completion_io+0x270/0x270 [ 1393.585499] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1393.586626] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1393.587726] do_syscall_64+0x33/0x40 [ 1393.588519] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1393.589591] RIP: 0033:0x7ff9de16bb19 [ 1393.590372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1393.594327] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1393.595975] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1393.597509] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1393.599049] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1393.600580] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1393.602118] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:09:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) 07:09:26 executing program 1: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:26 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) 07:09:26 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:42 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:09:42 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x21, &(0x7f0000000300), 0x0, 0x0) 07:09:42 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:42 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 6) 07:09:42 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:42 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 07:09:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) 07:09:42 executing program 1: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1409.256078] FAULT_INJECTION: forcing a failure. [ 1409.256078] name failslab, interval 1, probability 0, space 0, times 0 [ 1409.257866] CPU: 1 PID: 10499 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1409.258912] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1409.260186] Call Trace: [ 1409.260618] dump_stack+0x107/0x167 [ 1409.261174] should_fail.cold+0x5/0xa [ 1409.261778] ? io_uring_setup+0x40b/0x2980 [ 1409.262466] should_failslab+0x5/0x20 [ 1409.263053] kmem_cache_alloc_trace+0x55/0x320 [ 1409.263754] io_uring_setup+0x40b/0x2980 [ 1409.264374] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1409.265113] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1409.265872] ? wait_for_completion_io+0x270/0x270 [ 1409.266603] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1409.267433] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1409.268229] do_syscall_64+0x33/0x40 [ 1409.268780] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1409.269555] RIP: 0033:0x7ff9de16bb19 [ 1409.270102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1409.272834] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1409.273961] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1409.275060] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1409.276120] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1409.277185] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1409.278248] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:09:42 executing program 1: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:42 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x30, &(0x7f0000000300), 0x0, 0x0) 07:09:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) 07:09:42 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:42 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 7) 07:09:42 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) socket$nl_xfrm(0x10, 0x3, 0x6) [ 1409.527352] FAULT_INJECTION: forcing a failure. [ 1409.527352] name failslab, interval 1, probability 0, space 0, times 0 [ 1409.528904] CPU: 1 PID: 10723 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1409.529822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1409.530949] Call Trace: [ 1409.531319] dump_stack+0x107/0x167 [ 1409.531808] should_fail.cold+0x5/0xa [ 1409.532316] ? create_object.isra.0+0x3a/0xa30 [ 1409.532926] should_failslab+0x5/0x20 [ 1409.533434] kmem_cache_alloc+0x5b/0x310 [ 1409.533982] create_object.isra.0+0x3a/0xa30 [ 1409.534567] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1409.535258] kmem_cache_alloc_trace+0x151/0x320 [ 1409.535895] io_uring_setup+0x40b/0x2980 [ 1409.536441] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1409.537083] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1409.537758] ? wait_for_completion_io+0x270/0x270 [ 1409.538408] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1409.539112] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1409.539795] do_syscall_64+0x33/0x40 [ 1409.540288] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1409.540970] RIP: 0033:0x7ff9de16bb19 [ 1409.541466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1409.543881] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1409.544917] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1409.545850] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1409.546789] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1409.547741] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1409.548689] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:09:42 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:42 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x48, &(0x7f0000000300), 0x0, 0x0) 07:09:56 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:09:56 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:09:56 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x4c, &(0x7f0000000300), 0x0, 0x0) 07:09:56 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:56 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 1) 07:09:56 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 8) 07:09:56 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) 07:09:56 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1423.730541] FAULT_INJECTION: forcing a failure. [ 1423.730541] name failslab, interval 1, probability 0, space 0, times 0 [ 1423.732455] CPU: 0 PID: 10850 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1423.733308] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1423.734316] Call Trace: [ 1423.734713] dump_stack+0x107/0x167 [ 1423.735279] should_fail.cold+0x5/0xa [ 1423.735834] ? create_object.isra.0+0x3a/0xa30 [ 1423.736468] should_failslab+0x5/0x20 [ 1423.736975] kmem_cache_alloc+0x5b/0x310 [ 1423.737641] create_object.isra.0+0x3a/0xa30 [ 1423.738326] kmemleak_alloc_percpu+0xa0/0x100 [ 1423.739017] pcpu_alloc+0x4e2/0x1240 [ 1423.739759] ? io_tctx_exit_cb+0xf0/0xf0 [ 1423.740327] percpu_ref_init+0x31/0x3d0 [ 1423.740954] io_uring_setup+0x47a/0x2980 [ 1423.741548] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1423.742239] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1423.742889] ? wait_for_completion_io+0x270/0x270 [ 1423.743876] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1423.744231] FAULT_INJECTION: forcing a failure. [ 1423.744231] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1423.744538] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1423.748123] do_syscall_64+0x33/0x40 [ 1423.748639] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1423.749298] RIP: 0033:0x7ff9de16bb19 [ 1423.749800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1423.751953] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1423.752954] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1423.753858] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1423.754736] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1423.755629] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1423.756505] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1423.757684] CPU: 1 PID: 10853 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1423.759406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1423.761291] Call Trace: [ 1423.761891] dump_stack+0x107/0x167 [ 1423.762717] should_fail.cold+0x5/0xa [ 1423.763588] _copy_from_user+0x2e/0x1b0 [ 1423.764497] io_uring_setup+0x9b/0x2980 [ 1423.765395] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1423.766487] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1423.767651] ? wait_for_completion_io+0x270/0x270 [ 1423.768749] ? rcu_read_lock_any_held+0x75/0xa0 [ 1423.769801] ? vfs_write+0x354/0xb10 [ 1423.770644] ? fput_many+0x2f/0x1a0 [ 1423.771475] ? ksys_write+0x1a9/0x260 [ 1423.772352] ? __ia32_sys_read+0xb0/0xb0 [ 1423.773291] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1423.774491] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1423.775684] do_syscall_64+0x33/0x40 [ 1423.776530] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1423.777689] RIP: 0033:0x7f341b7f3b19 [ 1423.778535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1423.782729] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1423.784472] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1423.786079] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1423.787718] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1423.789331] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1423.790964] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:09:56 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 9) 07:09:56 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) 07:09:56 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1423.880301] FAULT_INJECTION: forcing a failure. [ 1423.880301] name failslab, interval 1, probability 0, space 0, times 0 [ 1423.884002] CPU: 1 PID: 10963 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1423.885470] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1423.887240] Call Trace: [ 1423.887810] dump_stack+0x107/0x167 [ 1423.888580] should_fail.cold+0x5/0xa [ 1423.889384] ? create_object.isra.0+0x3a/0xa30 [ 1423.890347] should_failslab+0x5/0x20 [ 1423.891160] kmem_cache_alloc+0x5b/0x310 [ 1423.892020] create_object.isra.0+0x3a/0xa30 [ 1423.892953] kmemleak_alloc_percpu+0xa0/0x100 [ 1423.893903] pcpu_alloc+0x4e2/0x1240 [ 1423.894701] ? io_tctx_exit_cb+0xf0/0xf0 [ 1423.895561] percpu_ref_init+0x31/0x3d0 [ 1423.896403] io_uring_setup+0x47a/0x2980 [ 1423.897258] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1423.898280] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1423.899353] ? wait_for_completion_io+0x270/0x270 [ 1423.900396] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1423.901508] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1423.902596] do_syscall_64+0x33/0x40 [ 1423.903391] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1423.904473] RIP: 0033:0x7ff9de16bb19 [ 1423.905257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1423.909159] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1423.910759] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1423.912280] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1423.913793] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1423.915311] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1423.916831] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:09:56 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:09:56 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x60, &(0x7f0000000300), 0x0, 0x0) [ 1437.661089] FAULT_INJECTION: forcing a failure. [ 1437.661089] name failslab, interval 1, probability 0, space 0, times 0 [ 1437.663537] CPU: 1 PID: 11083 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1437.665018] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1437.666765] Call Trace: [ 1437.667330] dump_stack+0x107/0x167 [ 1437.668097] should_fail.cold+0x5/0xa [ 1437.668898] ? io_uring_setup+0x258/0x2980 [ 1437.669782] should_failslab+0x5/0x20 [ 1437.670582] kmem_cache_alloc_trace+0x55/0x320 [ 1437.671556] io_uring_setup+0x258/0x2980 [ 1437.672411] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1437.673425] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1437.674484] ? wait_for_completion_io+0x270/0x270 [ 1437.675529] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1437.676634] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1437.677716] do_syscall_64+0x33/0x40 [ 1437.678493] entry_SYSCALL_64_after_hwframe+0x67/0xd1 07:10:10 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:10:10 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:10 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:10:10 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 10) 07:10:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 2) 07:10:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x62, &(0x7f0000000300), 0x0, 0x0) 07:10:10 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) 07:10:10 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1437.679782] RIP: 0033:0x7f341b7f3b19 [ 1437.680694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1437.684566] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1437.686172] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1437.687677] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1437.689181] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1437.690683] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1437.692180] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1437.723982] FAULT_INJECTION: forcing a failure. [ 1437.723982] name failslab, interval 1, probability 0, space 0, times 0 [ 1437.725892] CPU: 0 PID: 11084 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1437.726781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1437.727873] Call Trace: [ 1437.728276] dump_stack+0x107/0x167 [ 1437.728846] should_fail.cold+0x5/0xa [ 1437.729406] ? percpu_ref_init+0xd8/0x3d0 [ 1437.730011] should_failslab+0x5/0x20 [ 1437.730531] kmem_cache_alloc_trace+0x55/0x320 [ 1437.731236] ? io_tctx_exit_cb+0xf0/0xf0 [ 1437.731808] percpu_ref_init+0xd8/0x3d0 [ 1437.732438] io_uring_setup+0x47a/0x2980 [ 1437.733039] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1437.733745] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1437.734406] ? wait_for_completion_io+0x270/0x270 [ 1437.735385] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1437.736092] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1437.736865] do_syscall_64+0x33/0x40 [ 1437.737391] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1437.738059] RIP: 0033:0x7ff9de16bb19 [ 1437.738576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1437.740804] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1437.741812] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1437.742738] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1437.743650] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1437.744557] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1437.745473] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:10:10 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) 07:10:10 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:10 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 11) 07:10:10 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) [ 1437.919687] FAULT_INJECTION: forcing a failure. [ 1437.919687] name failslab, interval 1, probability 0, space 0, times 0 [ 1437.922239] CPU: 1 PID: 11112 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1437.923701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1437.925442] Call Trace: [ 1437.926003] dump_stack+0x107/0x167 [ 1437.926772] should_fail.cold+0x5/0xa [ 1437.927582] ? create_object.isra.0+0x3a/0xa30 [ 1437.928538] should_failslab+0x5/0x20 [ 1437.929337] kmem_cache_alloc+0x5b/0x310 [ 1437.930196] create_object.isra.0+0x3a/0xa30 [ 1437.931114] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1437.932192] kmem_cache_alloc_trace+0x151/0x320 [ 1437.933170] ? io_tctx_exit_cb+0xf0/0xf0 [ 1437.934022] percpu_ref_init+0xd8/0x3d0 [ 1437.934862] io_uring_setup+0x47a/0x2980 [ 1437.935733] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1437.936749] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1437.937811] ? wait_for_completion_io+0x270/0x270 [ 1437.938855] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1437.939966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1437.941054] do_syscall_64+0x33/0x40 [ 1437.941847] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1437.942926] RIP: 0033:0x7ff9de16bb19 [ 1437.943717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1437.947594] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1437.949198] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1437.950701] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1437.952213] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1437.953717] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1437.955230] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:10:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 3) 07:10:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x68, &(0x7f0000000300), 0x0, 0x0) 07:10:10 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1438.001698] FAULT_INJECTION: forcing a failure. [ 1438.001698] name failslab, interval 1, probability 0, space 0, times 0 [ 1438.003389] CPU: 0 PID: 11117 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1438.004254] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1438.005266] Call Trace: [ 1438.005660] dump_stack+0x107/0x167 [ 1438.006220] should_fail.cold+0x5/0xa [ 1438.006776] ? create_object.isra.0+0x3a/0xa30 [ 1438.007415] should_failslab+0x5/0x20 [ 1438.007927] kmem_cache_alloc+0x5b/0x310 [ 1438.008599] create_object.isra.0+0x3a/0xa30 [ 1438.009175] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1438.009931] kmem_cache_alloc_trace+0x151/0x320 [ 1438.010669] io_uring_setup+0x258/0x2980 [ 1438.011274] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1438.011977] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1438.012643] ? wait_for_completion_io+0x270/0x270 [ 1438.013612] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1438.014311] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1438.015086] do_syscall_64+0x33/0x40 [ 1438.015619] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1438.016298] RIP: 0033:0x7f341b7f3b19 [ 1438.016811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1438.019018] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1438.020035] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1438.020935] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1438.021839] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1438.022743] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1438.023654] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:10:10 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) 07:10:24 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:24 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) 07:10:24 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:10:24 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:10:24 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 4) 07:10:24 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 12) 07:10:24 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:10:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x6c, &(0x7f0000000300), 0x0, 0x0) [ 1451.566058] FAULT_INJECTION: forcing a failure. [ 1451.566058] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1451.567450] CPU: 1 PID: 11145 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1451.568247] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.569215] Call Trace: [ 1451.569526] dump_stack+0x107/0x167 [ 1451.569951] should_fail.cold+0x5/0xa [ 1451.570393] __alloc_pages_nodemask+0x182/0x600 [ 1451.570934] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1451.571647] ? cap_capable+0x1cd/0x230 [ 1451.572101] alloc_pages_current+0x187/0x280 [ 1451.572607] __get_free_pages+0xc/0xa0 [ 1451.573059] io_uring_setup+0xe27/0x2980 [ 1451.573530] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1451.574123] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.574748] do_syscall_64+0x33/0x40 [ 1451.575177] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1451.575767] RIP: 0033:0x7ff9de16bb19 [ 1451.576196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.578309] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1451.579189] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1451.580015] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1451.580840] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1451.581662] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1451.582486] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1451.584139] FAULT_INJECTION: forcing a failure. [ 1451.584139] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1451.585786] CPU: 1 PID: 11147 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1451.586600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.587616] Call Trace: [ 1451.587982] dump_stack+0x107/0x167 [ 1451.588549] should_fail.cold+0x5/0xa [ 1451.588995] __alloc_pages_nodemask+0x182/0x600 [ 1451.589534] ? lock_release+0x680/0x680 [ 1451.589994] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1451.590688] ? lock_downgrade+0x6d0/0x6d0 [ 1451.591169] alloc_pages_current+0x187/0x280 [ 1451.591689] kmalloc_order+0x35/0x160 [ 1451.592129] kmalloc_order_trace+0x14/0xa0 [ 1451.592619] io_uring_setup+0x33c/0x2980 [ 1451.593230] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1451.593895] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1451.594569] ? wait_for_completion_io+0x270/0x270 [ 1451.595129] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.595737] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.596338] do_syscall_64+0x33/0x40 [ 1451.596769] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1451.597357] RIP: 0033:0x7f341b7f3b19 [ 1451.597797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.599899] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1451.600771] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1451.601586] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1451.602407] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1451.603221] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1451.604049] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:10:24 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:10:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x74, &(0x7f0000000300), 0x0, 0x0) 07:10:24 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x7a, &(0x7f0000000300), 0x0, 0x0) 07:10:24 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:24 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:10:24 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 13) 07:10:24 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:10:24 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 5) 07:10:24 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:10:24 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:10:24 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x7e, &(0x7f0000000300), 0x0, 0x0) [ 1451.962164] FAULT_INJECTION: forcing a failure. [ 1451.962164] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1451.965459] CPU: 0 PID: 11171 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1451.967065] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.968961] Call Trace: [ 1451.969697] dump_stack+0x107/0x167 [ 1451.970743] should_fail.cold+0x5/0xa [ 1451.971891] __alloc_pages_nodemask+0x182/0x600 [ 1451.973170] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1451.974872] ? cap_capable+0x1cd/0x230 [ 1451.976151] alloc_pages_current+0x187/0x280 [ 1451.977381] __get_free_pages+0xc/0xa0 [ 1451.978373] io_uring_setup+0xf9a/0x2980 [ 1451.979652] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1451.980876] ? wait_for_completion_io+0x270/0x270 [ 1451.982665] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.983962] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.985371] do_syscall_64+0x33/0x40 [ 1451.986332] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1451.987569] RIP: 0033:0x7ff9de16bb19 [ 1451.988500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.992526] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1451.994363] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1451.996037] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1451.997690] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1451.999359] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1452.001008] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:10:24 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:24 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080), 0x4) [ 1452.067341] FAULT_INJECTION: forcing a failure. [ 1452.067341] name failslab, interval 1, probability 0, space 0, times 0 [ 1452.070113] CPU: 0 PID: 11179 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1452.071747] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1452.073650] Call Trace: [ 1452.074386] dump_stack+0x107/0x167 [ 1452.075446] should_fail.cold+0x5/0xa [ 1452.076485] ? create_object.isra.0+0x3a/0xa30 [ 1452.077676] should_failslab+0x5/0x20 [ 1452.078637] kmem_cache_alloc+0x5b/0x310 [ 1452.079900] create_object.isra.0+0x3a/0xa30 [ 1452.080978] ? kasan_unpoison_shadow+0x33/0x50 [ 1452.082261] kmalloc_order+0xfe/0x160 [ 1452.083395] kmalloc_order_trace+0x14/0xa0 [ 1452.084545] io_uring_setup+0x33c/0x2980 [ 1452.085655] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1452.086943] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1452.088168] ? wait_for_completion_io+0x270/0x270 [ 1452.089954] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1452.091227] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1452.092653] do_syscall_64+0x33/0x40 [ 1452.093606] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1452.094810] RIP: 0033:0x7f341b7f3b19 [ 1452.095714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1452.099598] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1452.101375] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1452.102965] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1452.104575] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1452.106178] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1452.107784] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:10:41 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:10:41 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 14) 07:10:41 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:10:41 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:10:41 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 6) 07:10:41 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:41 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:10:41 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x300, &(0x7f0000000300), 0x0, 0x0) [ 1469.230073] FAULT_INJECTION: forcing a failure. [ 1469.230073] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.232524] CPU: 1 PID: 11211 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1469.233989] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1469.235748] Call Trace: [ 1469.236315] dump_stack+0x107/0x167 [ 1469.237086] should_fail.cold+0x5/0xa [ 1469.237892] ? io_uring_setup+0x40b/0x2980 [ 1469.238785] should_failslab+0x5/0x20 [ 1469.239602] kmem_cache_alloc_trace+0x55/0x320 [ 1469.240571] io_uring_setup+0x40b/0x2980 [ 1469.241429] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1469.242445] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1469.243524] ? wait_for_completion_io+0x270/0x270 [ 1469.244567] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1469.245673] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1469.246764] do_syscall_64+0x33/0x40 [ 1469.247558] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1469.248640] RIP: 0033:0x7f341b7f3b19 [ 1469.249423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.253311] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1469.254916] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1469.256436] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1469.257939] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1469.259443] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1469.260963] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1469.300459] loop6: detected capacity change from 0 to 67108864 [ 1469.306913] FAULT_INJECTION: forcing a failure. [ 1469.306913] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.310248] CPU: 0 PID: 11209 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1469.311869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1469.313759] Call Trace: [ 1469.314496] dump_stack+0x107/0x167 [ 1469.315540] should_fail.cold+0x5/0xa [ 1469.316569] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1469.317965] should_failslab+0x5/0x20 [ 1469.318920] kmem_cache_alloc_trace+0x55/0x320 [ 1469.320267] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1469.321650] io_uring_setup+0x14f6/0x2980 [ 1469.322919] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1469.324145] ? wait_for_completion_io+0x270/0x270 [ 1469.325932] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1469.327215] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1469.328628] do_syscall_64+0x33/0x40 [ 1469.329584] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1469.330814] RIP: 0033:0x7ff9de16bb19 [ 1469.331763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.335797] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1469.337625] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1469.339277] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1469.340932] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1469.342578] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1469.344229] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:10:42 executing program 5: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:10:42 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1469.450845] loop6: detected capacity change from 0 to 67108864 07:10:42 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 7) [ 1469.559466] FAULT_INJECTION: forcing a failure. [ 1469.559466] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.561964] CPU: 1 PID: 11325 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1469.563423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1469.565200] Call Trace: [ 1469.565765] dump_stack+0x107/0x167 [ 1469.566548] should_fail.cold+0x5/0xa [ 1469.567363] ? create_object.isra.0+0x3a/0xa30 [ 1469.568355] should_failslab+0x5/0x20 [ 1469.569168] kmem_cache_alloc+0x5b/0x310 [ 1469.570042] create_object.isra.0+0x3a/0xa30 [ 1469.570979] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1469.572077] kmem_cache_alloc_trace+0x151/0x320 [ 1469.573081] io_uring_setup+0x40b/0x2980 [ 1469.573956] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1469.574986] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1469.576081] ? wait_for_completion_io+0x270/0x270 [ 1469.577139] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1469.578267] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1469.579370] do_syscall_64+0x33/0x40 [ 1469.580174] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1469.581275] RIP: 0033:0x7f341b7f3b19 [ 1469.582066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.586025] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1469.587655] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1469.589179] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1469.590701] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1469.592231] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1469.593759] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:10:57 executing program 5: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:10:57 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 8) 07:10:57 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:10:57 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x480, &(0x7f0000000300), 0x0, 0x0) 07:10:57 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:10:57 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:10:57 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 15) [ 1484.238011] FAULT_INJECTION: forcing a failure. [ 1484.238011] name failslab, interval 1, probability 0, space 0, times 0 [ 1484.239985] CPU: 0 PID: 11340 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1484.240997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1484.242182] Call Trace: [ 1484.242656] dump_stack+0x107/0x167 [ 1484.243314] should_fail.cold+0x5/0xa [ 1484.243977] ? create_object.isra.0+0x3a/0xa30 [ 1484.244721] should_failslab+0x5/0x20 [ 1484.245321] kmem_cache_alloc+0x5b/0x310 [ 1484.245953] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1484.246968] create_object.isra.0+0x3a/0xa30 [ 1484.247661] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1484.248544] kmem_cache_alloc_trace+0x151/0x320 [ 1484.249403] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1484.250282] io_uring_setup+0x14f6/0x2980 [ 1484.251093] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1484.251870] ? wait_for_completion_io+0x270/0x270 [ 1484.253005] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1484.253743] FAULT_INJECTION: forcing a failure. [ 1484.253743] name failslab, interval 1, probability 0, space 0, times 0 [ 1484.253788] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1484.257196] do_syscall_64+0x33/0x40 [ 1484.257805] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.258580] RIP: 0033:0x7ff9de16bb19 [ 1484.259170] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1484.261698] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1484.262847] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1484.263881] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1484.264909] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1484.265937] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1484.266967] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1484.268354] CPU: 1 PID: 11347 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1484.269942] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1484.271843] Call Trace: [ 1484.272455] dump_stack+0x107/0x167 [ 1484.273290] should_fail.cold+0x5/0xa [ 1484.274160] ? create_object.isra.0+0x3a/0xa30 [ 1484.275204] should_failslab+0x5/0x20 [ 1484.276084] kmem_cache_alloc+0x5b/0x310 [ 1484.277020] create_object.isra.0+0x3a/0xa30 [ 1484.278047] kmemleak_alloc_percpu+0xa0/0x100 [ 1484.279080] pcpu_alloc+0x4e2/0x1240 [ 1484.279961] ? io_tctx_exit_cb+0xf0/0xf0 [ 1484.280888] percpu_ref_init+0x31/0x3d0 [ 1484.281803] io_uring_setup+0x47a/0x2980 [ 1484.282732] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1484.283855] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1484.285007] ? wait_for_completion_io+0x270/0x270 [ 1484.286125] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1484.287320] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1484.288503] do_syscall_64+0x33/0x40 [ 1484.289348] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.290508] RIP: 0033:0x7f341b7f3b19 [ 1484.291349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1484.295523] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1484.297256] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1484.298868] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1484.300491] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1484.302111] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 07:10:57 executing program 5: socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0xa, &(0x7f0000000080), 0x4) [ 1484.303736] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1484.338428] loop6: detected capacity change from 0 to 67108864 07:10:57 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:57 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000080), 0x4) 07:10:57 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 16) [ 1484.390133] loop6: detected capacity change from 0 to 67108864 07:10:57 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:10:57 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x500, &(0x7f0000000300), 0x0, 0x0) [ 1484.486409] FAULT_INJECTION: forcing a failure. [ 1484.486409] name failslab, interval 1, probability 0, space 0, times 0 [ 1484.488032] CPU: 0 PID: 11360 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1484.488955] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1484.490045] Call Trace: [ 1484.490478] dump_stack+0x107/0x167 [ 1484.491087] should_fail.cold+0x5/0xa [ 1484.491702] ? create_object.isra.0+0x3a/0xa30 [ 1484.492390] should_failslab+0x5/0x20 [ 1484.492943] kmem_cache_alloc+0x5b/0x310 [ 1484.493661] create_object.isra.0+0x3a/0xa30 [ 1484.494405] kmemleak_alloc_percpu+0xa0/0x100 [ 1484.495139] pcpu_alloc+0x4e2/0x1240 [ 1484.495952] ? io_async_queue_proc+0x80/0x80 [ 1484.496598] percpu_ref_init+0x31/0x3d0 [ 1484.497273] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1484.498073] io_uring_setup+0x14f6/0x2980 [ 1484.498819] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1484.499512] ? wait_for_completion_io+0x270/0x270 [ 1484.500565] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1484.501298] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1484.502113] do_syscall_64+0x33/0x40 [ 1484.502664] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.503367] RIP: 0033:0x7ff9de16bb19 [ 1484.503912] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1484.506168] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1484.507213] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1484.508149] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1484.509085] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1484.510012] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1484.510937] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:10:57 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:10:57 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 9) 07:10:57 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000080), 0x4) [ 1484.611106] FAULT_INJECTION: forcing a failure. [ 1484.611106] name failslab, interval 1, probability 0, space 0, times 0 [ 1484.613899] CPU: 1 PID: 11375 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1484.615500] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1484.617340] Call Trace: [ 1484.617955] dump_stack+0x107/0x167 [ 1484.618810] should_fail.cold+0x5/0xa [ 1484.619629] ? create_object.isra.0+0x3a/0xa30 [ 1484.620676] should_failslab+0x5/0x20 [ 1484.621563] kmem_cache_alloc+0x5b/0x310 [ 1484.622514] create_object.isra.0+0x3a/0xa30 [ 1484.623498] kmemleak_alloc_percpu+0xa0/0x100 [ 1484.624510] pcpu_alloc+0x4e2/0x1240 [ 1484.625403] ? io_tctx_exit_cb+0xf0/0xf0 [ 1484.626350] percpu_ref_init+0x31/0x3d0 [ 1484.627261] io_uring_setup+0x47a/0x2980 [ 1484.628135] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1484.629265] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1484.630443] ? wait_for_completion_io+0x270/0x270 [ 1484.631611] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1484.632756] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1484.633958] do_syscall_64+0x33/0x40 [ 1484.634835] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1484.635926] RIP: 0033:0x7f341b7f3b19 [ 1484.636802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1484.641019] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1484.642833] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1484.644405] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1484.646097] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1484.647715] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1484.649333] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1484.669506] loop6: detected capacity change from 0 to 67108864 [ 1484.736945] loop6: detected capacity change from 0 to 67108864 07:11:12 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x600, &(0x7f0000000300), 0x0, 0x0) 07:11:12 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f0000000080), 0x4) 07:11:12 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 10) 07:11:12 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, 0x0, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:11:12 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:11:13 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:11:13 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 17) [ 1500.200017] FAULT_INJECTION: forcing a failure. [ 1500.200017] name failslab, interval 1, probability 0, space 0, times 0 [ 1500.202472] CPU: 1 PID: 11394 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1500.204200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1500.206245] Call Trace: [ 1500.206896] dump_stack+0x107/0x167 [ 1500.207789] should_fail.cold+0x5/0xa [ 1500.208804] ? create_object.isra.0+0x3a/0xa30 [ 1500.209839] should_failslab+0x5/0x20 [ 1500.210659] kmem_cache_alloc+0x5b/0x310 [ 1500.211652] create_object.isra.0+0x3a/0xa30 [ 1500.212726] kmemleak_alloc_percpu+0xa0/0x100 [ 1500.213687] pcpu_alloc+0x4e2/0x1240 [ 1500.214492] ? io_async_queue_proc+0x80/0x80 [ 1500.215550] percpu_ref_init+0x31/0x3d0 [ 1500.216556] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1500.217888] io_uring_setup+0x14f6/0x2980 [ 1500.218845] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1500.219931] ? wait_for_completion_io+0x270/0x270 [ 1500.220978] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1500.222087] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1500.223176] do_syscall_64+0x33/0x40 [ 1500.223973] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1500.225254] RIP: 0033:0x7ff9de16bb19 [ 1500.226114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1500.230627] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1500.232330] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1500.233841] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1500.235345] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1500.236854] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1500.238356] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1500.250750] FAULT_INJECTION: forcing a failure. [ 1500.250750] name failslab, interval 1, probability 0, space 0, times 0 [ 1500.253401] CPU: 1 PID: 11401 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1500.255170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1500.257056] Call Trace: [ 1500.257770] dump_stack+0x107/0x167 [ 1500.258692] should_fail.cold+0x5/0xa [ 1500.259629] ? percpu_ref_init+0xd8/0x3d0 [ 1500.260706] should_failslab+0x5/0x20 [ 1500.261733] kmem_cache_alloc_trace+0x55/0x320 [ 1500.262875] ? io_tctx_exit_cb+0xf0/0xf0 [ 1500.263900] percpu_ref_init+0xd8/0x3d0 [ 1500.264956] io_uring_setup+0x47a/0x2980 [ 1500.265854] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1500.267118] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1500.268367] ? wait_for_completion_io+0x270/0x270 [ 1500.269635] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1500.270937] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1500.272225] do_syscall_64+0x33/0x40 [ 1500.273018] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1500.274362] RIP: 0033:0x7f341b7f3b19 [ 1500.275273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1500.279914] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1500.281749] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1500.283538] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1500.285316] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1500.286904] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1500.288419] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:11:13 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) [ 1500.360618] loop6: detected capacity change from 0 to 67108864 07:11:13 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) 07:11:13 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0) 07:11:13 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:11:13 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 11) 07:11:13 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 18) [ 1500.564997] FAULT_INJECTION: forcing a failure. [ 1500.564997] name failslab, interval 1, probability 0, space 0, times 0 [ 1500.567482] CPU: 1 PID: 11421 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1500.568955] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1500.570700] Call Trace: [ 1500.571284] dump_stack+0x107/0x167 [ 1500.572057] should_fail.cold+0x5/0xa [ 1500.572865] ? create_object.isra.0+0x3a/0xa30 [ 1500.573820] should_failslab+0x5/0x20 [ 1500.574626] kmem_cache_alloc+0x5b/0x310 [ 1500.575490] create_object.isra.0+0x3a/0xa30 [ 1500.576420] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1500.577485] kmem_cache_alloc_trace+0x151/0x320 [ 1500.578461] ? io_tctx_exit_cb+0xf0/0xf0 [ 1500.579309] percpu_ref_init+0xd8/0x3d0 [ 1500.580161] io_uring_setup+0x47a/0x2980 [ 1500.581013] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1500.582025] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1500.583080] ? wait_for_completion_io+0x270/0x270 [ 1500.584127] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1500.585230] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1500.586310] do_syscall_64+0x33/0x40 [ 1500.587092] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1500.588182] RIP: 0033:0x7f341b7f3b19 [ 1500.588955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1500.592843] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 07:11:13 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) [ 1500.594476] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1500.596213] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1500.597762] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1500.599296] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1500.600838] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:11:13 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x700, &(0x7f0000000300), 0x0, 0x0) 07:11:13 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0) 07:11:13 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 12) [ 1500.739953] FAULT_INJECTION: forcing a failure. [ 1500.739953] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1500.742591] CPU: 1 PID: 11431 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1500.744095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1500.745883] Call Trace: [ 1500.746453] dump_stack+0x107/0x167 [ 1500.747237] should_fail.cold+0x5/0xa [ 1500.748074] __alloc_pages_nodemask+0x182/0x600 [ 1500.749083] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1500.750382] ? cap_capable+0x1cd/0x230 [ 1500.751226] alloc_pages_current+0x187/0x280 [ 1500.752180] __get_free_pages+0xc/0xa0 [ 1500.753014] io_uring_setup+0xe27/0x2980 [ 1500.753895] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1500.754980] ? wait_for_completion_io+0x270/0x270 [ 1500.756047] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1500.757171] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1500.758282] do_syscall_64+0x33/0x40 [ 1500.759084] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1500.760164] FAULT_INJECTION: forcing a failure. [ 1500.760164] name failslab, interval 1, probability 0, space 0, times 0 [ 1500.762510] RIP: 0033:0x7f341b7f3b19 [ 1500.762528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1500.762538] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1500.762558] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1500.762569] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1500.762579] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1500.762589] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1500.762599] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1500.778466] CPU: 0 PID: 11423 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1500.780049] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1500.781891] Call Trace: [ 1500.782619] dump_stack+0x107/0x167 [ 1500.783645] should_fail.cold+0x5/0xa [ 1500.784678] ? percpu_ref_init+0xd8/0x3d0 [ 1500.785764] should_failslab+0x5/0x20 [ 1500.786695] kmem_cache_alloc_trace+0x55/0x320 [ 1500.787998] ? io_async_queue_proc+0x80/0x80 [ 1500.789119] percpu_ref_init+0xd8/0x3d0 [ 1500.790301] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1500.791672] io_uring_setup+0x14f6/0x2980 [ 1500.792948] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1500.794149] ? wait_for_completion_io+0x270/0x270 [ 1500.795923] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1500.797174] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1500.798563] do_syscall_64+0x33/0x40 [ 1500.799509] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1500.800716] RIP: 0033:0x7ff9de16bb19 [ 1500.801628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1500.805540] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1500.807335] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1500.808947] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1500.810559] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1500.812163] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1500.813770] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:11:13 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:11:13 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, 0x0, 0x0) 07:11:13 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 13) 07:11:13 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) [ 1501.021830] FAULT_INJECTION: forcing a failure. [ 1501.021830] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1501.025460] CPU: 0 PID: 11440 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1501.027039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1501.028908] Call Trace: [ 1501.029628] dump_stack+0x107/0x167 [ 1501.030662] should_fail.cold+0x5/0xa [ 1501.031783] __alloc_pages_nodemask+0x182/0x600 [ 1501.033055] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1501.034728] ? cap_capable+0x1cd/0x230 [ 1501.035979] alloc_pages_current+0x187/0x280 [ 1501.037197] __get_free_pages+0xc/0xa0 [ 1501.038172] io_uring_setup+0xf9a/0x2980 [ 1501.039423] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1501.040627] ? wait_for_completion_io+0x270/0x270 [ 1501.042391] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1501.043641] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1501.045038] do_syscall_64+0x33/0x40 [ 1501.045983] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1501.047184] RIP: 0033:0x7f341b7f3b19 [ 1501.048113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1501.052050] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1501.053847] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1501.055473] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1501.057088] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1501.058712] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1501.060332] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:11:28 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 19) 07:11:28 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)) 07:11:28 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:11:28 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:11:28 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) socket$nl_xfrm(0x10, 0x3, 0x6) 07:11:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:11:28 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 14) 07:11:28 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x1800, &(0x7f0000000300), 0x0, 0x0) [ 1515.592018] FAULT_INJECTION: forcing a failure. [ 1515.592018] name failslab, interval 1, probability 0, space 0, times 0 [ 1515.593627] CPU: 1 PID: 11453 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1515.594563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1515.595665] Call Trace: [ 1515.596030] dump_stack+0x107/0x167 [ 1515.596519] should_fail.cold+0x5/0xa [ 1515.597027] ? create_object.isra.0+0x3a/0xa30 [ 1515.597641] should_failslab+0x5/0x20 [ 1515.598148] kmem_cache_alloc+0x5b/0x310 [ 1515.598706] create_object.isra.0+0x3a/0xa30 [ 1515.599288] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1515.600000] kmem_cache_alloc_trace+0x151/0x320 [ 1515.600626] ? io_async_queue_proc+0x80/0x80 [ 1515.601216] percpu_ref_init+0xd8/0x3d0 [ 1515.601750] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1515.602471] io_uring_setup+0x14f6/0x2980 [ 1515.603035] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1515.603728] ? wait_for_completion_io+0x270/0x270 [ 1515.604394] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1515.605093] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1515.605785] do_syscall_64+0x33/0x40 [ 1515.606278] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1515.606957] RIP: 0033:0x7ff9de16bb19 [ 1515.607447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1515.609888] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1515.610907] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1515.611845] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1515.612804] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1515.613758] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1515.614714] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1515.646626] FAULT_INJECTION: forcing a failure. [ 1515.646626] name failslab, interval 1, probability 0, space 0, times 0 [ 1515.648226] CPU: 1 PID: 11465 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1515.649137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1515.650219] Call Trace: [ 1515.650566] dump_stack+0x107/0x167 [ 1515.651041] should_fail.cold+0x5/0xa [ 1515.651544] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1515.652285] should_failslab+0x5/0x20 [ 1515.652793] kmem_cache_alloc_trace+0x55/0x320 [ 1515.653399] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1515.654118] io_uring_setup+0x14f6/0x2980 [ 1515.654673] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1515.655328] ? wait_for_completion_io+0x270/0x270 [ 1515.655968] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1515.656673] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1515.657345] do_syscall_64+0x33/0x40 [ 1515.657835] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1515.658496] RIP: 0033:0x7f341b7f3b19 [ 1515.658982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1515.661401] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1515.662390] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1515.663329] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1515.664268] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1515.665202] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1515.666141] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1515.710736] loop6: detected capacity change from 0 to 67108864 07:11:28 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) 07:11:28 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 15) 07:11:28 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1515.948700] FAULT_INJECTION: forcing a failure. [ 1515.948700] name failslab, interval 1, probability 0, space 0, times 0 [ 1515.951382] CPU: 1 PID: 11576 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1515.953055] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1515.955027] Call Trace: [ 1515.955591] dump_stack+0x107/0x167 [ 1515.956378] should_fail.cold+0x5/0xa [ 1515.957185] ? create_object.isra.0+0x3a/0xa30 [ 1515.958154] should_failslab+0x5/0x20 [ 1515.958955] kmem_cache_alloc+0x5b/0x310 [ 1515.959811] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1515.961093] create_object.isra.0+0x3a/0xa30 [ 1515.962022] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1515.963102] kmem_cache_alloc_trace+0x151/0x320 [ 1515.964108] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1515.965252] io_uring_setup+0x14f6/0x2980 [ 1515.966135] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1515.967203] ? wait_for_completion_io+0x270/0x270 [ 1515.968250] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1515.969359] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1515.970443] do_syscall_64+0x33/0x40 [ 1515.971224] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1515.972317] RIP: 0033:0x7f341b7f3b19 [ 1515.973099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1515.976981] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1515.978585] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1515.980088] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1515.981599] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1515.983111] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1515.984621] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:11:43 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:11:43 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x2000, &(0x7f0000000300), 0x0, 0x0) 07:11:43 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:11:43 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 16) 07:11:43 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) (fail_nth: 1) 07:11:43 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) 07:11:43 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 20) 07:11:43 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1530.777877] FAULT_INJECTION: forcing a failure. [ 1530.777877] name failslab, interval 1, probability 0, space 0, times 0 [ 1530.780593] CPU: 1 PID: 11596 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1530.782245] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1530.784221] Call Trace: [ 1530.784846] dump_stack+0x107/0x167 [ 1530.785708] should_fail.cold+0x5/0xa [ 1530.786609] ? create_object.isra.0+0x3a/0xa30 [ 1530.787705] should_failslab+0x5/0x20 [ 1530.788611] kmem_cache_alloc+0x5b/0x310 [ 1530.789576] create_object.isra.0+0x3a/0xa30 [ 1530.790621] kmemleak_alloc_percpu+0xa0/0x100 [ 1530.791681] pcpu_alloc+0x4e2/0x1240 [ 1530.792582] ? io_async_queue_proc+0x80/0x80 [ 1530.793617] percpu_ref_init+0x31/0x3d0 [ 1530.794560] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1530.795835] io_uring_setup+0x14f6/0x2980 [ 1530.796826] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1530.798001] ? wait_for_completion_io+0x270/0x270 [ 1530.799153] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1530.800377] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1530.801580] do_syscall_64+0x33/0x40 [ 1530.802443] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1530.803645] RIP: 0033:0x7f341b7f3b19 [ 1530.804522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1530.808826] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1530.810597] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1530.812268] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1530.813929] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1530.815584] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1530.817244] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1530.834693] FAULT_INJECTION: forcing a failure. [ 1530.834693] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1530.836357] CPU: 0 PID: 11615 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1530.837280] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1530.838379] Call Trace: [ 1530.838729] dump_stack+0x107/0x167 [ 1530.839206] should_fail.cold+0x5/0xa [ 1530.839737] _copy_from_user+0x2e/0x1b0 [ 1530.840273] tcp_setsockopt+0x122c/0x26e0 [ 1530.840823] ? tcp_sock_set_keepidle+0x40/0x40 [ 1530.841419] ? selinux_socket_post_create+0x7f0/0x7f0 [ 1530.842098] ? find_held_lock+0x2c/0x110 [ 1530.842627] ? selinux_netlbl_socket_setsockopt+0x9e/0x420 [ 1530.843366] ? __fget_files+0x2f8/0x520 [ 1530.843899] ? selinux_socket_setsockopt+0x6a/0x80 [ 1530.844560] ? sock_common_setsockopt+0x2b/0x100 [ 1530.845179] __sys_setsockopt+0x180/0x2b0 [ 1530.845726] ? sock_common_recvmsg+0x1a0/0x1a0 [ 1530.846328] ? __ia32_sys_recv+0x100/0x100 [ 1530.846885] ? fput_many+0x2f/0x1a0 [ 1530.847368] ? ksys_write+0x1a9/0x260 [ 1530.847866] ? __ia32_sys_read+0xb0/0xb0 [ 1530.848407] __x64_sys_setsockopt+0xba/0x160 [ 1530.848985] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1530.849656] do_syscall_64+0x33/0x40 [ 1530.850146] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1530.850831] RIP: 0033:0x7f4eb1025b19 [ 1530.851320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1530.853734] RSP: 002b:00007f4eae59b188 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1530.854738] RAX: ffffffffffffffda RBX: 00007f4eb1138f60 RCX: 00007f4eb1025b19 [ 1530.855661] RDX: 000000000000000a RSI: 0000000000000006 RDI: 0000000000000003 [ 1530.856594] RBP: 00007f4eae59b1d0 R08: 0000000000000004 R09: 0000000000000000 [ 1530.857522] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001 [ 1530.858460] R13: 00007ffff8ce0fff R14: 00007f4eae59b300 R15: 0000000000022000 [ 1530.863162] FAULT_INJECTION: forcing a failure. [ 1530.863162] name failslab, interval 1, probability 0, space 0, times 0 [ 1530.865761] CPU: 1 PID: 11619 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1530.867337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1530.869233] Call Trace: [ 1530.869835] dump_stack+0x107/0x167 [ 1530.870667] should_fail.cold+0x5/0xa [ 1530.871531] ? create_object.isra.0+0x3a/0xa30 [ 1530.872574] should_failslab+0x5/0x20 [ 1530.873440] kmem_cache_alloc+0x5b/0x310 [ 1530.874364] create_object.isra.0+0x3a/0xa30 [ 1530.875356] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1530.876513] kmem_cache_alloc_trace+0x151/0x320 [ 1530.877566] ? io_async_queue_proc+0x80/0x80 [ 1530.878573] percpu_ref_init+0xd8/0x3d0 [ 1530.879476] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1530.880706] io_uring_setup+0x14f6/0x2980 [ 1530.881659] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1530.882797] ? wait_for_completion_io+0x270/0x270 [ 1530.883903] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1530.885093] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1530.886251] do_syscall_64+0x33/0x40 [ 1530.887091] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1530.888243] RIP: 0033:0x7ff9de16bb19 [ 1530.889074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1530.893189] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1530.894889] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1530.896492] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1530.898082] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1530.899673] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1530.901280] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:11:43 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) 07:11:43 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:11:43 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) (fail_nth: 2) [ 1531.054972] loop6: detected capacity change from 0 to 67108864 [ 1531.068158] FAULT_INJECTION: forcing a failure. [ 1531.068158] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1531.069787] CPU: 0 PID: 11717 Comm: syz-executor.5 Not tainted 5.10.246 #1 [ 1531.070609] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.071595] Call Trace: [ 1531.071929] dump_stack+0x107/0x167 [ 1531.072365] should_fail.cold+0x5/0xa [ 1531.072821] _copy_to_user+0x2e/0x180 [ 1531.073272] simple_read_from_buffer+0xcc/0x160 [ 1531.073822] proc_fail_nth_read+0x198/0x230 [ 1531.074337] ? proc_sessionid_read+0x230/0x230 [ 1531.074880] ? security_file_permission+0xb1/0xe0 [ 1531.075471] ? proc_sessionid_read+0x230/0x230 [ 1531.076019] vfs_read+0x228/0x620 [ 1531.076443] ksys_read+0x12d/0x260 [ 1531.076875] ? vfs_write+0xb10/0xb10 [ 1531.077317] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.077934] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.078539] do_syscall_64+0x33/0x40 [ 1531.078977] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1531.079577] RIP: 0033:0x7f4eb0fd869c [ 1531.080020] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1531.082191] RSP: 002b:00007f4eae59b170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1531.083088] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4eb0fd869c [ 1531.083929] RDX: 000000000000000f RSI: 00007f4eae59b1e0 RDI: 0000000000000004 [ 1531.084768] RBP: 00007f4eae59b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1531.085599] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001 [ 1531.086437] R13: 00007ffff8ce0fff R14: 00007f4eae59b300 R15: 0000000000022000 07:11:43 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 17) 07:11:44 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 21) [ 1531.209186] FAULT_INJECTION: forcing a failure. [ 1531.209186] name failslab, interval 1, probability 0, space 0, times 0 [ 1531.211662] CPU: 1 PID: 11723 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1531.213175] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.214902] Call Trace: [ 1531.215463] dump_stack+0x107/0x167 [ 1531.216254] should_fail.cold+0x5/0xa [ 1531.217063] ? __d_alloc+0x2a/0x990 [ 1531.217828] should_failslab+0x5/0x20 [ 1531.218636] kmem_cache_alloc+0x5b/0x310 [ 1531.219501] __d_alloc+0x2a/0x990 [ 1531.220259] ? find_held_lock+0x2c/0x110 [ 1531.221118] d_alloc_pseudo+0x19/0x70 [ 1531.221917] alloc_file_pseudo+0xce/0x250 [ 1531.222786] ? trace_hardirqs_on+0x5b/0x180 [ 1531.223687] ? alloc_file+0x5a0/0x5a0 [ 1531.224551] anon_inode_getfile+0xc8/0x1f0 [ 1531.225450] io_uring_setup+0x138b/0x2980 [ 1531.226333] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1531.227332] FAULT_INJECTION: forcing a failure. [ 1531.227332] name failslab, interval 1, probability 0, space 0, times 0 [ 1531.227398] ? wait_for_completion_io+0x270/0x270 [ 1531.227446] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.230817] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.231909] do_syscall_64+0x33/0x40 [ 1531.232732] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1531.233817] RIP: 0033:0x7ff9de16bb19 [ 1531.234595] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1531.238471] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1531.240076] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1531.241608] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1531.243110] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1531.244644] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1531.246144] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1531.247675] CPU: 0 PID: 11721 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1531.248706] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.249737] Call Trace: [ 1531.250142] dump_stack+0x107/0x167 [ 1531.250725] should_fail.cold+0x5/0xa [ 1531.251333] ? create_object.isra.0+0x3a/0xa30 [ 1531.251980] should_failslab+0x5/0x20 [ 1531.252505] kmem_cache_alloc+0x5b/0x310 [ 1531.253183] create_object.isra.0+0x3a/0xa30 [ 1531.253885] kmemleak_alloc_percpu+0xa0/0x100 [ 1531.254582] pcpu_alloc+0x4e2/0x1240 [ 1531.255336] ? io_async_queue_proc+0x80/0x80 [ 1531.255951] percpu_ref_init+0x31/0x3d0 [ 1531.256611] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1531.257372] io_uring_setup+0x14f6/0x2980 [ 1531.258074] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1531.258733] ? wait_for_completion_io+0x270/0x270 [ 1531.259715] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.260421] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.261189] do_syscall_64+0x33/0x40 [ 1531.261713] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1531.262381] RIP: 0033:0x7f341b7f3b19 [ 1531.262898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1531.265072] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1531.266067] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1531.266962] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1531.267856] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1531.268765] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1531.269659] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:11:44 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 1) 07:11:44 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x3000, &(0x7f0000000300), 0x0, 0x0) 07:11:44 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) [ 1531.407974] FAULT_INJECTION: forcing a failure. [ 1531.407974] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1531.409767] CPU: 0 PID: 11726 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1531.410636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.411666] Call Trace: [ 1531.412062] dump_stack+0x107/0x167 [ 1531.412636] should_fail.cold+0x5/0xa [ 1531.413242] _copy_from_user+0x2e/0x1b0 [ 1531.413861] io_uring_setup+0x9b/0x2980 [ 1531.414452] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1531.415148] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1531.415822] ? wait_for_completion_io+0x270/0x270 [ 1531.416508] ? rcu_read_lock_any_held+0x75/0xa0 [ 1531.417123] ? vfs_write+0x354/0xb10 [ 1531.417694] ? fput_many+0x2f/0x1a0 [ 1531.418235] ? ksys_write+0x1a9/0x260 [ 1531.418782] ? __ia32_sys_read+0xb0/0xb0 [ 1531.419397] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.420099] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.420867] do_syscall_64+0x33/0x40 [ 1531.421391] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1531.422065] RIP: 0033:0x7fb912e91b19 [ 1531.422575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1531.424763] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1531.425760] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1531.426656] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1531.427560] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1531.428466] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1531.429364] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1531.626887] loop6: detected capacity change from 0 to 67108864 [ 1531.698124] loop6: detected capacity change from 0 to 67108864 07:11:59 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 22) 07:11:59 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x3f00, &(0x7f0000000300), 0x0, 0x0) 07:11:59 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 2) 07:11:59 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x29, 0xa, &(0x7f0000000080), 0x4) 07:11:59 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:11:59 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:11:59 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 18) 07:11:59 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1547.021441] FAULT_INJECTION: forcing a failure. [ 1547.021441] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.023933] CPU: 1 PID: 11752 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1547.025438] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.027219] Call Trace: [ 1547.027792] dump_stack+0x107/0x167 [ 1547.028594] should_fail.cold+0x5/0xa [ 1547.029419] ? percpu_ref_init+0xd8/0x3d0 [ 1547.030307] should_failslab+0x5/0x20 [ 1547.031128] kmem_cache_alloc_trace+0x55/0x320 [ 1547.032111] ? io_async_queue_proc+0x80/0x80 [ 1547.033071] percpu_ref_init+0xd8/0x3d0 [ 1547.033919] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1547.035082] io_uring_setup+0x14f6/0x2980 [ 1547.035981] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1547.037077] ? wait_for_completion_io+0x270/0x270 [ 1547.038136] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.039205] FAULT_INJECTION: forcing a failure. [ 1547.039205] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.039260] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.039283] do_syscall_64+0x33/0x40 [ 1547.039308] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1547.044724] RIP: 0033:0x7f341b7f3b19 [ 1547.045523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.049477] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1547.051115] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1547.052660] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1547.054197] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1547.055730] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1547.057264] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1547.058846] CPU: 0 PID: 11744 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1547.060517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.062470] Call Trace: [ 1547.063217] dump_stack+0x107/0x167 [ 1547.064292] should_fail.cold+0x5/0xa [ 1547.065354] ? io_uring_setup+0x258/0x2980 [ 1547.066493] should_failslab+0x5/0x20 [ 1547.067471] kmem_cache_alloc_trace+0x55/0x320 [ 1547.068851] io_uring_setup+0x258/0x2980 [ 1547.069975] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1547.071299] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1547.072557] ? wait_for_completion_io+0x270/0x270 [ 1547.074360] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.075675] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.077124] do_syscall_64+0x33/0x40 [ 1547.078103] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1547.079364] RIP: 0033:0x7fb912e91b19 [ 1547.080338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.084506] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1547.086392] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1547.088092] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1547.089799] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1547.091494] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1547.093198] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1547.128131] FAULT_INJECTION: forcing a failure. [ 1547.128131] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.131134] CPU: 0 PID: 11754 Comm: syz-executor.7 Not tainted 5.10.246 #1 07:11:59 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080), 0x4) [ 1547.132779] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.134899] Call Trace: [ 1547.135638] dump_stack+0x107/0x167 [ 1547.136701] should_fail.cold+0x5/0xa [ 1547.137740] ? create_object.isra.0+0x3a/0xa30 [ 1547.138936] should_failslab+0x5/0x20 [ 1547.139897] kmem_cache_alloc+0x5b/0x310 [ 1547.141154] create_object.isra.0+0x3a/0xa30 [ 1547.142247] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1547.143660] kmem_cache_alloc+0x159/0x310 [ 1547.144931] __d_alloc+0x2a/0x990 [ 1547.145827] ? find_held_lock+0x2c/0x110 [ 1547.147036] d_alloc_pseudo+0x19/0x70 [ 1547.148046] alloc_file_pseudo+0xce/0x250 [ 1547.149093] ? trace_hardirqs_on+0x5b/0x180 [ 1547.150213] ? alloc_file+0x5a0/0x5a0 [ 1547.151641] anon_inode_getfile+0xc8/0x1f0 [ 1547.152853] io_uring_setup+0x138b/0x2980 [ 1547.154133] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1547.155370] ? wait_for_completion_io+0x270/0x270 [ 1547.157153] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.158457] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.159882] do_syscall_64+0x33/0x40 [ 1547.160872] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1547.162128] RIP: 0033:0x7ff9de16bb19 [ 1547.163082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.167205] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1547.169072] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1547.170748] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1547.172436] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1547.174119] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1547.175807] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:00 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 3) 07:12:00 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 23) 07:12:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 19) 07:12:00 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x3, &(0x7f0000000080), 0x4) [ 1547.389510] FAULT_INJECTION: forcing a failure. [ 1547.389510] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.392047] CPU: 1 PID: 11767 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1547.393551] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.395336] Call Trace: [ 1547.395906] dump_stack+0x107/0x167 [ 1547.396705] should_fail.cold+0x5/0xa [ 1547.397519] ? __alloc_file+0x21/0x320 [ 1547.398350] should_failslab+0x5/0x20 [ 1547.399165] kmem_cache_alloc+0x5b/0x310 [ 1547.400038] __alloc_file+0x21/0x320 [ 1547.400844] alloc_empty_file+0x6d/0x170 [ 1547.401715] alloc_file+0x5e/0x5a0 [ 1547.402479] alloc_file_pseudo+0x16a/0x250 [ 1547.403384] ? alloc_file+0x5a0/0x5a0 [ 1547.404216] anon_inode_getfile+0xc8/0x1f0 [ 1547.405138] io_uring_setup+0x138b/0x2980 [ 1547.406033] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1547.407114] ? wait_for_completion_io+0x270/0x270 [ 1547.408170] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.409301] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.410409] do_syscall_64+0x33/0x40 [ 1547.411205] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1547.412300] RIP: 0033:0x7ff9de16bb19 [ 1547.413111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.417051] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1547.418699] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1547.420227] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1547.421765] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1547.423292] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1547.424841] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1547.427877] FAULT_INJECTION: forcing a failure. [ 1547.427877] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.430817] CPU: 0 PID: 11768 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1547.432475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.434416] Call Trace: [ 1547.435168] dump_stack+0x107/0x167 [ 1547.436237] should_fail.cold+0x5/0xa [ 1547.437304] ? create_object.isra.0+0x3a/0xa30 [ 1547.438516] should_failslab+0x5/0x20 [ 1547.439485] kmem_cache_alloc+0x5b/0x310 [ 1547.440763] create_object.isra.0+0x3a/0xa30 [ 1547.441860] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1547.443288] kmem_cache_alloc_trace+0x151/0x320 [ 1547.444612] ? io_async_queue_proc+0x80/0x80 [ 1547.445765] percpu_ref_init+0xd8/0x3d0 [ 1547.446960] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1547.448404] io_uring_setup+0x14f6/0x2980 [ 1547.449715] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1547.450958] ? wait_for_completion_io+0x270/0x270 [ 1547.452794] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.454105] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.455552] do_syscall_64+0x33/0x40 [ 1547.456543] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1547.457804] RIP: 0033:0x7f341b7f3b19 [ 1547.458766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.462907] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1547.464811] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1547.466507] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1547.468202] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1547.469908] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1547.471614] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1547.522268] FAULT_INJECTION: forcing a failure. [ 1547.522268] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.525179] CPU: 0 PID: 11771 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1547.526835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.528784] Call Trace: [ 1547.529528] dump_stack+0x107/0x167 [ 1547.530611] should_fail.cold+0x5/0xa [ 1547.531661] ? create_object.isra.0+0x3a/0xa30 [ 1547.532879] should_failslab+0x5/0x20 [ 1547.533853] kmem_cache_alloc+0x5b/0x310 [ 1547.535106] create_object.isra.0+0x3a/0xa30 [ 1547.536199] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1547.537623] kmem_cache_alloc_trace+0x151/0x320 [ 1547.539006] io_uring_setup+0x258/0x2980 [ 1547.540129] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1547.541462] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1547.542700] ? wait_for_completion_io+0x270/0x270 [ 1547.544513] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.545818] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.547254] do_syscall_64+0x33/0x40 [ 1547.548230] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1547.549492] RIP: 0033:0x7fb912e91b19 [ 1547.550449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.554584] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1547.556468] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1547.558159] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1547.559847] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1547.561546] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1547.563238] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1547.680718] loop6: detected capacity change from 0 to 67108864 07:12:15 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:12:15 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x4000, &(0x7f0000000300), 0x0, 0x0) 07:12:15 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x4, &(0x7f0000000080), 0x4) 07:12:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:12:15 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 24) 07:12:15 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 20) 07:12:15 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 4) 07:12:15 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1562.897013] FAULT_INJECTION: forcing a failure. [ 1562.897013] name failslab, interval 1, probability 0, space 0, times 0 [ 1562.898607] CPU: 1 PID: 11784 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1562.899507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1562.900590] Call Trace: [ 1562.900951] dump_stack+0x107/0x167 [ 1562.901434] should_fail.cold+0x5/0xa [ 1562.901948] ? create_object.isra.0+0x3a/0xa30 [ 1562.902550] should_failslab+0x5/0x20 [ 1562.903049] kmem_cache_alloc+0x5b/0x310 [ 1562.903593] create_object.isra.0+0x3a/0xa30 [ 1562.904167] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1562.904835] kmem_cache_alloc+0x159/0x310 [ 1562.905381] __alloc_file+0x21/0x320 [ 1562.905878] alloc_empty_file+0x6d/0x170 [ 1562.906421] alloc_file+0x5e/0x5a0 [ 1562.906893] alloc_file_pseudo+0x16a/0x250 [ 1562.907448] ? alloc_file+0x5a0/0x5a0 [ 1562.907979] anon_inode_getfile+0xc8/0x1f0 [ 1562.908544] io_uring_setup+0x138b/0x2980 [ 1562.909096] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1562.909768] ? wait_for_completion_io+0x270/0x270 [ 1562.910427] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1562.911137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1562.911816] do_syscall_64+0x33/0x40 [ 1562.912316] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1562.912997] RIP: 0033:0x7ff9de16bb19 [ 1562.913480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1562.915895] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1562.916899] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1562.917823] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1562.918760] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1562.919703] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1562.920654] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1562.943143] FAULT_INJECTION: forcing a failure. [ 1562.943143] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1562.946179] CPU: 0 PID: 11792 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1562.947804] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1562.949764] Call Trace: [ 1562.950500] dump_stack+0x107/0x167 [ 1562.951540] should_fail.cold+0x5/0xa [ 1562.952686] __alloc_pages_nodemask+0x182/0x600 [ 1562.953907] ? lock_release+0x680/0x680 [ 1562.954952] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1562.956652] ? lock_downgrade+0x6d0/0x6d0 [ 1562.957999] alloc_pages_current+0x187/0x280 [ 1562.959234] kmalloc_order+0x35/0x160 [ 1562.960383] kmalloc_order_trace+0x14/0xa0 [ 1562.961554] io_uring_setup+0x33c/0x2980 [ 1562.962881] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1562.964780] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1562.966073] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1562.967500] do_syscall_64+0x33/0x40 [ 1562.968467] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1562.969724] RIP: 0033:0x7fb912e91b19 [ 1562.970672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1562.974784] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1562.976663] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1562.978330] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1562.979997] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1562.981673] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1562.983339] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1563.001887] FAULT_INJECTION: forcing a failure. [ 1563.001887] name failslab, interval 1, probability 0, space 0, times 0 [ 1563.004927] CPU: 0 PID: 11794 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1563.006552] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.008454] Call Trace: [ 1563.009215] dump_stack+0x107/0x167 [ 1563.010276] should_fail.cold+0x5/0xa [ 1563.011317] ? create_object.isra.0+0x3a/0xa30 [ 1563.012527] should_failslab+0x5/0x20 [ 1563.013489] kmem_cache_alloc+0x5b/0x310 [ 1563.014743] create_object.isra.0+0x3a/0xa30 [ 1563.015888] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1563.017321] kmem_cache_alloc_trace+0x151/0x320 [ 1563.018627] ? io_async_queue_proc+0x80/0x80 [ 1563.019771] percpu_ref_init+0xd8/0x3d0 [ 1563.020972] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1563.022398] io_uring_setup+0x14f6/0x2980 [ 1563.023714] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1563.024955] ? wait_for_completion_io+0x270/0x270 [ 1563.026786] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.028115] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.029601] do_syscall_64+0x33/0x40 [ 1563.030587] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1563.031838] RIP: 0033:0x7f341b7f3b19 [ 1563.032815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.036911] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1563.038783] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1563.040486] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1563.042218] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1563.043902] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1563.045596] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:15 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x5, &(0x7f0000000080), 0x4) 07:12:15 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 25) 07:12:15 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x6, &(0x7f0000000080), 0x4) 07:12:16 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 5) [ 1563.244330] FAULT_INJECTION: forcing a failure. [ 1563.244330] name failslab, interval 1, probability 0, space 0, times 0 [ 1563.247262] CPU: 0 PID: 11805 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1563.248886] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.250802] Call Trace: [ 1563.251569] dump_stack+0x107/0x167 [ 1563.252655] should_fail.cold+0x5/0xa [ 1563.253675] ? security_file_alloc+0x34/0x170 [ 1563.254835] should_failslab+0x5/0x20 [ 1563.255783] kmem_cache_alloc+0x5b/0x310 [ 1563.257014] security_file_alloc+0x34/0x170 [ 1563.258195] __alloc_file+0xb7/0x320 [ 1563.259216] alloc_empty_file+0x6d/0x170 [ 1563.260328] alloc_file+0x5e/0x5a0 [ 1563.261390] alloc_file_pseudo+0x16a/0x250 [ 1563.262494] ? alloc_file+0x5a0/0x5a0 [ 1563.263900] anon_inode_getfile+0xc8/0x1f0 [ 1563.265091] io_uring_setup+0x138b/0x2980 [ 1563.266405] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1563.267619] ? wait_for_completion_io+0x270/0x270 [ 1563.269395] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.270677] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.272078] do_syscall_64+0x33/0x40 [ 1563.273048] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1563.274278] RIP: 0033:0x7ff9de16bb19 [ 1563.275218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.279303] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1563.281160] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1563.282824] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1563.284485] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1563.286169] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1563.287831] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:16 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 21) [ 1563.337698] FAULT_INJECTION: forcing a failure. [ 1563.337698] name failslab, interval 1, probability 0, space 0, times 0 [ 1563.339015] CPU: 1 PID: 11810 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1563.339789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.340743] Call Trace: [ 1563.341050] dump_stack+0x107/0x167 [ 1563.341461] should_fail.cold+0x5/0xa [ 1563.341897] ? create_object.isra.0+0x3a/0xa30 [ 1563.342412] should_failslab+0x5/0x20 [ 1563.342921] kmem_cache_alloc+0x5b/0x310 [ 1563.343388] create_object.isra.0+0x3a/0xa30 [ 1563.343887] ? kasan_unpoison_shadow+0x33/0x50 [ 1563.344403] kmalloc_order+0xfe/0x160 [ 1563.344844] kmalloc_order_trace+0x14/0xa0 [ 1563.345329] io_uring_setup+0x33c/0x2980 [ 1563.345796] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1563.346346] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1563.346919] ? wait_for_completion_io+0x270/0x270 [ 1563.347484] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.348079] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.348673] do_syscall_64+0x33/0x40 [ 1563.349096] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1563.349679] RIP: 0033:0x7fb912e91b19 [ 1563.350101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.352184] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1563.353057] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1563.353865] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1563.354673] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1563.355480] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1563.356288] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:16 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x7, &(0x7f0000000080), 0x4) [ 1563.450054] FAULT_INJECTION: forcing a failure. [ 1563.450054] name failslab, interval 1, probability 0, space 0, times 0 [ 1563.455486] CPU: 0 PID: 11813 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1563.457112] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.459016] Call Trace: [ 1563.459744] dump_stack+0x107/0x167 [ 1563.460795] should_fail.cold+0x5/0xa [ 1563.461817] ? __d_alloc+0x2a/0x990 [ 1563.462803] should_failslab+0x5/0x20 [ 1563.463752] kmem_cache_alloc+0x5b/0x310 07:12:16 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 6) [ 1563.464976] __d_alloc+0x2a/0x990 [ 1563.466027] ? find_held_lock+0x2c/0x110 [ 1563.467213] d_alloc_pseudo+0x19/0x70 [ 1563.468206] alloc_file_pseudo+0xce/0x250 [ 1563.469236] ? trace_hardirqs_on+0x5b/0x180 [ 1563.470337] ? alloc_file+0x5a0/0x5a0 [ 1563.471736] anon_inode_getfile+0xc8/0x1f0 [ 1563.472939] io_uring_setup+0x138b/0x2980 [ 1563.474201] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1563.475424] ? wait_for_completion_io+0x270/0x270 [ 1563.477169] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.478454] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.479866] do_syscall_64+0x33/0x40 [ 1563.480838] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1563.482069] RIP: 0033:0x7f341b7f3b19 [ 1563.483008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.487073] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1563.488909] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1563.490555] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1563.492208] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1563.493867] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1563.495525] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1563.498295] FAULT_INJECTION: forcing a failure. [ 1563.498295] name failslab, interval 1, probability 0, space 0, times 0 [ 1563.499852] CPU: 1 PID: 11817 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1563.500774] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.501707] Call Trace: [ 1563.502017] dump_stack+0x107/0x167 [ 1563.502434] should_fail.cold+0x5/0xa [ 1563.502875] ? io_uring_setup+0x40b/0x2980 [ 1563.503356] should_failslab+0x5/0x20 [ 1563.503789] kmem_cache_alloc_trace+0x55/0x320 [ 1563.504306] io_uring_setup+0x40b/0x2980 [ 1563.504777] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1563.505319] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1563.505898] ? wait_for_completion_io+0x270/0x270 [ 1563.506465] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.507063] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.507657] do_syscall_64+0x33/0x40 [ 1563.508076] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1563.508663] RIP: 0033:0x7fb912e91b19 [ 1563.509084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.511164] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1563.512030] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1563.512844] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1563.513647] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1563.514451] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1563.515251] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:16 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x8, &(0x7f0000000080), 0x4) [ 1563.648524] loop6: detected capacity change from 0 to 67108864 07:12:30 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x4800, &(0x7f0000000300), 0x0, 0x0) 07:12:30 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x9, &(0x7f0000000080), 0x4) [ 1577.951584] FAULT_INJECTION: forcing a failure. [ 1577.951584] name failslab, interval 1, probability 0, space 0, times 0 [ 1577.953064] CPU: 1 PID: 11832 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1577.953934] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1577.954982] Call Trace: [ 1577.955321] dump_stack+0x107/0x167 [ 1577.955776] should_fail.cold+0x5/0xa [ 1577.956259] ? create_object.isra.0+0x3a/0xa30 [ 1577.956844] should_failslab+0x5/0x20 [ 1577.957334] kmem_cache_alloc+0x5b/0x310 [ 1577.957846] create_object.isra.0+0x3a/0xa30 [ 1577.958402] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1577.959044] kmem_cache_alloc+0x159/0x310 [ 1577.959567] __d_alloc+0x2a/0x990 [ 1577.960002] ? find_held_lock+0x2c/0x110 [ 1577.960536] d_alloc_pseudo+0x19/0x70 [ 1577.961039] alloc_file_pseudo+0xce/0x250 [ 1577.961556] ? trace_hardirqs_on+0x5b/0x180 [ 1577.962095] ? alloc_file+0x5a0/0x5a0 [ 1577.962588] anon_inode_getfile+0xc8/0x1f0 [ 1577.963119] io_uring_setup+0x138b/0x2980 [ 1577.963646] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1577.964285] ? wait_for_completion_io+0x270/0x270 [ 1577.964928] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1577.965594] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1577.966258] do_syscall_64+0x33/0x40 [ 1577.966728] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1577.967379] RIP: 0033:0x7f341b7f3b19 [ 1577.967848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1577.970156] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1577.971106] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1577.971987] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1577.972893] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1577.973789] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1577.974690] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:30 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 26) 07:12:30 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 7) 07:12:30 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 22) 07:12:30 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:12:30 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:12:30 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1577.985833] FAULT_INJECTION: forcing a failure. [ 1577.985833] name failslab, interval 1, probability 0, space 0, times 0 [ 1577.987279] CPU: 1 PID: 11829 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1577.988156] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1577.989196] Call Trace: [ 1577.989524] dump_stack+0x107/0x167 [ 1577.989976] should_fail.cold+0x5/0xa [ 1577.990453] ? create_object.isra.0+0x3a/0xa30 [ 1577.991014] should_failslab+0x5/0x20 [ 1577.991497] kmem_cache_alloc+0x5b/0x310 [ 1577.991999] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1577.992698] create_object.isra.0+0x3a/0xa30 [ 1577.993242] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1577.993870] kmem_cache_alloc+0x159/0x310 [ 1577.994400] security_file_alloc+0x34/0x170 [ 1577.994942] __alloc_file+0xb7/0x320 [ 1577.995412] alloc_empty_file+0x6d/0x170 [ 1577.995926] alloc_file+0x5e/0x5a0 [ 1577.996377] alloc_file_pseudo+0x16a/0x250 [ 1577.996903] ? alloc_file+0x5a0/0x5a0 [ 1577.997384] anon_inode_getfile+0xc8/0x1f0 [ 1577.997907] io_uring_setup+0x138b/0x2980 [ 1577.998422] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1577.999056] ? wait_for_completion_io+0x270/0x270 [ 1577.999664] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.000308] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.000952] do_syscall_64+0x33/0x40 [ 1578.001408] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1578.002038] RIP: 0033:0x7ff9de16bb19 [ 1578.002493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.004773] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1578.005720] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1578.006600] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1578.007486] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1578.008389] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1578.009294] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1578.014904] FAULT_INJECTION: forcing a failure. [ 1578.014904] name failslab, interval 1, probability 0, space 0, times 0 [ 1578.016320] CPU: 1 PID: 11828 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1578.017182] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1578.018200] Call Trace: [ 1578.018521] dump_stack+0x107/0x167 [ 1578.018969] should_fail.cold+0x5/0xa [ 1578.019436] ? create_object.isra.0+0x3a/0xa30 [ 1578.019995] should_failslab+0x5/0x20 [ 1578.020461] kmem_cache_alloc+0x5b/0x310 [ 1578.020971] create_object.isra.0+0x3a/0xa30 [ 1578.021508] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1578.022134] kmem_cache_alloc_trace+0x151/0x320 [ 1578.022707] io_uring_setup+0x40b/0x2980 [ 1578.023211] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1578.023846] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.024489] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.025133] do_syscall_64+0x33/0x40 [ 1578.025587] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1578.026275] RIP: 0033:0x7fb912e91b19 [ 1578.026734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.029009] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1578.029934] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1578.030797] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1578.031664] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1578.032545] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1578.033416] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:30 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xc, &(0x7f0000000080), 0x4) 07:12:30 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:12:30 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 23) 07:12:30 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 8) 07:12:31 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 27) [ 1578.225756] FAULT_INJECTION: forcing a failure. [ 1578.225756] name failslab, interval 1, probability 0, space 0, times 0 [ 1578.227019] CPU: 1 PID: 11954 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1578.227783] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1578.228713] Call Trace: [ 1578.229009] dump_stack+0x107/0x167 [ 1578.229422] should_fail.cold+0x5/0xa [ 1578.229848] ? create_object.isra.0+0x3a/0xa30 [ 1578.230352] should_failslab+0x5/0x20 [ 1578.230773] kmem_cache_alloc+0x5b/0x310 [ 1578.231226] create_object.isra.0+0x3a/0xa30 [ 1578.231718] kmemleak_alloc_percpu+0xa0/0x100 [ 1578.232217] pcpu_alloc+0x4e2/0x1240 [ 1578.232646] ? io_tctx_exit_cb+0xf0/0xf0 [ 1578.233101] percpu_ref_init+0x31/0x3d0 [ 1578.233543] io_uring_setup+0x47a/0x2980 [ 1578.233992] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1578.234524] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1578.235081] ? wait_for_completion_io+0x270/0x270 [ 1578.235630] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.236214] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.236795] do_syscall_64+0x33/0x40 [ 1578.237207] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1578.237776] RIP: 0033:0x7fb912e91b19 [ 1578.238188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.240209] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1578.241053] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1578.241842] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1578.242629] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1578.243421] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1578.244206] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xd, &(0x7f0000000080), 0x4) [ 1578.312154] FAULT_INJECTION: forcing a failure. [ 1578.312154] name failslab, interval 1, probability 0, space 0, times 0 [ 1578.315360] CPU: 0 PID: 11953 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1578.317085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1578.319094] Call Trace: [ 1578.319854] dump_stack+0x107/0x167 [ 1578.320927] should_fail.cold+0x5/0xa [ 1578.321980] ? __alloc_file+0x21/0x320 [ 1578.323052] should_failslab+0x5/0x20 [ 1578.324025] kmem_cache_alloc+0x5b/0x310 [ 1578.325288] __alloc_file+0x21/0x320 [ 1578.326350] alloc_empty_file+0x6d/0x170 [ 1578.327491] alloc_file+0x5e/0x5a0 [ 1578.328578] alloc_file_pseudo+0x16a/0x250 [ 1578.329731] ? alloc_file+0x5a0/0x5a0 [ 1578.331165] anon_inode_getfile+0xc8/0x1f0 [ 1578.332383] io_uring_setup+0x138b/0x2980 [ 1578.333695] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1578.334953] ? wait_for_completion_io+0x270/0x270 [ 1578.336748] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.338079] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.339508] do_syscall_64+0x33/0x40 [ 1578.340491] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1578.341790] RIP: 0033:0x7f341b7f3b19 [ 1578.342761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.347078] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1578.349033] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1578.350785] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1578.352552] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1578.354186] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1578.355809] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1578.412211] FAULT_INJECTION: forcing a failure. [ 1578.412211] name failslab, interval 1, probability 0, space 0, times 0 [ 1578.415498] CPU: 0 PID: 11957 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1578.417243] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1578.419257] Call Trace: [ 1578.420006] dump_stack+0x107/0x167 [ 1578.421073] should_fail.cold+0x5/0xa [ 1578.422120] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1578.423456] should_failslab+0x5/0x20 [ 1578.424429] kmem_cache_alloc_trace+0x55/0x320 [ 1578.425777] io_uring_alloc_task_context+0x99/0x6a0 [ 1578.427122] ? io_import_iovec+0x1120/0x1120 [ 1578.428273] ? lock_downgrade+0x6d0/0x6d0 [ 1578.429376] ? do_raw_spin_lock+0x121/0x260 [ 1578.430519] ? rwlock_bug.part.0+0x90/0x90 [ 1578.431783] __io_uring_add_tctx_node+0x2c6/0x520 [ 1578.433065] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1578.434356] ? alloc_fd+0x2e7/0x670 [ 1578.435598] io_uring_setup+0x1fbb/0x2980 [ 1578.436883] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1578.438091] ? wait_for_completion_io+0x270/0x270 [ 1578.439747] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.440998] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.441350] loop6: detected capacity change from 0 to 67108864 [ 1578.442308] do_syscall_64+0x33/0x40 [ 1578.443741] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1578.444947] RIP: 0033:0x7ff9de16bb19 [ 1578.445853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.449807] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1578.451606] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1578.453228] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1578.454827] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1578.456435] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1578.458042] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:31 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 9) 07:12:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xe, &(0x7f0000000080), 0x4) [ 1578.615062] FAULT_INJECTION: forcing a failure. [ 1578.615062] name failslab, interval 1, probability 0, space 0, times 0 [ 1578.618049] CPU: 0 PID: 11965 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1578.619804] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1578.621853] Call Trace: [ 1578.622654] dump_stack+0x107/0x167 [ 1578.623780] should_fail.cold+0x5/0xa [ 1578.624909] ? create_object.isra.0+0x3a/0xa30 [ 1578.626198] should_failslab+0x5/0x20 [ 1578.627238] kmem_cache_alloc+0x5b/0x310 [ 1578.628577] create_object.isra.0+0x3a/0xa30 [ 1578.629987] kmemleak_alloc_percpu+0xa0/0x100 [ 1578.631359] pcpu_alloc+0x4e2/0x1240 [ 1578.632870] ? io_tctx_exit_cb+0xf0/0xf0 [ 1578.634021] percpu_ref_init+0x31/0x3d0 [ 1578.635274] io_uring_setup+0x47a/0x2980 [ 1578.636484] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1578.637930] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1578.639240] ? wait_for_completion_io+0x270/0x270 [ 1578.641194] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.642604] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.644126] do_syscall_64+0x33/0x40 [ 1578.645197] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1578.646537] RIP: 0033:0x7fb912e91b19 [ 1578.647580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.651914] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1578.653930] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1578.655696] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1578.657475] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1578.659278] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1578.661064] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:31 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x4c00, &(0x7f0000000300), 0x0, 0x0) 07:12:31 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 24) 07:12:31 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1578.781174] FAULT_INJECTION: forcing a failure. [ 1578.781174] name failslab, interval 1, probability 0, space 0, times 0 [ 1578.783934] CPU: 0 PID: 11970 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1578.785558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1578.787456] Call Trace: [ 1578.788188] dump_stack+0x107/0x167 [ 1578.789242] should_fail.cold+0x5/0xa [ 1578.790276] ? create_object.isra.0+0x3a/0xa30 [ 1578.791464] should_failslab+0x5/0x20 [ 1578.792421] kmem_cache_alloc+0x5b/0x310 [ 1578.793660] create_object.isra.0+0x3a/0xa30 [ 1578.794739] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1578.796138] kmem_cache_alloc+0x159/0x310 [ 1578.797392] __alloc_file+0x21/0x320 [ 1578.798424] alloc_empty_file+0x6d/0x170 [ 1578.799551] alloc_file+0x5e/0x5a0 [ 1578.800619] alloc_file_pseudo+0x16a/0x250 [ 1578.801748] ? alloc_file+0x5a0/0x5a0 [ 1578.803170] anon_inode_getfile+0xc8/0x1f0 [ 1578.804366] io_uring_setup+0x138b/0x2980 [ 1578.805647] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1578.806872] ? wait_for_completion_io+0x270/0x270 [ 1578.808643] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.809943] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.811359] do_syscall_64+0x33/0x40 [ 1578.812324] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1578.813572] RIP: 0033:0x7f341b7f3b19 [ 1578.814514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.818596] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1578.820445] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1578.822116] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1578.823781] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1578.825449] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1578.827112] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1578.927733] loop6: detected capacity change from 0 to 67108864 07:12:46 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x6000, &(0x7f0000000300), 0x0, 0x0) 07:12:46 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 28) 07:12:46 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:12:46 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 10) 07:12:46 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:12:46 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x0, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:12:46 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 25) 07:12:46 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x10, &(0x7f0000000080), 0x4) [ 1593.248021] FAULT_INJECTION: forcing a failure. [ 1593.248021] name failslab, interval 1, probability 0, space 0, times 0 [ 1593.249619] CPU: 1 PID: 11992 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1593.250552] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1593.251688] Call Trace: [ 1593.252051] dump_stack+0x107/0x167 [ 1593.252547] should_fail.cold+0x5/0xa [ 1593.253072] ? create_object.isra.0+0x3a/0xa30 [ 1593.253688] should_failslab+0x5/0x20 [ 1593.254210] kmem_cache_alloc+0x5b/0x310 [ 1593.254776] create_object.isra.0+0x3a/0xa30 [ 1593.255402] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1593.256096] kmem_cache_alloc_trace+0x151/0x320 [ 1593.256744] io_uring_alloc_task_context+0x99/0x6a0 [ 1593.257433] ? io_import_iovec+0x1120/0x1120 [ 1593.258029] ? lock_downgrade+0x6d0/0x6d0 [ 1593.258604] ? do_raw_spin_lock+0x121/0x260 [ 1593.259189] ? rwlock_bug.part.0+0x90/0x90 [ 1593.259769] __io_uring_add_tctx_node+0x2c6/0x520 [ 1593.260427] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1593.261144] ? alloc_fd+0x2e7/0x670 [ 1593.261645] io_uring_setup+0x1fbb/0x2980 [ 1593.262209] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1593.262897] ? wait_for_completion_io+0x270/0x270 [ 1593.263561] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1593.264272] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1593.264975] do_syscall_64+0x33/0x40 [ 1593.265478] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1593.266179] RIP: 0033:0x7ff9de16bb19 [ 1593.266680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1593.269170] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1593.270202] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1593.271187] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1593.272156] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1593.273158] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1593.274112] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1593.326643] FAULT_INJECTION: forcing a failure. [ 1593.326643] name failslab, interval 1, probability 0, space 0, times 0 [ 1593.328176] CPU: 1 PID: 11994 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1593.329108] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1593.330204] Call Trace: [ 1593.330553] dump_stack+0x107/0x167 [ 1593.331035] should_fail.cold+0x5/0xa [ 1593.331544] ? security_file_alloc+0x34/0x170 [ 1593.332130] should_failslab+0x5/0x20 [ 1593.332630] kmem_cache_alloc+0x5b/0x310 [ 1593.333179] security_file_alloc+0x34/0x170 [ 1593.333766] __alloc_file+0xb7/0x320 [ 1593.334252] alloc_empty_file+0x6d/0x170 [ 1593.334793] alloc_file+0x5e/0x5a0 [ 1593.335261] alloc_file_pseudo+0x16a/0x250 [ 1593.335826] ? alloc_file+0x5a0/0x5a0 [ 1593.336334] anon_inode_getfile+0xc8/0x1f0 [ 1593.336905] io_uring_setup+0x138b/0x2980 [ 1593.337463] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1593.338141] ? wait_for_completion_io+0x270/0x270 [ 1593.338798] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1593.339477] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1593.339667] FAULT_INJECTION: forcing a failure. [ 1593.339667] name failslab, interval 1, probability 0, space 0, times 0 [ 1593.340152] do_syscall_64+0x33/0x40 [ 1593.340165] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1593.340172] RIP: 0033:0x7f341b7f3b19 [ 1593.340183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1593.340189] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1593.340202] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1593.340209] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1593.340216] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1593.340222] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1593.340228] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1593.367761] CPU: 0 PID: 11989 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1593.369494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1593.371534] Call Trace: [ 1593.372322] dump_stack+0x107/0x167 [ 1593.373460] should_fail.cold+0x5/0xa [ 1593.374566] ? percpu_ref_init+0xd8/0x3d0 [ 1593.375755] should_failslab+0x5/0x20 [ 1593.376798] kmem_cache_alloc_trace+0x55/0x320 [ 1593.378189] ? io_tctx_exit_cb+0xf0/0xf0 [ 1593.379340] percpu_ref_init+0xd8/0x3d0 [ 1593.380610] io_uring_setup+0x47a/0x2980 [ 1593.381831] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1593.383240] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1593.384577] ? wait_for_completion_io+0x270/0x270 [ 1593.386513] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1593.387889] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1593.389426] do_syscall_64+0x33/0x40 [ 1593.390460] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1593.391782] RIP: 0033:0x7fb912e91b19 [ 1593.392796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1593.397147] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1593.399173] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1593.401005] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1593.402829] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1593.404657] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1593.406468] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:46 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x11, &(0x7f0000000080), 0x4) 07:12:46 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 26) [ 1593.461986] FAULT_INJECTION: forcing a failure. [ 1593.461986] name failslab, interval 1, probability 0, space 0, times 0 [ 1593.463540] CPU: 1 PID: 12002 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1593.464442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1593.465505] Call Trace: [ 1593.465850] dump_stack+0x107/0x167 [ 1593.466314] should_fail.cold+0x5/0xa [ 1593.466814] ? create_object.isra.0+0x3a/0xa30 [ 1593.467399] should_failslab+0x5/0x20 [ 1593.467883] kmem_cache_alloc+0x5b/0x310 [ 1593.468406] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1593.469121] create_object.isra.0+0x3a/0xa30 [ 1593.469684] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1593.470347] kmem_cache_alloc+0x159/0x310 [ 1593.470887] security_file_alloc+0x34/0x170 [ 1593.471439] __alloc_file+0xb7/0x320 [ 1593.471936] alloc_empty_file+0x6d/0x170 [ 1593.472452] alloc_file+0x5e/0x5a0 [ 1593.472920] alloc_file_pseudo+0x16a/0x250 [ 1593.473461] ? alloc_file+0x5a0/0x5a0 [ 1593.473958] anon_inode_getfile+0xc8/0x1f0 [ 1593.474504] io_uring_setup+0x138b/0x2980 [ 1593.475039] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1593.475684] ? wait_for_completion_io+0x270/0x270 [ 1593.476312] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1593.476983] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1593.477652] do_syscall_64+0x33/0x40 [ 1593.478132] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1593.478787] RIP: 0033:0x7f341b7f3b19 [ 1593.479271] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1593.481623] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1593.482616] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1593.483530] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1593.484451] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1593.485365] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1593.486284] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:46 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x12, &(0x7f0000000080), 0x4) 07:12:46 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 11) 07:12:46 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 29) 07:12:46 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 27) [ 1593.593530] FAULT_INJECTION: forcing a failure. [ 1593.593530] name failslab, interval 1, probability 0, space 0, times 0 [ 1593.594971] CPU: 1 PID: 12009 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1593.595806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1593.596808] Call Trace: [ 1593.597140] dump_stack+0x107/0x167 [ 1593.597583] should_fail.cold+0x5/0xa [ 1593.598051] ? create_object.isra.0+0x3a/0xa30 [ 1593.598603] should_failslab+0x5/0x20 [ 1593.599064] kmem_cache_alloc+0x5b/0x310 [ 1593.599580] create_object.isra.0+0x3a/0xa30 [ 1593.600113] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1593.600732] kmem_cache_alloc_trace+0x151/0x320 [ 1593.601303] ? io_tctx_exit_cb+0xf0/0xf0 [ 1593.601791] percpu_ref_init+0xd8/0x3d0 [ 1593.602275] io_uring_setup+0x47a/0x2980 [ 1593.602766] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1593.603351] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1593.603957] ? wait_for_completion_io+0x270/0x270 [ 1593.604548] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1593.605191] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1593.605813] do_syscall_64+0x33/0x40 [ 1593.606257] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1593.606879] RIP: 0033:0x7fb912e91b19 [ 1593.607322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1593.609556] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1593.610468] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1593.611332] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1593.612195] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1593.613090] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1593.613950] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1593.627843] FAULT_INJECTION: forcing a failure. [ 1593.627843] name failslab, interval 1, probability 0, space 0, times 0 [ 1593.629226] CPU: 1 PID: 12012 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1593.630047] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1593.631025] Call Trace: [ 1593.631342] dump_stack+0x107/0x167 [ 1593.631776] should_fail.cold+0x5/0xa [ 1593.632227] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1593.632867] should_failslab+0x5/0x20 [ 1593.633318] kmem_cache_alloc_trace+0x55/0x320 [ 1593.633862] io_uring_alloc_task_context+0x99/0x6a0 [ 1593.634452] ? io_import_iovec+0x1120/0x1120 [ 1593.634978] ? lock_downgrade+0x6d0/0x6d0 [ 1593.635467] ? do_raw_spin_lock+0x121/0x260 [ 1593.635980] ? rwlock_bug.part.0+0x90/0x90 [ 1593.636487] __io_uring_add_tctx_node+0x2c6/0x520 [ 1593.637068] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1593.637692] ? alloc_fd+0x2e7/0x670 [ 1593.638131] io_uring_setup+0x1fbb/0x2980 [ 1593.638631] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1593.639232] ? wait_for_completion_io+0x270/0x270 [ 1593.639819] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1593.640448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1593.641072] do_syscall_64+0x33/0x40 [ 1593.641512] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1593.642121] RIP: 0033:0x7f341b7f3b19 [ 1593.642563] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1593.644757] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1593.646647] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1593.648511] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1593.650195] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1593.651697] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1593.653232] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:12:46 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1593.701116] FAULT_INJECTION: forcing a failure. 07:12:46 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000080), 0x4) [ 1593.701116] name failslab, interval 1, probability 0, space 0, times 0 [ 1593.704169] CPU: 0 PID: 12014 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1593.705811] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1593.707727] Call Trace: [ 1593.708456] dump_stack+0x107/0x167 [ 1593.709508] should_fail.cold+0x5/0xa [ 1593.710535] ? create_object.isra.0+0x3a/0xa30 [ 1593.711739] should_failslab+0x5/0x20 [ 1593.712690] kmem_cache_alloc+0x5b/0x310 [ 1593.713939] create_object.isra.0+0x3a/0xa30 [ 1593.715223] kmemleak_alloc_percpu+0xa0/0x100 [ 1593.716505] pcpu_alloc+0x4e2/0x1240 [ 1593.717951] __percpu_counter_init+0x10d/0x2d0 [ 1593.719228] io_uring_alloc_task_context+0xcc/0x6a0 [ 1593.720566] ? io_import_iovec+0x1120/0x1120 [ 1593.721726] ? lock_downgrade+0x6d0/0x6d0 [ 1593.722824] ? do_raw_spin_lock+0x121/0x260 [ 1593.723979] ? rwlock_bug.part.0+0x90/0x90 [ 1593.725261] __io_uring_add_tctx_node+0x2c6/0x520 [ 1593.726529] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1593.727805] ? alloc_fd+0x2e7/0x670 [ 1593.729098] io_uring_setup+0x1fbb/0x2980 [ 1593.730405] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1593.731677] ? wait_for_completion_io+0x270/0x270 [ 1593.733466] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1593.734795] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1593.736219] do_syscall_64+0x33/0x40 [ 1593.737232] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1593.738507] RIP: 0033:0x7ff9de16bb19 [ 1593.739454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1593.743713] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1593.745636] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1593.747342] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1593.749082] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1593.750824] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1593.752522] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1594.097342] loop6: detected capacity change from 0 to 67108864 [ 1607.932481] FAULT_INJECTION: forcing a failure. [ 1607.932481] name failslab, interval 1, probability 0, space 0, times 0 [ 1607.935039] CPU: 1 PID: 12028 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1607.936500] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1607.938256] Call Trace: [ 1607.938818] dump_stack+0x107/0x167 [ 1607.939589] should_fail.cold+0x5/0xa [ 1607.940393] ? create_object.isra.0+0x3a/0xa30 [ 1607.941360] should_failslab+0x5/0x20 [ 1607.942161] kmem_cache_alloc+0x5b/0x310 [ 1607.943022] create_object.isra.0+0x3a/0xa30 [ 1607.943955] kmemleak_alloc_percpu+0xa0/0x100 [ 1607.944903] pcpu_alloc+0x4e2/0x1240 [ 1607.945744] __percpu_counter_init+0x10d/0x2d0 [ 1607.946710] io_uring_alloc_task_context+0xcc/0x6a0 [ 1607.947759] ? io_import_iovec+0x1120/0x1120 07:13:00 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 30) 07:13:00 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 28) 07:13:00 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x14, &(0x7f0000000080), 0x4) 07:13:00 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 12) 07:13:00 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) fork() 07:13:00 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x60ff, &(0x7f0000000300), 0x0, 0x0) 07:13:00 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:13:00 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1607.948682] ? lock_downgrade+0x6d0/0x6d0 [ 1607.949929] ? do_raw_spin_lock+0x121/0x260 [ 1607.950837] ? rwlock_bug.part.0+0x90/0x90 [ 1607.951734] __io_uring_add_tctx_node+0x2c6/0x520 [ 1607.952755] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1607.953874] ? alloc_fd+0x2e7/0x670 [ 1607.954650] io_uring_setup+0x1fbb/0x2980 [ 1607.955532] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1607.956598] ? wait_for_completion_io+0x270/0x270 [ 1607.957646] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.958756] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1607.958909] FAULT_INJECTION: forcing a failure. [ 1607.958909] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1607.959840] do_syscall_64+0x33/0x40 [ 1607.959862] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1607.959875] RIP: 0033:0x7ff9de16bb19 [ 1607.959893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1607.959903] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1607.959923] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1607.959934] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1607.959944] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1607.959955] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1607.959966] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1607.973136] CPU: 0 PID: 12037 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1607.974136] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1607.975314] Call Trace: [ 1607.975775] dump_stack+0x107/0x167 [ 1607.976428] should_fail.cold+0x5/0xa [ 1607.977131] __alloc_pages_nodemask+0x182/0x600 [ 1607.977930] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1607.978975] ? cap_capable+0x1cd/0x230 [ 1607.979741] alloc_pages_current+0x187/0x280 [ 1607.980495] __get_free_pages+0xc/0xa0 [ 1607.981111] io_uring_setup+0xe27/0x2980 [ 1607.981883] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1607.982637] ? wait_for_completion_io+0x270/0x270 [ 1607.983732] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1607.984512] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1607.985383] do_syscall_64+0x33/0x40 [ 1607.985967] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1607.986156] FAULT_INJECTION: forcing a failure. [ 1607.986156] name failslab, interval 1, probability 0, space 0, times 0 [ 1607.986710] RIP: 0033:0x7fb912e91b19 [ 1607.989637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1607.992113] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1607.993246] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1607.994258] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1607.995266] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1607.996289] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1607.997338] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1607.998688] CPU: 1 PID: 12041 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1608.000152] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1608.001917] Call Trace: [ 1608.002480] dump_stack+0x107/0x167 [ 1608.003250] should_fail.cold+0x5/0xa [ 1608.004054] ? create_object.isra.0+0x3a/0xa30 [ 1608.005014] should_failslab+0x5/0x20 [ 1608.005815] kmem_cache_alloc+0x5b/0x310 [ 1608.006669] create_object.isra.0+0x3a/0xa30 [ 1608.007593] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1608.008661] kmem_cache_alloc_trace+0x151/0x320 [ 1608.009663] io_uring_alloc_task_context+0x99/0x6a0 [ 1608.010710] ? io_import_iovec+0x1120/0x1120 [ 1608.011631] ? lock_downgrade+0x6d0/0x6d0 07:13:00 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x15, &(0x7f0000000080), 0x4) [ 1608.012498] ? do_raw_spin_lock+0x121/0x260 [ 1608.013541] ? rwlock_bug.part.0+0x90/0x90 [ 1608.014438] __io_uring_add_tctx_node+0x2c6/0x520 [ 1608.015450] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1608.016554] ? alloc_fd+0x2e7/0x670 [ 1608.017344] io_uring_setup+0x1fbb/0x2980 [ 1608.018223] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1608.019299] ? wait_for_completion_io+0x270/0x270 [ 1608.020332] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1608.021445] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1608.022529] do_syscall_64+0x33/0x40 [ 1608.023310] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1608.024385] RIP: 0033:0x7f341b7f3b19 [ 1608.025171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1608.029036] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1608.030634] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1608.032130] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1608.033640] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1608.035134] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1608.036633] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:00 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x16, &(0x7f0000000080), 0x4) 07:13:00 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x17, &(0x7f0000000080), 0x4) 07:13:00 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 31) 07:13:00 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 13) 07:13:01 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1608.210520] FAULT_INJECTION: forcing a failure. [ 1608.210520] name failslab, interval 1, probability 0, space 0, times 0 [ 1608.212535] CPU: 0 PID: 12053 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1608.213426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1608.214470] Call Trace: [ 1608.214874] dump_stack+0x107/0x167 [ 1608.215442] should_fail.cold+0x5/0xa [ 1608.215999] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1608.216720] should_failslab+0x5/0x20 [ 1608.217244] kmem_cache_alloc_trace+0x55/0x320 [ 1608.217971] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1608.218697] ? io_import_iovec+0x1120/0x1120 [ 1608.219312] ? lock_downgrade+0x6d0/0x6d0 [ 1608.219900] ? do_raw_spin_lock+0x121/0x260 [ 1608.220511] ? rwlock_bug.part.0+0x90/0x90 [ 1608.221199] __io_uring_add_tctx_node+0x2c6/0x520 [ 1608.221875] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1608.222554] ? alloc_fd+0x2e7/0x670 [ 1608.223223] io_uring_setup+0x1fbb/0x2980 [ 1608.223905] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1608.224565] ? wait_for_completion_io+0x270/0x270 [ 1608.225504] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1608.226202] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1608.226961] do_syscall_64+0x33/0x40 [ 1608.227479] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1608.228149] RIP: 0033:0x7ff9de16bb19 [ 1608.228662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1608.230875] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1608.231870] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1608.232767] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1608.233679] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1608.234578] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1608.235475] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:01 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x18, &(0x7f0000000080), 0x4) [ 1608.276293] FAULT_INJECTION: forcing a failure. [ 1608.276293] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1608.278358] CPU: 0 PID: 12059 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1608.279239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1608.280260] Call Trace: [ 1608.280670] dump_stack+0x107/0x167 [ 1608.281280] should_fail.cold+0x5/0xa [ 1608.281895] __alloc_pages_nodemask+0x182/0x600 [ 1608.282585] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1608.283501] ? cap_capable+0x1cd/0x230 [ 1608.284180] alloc_pages_current+0x187/0x280 [ 1608.284844] __get_free_pages+0xc/0xa0 [ 1608.285391] io_uring_setup+0xf9a/0x2980 [ 1608.286072] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1608.287084] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1608.287776] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1608.288540] do_syscall_64+0x33/0x40 [ 1608.289060] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1608.289730] RIP: 0033:0x7fb912e91b19 [ 1608.290239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1608.292403] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1608.293406] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1608.294306] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1608.295208] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1608.296104] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1608.297000] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:01 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 32) 07:13:01 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000080), 0x4) 07:13:01 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 29) [ 1608.397088] FAULT_INJECTION: forcing a failure. [ 1608.397088] name failslab, interval 1, probability 0, space 0, times 0 [ 1608.399482] CPU: 1 PID: 12067 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1608.400927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1608.402668] Call Trace: [ 1608.403223] dump_stack+0x107/0x167 [ 1608.403986] should_fail.cold+0x5/0xa [ 1608.404800] ? create_object.isra.0+0x3a/0xa30 [ 1608.405771] should_failslab+0x5/0x20 [ 1608.406569] kmem_cache_alloc+0x5b/0x310 [ 1608.407424] create_object.isra.0+0x3a/0xa30 [ 1608.408347] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1608.409422] kmem_cache_alloc_trace+0x151/0x320 [ 1608.410410] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1608.411475] ? io_import_iovec+0x1120/0x1120 [ 1608.412398] ? lock_downgrade+0x6d0/0x6d0 [ 1608.413267] ? do_raw_spin_lock+0x121/0x260 [ 1608.414163] ? rwlock_bug.part.0+0x90/0x90 [ 1608.415051] __io_uring_add_tctx_node+0x2c6/0x520 [ 1608.416055] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1608.417152] ? alloc_fd+0x2e7/0x670 [ 1608.417937] io_uring_setup+0x1fbb/0x2980 [ 1608.418830] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1608.418946] FAULT_INJECTION: forcing a failure. [ 1608.418946] name failslab, interval 1, probability 0, space 0, times 0 [ 1608.419900] ? wait_for_completion_io+0x270/0x270 [ 1608.419976] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1608.419996] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1608.420020] do_syscall_64+0x33/0x40 [ 1608.420039] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1608.420052] RIP: 0033:0x7ff9de16bb19 [ 1608.420070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1608.420080] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1608.420100] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1608.420111] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1608.420121] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1608.420131] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1608.420142] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1608.433322] CPU: 0 PID: 12071 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1608.434189] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1608.435215] Call Trace: [ 1608.435614] dump_stack+0x107/0x167 [ 1608.436175] should_fail.cold+0x5/0xa [ 1608.436732] ? create_object.isra.0+0x3a/0xa30 [ 1608.437373] should_failslab+0x5/0x20 [ 1608.437885] kmem_cache_alloc+0x5b/0x310 [ 1608.438539] create_object.isra.0+0x3a/0xa30 [ 1608.439225] kmemleak_alloc_percpu+0xa0/0x100 [ 1608.439906] pcpu_alloc+0x4e2/0x1240 [ 1608.440671] __percpu_counter_init+0x10d/0x2d0 [ 1608.441359] io_uring_alloc_task_context+0xcc/0x6a0 [ 1608.442071] ? io_import_iovec+0x1120/0x1120 [ 1608.442684] ? lock_downgrade+0x6d0/0x6d0 [ 1608.443264] ? do_raw_spin_lock+0x121/0x260 [ 1608.443875] ? rwlock_bug.part.0+0x90/0x90 [ 1608.444554] __io_uring_add_tctx_node+0x2c6/0x520 [ 1608.445227] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1608.445900] ? alloc_fd+0x2e7/0x670 [ 1608.446571] io_uring_setup+0x1fbb/0x2980 [ 1608.447252] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1608.447911] ? wait_for_completion_io+0x270/0x270 [ 1608.448845] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1608.449549] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1608.450302] do_syscall_64+0x33/0x40 [ 1608.450817] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1608.451479] RIP: 0033:0x7f341b7f3b19 [ 1608.451985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1608.454172] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1608.455162] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1608.456060] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1608.456949] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1608.457846] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1608.458745] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1608.705182] loop6: detected capacity change from 0 to 67108864 07:13:15 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 14) 07:13:15 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) fork() 07:13:15 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 30) 07:13:15 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1b, &(0x7f0000000080), 0x4) 07:13:15 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 33) 07:13:15 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:13:15 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:13:15 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x6200, &(0x7f0000000300), 0x0, 0x0) [ 1623.093999] FAULT_INJECTION: forcing a failure. [ 1623.093999] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.095608] CPU: 1 PID: 12088 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1623.096515] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.097623] Call Trace: [ 1623.097973] dump_stack+0x107/0x167 [ 1623.098455] should_fail.cold+0x5/0xa [ 1623.098973] ? io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1623.099701] should_failslab+0x5/0x20 [ 1623.100198] kmem_cache_alloc_trace+0x55/0x320 [ 1623.100800] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1623.101526] io_uring_setup+0x14f6/0x2980 [ 1623.102073] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1623.102735] ? wait_for_completion_io+0x270/0x270 [ 1623.103378] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.104072] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.104772] do_syscall_64+0x33/0x40 [ 1623.105283] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.105969] RIP: 0033:0x7fb912e91b19 [ 1623.106464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.108844] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.109828] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1623.110752] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1623.111674] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1623.112595] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1623.113536] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:16 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 15) 07:13:16 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1d, &(0x7f0000000080), 0x4) [ 1623.217504] FAULT_INJECTION: forcing a failure. [ 1623.217504] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.221279] CPU: 0 PID: 12091 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1623.222888] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.224862] Call Trace: [ 1623.225602] dump_stack+0x107/0x167 [ 1623.226633] should_fail.cold+0x5/0xa [ 1623.227651] ? create_object.isra.0+0x3a/0xa30 [ 1623.228829] should_failslab+0x5/0x20 [ 1623.229787] kmem_cache_alloc+0x5b/0x310 [ 1623.230996] create_object.isra.0+0x3a/0xa30 [ 1623.232263] kmemleak_alloc_percpu+0xa0/0x100 [ 1623.233517] pcpu_alloc+0x4e2/0x1240 [ 1623.234924] __percpu_counter_init+0x10d/0x2d0 [ 1623.236167] io_uring_alloc_task_context+0xcc/0x6a0 [ 1623.237506] ? io_import_iovec+0x1120/0x1120 [ 1623.238627] ? lock_downgrade+0x6d0/0x6d0 [ 1623.239702] ? do_raw_spin_lock+0x121/0x260 [ 1623.240825] ? rwlock_bug.part.0+0x90/0x90 [ 1623.242085] __io_uring_add_tctx_node+0x2c6/0x520 [ 1623.243315] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1623.244565] ? alloc_fd+0x2e7/0x670 [ 1623.245813] io_uring_setup+0x1fbb/0x2980 [ 1623.247073] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1623.248279] ? wait_for_completion_io+0x270/0x270 [ 1623.249775] FAULT_INJECTION: forcing a failure. [ 1623.249775] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.250019] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.252398] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.253803] do_syscall_64+0x33/0x40 [ 1623.254739] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.255954] RIP: 0033:0x7f341b7f3b19 [ 1623.256895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.260897] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.262725] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1623.264366] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1623.266012] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1623.267662] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1623.269336] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1623.271474] CPU: 1 PID: 12092 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1623.272322] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.273341] Call Trace: [ 1623.273671] dump_stack+0x107/0x167 [ 1623.274111] should_fail.cold+0x5/0xa [ 1623.274568] ? io_wq_create+0xeb/0xc00 [ 1623.275047] should_failslab+0x5/0x20 [ 1623.275506] __kmalloc+0x72/0x390 [ 1623.275924] io_wq_create+0xeb/0xc00 [ 1623.276377] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1623.276980] ? io_import_iovec+0x1120/0x1120 [ 1623.277513] ? io_apoll_task_func+0x2d0/0x2d0 [ 1623.278046] ? __io_req_find_next+0x300/0x300 [ 1623.278584] ? do_raw_spin_lock+0x121/0x260 [ 1623.279096] ? rwlock_bug.part.0+0x90/0x90 [ 1623.279608] __io_uring_add_tctx_node+0x2c6/0x520 [ 1623.280189] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1623.280820] ? alloc_fd+0x2e7/0x670 [ 1623.281272] io_uring_setup+0x1fbb/0x2980 [ 1623.281777] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1623.282386] ? wait_for_completion_io+0x270/0x270 [ 1623.282981] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.283616] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.284235] do_syscall_64+0x33/0x40 [ 1623.284685] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.285301] RIP: 0033:0x7ff9de16bb19 [ 1623.285743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.287921] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.288822] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1623.289672] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1623.290518] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1623.291361] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1623.292205] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1623.330034] FAULT_INJECTION: forcing a failure. [ 1623.330034] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.333473] CPU: 0 PID: 12098 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1623.335089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.336998] Call Trace: [ 1623.337742] dump_stack+0x107/0x167 [ 1623.338793] should_fail.cold+0x5/0xa [ 1623.339829] ? create_object.isra.0+0x3a/0xa30 [ 1623.341018] should_failslab+0x5/0x20 [ 1623.341988] kmem_cache_alloc+0x5b/0x310 [ 1623.342993] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1623.344612] create_object.isra.0+0x3a/0xa30 [ 1623.345777] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1623.347211] kmem_cache_alloc_trace+0x151/0x320 [ 1623.348577] io_rsrc_node_switch_start.part.0+0x43/0x250 [ 1623.349985] io_uring_setup+0x14f6/0x2980 [ 1623.351271] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1623.353161] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.354456] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.355880] do_syscall_64+0x33/0x40 [ 1623.356853] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.358106] RIP: 0033:0x7fb912e91b19 [ 1623.359050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.363110] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.364937] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1623.366594] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1623.368250] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1623.369915] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1623.371576] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:16 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080), 0x4) 07:13:16 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 16) [ 1623.451534] loop6: detected capacity change from 0 to 67108864 07:13:16 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 34) [ 1623.610309] FAULT_INJECTION: forcing a failure. [ 1623.610309] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.612984] CPU: 0 PID: 12111 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1623.614601] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.616496] Call Trace: [ 1623.617240] dump_stack+0x107/0x167 [ 1623.618273] should_fail.cold+0x5/0xa [ 1623.619298] ? create_object.isra.0+0x3a/0xa30 [ 1623.620476] should_failslab+0x5/0x20 [ 1623.621461] kmem_cache_alloc+0x5b/0x310 [ 1623.622715] create_object.isra.0+0x3a/0xa30 [ 1623.623817] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1623.625242] __kmalloc+0x16e/0x390 [ 1623.626385] io_wq_create+0xeb/0xc00 [ 1623.627632] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1623.629016] ? io_import_iovec+0x1120/0x1120 [ 1623.630218] ? io_apoll_task_func+0x2d0/0x2d0 [ 1623.631330] ? __io_req_find_next+0x300/0x300 [ 1623.632438] ? do_raw_spin_lock+0x121/0x260 [ 1623.633600] ? rwlock_bug.part.0+0x90/0x90 [ 1623.634886] __io_uring_add_tctx_node+0x2c6/0x520 [ 1623.636142] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1623.637420] ? alloc_fd+0x2e7/0x670 [ 1623.638709] io_uring_setup+0x1fbb/0x2980 [ 1623.639973] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1623.641199] ? wait_for_completion_io+0x270/0x270 [ 1623.642928] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.644204] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.645602] do_syscall_64+0x33/0x40 [ 1623.646551] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.647774] RIP: 0033:0x7ff9de16bb19 [ 1623.648718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.652766] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.654602] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1623.656254] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1623.657916] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1623.659566] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1623.661226] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1623.674800] FAULT_INJECTION: forcing a failure. [ 1623.674800] name failslab, interval 1, probability 0, space 0, times 0 [ 1623.676163] CPU: 1 PID: 12113 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1623.676952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1623.677920] Call Trace: [ 1623.678229] dump_stack+0x107/0x167 [ 1623.678645] should_fail.cold+0x5/0xa [ 1623.679095] ? create_object.isra.0+0x3a/0xa30 [ 1623.679615] should_failslab+0x5/0x20 [ 1623.680056] kmem_cache_alloc+0x5b/0x310 [ 1623.680523] create_object.isra.0+0x3a/0xa30 [ 1623.681039] kmemleak_alloc_percpu+0xa0/0x100 [ 1623.681565] pcpu_alloc+0x4e2/0x1240 [ 1623.682004] ? io_async_queue_proc+0x80/0x80 [ 1623.682506] percpu_ref_init+0x31/0x3d0 [ 1623.682969] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1623.683585] io_uring_setup+0x14f6/0x2980 [ 1623.684073] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1623.684646] ? wait_for_completion_io+0x270/0x270 [ 1623.685223] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1623.685820] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1623.686406] do_syscall_64+0x33/0x40 [ 1623.686839] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1623.687424] RIP: 0033:0x7fb912e91b19 [ 1623.687858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1623.689973] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1623.690854] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1623.691689] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1623.692501] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1623.693323] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1623.694136] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:31 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) fork() 07:13:31 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) fork() 07:13:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x21, &(0x7f0000000080), 0x4) 07:13:31 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:13:31 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x6800, &(0x7f0000000300), 0x0, 0x0) 07:13:31 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 31) 07:13:31 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 17) 07:13:31 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 35) 07:13:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x22, &(0x7f0000000080), 0x4) [ 1638.697192] FAULT_INJECTION: forcing a failure. [ 1638.697192] name failslab, interval 1, probability 0, space 0, times 0 [ 1638.699647] CPU: 1 PID: 12129 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1638.701103] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1638.702856] Call Trace: [ 1638.703417] dump_stack+0x107/0x167 [ 1638.704186] should_fail.cold+0x5/0xa [ 1638.704997] ? create_object.isra.0+0x3a/0xa30 [ 1638.705968] should_failslab+0x5/0x20 [ 1638.706770] kmem_cache_alloc+0x5b/0x310 [ 1638.707640] create_object.isra.0+0x3a/0xa30 [ 1638.708570] kmemleak_alloc_percpu+0xa0/0x100 [ 1638.709526] pcpu_alloc+0x4e2/0x1240 [ 1638.710322] ? io_async_queue_proc+0x80/0x80 [ 1638.711257] percpu_ref_init+0x31/0x3d0 [ 1638.712106] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1638.713241] io_uring_setup+0x14f6/0x2980 [ 1638.714134] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1638.715199] ? wait_for_completion_io+0x270/0x270 [ 1638.716235] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1638.717339] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1638.718424] do_syscall_64+0x33/0x40 [ 1638.719208] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1638.720282] RIP: 0033:0x7fb912e91b19 [ 1638.721056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1638.724942] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1638.726550] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1638.728046] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1638.729548] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1638.731045] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1638.732538] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1638.743134] FAULT_INJECTION: forcing a failure. [ 1638.743134] name failslab, interval 1, probability 0, space 0, times 0 [ 1638.745538] CPU: 1 PID: 12128 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1638.746999] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1638.748760] Call Trace: [ 1638.749335] dump_stack+0x107/0x167 [ 1638.750113] should_fail.cold+0x5/0xa [ 1638.750924] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1638.752040] should_failslab+0x5/0x20 [ 1638.752849] kmem_cache_alloc_trace+0x55/0x320 [ 1638.753846] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1638.754924] ? io_import_iovec+0x1120/0x1120 [ 1638.755862] ? lock_downgrade+0x6d0/0x6d0 [ 1638.756742] ? do_raw_spin_lock+0x121/0x260 [ 1638.757662] ? rwlock_bug.part.0+0x90/0x90 [ 1638.758564] __io_uring_add_tctx_node+0x2c6/0x520 [ 1638.759605] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1638.760724] ? alloc_fd+0x2e7/0x670 [ 1638.761523] io_uring_setup+0x1fbb/0x2980 [ 1638.762405] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1638.763479] ? wait_for_completion_io+0x270/0x270 [ 1638.764537] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1638.765655] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1638.766743] do_syscall_64+0x33/0x40 [ 1638.767528] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1638.768605] RIP: 0033:0x7f341b7f3b19 [ 1638.769395] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1638.773270] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1638.774887] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1638.776391] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1638.777905] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1638.779406] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1638.780910] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1638.846303] FAULT_INJECTION: forcing a failure. [ 1638.846303] name failslab, interval 1, probability 0, space 0, times 0 [ 1638.849193] CPU: 0 PID: 12127 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1638.850819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1638.852724] Call Trace: [ 1638.853458] dump_stack+0x107/0x167 [ 1638.854484] should_fail.cold+0x5/0xa [ 1638.855499] ? io_wq_create+0x6ef/0xc00 [ 1638.856547] should_failslab+0x5/0x20 [ 1638.857508] kmem_cache_alloc_node_trace+0x59/0x340 [ 1638.858933] io_wq_create+0x6ef/0xc00 [ 1638.860159] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1638.861494] ? io_import_iovec+0x1120/0x1120 [ 1638.862633] ? io_apoll_task_func+0x2d0/0x2d0 [ 1638.863720] ? __io_req_find_next+0x300/0x300 07:13:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x24, &(0x7f0000000080), 0x4) [ 1638.864805] ? do_raw_spin_lock+0x121/0x260 [ 1638.866140] ? rwlock_bug.part.0+0x90/0x90 [ 1638.867386] __io_uring_add_tctx_node+0x2c6/0x520 [ 1638.868612] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1638.869887] ? alloc_fd+0x2e7/0x670 [ 1638.871115] io_uring_setup+0x1fbb/0x2980 [ 1638.872375] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1638.873616] ? wait_for_completion_io+0x270/0x270 [ 1638.875345] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1638.876632] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1638.878039] do_syscall_64+0x33/0x40 [ 1638.878992] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1638.880231] RIP: 0033:0x7ff9de16bb19 [ 1638.881168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1638.885282] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1638.887129] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1638.888796] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1638.890474] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1638.892141] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1638.893822] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:31 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 32) 07:13:31 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 18) [ 1639.006362] FAULT_INJECTION: forcing a failure. [ 1639.006362] name failslab, interval 1, probability 0, space 0, times 0 [ 1639.008324] CPU: 1 PID: 12144 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1639.009510] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1639.011118] Call Trace: [ 1639.011653] dump_stack+0x107/0x167 [ 1639.012430] should_fail.cold+0x5/0xa [ 1639.013182] ? percpu_ref_init+0xd8/0x3d0 [ 1639.013917] should_failslab+0x5/0x20 [ 1639.014576] kmem_cache_alloc_trace+0x55/0x320 [ 1639.015376] ? io_async_queue_proc+0x80/0x80 [ 1639.016139] percpu_ref_init+0xd8/0x3d0 [ 1639.016874] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1639.017791] io_uring_setup+0x14f6/0x2980 [ 1639.018491] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1639.019333] ? wait_for_completion_io+0x270/0x270 [ 1639.020157] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1639.021047] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1639.021916] do_syscall_64+0x33/0x40 [ 1639.022516] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1639.023367] RIP: 0033:0x7fb912e91b19 [ 1639.023990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1639.027070] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1639.028350] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1639.029542] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1639.030734] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1639.031949] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1639.033167] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1639.038203] FAULT_INJECTION: forcing a failure. [ 1639.038203] name failslab, interval 1, probability 0, space 0, times 0 [ 1639.040230] CPU: 1 PID: 12143 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1639.041401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1639.042794] Call Trace: [ 1639.043232] dump_stack+0x107/0x167 [ 1639.043857] should_fail.cold+0x5/0xa [ 1639.044511] ? create_object.isra.0+0x3a/0xa30 [ 1639.045280] should_failslab+0x5/0x20 [ 1639.045937] kmem_cache_alloc+0x5b/0x310 [ 1639.046628] create_object.isra.0+0x3a/0xa30 [ 1639.047357] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1639.048214] kmem_cache_alloc_trace+0x151/0x320 [ 1639.049005] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1639.049873] ? io_import_iovec+0x1120/0x1120 [ 1639.050606] ? lock_downgrade+0x6d0/0x6d0 [ 1639.051305] ? do_raw_spin_lock+0x121/0x260 [ 1639.052035] ? rwlock_bug.part.0+0x90/0x90 [ 1639.052747] __io_uring_add_tctx_node+0x2c6/0x520 [ 1639.053563] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1639.054432] ? alloc_fd+0x2e7/0x670 [ 1639.055049] io_uring_setup+0x1fbb/0x2980 [ 1639.055756] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1639.056615] ? wait_for_completion_io+0x270/0x270 [ 1639.057446] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1639.058322] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1639.059185] do_syscall_64+0x33/0x40 [ 1639.059822] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1639.060678] RIP: 0033:0x7f341b7f3b19 [ 1639.061305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1639.064402] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1639.065682] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1639.066877] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1639.068068] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1639.069250] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1639.070445] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x25, &(0x7f0000000080), 0x4) 07:13:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x3) 07:13:32 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 19) 07:13:32 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 33) [ 1639.296449] FAULT_INJECTION: forcing a failure. [ 1639.296449] name failslab, interval 1, probability 0, space 0, times 0 [ 1639.298340] CPU: 1 PID: 12153 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1639.299445] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1639.300788] Call Trace: [ 1639.301224] dump_stack+0x107/0x167 [ 1639.301836] should_fail.cold+0x5/0xa [ 1639.302455] ? create_object.isra.0+0x3a/0xa30 [ 1639.303190] should_failslab+0x5/0x20 [ 1639.303799] kmem_cache_alloc+0x5b/0x310 [ 1639.304453] create_object.isra.0+0x3a/0xa30 [ 1639.305153] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1639.305986] kmem_cache_alloc_trace+0x151/0x320 [ 1639.306738] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1639.307552] ? io_import_iovec+0x1120/0x1120 [ 1639.308256] ? lock_downgrade+0x6d0/0x6d0 [ 1639.308918] ? do_raw_spin_lock+0x121/0x260 [ 1639.309618] ? rwlock_bug.part.0+0x90/0x90 [ 1639.310299] __io_uring_add_tctx_node+0x2c6/0x520 [ 1639.311068] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1639.311902] ? alloc_fd+0x2e7/0x670 [ 1639.312490] io_uring_setup+0x1fbb/0x2980 [ 1639.313159] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1639.313983] ? wait_for_completion_io+0x270/0x270 [ 1639.314769] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1639.315600] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1639.316419] do_syscall_64+0x33/0x40 [ 1639.317012] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1639.318016] RIP: 0033:0x7f341b7f3b19 [ 1639.318767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1639.322043] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1639.323291] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1639.324497] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1639.325655] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1639.326804] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1639.327947] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1639.335871] FAULT_INJECTION: forcing a failure. [ 1639.335871] name failslab, interval 1, probability 0, space 0, times 0 [ 1639.339867] CPU: 0 PID: 12151 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1639.341549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1639.343522] Call Trace: [ 1639.344291] dump_stack+0x107/0x167 [ 1639.345395] should_fail.cold+0x5/0xa [ 1639.346470] ? create_object.isra.0+0x3a/0xa30 [ 1639.347707] should_failslab+0x5/0x20 [ 1639.348697] kmem_cache_alloc+0x5b/0x310 [ 1639.349985] create_object.isra.0+0x3a/0xa30 [ 1639.351098] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1639.352543] kmem_cache_alloc_trace+0x151/0x320 [ 1639.353889] ? io_async_queue_proc+0x80/0x80 [ 1639.355067] percpu_ref_init+0xd8/0x3d0 [ 1639.356289] io_rsrc_node_switch_start.part.0+0x6a/0x250 [ 1639.357753] io_uring_setup+0x14f6/0x2980 [ 1639.359082] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1639.360352] ? wait_for_completion_io+0x270/0x270 [ 1639.362229] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1639.363562] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1639.365029] do_syscall_64+0x33/0x40 [ 1639.366039] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1639.367319] RIP: 0033:0x7fb912e91b19 [ 1639.368295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1639.372486] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1639.374394] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1639.376105] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1639.377829] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1639.379546] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1639.381262] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1639.419247] loop6: detected capacity change from 0 to 67108864 07:13:46 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x20000084) 07:13:46 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 34) 07:13:46 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 36) 07:13:46 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:13:46 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) fork() [ 1653.637504] FAULT_INJECTION: forcing a failure. [ 1653.637504] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.640497] CPU: 1 PID: 12166 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1653.642423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.644952] Call Trace: [ 1653.645777] dump_stack+0x107/0x167 [ 1653.646894] should_fail.cold+0x5/0xa [ 1653.648059] ? create_object.isra.0+0x3a/0xa30 [ 1653.648956] FAULT_INJECTION: forcing a failure. [ 1653.648956] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1653.649441] should_failslab+0x5/0x20 [ 1653.649476] kmem_cache_alloc+0x5b/0x310 [ 1653.653439] create_object.isra.0+0x3a/0xa30 [ 1653.654798] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1653.656351] __kmalloc+0x16e/0x390 [ 1653.657444] io_wq_create+0xeb/0xc00 [ 1653.658620] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1653.660169] ? io_import_iovec+0x1120/0x1120 [ 1653.661534] ? io_apoll_task_func+0x2d0/0x2d0 [ 1653.662884] ? __io_req_find_next+0x300/0x300 [ 1653.664242] ? do_raw_spin_lock+0x121/0x260 [ 1653.665565] ? rwlock_bug.part.0+0x90/0x90 [ 1653.666858] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.668317] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.669936] ? alloc_fd+0x2e7/0x670 [ 1653.670892] io_uring_setup+0x1fbb/0x2980 [ 1653.671700] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.672679] ? wait_for_completion_io+0x270/0x270 [ 1653.673620] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.674629] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.675621] do_syscall_64+0x33/0x40 [ 1653.676323] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.677312] RIP: 0033:0x7f341b7f3b19 [ 1653.677923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.681445] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.682926] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1653.684302] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1653.685677] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1653.687038] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1653.688410] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1653.689818] CPU: 0 PID: 12174 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1653.690815] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.692011] Call Trace: [ 1653.692471] dump_stack+0x107/0x167 [ 1653.693115] should_fail.cold+0x5/0xa [ 1653.693813] _copy_to_user+0x2e/0x180 [ 1653.694487] io_uring_setup+0x11b5/0x2980 [ 1653.695264] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.696018] ? wait_for_completion_io+0x270/0x270 [ 1653.697086] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.697898] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.698802] do_syscall_64+0x33/0x40 [ 1653.699401] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.700176] RIP: 0033:0x7fb912e91b19 [ 1653.700764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.703301] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.704451] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1653.705496] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1653.706537] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1653.707578] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1653.708614] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1653.712479] FAULT_INJECTION: forcing a failure. 07:13:46 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 20) 07:13:46 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x6c00, &(0x7f0000000300), 0x0, 0x0) 07:13:46 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() (fail_nth: 1) [ 1653.712479] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.713857] FAULT_INJECTION: forcing a failure. [ 1653.713857] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.715100] CPU: 0 PID: 12171 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1653.717465] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.718618] Call Trace: [ 1653.719071] dump_stack+0x107/0x167 [ 1653.719717] should_fail.cold+0x5/0xa [ 1653.720347] ? copy_process+0x3305/0x78b0 [ 1653.721016] should_failslab+0x5/0x20 [ 1653.721604] kmem_cache_alloc_node+0x55/0x330 [ 1653.722278] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.723166] copy_process+0x3305/0x78b0 [ 1653.723952] ? __lock_acquire+0x1657/0x5b00 [ 1653.724960] ? __cleanup_sighand+0xb0/0xb0 [ 1653.725666] ? group_sched_out.part.0+0x1a3/0x2e0 [ 1653.726664] ? finish_task_switch+0x126/0x5d0 [ 1653.727466] kernel_clone+0xe7/0x980 [ 1653.728129] ? create_io_thread+0xf0/0xf0 [ 1653.728766] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1653.729430] ? trace_hardirqs_on+0x5b/0x180 [ 1653.730131] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1653.730813] ? finish_task_switch+0x126/0x5d0 [ 1653.731479] ? finish_task_switch+0xef/0x5d0 [ 1653.732127] ? __switch_to+0x572/0xf70 [ 1653.732718] ? __switch_to_asm+0x3a/0x60 [ 1653.733324] ? __switch_to_asm+0x34/0x60 [ 1653.734037] ? __schedule+0x82c/0x1ea0 [ 1653.734736] __do_sys_fork+0x8a/0xc0 [ 1653.735335] ? kernel_thread+0xf0/0xf0 [ 1653.735921] ? io_schedule_timeout+0x140/0x140 [ 1653.736587] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1653.737475] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.738260] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.739014] ? trace_hardirqs_on+0x5b/0x180 [ 1653.739694] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.740471] do_syscall_64+0x33/0x40 [ 1653.741048] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.741807] RIP: 0033:0x7f79712d2b19 [ 1653.742369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.744806] RSP: 002b:00007f796e848188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1653.745923] RAX: ffffffffffffffda RBX: 00007f79713e5f60 RCX: 00007f79712d2b19 [ 1653.746912] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1653.747906] RBP: 00007f796e8481d0 R08: 0000000000000000 R09: 0000000000000000 [ 1653.748887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1653.749888] R13: 00007ffec14c25ef R14: 00007f796e848300 R15: 0000000000022000 [ 1653.751219] CPU: 1 PID: 12176 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1653.752703] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.754413] Call Trace: [ 1653.754962] dump_stack+0x107/0x167 [ 1653.755710] should_fail.cold+0x5/0xa [ 1653.756521] ? create_object.isra.0+0x3a/0xa30 [ 1653.757457] should_failslab+0x5/0x20 [ 1653.758289] kmem_cache_alloc+0x5b/0x310 [ 1653.759134] ? io_wq_create+0x114/0xc00 [ 1653.759961] create_object.isra.0+0x3a/0xa30 [ 1653.760857] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1653.761912] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1653.762988] io_wq_create+0x6ef/0xc00 [ 1653.763783] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1653.764819] ? io_import_iovec+0x1120/0x1120 [ 1653.765732] ? io_apoll_task_func+0x2d0/0x2d0 [ 1653.766668] ? __io_req_find_next+0x300/0x300 [ 1653.767582] ? do_raw_spin_lock+0x121/0x260 [ 1653.768463] ? rwlock_bug.part.0+0x90/0x90 [ 1653.769344] __io_uring_add_tctx_node+0x2c6/0x520 [ 1653.770356] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1653.771440] ? alloc_fd+0x2e7/0x670 [ 1653.772224] io_uring_setup+0x1fbb/0x2980 [ 1653.773101] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1653.774155] ? wait_for_completion_io+0x270/0x270 [ 1653.775176] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.776245] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.777307] do_syscall_64+0x33/0x40 [ 1653.778079] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.779115] RIP: 0033:0x7ff9de16bb19 [ 1653.779871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.783622] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1653.785171] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1653.786636] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1653.788102] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1653.789587] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1653.791051] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:46 executing program 5: r0 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r2 = pidfd_getfd(r1, r0, 0x0) sendmmsg$inet6(r1, &(0x7f0000003600)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0xfffffff8, @local, 0x5d6a}, 0x1c, &(0x7f0000003440)=[{&(0x7f00000000c0)="895542ce7b5153ff3e3e1c21dad06e6f75de9c08cf483a25ac192e238e3861615444b834932e58b48b224abdc9bdcf821ca8e1aadf9721040b85906d34d0cfecd4602e533652d663333defacbad4c61170c100739e3cb44fa374717954bfc915f55c37f42a8358db8fc9abff824aea2d5729eb04ede83b6ad9b26c8c8e9fd35e3cc792ff677d70ccffe33f19ef22d67307ed5dd7684143f1364a7c3fcf8946df97ad310dc7116ac713fa456553c034941df587b8a8c815640bec38eed7d7d480fe47343a08256f9fb09d8f0a50dbde035084f20d599db173abf17df8ec9e7f3f93a011f8b90be1ed20901651fb25a66fdec83d69f33fed", 0xf7}, {&(0x7f00000001c0)="8ecc2517ad56ce1ec8cf7b10b25cc2e7151718e96906c8ae77dbad5989c85f01fe4f27a8209f8b01680a2d04be037bd578a5be85caf02d138f44c857d86f74efba183328e1145d770e52efdc65d9aa4b2cfc4d7f1977c2c3260d8d2764500b41a3821e11097f7e9a12760f8c11d5485df57a77ee9f90fb5fa554338b7f4307f07a49134432a98bf87b943f2c1cebda21fae8df6590587a30c51f3b844ee61634f88fc18e858cec5c34cc123db2130ec6190a314769c7f6246a033600bf92c874064c79ab7b75d1ec4618f1dca006e63ef667057ca0", 0xd5}, {&(0x7f00000002c0)="baff261354f3c6f98934bc9481d70f39073298583dee2b485cb99662c79535955fecb09f1014dcfd86217a4e386e970d14d38de045e49211a0ace46247fccf3bfd40cf907d4fb8990c612bc75646376c27716e167a8fc80376550eb451905d676170b847378c549ed6ce57ed358a4c95a2bd1d8cec368501cae1eee39258a34f350a91eb7a72b5f2053661dc77a3cd0591a15fe026a28f2762", 0x99}, {&(0x7f0000000380)="817f5d1aa3e2be49b2bdee768184b3d84ff3d4b39338828c3f0a6651ae4406e2c74f516da35a2c603028706a8e2fb8ae5264b9a884fb7111e8812305e0b363889ff64eedcfd209c78c56877f406dc9fb5d5f242e1995878edb4f5c7373889764d9d29fbcf134002c4779b952cb8507d9dadc5bf398217c96e053d705137857920788c46c116f74db4a7339a788", 0x8d}, {&(0x7f0000000440)="425f4266a226fe1a66240f2163dae1aee356631fc5bd9ca34551d0ca007783b8e34644047505663f302ded47a35d3c09caa7cb297a800e208a268145fb63f48ef4e5316e5f1b7b9934571c6bf0d2f3fd5d145289ff96fc0a9e5a0c14cdeff89b3a60776c1fb01b44473c5acb0a1d20cae33f5145e03efbe8a986a48d778a27732d0c80c625d1e67d4d2d92671c40097dc97d0764f85b905afbb4fa206ae16ce7f724c75fbf9236923ada739d67dcaed2261427dfb51123d562f4c3c788ffc46d071e916063de5f1a9cd5b47dfab75b688b58bec9824d2006d2e33fd7bc86cdc90d65cb1a5130601d18219bb43baaeb9732540d2112d3a6cb7df687d094d407dd1ff4e5f83923ad26ef583a52b2b973ada33983ad6ad926bdac2f98156ddd855c24b443aa37b69a3da92b90c73205f3244d43dffe039c19ba33f627767c60f1bee1d9e1d25c12d94c0fb56eddff92c6bb23297a905a0fba8cad1055a38c6a202c6cf421675d8d7742ee306badc0b15240970a9c74adee41989300d6672d35e577111aac78b74e55767771891be3853f78038a73e236dd181d0aa2cc6935732d3f081513aa2115e87d9181b5c40158c5ff409a74fc6a517db104f0cd79d3c8b82575f41ab88115f24978f11b2545db8c46ec64383442212812d78a4c3501ae90ab5c5f0c520105d960113834ee1bc36994185fd26f747d919045898c29e3f4583dfbebfc921d83e58f4da0fc6883f85ca7d36ee1b4cb42ea3a7d77d87bbf7cb4d10cc8679d42f167020c09a20b9e05415e2fc37034de38e3e1b6627e5b4d39dfce01a83678208032f90e0afb3aefd3f3f947a545f242d0ee23bf485df609426f091b66901cb7592a21b0bc32b97d6d180383d014e625f930bc93bffb6c24446a3586db0e117a132e71c6814879c46a3eaf1edd4426f9c56edf9cf8b7857fd714335d35f8d3fdb2774c75260dbc3b29718b535b9f13401d1f86d79e9582b3faf30060b70793ad8695c5ee5fbbd796f4939c64c63afaf67cfd9ccf1d7f93b06c4eb9536d2b5d05289f75406af169750b2c5a2863c304ad9260d5140b599fd088ab61b8dfbf9201ab0fcb6bb926f30591c67f5222cbb2a44059488310688567486564c564ce45932b5d860f31f5d2331be43f2acb91e9ea62f839e54ce05f926bce4fc4fadec2653f56fc035116b90538d011230fca484cc74caff095da900ff7b012ed2c9e7e16eff7dd7bfa9b0fb07cef13429f13faf5dd16d65048d2a09603ca3db7c67a4c9dbf36d9e723872d711869b77866da12ad93ce6168edf7c4d9b6281f8900b0a038d2117d940bd6b6184593385cd8c553e2b83e245dcaca9a275c55dd7f75c3fca0b8600eb6424b5634053a8b0afc2cb582ef1e29c6c4c6e80c7c6ba5b6103ef1494bf2750d59386219efe55243c74f623b1d46a9170dd327dca34a346f3b0de41a960ff157c9cf5bf79588ebfc2ddb29e37f5c14bb3832fabbbeb73b736cda4cc89789d1399f36ad60f38e52c9fe981166bb3d35115b67f780c3c6419f371d93efc3c309721a3afb23fc00e6ae96695340f6d09b85907bf9ad5e75ccfd20a1e7cc32569950edfe5d896b9e8480cfe16ac10029745554765b8b644efcdba93c55ec5ddf22dff35471a5d762f90128fa598481a1ed3c657fd46651e66a60afdefa93e08ddc6c6428e798cdaf6fc5cff3f27026f6d1c6f202dff9874eae9eedf47dac0cd9efe190834807405fd8ad945be8f5d074f4cdb1af709b9e3ac067190ea6c9b060e5aa0e3e8b534b2b8a82fb3637b6b82b8f6ec4deb73a2d2242873c9a4d14b26abbcf24c90f504e2e9e900f4f4e02391ce690ed4c8355eb95e8a303c089af79454b747710c8ee4e5a1b01ae66d1c8c53359efb832e61aaeade1bff45c9d3a05307da002c4dd02ac1eefa4623ccb254f99d715cbb90a84ce5db9c66d286bfe50c23b54ab83818b73ddc7eec8d24628257adaaab87265a5efd063e84f1474951f8739a64a26a97670a478c86d9326b8e597c46ec053e6dd742626f3dfeb6098da7da53f531f840d376209792af82bc1df907e7246f437de48df9d9c644d09e2680472cc6201b25ce99b904db2e8ea5ac2e32937b3311a4cd17d179f28e0f9a82baa5c1854de21880455b326412bbc3a9712c9d2a2d217417b6bb58a329b6f0ac836c09a447bf6fdce657f1a4d8f7d0553d7c8869abef16ba62bae13530bef066347d329dc4480889077a0e5d0b84278cea30b0f3b601c4559f3112c409fb01dbb3b41b2271a4bd5ff00f1a80e5697bb80af478a742aa1814de18d2bb14756613440f0a1e526b19f0db959e6a1970ceb5b657e7486a53f3f42af5134c9149addb2f7b379e166d2593441996281607b2fd35498940e42a76d3db143b0e60082ea7cef0adea8bc76e3dd5ad5bd5d322b5668760235ba4dcce2820360291b12c45d1879e16b70a47ea37ccd606c7dce0f0a0cdd5ac642bd8d16aae5763a8a08d5483ae5c31d8b25d7f1aeca7e409a82657b4a19e7c2972945726e6fb563053cbe9dc8747e2dfb896be4f0eb31847e250c96009afcb29c23747e4b7c046c0fca3b8adf42b8580ae3c631cb7ed9426f3c00bf7b571585d84cdf1ec350dfb9f47782f3d9b44e194dc6b36870e3760c63785668484ba90591df5578f842872d435c6b4a253b7f6c54837af0b0eb719d7a004a907e1bd1dded687c9d35f55d5da62b478630a6d9f5844f938e9a5eb0ff9b9bdd60100be76bacc781800616018dbe1e9a815f50f59b59ec44548b2d56a5ecb126d1835304d598b3404440962043e5c9317b19a4caaeb93cd940c04af228fc613aead8f22399ddd54a6d73e0b5b081f1642e924583a5edec33febb23aee3cdb0c1bae0ff53837072024b18d5be5e2bfa1a3ff8f0583be11b367cd578e8e05b31fd9d2e47e6c5223267b3c48d8795d28708749b72675eb34e7f5d19dccab755fa24fe6e097a6c89242f98afe31d022368e42c6ad76f6964f9d5e473777720e4b1b21905a287f0ec65082fd3266ea9a7d2821f9e09e5ed8188dd23de775cd5bcc061be21edc1192b46ef201c5efec5a86906add85245ae216df10c14d5db2d16e9a3162a3bb51556a194ed81ab8af09f4bb8999b51bd0f86f79d8081f7bf10e456da1a30a7db69c5fb6d9135195808ed42135b1273f5e9fc49534dfe9a7cc2dbf2b48ce097195153f97b1bef127fbc3d973eece28c6b0400b02f7faf0c423610fc2037832bda92e7945971b0fed394e44f9a3da9eadefc40e655dfa5ee921c90565183b6fb261388aefeb88035a203f2208e15170fb2566aa0d5e38025fa0464e1911451f539a91c41652a43901654bf2a425fe4312606916116de622d23b78488e32f4551990793aa6c445329da7d5da34f7a8d84cf827a574af91a04aaecceb46983b99bbb8210f50629a0e3e46c9ff84a4101d946ccfcf177ba9ff5a16d01a8298105edd71dfa018cb55df38ed0a498dc7cca785503dc0a0905d0f8b8ee68f5b301e444574feedc7095c20925026c4fa0ff56af1330ec40eb1d7da7b6d30837d39276e351e25279e688435cf723ee2279e533ba8c9da0e787167aa0111a571af74ff8c9f818cc81303595b09a0155ab7e808878c6337e2ce9e59e06a4c0450a201d90aec076b0802b9675c63178e5c1d26a2880a9df4f62eebe03725d9e642d0b67083aa9902cb50e48c436d67cf5c810245ad59b2696503f214df174e30580e4225e38b5967893ac2fb3218b4fb29fc8dc1f9e8c7a22c92641bc3c0a36ae5a417dc2744af1b4e10b0f86a19a7c74d62804f620fa6fd1905320056b9a3966c4f7b84a7b45d0f02c8a269dbdf7c4d6e6d5935975573c17d0e5002cd514738157b2e21f51694168e439dd2b3fa160c1eb14510aca32d9d7ccff4f0d1fdee1c3ce0ec1ed18c93f76db60077c7b6c5e3d0fe5abe4bb9172504386fb5e1f8a0e0c9139a320e9cfe33f35d409c20491b0650fb493a1b6d87e0f6a02b22d54c07f572fc6ae2764e18c2fecbd1ffff70e9202596533918597bcc003ce2a31f2890c6a9a4eb20141d1fdd8cb7eded0822e9b35a319edf3743fa9405c34bd55076de6791600934f346782bbf0c1ef20218558339fbd8e0c3c34f57dce73521d453d1ca603227ed845b215282082a7765f3ffc563d70588c74cbb49289c58c3481a5fe5e06eb7afa2fca16b037ba96b11bc05963a823dbea7082d731070aed54c1747c4cb9151be5f27ceae68314392907527117d1d14066efd3e399b2dd53e1d62c6f142a6fcdecc54c42cedef5a032f18b7dda0d0f109b33e4c631ed96fffd1ee96e076791ea98bcd98c73dcf8e3eeedf02fa6e80e041b76ecabed483aa5017af3faa6181198d8f805c75b8000c5bb52572dcef72f1c5e3b94cecd1a0a3bc7b5ca17c9d6ebdc16e268ea36a78b12862915772fe37f816d8edf72e55fe1f87ee29d85b62df311b7eb8c0c2b7192c96ef008c392f797880c1668e6aea4d55ff6c4e1cb6354bd4e3cccb3e476a964e8194ebd23dd786d4aff8125017717df8519d4fda42a61a479923605f869a0d28ac30afd9bc76e2a454f95566166f058088825ffc5da48cb8113a007fa6add36bd0ee010271b159635ba726c9eb30dc5d175343d01cc584e93b4b0e088c5a4c164f47b52a0463d2f65eee6351dd322fefa0bcc2af141d2c6598ce103d5f2bb1434bdf4e3bf54ddfbea5ff0f9f15d59dc25b80360728659ca2d5685b75590262566e5a2dab4e5ba6a1c620ad1dc935acf0de499341afbddb91c35277b0aaa2d2287b733140826ae81cf98a855b82ebca2e931103721096886a06b3c711ea7b968a3fd0f9302956ac094c7906a9b772d24bf1e2f6f5ff358a6bfeceea297d36cc4d5570456e424c8874ed4d48973e845d396dba25a28bd2b2b6e8cd07ffecdf5f6b008486f3348444f97edd2df46549d5e289130f176b2c7027979b717115127df78290e7e326497d6d8be489684c9dd2f53034bfcb62a3d936e7b6c8795bf36b43b30b531943e3db0db08806573128b31f6e69a7ab1a631b72a95b9fde5548db9af16cb268e9a64adb1c90eb834dcfca868f5317030796af8e0dcdbdbdf747193062c0b7478435799311d2a6850086d79073c1112efdf548857e2af4da0ba88fa01fe70170f280bed544f1aedacf8412d1fa5a0a21c6fb8991a8c7135c89526a091d7213fde0a186da21657e85e67e15f6a1ef009391ba703988ccd57c51c77f3df12755c3d56227504fa81bc70b2dda78b8a221b20ba0fa59e313cbec01b73575abff01a8a0b3dad98fc6b43645eafed7492a5ce26603b56078379df0bb8e667cc1899f3846e49500f8fe29ec6b62787d53d0bd9e18622e612a5722d0c2e2ec648a2c06eda2f978892f0a06effad9fbbce102e595bf6e3b643110e78cf13e415f401e335411fd07706bfeb1b63d5ac9542d5159100d666e6c151d009221113b9b64906588b4510a0b253497a8eed3943083a690c40d091eb4de2fdb22ef5c9d16e838fb1582c0eba773d17cc20c3b98306cd296258e1ee64793552f0df670d75ea148960f7f96aa2f90a85639222724c58943794c537d546c327cead78858d48440cf9a4eff385c366a25ea9eb1feb85d779478f581b103fab2c768b679ed4645ebf9f2a42cf3cdf3d4686f5ec7cbd5d896bf61224f292dd18d56e89ea1ec753eb8425a8649020cf1e97ed155639dca685fc87f8e6dc14083dfd327971327afcdfda94f0feaa0e70bae72ee6155202c4a1ebfde92c055a051463709f3bf5a34fc4168061", 0x1000}, {&(0x7f0000001440)="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", 0x1000}, {&(0x7f0000002440)="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", 0x1000}], 0x7, &(0x7f0000000040)=[@pktinfo={{0x24, 0x29, 0x32, {@dev={0xfe, 0x80, '\x00', 0x3a}}}}], 0x28}}, {{&(0x7f00000034c0)={0xa, 0x4e20, 0x4, @mcast2, 0xfffffffa}, 0x1c, &(0x7f00000035c0)=[{&(0x7f0000003500)="3c8062a216275dc6caf11f35a1d2338cc78b5cde5256de536f5c7595a870d83846a1e8c92b53b5590fccab59d14d51a50c0a06d1e05b4877e5d964e05c0f4a533c0ae92467be0b10b8158510c2421e996ef2c98419f6bee620e77ddb9a9bd28156a3c818a527bbfc58ff97df187c86a713f4e98d05f8edc3c36d9e3667df7be2569e8d6882f1bda85bdf5aa5e7193d8233d9eed8a11f22454b9a74914511b63a107a43d36a8f805e13df217538c61db2486a507b", 0xb4}], 0x1}}], 0x2, 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0xa, &(0x7f0000000080), 0x4) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000003740)={0x0, @multicast2, @remote}, &(0x7f0000003780)=0xc) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000003840)={'syztnl1\x00', &(0x7f00000037c0)={'syztnl0\x00', r4, 0x4, 0x1, 0x80, 0x4, 0x50, @local, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8007, 0x7, 0x4, 0x5}}) 07:13:46 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() (fail_nth: 2) [ 1653.966417] FAULT_INJECTION: forcing a failure. [ 1653.966417] name failslab, interval 1, probability 0, space 0, times 0 [ 1653.968515] CPU: 0 PID: 12209 Comm: syz-executor.0 Not tainted 5.10.246 #1 [ 1653.969399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1653.970451] Call Trace: [ 1653.970856] dump_stack+0x107/0x167 [ 1653.971431] should_fail.cold+0x5/0xa [ 1653.971998] ? create_object.isra.0+0x3a/0xa30 [ 1653.972651] should_failslab+0x5/0x20 [ 1653.973177] kmem_cache_alloc+0x5b/0x310 [ 1653.973864] create_object.isra.0+0x3a/0xa30 [ 1653.974454] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1653.975220] kmem_cache_alloc_node+0x169/0x330 [ 1653.975831] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.976630] copy_process+0x3305/0x78b0 [ 1653.977286] ? __lock_acquire+0xbb1/0x5b00 [ 1653.978249] ? __cleanup_sighand+0xb0/0xb0 [ 1653.978995] ? lock_acquire+0x197/0x470 [ 1653.979677] ? find_held_lock+0x2c/0x110 [ 1653.980341] kernel_clone+0xe7/0x980 [ 1653.980880] ? lock_downgrade+0x6d0/0x6d0 [ 1653.981436] ? find_held_lock+0x2c/0x110 [ 1653.982021] ? create_io_thread+0xf0/0xf0 [ 1653.982653] ? ksys_write+0x12d/0x260 [ 1653.983307] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1653.984106] __do_sys_fork+0x8a/0xc0 [ 1653.984648] ? kernel_thread+0xf0/0xf0 [ 1653.985407] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1653.986110] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.986783] ? trace_hardirqs_on+0x5b/0x180 [ 1653.987400] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1653.988099] do_syscall_64+0x33/0x40 [ 1653.988625] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1653.989295] RIP: 0033:0x7f79712d2b19 [ 1653.989814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1653.991992] RSP: 002b:00007f796e848188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1653.992998] RAX: ffffffffffffffda RBX: 00007f79713e5f60 RCX: 00007f79712d2b19 [ 1653.993904] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1653.994806] RBP: 00007f796e8481d0 R08: 0000000000000000 R09: 0000000000000000 [ 1653.995705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1653.996608] R13: 00007ffec14c25ef R14: 00007f796e848300 R15: 0000000000022000 07:13:46 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 35) 07:13:46 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1654.119029] FAULT_INJECTION: forcing a failure. [ 1654.119029] name failslab, interval 1, probability 0, space 0, times 0 [ 1654.120543] CPU: 0 PID: 12291 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1654.121404] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1654.122435] Call Trace: [ 1654.122826] dump_stack+0x107/0x167 [ 1654.123371] should_fail.cold+0x5/0xa [ 1654.123917] ? io_wq_create+0x6ef/0xc00 [ 1654.124479] should_failslab+0x5/0x20 [ 1654.124988] kmem_cache_alloc_node_trace+0x59/0x340 [ 1654.125758] io_wq_create+0x6ef/0xc00 [ 1654.126408] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1654.127119] ? io_import_iovec+0x1120/0x1120 [ 1654.127727] ? io_apoll_task_func+0x2d0/0x2d0 [ 1654.128308] ? __io_req_find_next+0x300/0x300 [ 1654.128891] ? do_raw_spin_lock+0x121/0x260 [ 1654.129501] ? rwlock_bug.part.0+0x90/0x90 [ 1654.130161] __io_uring_add_tctx_node+0x2c6/0x520 [ 1654.130816] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1654.131484] ? alloc_fd+0x2e7/0x670 [ 1654.132140] io_uring_setup+0x1fbb/0x2980 [ 1654.132809] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1654.133463] ? wait_for_completion_io+0x270/0x270 [ 1654.134392] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1654.135080] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1654.135828] do_syscall_64+0x33/0x40 [ 1654.136336] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1654.136996] RIP: 0033:0x7f341b7f3b19 [ 1654.137507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1654.139677] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1654.140666] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1654.141558] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1654.142445] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1654.143327] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1654.144217] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:46 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 37) 07:13:46 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 21) [ 1654.180153] FAULT_INJECTION: forcing a failure. [ 1654.180153] name failslab, interval 1, probability 0, space 0, times 0 [ 1654.182590] CPU: 1 PID: 12297 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1654.184013] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1654.185720] Call Trace: [ 1654.186281] dump_stack+0x107/0x167 [ 1654.187051] should_fail.cold+0x5/0xa [ 1654.187853] ? __d_alloc+0x2a/0x990 [ 1654.188594] should_failslab+0x5/0x20 [ 1654.189393] kmem_cache_alloc+0x5b/0x310 [ 1654.190254] __d_alloc+0x2a/0x990 [ 1654.190956] FAULT_INJECTION: forcing a failure. [ 1654.190956] name failslab, interval 1, probability 0, space 0, times 0 [ 1654.193217] ? find_held_lock+0x2c/0x110 [ 1654.193241] d_alloc_pseudo+0x19/0x70 [ 1654.193260] alloc_file_pseudo+0xce/0x250 [ 1654.193278] ? trace_hardirqs_on+0x5b/0x180 [ 1654.193294] ? alloc_file+0x5a0/0x5a0 [ 1654.193332] anon_inode_getfile+0xc8/0x1f0 [ 1654.193359] io_uring_setup+0x138b/0x2980 [ 1654.198843] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1654.199883] ? wait_for_completion_io+0x270/0x270 [ 1654.200894] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1654.201978] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1654.203079] do_syscall_64+0x33/0x40 [ 1654.203854] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1654.204948] RIP: 0033:0x7fb912e91b19 [ 1654.205724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1654.209637] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1654.211211] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1654.212664] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1654.214248] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1654.215767] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1654.217244] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1654.218732] CPU: 0 PID: 12296 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1654.219605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1654.220630] Call Trace: [ 1654.221021] dump_stack+0x107/0x167 [ 1654.221574] should_fail.cold+0x5/0xa [ 1654.222131] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1654.222810] should_failslab+0x5/0x20 [ 1654.223323] kmem_cache_alloc_trace+0x55/0x320 [ 1654.224025] __io_uring_add_tctx_node+0x15c/0x520 [ 1654.224686] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1654.225360] ? alloc_fd+0x2e7/0x670 [ 1654.226023] io_uring_setup+0x1fbb/0x2980 [ 1654.226689] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1654.227337] ? wait_for_completion_io+0x270/0x270 [ 1654.228247] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1654.228938] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1654.229696] do_syscall_64+0x33/0x40 [ 1654.230213] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1654.230872] RIP: 0033:0x7ff9de16bb19 [ 1654.231368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1654.233540] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1654.234520] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1654.235404] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1654.236292] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1654.237174] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1654.238067] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:13:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 36) [ 1654.411668] FAULT_INJECTION: forcing a failure. [ 1654.411668] name failslab, interval 1, probability 0, space 0, times 0 [ 1654.414068] CPU: 1 PID: 12303 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1654.415475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1654.417168] Call Trace: [ 1654.417728] dump_stack+0x107/0x167 [ 1654.418484] should_fail.cold+0x5/0xa [ 1654.419265] ? create_object.isra.0+0x3a/0xa30 [ 1654.420196] should_failslab+0x5/0x20 [ 1654.421027] kmem_cache_alloc+0x5b/0x310 [ 1654.421874] ? io_wq_create+0x114/0xc00 [ 1654.422746] create_object.isra.0+0x3a/0xa30 [ 1654.423648] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1654.424760] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1654.425882] io_wq_create+0x6ef/0xc00 [ 1654.426722] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1654.427828] ? io_import_iovec+0x1120/0x1120 [ 1654.428788] ? io_apoll_task_func+0x2d0/0x2d0 [ 1654.429770] ? __io_req_find_next+0x300/0x300 [ 1654.430743] ? do_raw_spin_lock+0x121/0x260 [ 1654.431684] ? rwlock_bug.part.0+0x90/0x90 [ 1654.432612] __io_uring_add_tctx_node+0x2c6/0x520 [ 1654.433671] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1654.434813] ? alloc_fd+0x2e7/0x670 [ 1654.435616] io_uring_setup+0x1fbb/0x2980 [ 1654.436527] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1654.437637] ? wait_for_completion_io+0x270/0x270 [ 1654.438714] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1654.439857] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1654.440981] do_syscall_64+0x33/0x40 [ 1654.441799] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1654.442910] RIP: 0033:0x7f341b7f3b19 [ 1654.443718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1654.447749] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1654.449408] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1654.450967] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1654.452519] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1654.454084] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1654.455642] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1654.476933] loop6: detected capacity change from 0 to 67108864 07:14:02 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:14:02 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 38) 07:14:02 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 22) 07:14:02 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x7400, &(0x7f0000000300), 0x0, 0x0) 07:14:02 executing program 5: stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = syz_open_procfs(0x0, 0x0) fspick(r1, 0x0, 0x0) r2 = pidfd_getfd(r1, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r3, 0x10000000) readlinkat(r3, &(0x7f0000000100)='./file0\x00', &(0x7f0000000240)=""/154, 0x9a) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000040)=ANY=[@ANYBLOB="010600"/12, @ANYRES32, @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="62cd3a66b4f91a2cdd45542e73e95cae05006533008a0000000000"]) lchown(&(0x7f0000000000)='./file0\x00', r0, r4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:14:02 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0), 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:14:02 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x0) fork() 07:14:02 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 37) [ 1670.012739] FAULT_INJECTION: forcing a failure. [ 1670.012739] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.015396] CPU: 1 PID: 12317 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1670.016939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.018802] Call Trace: [ 1670.019395] dump_stack+0x107/0x167 [ 1670.020215] should_fail.cold+0x5/0xa [ 1670.021069] ? create_object.isra.0+0x3a/0xa30 [ 1670.022105] should_failslab+0x5/0x20 [ 1670.022964] kmem_cache_alloc+0x5b/0x310 [ 1670.023883] create_object.isra.0+0x3a/0xa30 [ 1670.024880] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1670.026039] kmem_cache_alloc_trace+0x151/0x320 [ 1670.027094] __io_uring_add_tctx_node+0x15c/0x520 [ 1670.028190] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.029214] FAULT_INJECTION: forcing a failure. [ 1670.029214] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.029368] ? alloc_fd+0x2e7/0x670 [ 1670.029404] io_uring_setup+0x1fbb/0x2980 [ 1670.029435] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.029453] ? wait_for_completion_io+0x270/0x270 [ 1670.029502] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.036010] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.037206] do_syscall_64+0x33/0x40 [ 1670.038073] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.039250] RIP: 0033:0x7ff9de16bb19 [ 1670.040106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.044339] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.046101] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1670.047743] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1670.049384] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1670.051034] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1670.052676] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1670.054368] CPU: 0 PID: 12313 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1670.055272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.056324] Call Trace: [ 1670.056730] dump_stack+0x107/0x167 [ 1670.057303] should_fail.cold+0x5/0xa [ 1670.057878] ? create_object.isra.0+0x3a/0xa30 [ 1670.058531] should_failslab+0x5/0x20 [ 1670.059055] kmem_cache_alloc+0x5b/0x310 [ 1670.059722] create_object.isra.0+0x3a/0xa30 [ 1670.060320] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1670.061084] kmem_cache_alloc+0x159/0x310 [ 1670.061783] __d_alloc+0x2a/0x990 [ 1670.062270] ? find_held_lock+0x2c/0x110 [ 1670.062928] d_alloc_pseudo+0x19/0x70 [ 1670.063472] alloc_file_pseudo+0xce/0x250 [ 1670.064033] ? trace_hardirqs_on+0x5b/0x180 [ 1670.064636] ? alloc_file+0x5a0/0x5a0 [ 1670.065402] anon_inode_getfile+0xc8/0x1f0 [ 1670.066059] io_uring_setup+0x138b/0x2980 [ 1670.066752] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.067421] ? wait_for_completion_io+0x270/0x270 [ 1670.068372] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.069082] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.069872] do_syscall_64+0x33/0x40 [ 1670.070406] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.071087] RIP: 0033:0x7fb912e91b19 [ 1670.071610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.073858] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.074876] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1670.075787] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1670.076703] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1670.077612] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1670.078532] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1670.084495] FAULT_INJECTION: forcing a failure. [ 1670.084495] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.086052] CPU: 0 PID: 12326 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1670.086939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.087996] Call Trace: [ 1670.088391] dump_stack+0x107/0x167 [ 1670.088954] should_fail.cold+0x5/0xa [ 1670.089516] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1670.090217] should_failslab+0x5/0x20 [ 1670.090745] kmem_cache_alloc_trace+0x55/0x320 [ 1670.091464] __io_uring_add_tctx_node+0x15c/0x520 [ 1670.092135] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.092824] ? alloc_fd+0x2e7/0x670 [ 1670.093496] io_uring_setup+0x1fbb/0x2980 [ 1670.094181] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.094855] ? wait_for_completion_io+0x270/0x270 [ 1670.095791] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.096497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.097259] do_syscall_64+0x33/0x40 [ 1670.097789] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.098460] RIP: 0033:0x7f341b7f3b19 [ 1670.098972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.101210] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.102230] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1670.103129] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1670.104038] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1670.104941] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1670.105856] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:03 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, 0x3}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:14:03 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 38) 07:14:03 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 39) [ 1670.288543] FAULT_INJECTION: forcing a failure. [ 1670.288543] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.291119] CPU: 1 PID: 12444 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1670.292602] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.294377] Call Trace: [ 1670.294949] dump_stack+0x107/0x167 [ 1670.295730] should_fail.cold+0x5/0xa [ 1670.296207] FAULT_INJECTION: forcing a failure. [ 1670.296207] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.296548] ? create_object.isra.0+0x3a/0xa30 [ 1670.296567] should_failslab+0x5/0x20 [ 1670.296586] kmem_cache_alloc+0x5b/0x310 [ 1670.296613] create_object.isra.0+0x3a/0xa30 [ 1670.296629] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1670.296655] kmem_cache_alloc_trace+0x151/0x320 [ 1670.296684] __io_uring_add_tctx_node+0x15c/0x520 [ 1670.296706] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.296724] ? alloc_fd+0x2e7/0x670 [ 1670.306689] io_uring_setup+0x1fbb/0x2980 [ 1670.307580] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.308657] ? wait_for_completion_io+0x270/0x270 [ 1670.309717] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.310835] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.311936] do_syscall_64+0x33/0x40 [ 1670.312729] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.313826] RIP: 0033:0x7f341b7f3b19 [ 1670.314617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.318528] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.320145] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1670.321672] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1670.323194] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1670.324713] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1670.326239] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1670.327795] CPU: 0 PID: 12437 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1670.328698] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.329775] Call Trace: [ 1670.330178] dump_stack+0x107/0x167 [ 1670.330752] should_fail.cold+0x5/0xa [ 1670.331315] ? xas_alloc+0x336/0x440 [ 1670.331879] should_failslab+0x5/0x20 [ 1670.332407] kmem_cache_alloc+0x5b/0x310 [ 1670.333086] xas_alloc+0x336/0x440 [ 1670.333669] xas_create+0x34a/0x10d0 [ 1670.334356] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1670.335135] xas_store+0x8c/0x1c40 [ 1670.335868] __xa_store+0x164/0x2d0 [ 1670.336441] ? xa_delete_node+0x280/0x280 [ 1670.337152] ? trace_hardirqs_on+0x5b/0x180 [ 1670.337895] xa_store+0x31/0x50 [ 1670.338424] __io_uring_add_tctx_node+0x1cf/0x520 [ 1670.339113] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.339808] ? alloc_fd+0x2e7/0x670 [ 1670.340493] io_uring_setup+0x1fbb/0x2980 [ 1670.341195] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.341884] ? wait_for_completion_io+0x270/0x270 [ 1670.342852] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.343568] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.344347] do_syscall_64+0x33/0x40 [ 1670.344874] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.345563] RIP: 0033:0x7ff9de16bb19 [ 1670.346093] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.348366] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.349390] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1670.350323] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1670.351248] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1670.352170] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1670.353096] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:03 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 23) 07:14:03 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) recvmmsg(r0, &(0x7f0000000380)=[{{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000180)=""/121, 0x79}, {&(0x7f0000000200)=""/244, 0xf4}, {&(0x7f0000000340)=""/35, 0x23}], 0x3, &(0x7f0000000400)=""/37, 0x25}, 0x7f}], 0x1, 0x2000, &(0x7f00000003c0)={0x0, 0x3938700}) getdents64(0xffffffffffffff9c, &(0x7f00000000c0)=""/181, 0xb5) [ 1670.531448] FAULT_INJECTION: forcing a failure. [ 1670.531448] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.533876] CPU: 1 PID: 12541 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1670.535332] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.537131] Call Trace: [ 1670.537709] dump_stack+0x107/0x167 [ 1670.538477] should_fail.cold+0x5/0xa [ 1670.539278] ? __alloc_file+0x21/0x320 [ 1670.540097] should_failslab+0x5/0x20 [ 1670.540901] kmem_cache_alloc+0x5b/0x310 [ 1670.541768] __alloc_file+0x21/0x320 [ 1670.542549] alloc_empty_file+0x6d/0x170 [ 1670.543401] alloc_file+0x5e/0x5a0 [ 1670.544158] alloc_file_pseudo+0x16a/0x250 [ 1670.545042] ? alloc_file+0x5a0/0x5a0 [ 1670.545868] anon_inode_getfile+0xc8/0x1f0 [ 1670.546793] io_uring_setup+0x138b/0x2980 [ 1670.547673] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.548733] ? wait_for_completion_io+0x270/0x270 [ 1670.549814] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.550915] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.552000] do_syscall_64+0x33/0x40 [ 1670.552790] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.553877] RIP: 0033:0x7fb912e91b19 [ 1670.554660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.558540] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.560145] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1670.561651] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1670.563158] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1670.564655] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1670.566167] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:03 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 40) 07:14:03 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 39) [ 1670.668459] FAULT_INJECTION: forcing a failure. [ 1670.668459] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.669164] FAULT_INJECTION: forcing a failure. [ 1670.669164] name failslab, interval 1, probability 0, space 0, times 0 [ 1670.670010] CPU: 0 PID: 12587 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1670.673070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.674105] Call Trace: [ 1670.674509] dump_stack+0x107/0x167 [ 1670.675077] should_fail.cold+0x5/0xa [ 1670.675638] ? create_object.isra.0+0x3a/0xa30 [ 1670.676284] should_failslab+0x5/0x20 [ 1670.676804] kmem_cache_alloc+0x5b/0x310 [ 1670.677473] create_object.isra.0+0x3a/0xa30 [ 1670.678063] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1670.678819] kmem_cache_alloc+0x159/0x310 [ 1670.679496] xas_alloc+0x336/0x440 [ 1670.680065] xas_create+0x34a/0x10d0 [ 1670.680742] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1670.681500] xas_store+0x8c/0x1c40 [ 1670.682240] __xa_store+0x164/0x2d0 [ 1670.682805] ? xa_delete_node+0x280/0x280 [ 1670.683508] ? trace_hardirqs_on+0x5b/0x180 [ 1670.684226] xa_store+0x31/0x50 [ 1670.684737] __io_uring_add_tctx_node+0x1cf/0x520 [ 1670.685406] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.686104] ? alloc_fd+0x2e7/0x670 [ 1670.686793] io_uring_setup+0x1fbb/0x2980 [ 1670.687484] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.688145] ? wait_for_completion_io+0x270/0x270 [ 1670.689104] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.689811] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.690575] do_syscall_64+0x33/0x40 [ 1670.691095] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.691763] RIP: 0033:0x7ff9de16bb19 [ 1670.692274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.694469] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.695466] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1670.696363] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1670.697260] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1670.698164] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1670.699066] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1670.700259] CPU: 1 PID: 12628 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1670.701737] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1670.703500] Call Trace: [ 1670.704058] dump_stack+0x107/0x167 [ 1670.704824] should_fail.cold+0x5/0xa [ 1670.705810] ? xas_alloc+0x336/0x440 [ 1670.706676] should_failslab+0x5/0x20 [ 1670.707583] kmem_cache_alloc+0x5b/0x310 [ 1670.708438] ? stack_trace_consume_entry+0x160/0x160 [ 1670.709498] xas_alloc+0x336/0x440 [ 1670.710260] xas_create+0x34a/0x10d0 [ 1670.711056] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1670.712151] xas_store+0x8c/0x1c40 [ 1670.713112] __xa_store+0x164/0x2d0 [ 1670.713970] ? xa_delete_node+0x280/0x280 [ 1670.714883] ? trace_hardirqs_on+0x5b/0x180 [ 1670.715950] xa_store+0x31/0x50 [ 1670.716651] __io_uring_add_tctx_node+0x1cf/0x520 [ 1670.717648] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1670.718760] ? alloc_fd+0x2e7/0x670 [ 1670.719532] io_uring_setup+0x1fbb/0x2980 [ 1670.720439] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1670.721508] ? wait_for_completion_io+0x270/0x270 [ 1670.722556] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1670.723660] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1670.724742] do_syscall_64+0x33/0x40 [ 1670.725522] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1670.726599] RIP: 0033:0x7f341b7f3b19 07:14:03 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() (fail_nth: 1) [ 1670.727376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1670.731328] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1670.732922] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1670.734420] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1670.735913] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1670.737397] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1670.738885] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:17 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 40) 07:14:17 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x76a6, &(0x7f0000000300), 0x0, 0x0) 07:14:17 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1684.372146] FAULT_INJECTION: forcing a failure. [ 1684.372146] name failslab, interval 1, probability 0, space 0, times 0 07:14:17 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 24) 07:14:17 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:14:17 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 41) 07:14:17 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000000c0)={@in={{0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x1c}}}, 0x0, 0x0, 0x7, 0x0, "dc2a9305761acbdd50b98be3daf0bf478d4fb2528b45f1f8cc4420cade77476a36fe8f3aefbe57117326941c7624af791c01f636ea931e91699af104d4931351bc63a73ea46bea3127ebe155da0d01b6"}, 0xd8) 07:14:17 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x7fff}}, './file0\x00'}) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) poll(&(0x7f0000000100)=[{r0, 0x1100}, {r1, 0x3c2}, {r2, 0x2048}, {r0, 0x40}, {r0, 0x40}, {r3, 0xa2}, {r4, 0x400}], 0x7, 0x3) ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, &(0x7f0000000040)={0x62, 0x8, [0x80000000, 0x6, 0x3, 0x2], &(0x7f0000000000)=[0x0]}) fork() [ 1684.374645] CPU: 1 PID: 12656 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1684.376477] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.378247] Call Trace: [ 1684.378813] dump_stack+0x107/0x167 [ 1684.379580] should_fail.cold+0x5/0xa [ 1684.380392] ? create_object.isra.0+0x3a/0xa30 [ 1684.381363] should_failslab+0x5/0x20 [ 1684.382181] kmem_cache_alloc+0x5b/0x310 [ 1684.383056] create_object.isra.0+0x3a/0xa30 [ 1684.383985] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1684.385065] kmem_cache_alloc+0x159/0x310 [ 1684.385960] xas_alloc+0x336/0x440 [ 1684.386716] xas_create+0x34a/0x10d0 [ 1684.387513] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1684.388620] xas_store+0x8c/0x1c40 [ 1684.389383] __xa_store+0x164/0x2d0 [ 1684.390162] ? xa_delete_node+0x280/0x280 [ 1684.391048] ? trace_hardirqs_on+0x5b/0x180 [ 1684.392189] xa_store+0x31/0x50 [ 1684.392888] __io_uring_add_tctx_node+0x1cf/0x520 [ 1684.394041] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1684.395277] ? alloc_fd+0x2e7/0x670 [ 1684.396191] io_uring_setup+0x1fbb/0x2980 [ 1684.397076] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.398145] ? wait_for_completion_io+0x270/0x270 [ 1684.399192] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.400294] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.401377] do_syscall_64+0x33/0x40 [ 1684.402163] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.403236] RIP: 0033:0x7f341b7f3b19 [ 1684.404013] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.407884] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.409477] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1684.410981] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1684.412495] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1684.414020] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1684.415510] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1684.427230] FAULT_INJECTION: forcing a failure. [ 1684.427230] name failslab, interval 1, probability 0, space 0, times 0 [ 1684.429653] CPU: 1 PID: 12659 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1684.431202] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.432959] Call Trace: [ 1684.433518] dump_stack+0x107/0x167 [ 1684.434305] should_fail.cold+0x5/0xa [ 1684.435103] ? create_object.isra.0+0x3a/0xa30 [ 1684.436060] should_failslab+0x5/0x20 [ 1684.436859] kmem_cache_alloc+0x5b/0x310 [ 1684.437727] create_object.isra.0+0x3a/0xa30 [ 1684.438657] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1684.439735] kmem_cache_alloc+0x159/0x310 [ 1684.440610] __alloc_file+0x21/0x320 [ 1684.441394] alloc_empty_file+0x6d/0x170 [ 1684.442256] alloc_file+0x5e/0x5a0 [ 1684.443005] alloc_file_pseudo+0x16a/0x250 [ 1684.443900] ? alloc_file+0x5a0/0x5a0 [ 1684.444726] anon_inode_getfile+0xc8/0x1f0 [ 1684.445628] io_uring_setup+0x138b/0x2980 [ 1684.446522] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.447587] ? wait_for_completion_io+0x270/0x270 [ 1684.448668] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.450031] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.451115] do_syscall_64+0x33/0x40 [ 1684.451899] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.453118] RIP: 0033:0x7fb912e91b19 [ 1684.454061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.458237] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.459838] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1684.461330] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1684.462831] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1684.464327] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1684.465849] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1684.476785] FAULT_INJECTION: forcing a failure. [ 1684.476785] name failslab, interval 1, probability 0, space 0, times 0 [ 1684.479200] CPU: 1 PID: 12662 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1684.480655] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.482432] Call Trace: [ 1684.482992] dump_stack+0x107/0x167 [ 1684.483766] should_fail.cold+0x5/0xa [ 1684.484578] ? xas_alloc+0x336/0x440 [ 1684.485361] should_failslab+0x5/0x20 [ 1684.486177] kmem_cache_alloc+0x5b/0x310 [ 1684.487045] xas_alloc+0x336/0x440 [ 1684.487799] xas_create+0x34a/0x10d0 [ 1684.488601] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1684.489716] xas_store+0x8c/0x1c40 [ 1684.490494] __xa_store+0x164/0x2d0 [ 1684.491263] ? xa_delete_node+0x280/0x280 [ 1684.492144] ? trace_hardirqs_on+0x5b/0x180 [ 1684.493064] xa_store+0x31/0x50 [ 1684.493764] __io_uring_add_tctx_node+0x1cf/0x520 [ 1684.494795] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1684.495896] ? alloc_fd+0x2e7/0x670 [ 1684.496674] io_uring_setup+0x1fbb/0x2980 [ 1684.497555] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.498627] ? wait_for_completion_io+0x270/0x270 [ 1684.499663] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.500761] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.501854] do_syscall_64+0x33/0x40 [ 1684.502643] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.503727] RIP: 0033:0x7ff9de16bb19 [ 1684.504506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.508384] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.510008] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1684.511506] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1684.513026] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1684.514529] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1684.516025] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:17 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000000200), 0x6e, &(0x7f0000000080)=[{&(0x7f0000000280)=""/4096, 0x1000}, {&(0x7f0000001280)=""/172, 0xac}, {&(0x7f0000001340)=""/176, 0xb0}, {&(0x7f0000001400)=""/85, 0x55}], 0x4, &(0x7f0000001580)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70}, 0x0) syz_open_procfs(r1, &(0x7f0000001540)='clear_refs\x00') mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x20800, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB=',cache=none,fscache,cachetag=&.$,privport,posixacl,fscache,msize=0000000000006,msize=0x0e00000000000000,hash,func=MODULE_CHECK,obj_user=i,\x00\x00\x00\x00\x00\x00']) fork() 07:14:17 executing program 0: ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x3, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x0, 0xffffffffffffffff, r0, 0x8) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:14:17 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 41) 07:14:17 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e24, 0x4, @loopback, 0x7}, 0x1c) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000005c0), 0x40, 0x0) pwrite64(r3, &(0x7f0000000600)="c3947be765835b2e8f4d1942b5b97f5aaf82ba3a327d2df0d695ecd2f1cf89c3cbfb6421bd01a3ef03aa35cdb913502fb6e330b611c3e2bab11668b437041d932ea6812effc87997", 0x48, 0x6) r4 = pidfd_getfd(r2, r1, 0x0) io_uring_enter(r4, 0x485f, 0x7ebe, 0x2, &(0x7f0000000580)={[0x7]}, 0x8) sendmsg$inet6(r2, &(0x7f0000000540)={&(0x7f00000000c0)={0xa, 0x4e21, 0x1a, @remote, 0x800}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000100)="b79813d0e2d6da1a08f2d886b12fb0126b457a3ba6e9cd2a74fb406a029acc603e2d3023a4aff8c62436f7fe56dff97489f79d6c98ef278361f26118f59e0e2e31549f622ff4c421854c8817e7570610e36ab7414e351bbb76cc4edaea31e46ce172683c67b869d148186e9d4dfeb0eb4318dfb49e8db2b3dc410a39a0ed4b50b806599b712a6353e01f2f244645c83d", 0x90}, {&(0x7f00000001c0)="32fda6e747f9b731a49a12d7b8537f0af90789a43b6d62ca4f80fea24660aac7e1fb62af0483d0c0c42ed6508e907aff775929a5254d059450b66c0b7f78b320da0fc01698f1f62971b3c81ac5cc14f6cb65804cfc3957865a9d1fdd66b60add559ec487c348e61ff99e419815921166b68f75405566085132b74f7f11298d4df3deac920c932f2edc39e6b8a90c9576f17794cca3200401dfbf5122a7fad22e945021a0d6e157cca546ffdac87ea89f199720de96fa5e05b1768ae03cd2d277f1e067055632f22629c50ea6921fd92cb3c0c7b741330f94842a", 0xda}, {&(0x7f00000002c0)="2619cd3d0486e352b62a1ffe2399333ff9d8c309e1e5ee45df67897814d26b400f94748e4eae04e4f534df403c741e8563fa1bd5fb38282de0e62d430fc25e9cb81292b4cfaf74e8ede0309cb29e1fb9799bd29ef15a9e2e59b173189cda9637fe131c80f811703b917106e8f877c7c236e07eeeb4323a9092f0e1d48dcb07af845411b9117e11f7e4323a3b8f37cc450eb4f07042ca06f20a37354b6d7213740332dba314ed022921927a4a05436907903b59f4206c2b9d0434ce66e503ad83d4f09049c6f0ac", 0xc7}], 0x3, &(0x7f0000000400)=[@dstopts={{0x40, 0x29, 0x37, {0x2b, 0x4, '\x00', [@jumbo={0xc2, 0x4, 0x7f}, @jumbo={0xc2, 0x4, 0x9}, @enc_lim={0x4, 0x1, 0x5}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x44}}, @flowinfo={{0x14, 0x29, 0xb, 0x1ff}}, @hopopts_2292={{0x30, 0x29, 0x36, {0x0, 0x2, '\x00', [@pad1, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}]}}}, @rthdr={{0x78, 0x29, 0x39, {0x3e, 0xc, 0x1, 0x9, 0x0, [@mcast2, @loopback, @empty, @local, @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}]}}}], 0x118}, 0x20000080) setsockopt$inet6_tcp_int(r0, 0x6, 0x11, &(0x7f0000000080)=0x4, 0x4) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x4010, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r5, 0x0, &(0x7f0000000040)=@IORING_OP_NOP={0x0, 0x3}, 0x1e9) 07:14:17 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 25) [ 1684.775052] FAULT_INJECTION: forcing a failure. [ 1684.775052] name failslab, interval 1, probability 0, space 0, times 0 07:14:17 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1684.777662] CPU: 1 PID: 12982 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1684.777672] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 07:14:17 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 26) [ 1684.777678] Call Trace: [ 1684.777704] dump_stack+0x107/0x167 [ 1684.777727] should_fail.cold+0x5/0xa 07:14:17 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 42) [ 1684.777747] ? security_file_alloc+0x34/0x170 [ 1684.777765] should_failslab+0x5/0x20 [ 1684.777785] kmem_cache_alloc+0x5b/0x310 [ 1684.777809] security_file_alloc+0x34/0x170 [ 1684.777840] __alloc_file+0xb7/0x320 [ 1684.777860] alloc_empty_file+0x6d/0x170 [ 1684.777880] alloc_file+0x5e/0x5a0 [ 1684.777902] alloc_file_pseudo+0x16a/0x250 [ 1684.777920] ? alloc_file+0x5a0/0x5a0 [ 1684.777956] anon_inode_getfile+0xc8/0x1f0 [ 1684.777981] io_uring_setup+0x138b/0x2980 [ 1684.778011] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.778027] ? wait_for_completion_io+0x270/0x270 [ 1684.778073] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.778093] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.778117] do_syscall_64+0x33/0x40 [ 1684.778136] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.778150] RIP: 0033:0x7fb912e91b19 [ 1684.778172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.778184] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.778206] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1684.778217] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1684.778228] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 07:14:17 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 43) [ 1684.778239] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1684.778251] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1684.848400] FAULT_INJECTION: forcing a failure. [ 1684.848400] name failslab, interval 1, probability 0, space 0, times 0 [ 1684.848464] CPU: 0 PID: 12977 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1684.848513] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.848565] Call Trace: [ 1684.848654] dump_stack+0x107/0x167 [ 1684.848834] should_fail.cold+0x5/0xa [ 1684.848966] ? xas_alloc+0x336/0x440 07:14:17 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1684.849096] should_failslab+0x5/0x20 [ 1684.849154] kmem_cache_alloc+0x5b/0x310 [ 1684.849433] xas_alloc+0x336/0x440 [ 1684.849638] xas_create+0x34a/0x10d0 [ 1684.850008] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1684.850212] xas_store+0x8c/0x1c40 [ 1684.850714] __xa_store+0x164/0x2d0 [ 1684.850894] ? xa_delete_node+0x280/0x280 [ 1684.851222] ? trace_hardirqs_on+0x5b/0x180 [ 1684.851549] xa_store+0x31/0x50 [ 1684.851707] __io_uring_add_tctx_node+0x1cf/0x520 [ 1684.851837] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1684.851893] ? alloc_fd+0x2e7/0x670 [ 1684.852296] io_uring_setup+0x1fbb/0x2980 [ 1684.852601] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.852657] ? wait_for_completion_io+0x270/0x270 [ 1684.853311] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.853395] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.853623] do_syscall_64+0x33/0x40 [ 1684.853706] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.853758] RIP: 0033:0x7f341b7f3b19 [ 1684.853816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.853878] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.853977] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1684.854027] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1684.854077] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1684.854127] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1684.854177] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1684.908150] FAULT_INJECTION: forcing a failure. [ 1684.908150] name failslab, interval 1, probability 0, space 0, times 0 [ 1684.908173] CPU: 1 PID: 12999 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1684.908183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.908190] Call Trace: [ 1684.908216] dump_stack+0x107/0x167 [ 1684.908239] should_fail.cold+0x5/0xa [ 1684.908262] ? create_object.isra.0+0x3a/0xa30 [ 1684.908280] should_failslab+0x5/0x20 [ 1684.908299] kmem_cache_alloc+0x5b/0x310 [ 1684.908319] ? mark_held_locks+0x9e/0xe0 [ 1684.908343] create_object.isra.0+0x3a/0xa30 [ 1684.908359] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1684.908384] kmem_cache_alloc+0x159/0x310 [ 1684.908411] xas_alloc+0x336/0x440 [ 1684.908435] xas_create+0x34a/0x10d0 [ 1684.908467] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1684.908490] xas_store+0x8c/0x1c40 [ 1684.908526] __xa_store+0x164/0x2d0 [ 1684.908555] ? xa_delete_node+0x280/0x280 [ 1684.908584] ? trace_hardirqs_on+0x5b/0x180 [ 1684.908611] xa_store+0x31/0x50 [ 1684.908634] __io_uring_add_tctx_node+0x1cf/0x520 [ 1684.908655] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1684.908671] ? alloc_fd+0x2e7/0x670 [ 1684.908704] io_uring_setup+0x1fbb/0x2980 [ 1684.908733] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.908749] ? wait_for_completion_io+0x270/0x270 [ 1684.908794] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.908813] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.908837] do_syscall_64+0x33/0x40 [ 1684.908857] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.908869] RIP: 0033:0x7ff9de16bb19 [ 1684.908888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.908898] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.908919] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1684.908931] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1684.908941] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1684.908952] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1684.908963] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1684.992378] FAULT_INJECTION: forcing a failure. [ 1684.992378] name failslab, interval 1, probability 0, space 0, times 0 [ 1684.992447] CPU: 0 PID: 12994 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1684.992495] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1684.992539] Call Trace: [ 1684.992631] dump_stack+0x107/0x167 [ 1684.992845] should_fail.cold+0x5/0xa [ 1684.992985] ? create_object.isra.0+0x3a/0xa30 [ 1684.993112] should_failslab+0x5/0x20 [ 1684.993169] kmem_cache_alloc+0x5b/0x310 [ 1684.993251] ? percpu_ref_put_many.constprop.0+0x4e/0x110 [ 1684.993477] create_object.isra.0+0x3a/0xa30 [ 1684.993530] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1684.993790] kmem_cache_alloc+0x159/0x310 [ 1684.994133] security_file_alloc+0x34/0x170 [ 1684.994309] __alloc_file+0xb7/0x320 [ 1684.994460] alloc_empty_file+0x6d/0x170 [ 1684.994634] alloc_file+0x5e/0x5a0 [ 1684.994858] alloc_file_pseudo+0x16a/0x250 [ 1684.994983] ? alloc_file+0x5a0/0x5a0 [ 1684.995504] anon_inode_getfile+0xc8/0x1f0 [ 1684.995727] io_uring_setup+0x138b/0x2980 [ 1684.996056] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1684.996111] ? wait_for_completion_io+0x270/0x270 [ 1684.996757] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1684.996838] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1684.997062] do_syscall_64+0x33/0x40 [ 1684.997145] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1684.997202] RIP: 0033:0x7fb912e91b19 [ 1684.997266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1684.997321] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1684.997430] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1684.997486] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1684.997540] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1684.997594] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1684.997646] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1685.189573] FAULT_INJECTION: forcing a failure. [ 1685.189573] name failslab, interval 1, probability 0, space 0, times 0 [ 1685.189760] CPU: 0 PID: 13131 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1685.189808] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1685.189862] Call Trace: [ 1685.189949] dump_stack+0x107/0x167 [ 1685.190129] should_fail.cold+0x5/0xa [ 1685.307467] ? xas_alloc+0x336/0x440 [ 1685.308473] should_failslab+0x5/0x20 [ 1685.309424] kmem_cache_alloc+0x5b/0x310 [ 1685.310659] xas_alloc+0x336/0x440 [ 1685.311706] xas_create+0x34a/0x10d0 [ 1685.312940] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1685.314355] xas_store+0x8c/0x1c40 [ 1685.315698] __xa_store+0x164/0x2d0 [ 1685.316737] ? xa_delete_node+0x280/0x280 [ 1685.318044] ? trace_hardirqs_on+0x5b/0x180 [ 1685.319374] xa_store+0x31/0x50 [ 1685.320320] __io_uring_add_tctx_node+0x1cf/0x520 [ 1685.321564] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1685.322833] ? alloc_fd+0x2e7/0x670 [ 1685.324095] io_uring_setup+0x1fbb/0x2980 [ 1685.325369] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1685.326600] ? wait_for_completion_io+0x270/0x270 [ 1685.328361] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1685.329655] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1685.331070] do_syscall_64+0x33/0x40 [ 1685.332032] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1685.333276] RIP: 0033:0x7ff9de16bb19 [ 1685.334227] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1685.338289] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1685.340130] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1685.341789] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1685.343455] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1685.345116] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1685.346786] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1685.449741] loop6: detected capacity change from 0 to 67108864 07:14:31 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 27) 07:14:31 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 42) 07:14:31 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) finit_module(r0, &(0x7f0000000000)='\x00', 0x3) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:14:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) pidfd_getfd(r2, r1, 0x0) bind$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x6, @private0, 0xffff013d}, 0x1c) 07:14:31 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) r1 = fork() perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x2, 0xd, 0x0, 0x40, 0x0, 0x7fffffff, 0x80244, 0x9, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_config_ext={0xfffffffffffffffe, 0xdd7}, 0x2000, 0x7, 0x5f, 0x6, 0x101, 0x1, 0x6, 0x0, 0x80, 0x0, 0x6}, r1, 0xc, r0, 0x1) 07:14:31 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 44) 07:14:31 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, 0x0, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:14:31 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x76a7, &(0x7f0000000300), 0x0, 0x0) [ 1698.669462] FAULT_INJECTION: forcing a failure. [ 1698.669462] name failslab, interval 1, probability 0, space 0, times 0 [ 1698.671018] CPU: 1 PID: 13314 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1698.671907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1698.672968] Call Trace: [ 1698.673314] dump_stack+0x107/0x167 [ 1698.673784] should_fail.cold+0x5/0xa [ 1698.674281] ? create_object.isra.0+0x3a/0xa30 [ 1698.674864] should_failslab+0x5/0x20 [ 1698.675355] kmem_cache_alloc+0x5b/0x310 [ 1698.675875] ? mark_held_locks+0x9e/0xe0 [ 1698.676395] create_object.isra.0+0x3a/0xa30 [ 1698.676955] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1698.677603] kmem_cache_alloc+0x159/0x310 [ 1698.678144] xas_alloc+0x336/0x440 [ 1698.678600] xas_create+0x34a/0x10d0 [ 1698.679085] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1698.679756] xas_store+0x8c/0x1c40 [ 1698.680219] __xa_store+0x164/0x2d0 [ 1698.680686] ? xa_delete_node+0x280/0x280 [ 1698.681222] ? trace_hardirqs_on+0x5b/0x180 [ 1698.681781] xa_store+0x31/0x50 [ 1698.682216] __io_uring_add_tctx_node+0x1cf/0x520 [ 1698.682831] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1698.683499] ? alloc_fd+0x2e7/0x670 [ 1698.683970] io_uring_setup+0x1fbb/0x2980 [ 1698.684502] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1698.685163] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1698.685829] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1698.686494] do_syscall_64+0x33/0x40 [ 1698.686969] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1698.687626] RIP: 0033:0x7f341b7f3b19 [ 1698.688102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1698.690451] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1698.691426] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1698.692335] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1698.693242] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1698.694157] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1698.695058] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1698.704446] FAULT_INJECTION: forcing a failure. [ 1698.704446] name failslab, interval 1, probability 0, space 0, times 0 [ 1698.707282] CPU: 0 PID: 13313 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1698.708885] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1698.710793] Call Trace: [ 1698.711514] dump_stack+0x107/0x167 [ 1698.712525] should_fail.cold+0x5/0xa [ 1698.713532] ? io_uring_alloc_task_context+0x99/0x6a0 [ 1698.714831] should_failslab+0x5/0x20 [ 1698.715769] kmem_cache_alloc_trace+0x55/0x320 [ 1698.717078] io_uring_alloc_task_context+0x99/0x6a0 [ 1698.718389] ? io_import_iovec+0x1120/0x1120 [ 1698.719505] ? lock_downgrade+0x6d0/0x6d0 [ 1698.720563] ? do_raw_spin_lock+0x121/0x260 [ 1698.721669] ? rwlock_bug.part.0+0x90/0x90 [ 1698.722923] __io_uring_add_tctx_node+0x2c6/0x520 [ 1698.724146] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1698.725388] ? alloc_fd+0x2e7/0x670 [ 1698.726618] io_uring_setup+0x1fbb/0x2980 [ 1698.727852] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1698.729060] ? wait_for_completion_io+0x270/0x270 [ 1698.730758] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1698.732018] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1698.733394] do_syscall_64+0x33/0x40 [ 1698.734352] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1698.735579] RIP: 0033:0x7fb912e91b19 [ 1698.736501] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1698.740552] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1698.742376] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1698.744018] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1698.745646] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1698.747300] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1698.748937] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1698.767268] FAULT_INJECTION: forcing a failure. [ 1698.767268] name failslab, interval 1, probability 0, space 0, times 0 [ 1698.768994] CPU: 1 PID: 13317 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1698.770099] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1698.771119] Call Trace: [ 1698.771455] dump_stack+0x107/0x167 [ 1698.771907] should_fail.cold+0x5/0xa [ 1698.772380] ? create_object.isra.0+0x3a/0xa30 [ 1698.772948] should_failslab+0x5/0x20 [ 1698.773421] kmem_cache_alloc+0x5b/0x310 [ 1698.773924] ? mark_held_locks+0x9e/0xe0 [ 1698.774435] create_object.isra.0+0x3a/0xa30 [ 1698.774976] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1698.775606] kmem_cache_alloc+0x159/0x310 [ 1698.776118] xas_alloc+0x336/0x440 [ 1698.776563] xas_create+0x34a/0x10d0 [ 1698.777028] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1698.777678] xas_store+0x8c/0x1c40 [ 1698.778134] __xa_store+0x164/0x2d0 [ 1698.778584] ? xa_delete_node+0x280/0x280 [ 1698.779102] ? trace_hardirqs_on+0x5b/0x180 [ 1698.779638] xa_store+0x31/0x50 [ 1698.780051] __io_uring_add_tctx_node+0x1cf/0x520 [ 1698.780646] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1698.781291] ? alloc_fd+0x2e7/0x670 [ 1698.781751] io_uring_setup+0x1fbb/0x2980 [ 1698.782276] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1698.782900] ? wait_for_completion_io+0x270/0x270 [ 1698.783507] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1698.784154] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1698.784791] do_syscall_64+0x33/0x40 [ 1698.785251] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1698.785878] RIP: 0033:0x7ff9de16bb19 [ 1698.786346] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1698.788606] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1698.789545] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1698.790428] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1698.791293] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1698.792168] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1698.793040] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:31 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, 0x0, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:14:31 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000016140), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000016580)={0x0, 0x0, &(0x7f0000016540)={&(0x7f0000000040)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x9}]}, 0x34}}, 0x0) bind(r2, &(0x7f0000000000)=@ieee802154={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0002}}}, 0x80) r3 = syz_mount_image$iso9660(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x3, 0x4, &(0x7f0000001600)=[{&(0x7f0000000380)="adcf8599e839037b926abcec8e738fc39a8bb18e61a8437ed196cf52507da13fd4b54ed0da8427bf0d1241e4121bf4b34c53d2579a8ab59288b45257ddbdf3d292fd5799f786c826e9ac8fcfa20672f5d109c3047f3105b9d5d8880c7dde0afad045367793e24ceddf80eeeebbf2b2607e6192483b04f71e1c5140d5dd230091e0c6c489", 0x84, 0x3ff}, {&(0x7f0000000440)="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", 0x1000, 0x6}, {&(0x7f0000001440)="c11c679dc80682671e647c4cfebb24f37530404e17f06eba72c134152de92e0760efcd6ca5eb9b65324c0736a2e292100e3c09c3e0f1401a62f1570bc5f29d437143a7d1a0c220e28d7cd2e0833eb2834e22d9fd79a51ae54234dbc0e7abea5eea77d6ccf7d2529e9a42963bf2da77416824d88fd5e6b652cc18ea60ca1d2e06c78d0637cbc90216b307a336316c06a7025b43504fa6d91abaf8b84bbbdc3f53854a80611e2b16d950f340b31e31e9dac6c243f1dc6dadd9d0abcd24e22c64a20b055e5dcb6a7dd768fde4dd80622fb5067573393de3a1d927597da3eee858010c05eaeb03d4fcf92af8a88adf09677ccab7", 0xf2, 0x80}, {&(0x7f0000001540)="1af1bd6b6e85048fca6bbe4a97ded9412e6cbaa7c9d8015b26a6229ebd8a17d0bf84739c6a829c7aa474beffe2168a305474a3d24b78b60d97aee641f8fd61eb1952cdbc538203fc0da6fd02d820058432781a9b5f3bd8532857fa60fc96d4c666c558b0b1302fb93fdb5bd8e6199bf83dbbbac9e96e8a42a6a660a593f57980facd81aa060f0a67bdcb", 0x8a, 0xb2}], 0x0, &(0x7f0000001680)={[{@map_off}], [{@subj_user={'subj_user', 0x3d, 'wlan0\x00'}}, {@smackfshat={'smackfshat', 0x3d, 'ethtool\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '\x12!!'}}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@dont_appraise}]}) openat(r3, &(0x7f0000001700)='./file0\x00', 0x381000, 0x5) r4 = accept(r2, 0x0, &(0x7f00000000c0)) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000100)) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) [ 1698.815371] loop5: detected capacity change from 0 to 4096 07:14:31 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 43) 07:14:31 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 45) 07:14:31 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 28) [ 1698.990041] FAULT_INJECTION: forcing a failure. [ 1698.990041] name failslab, interval 1, probability 0, space 0, times 0 [ 1698.991491] CPU: 1 PID: 13629 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1698.992289] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1698.993240] Call Trace: [ 1698.993548] dump_stack+0x107/0x167 [ 1698.993969] should_fail.cold+0x5/0xa [ 1698.994439] ? xas_alloc+0x336/0x440 [ 1698.994868] should_failslab+0x5/0x20 [ 1698.995303] kmem_cache_alloc+0x5b/0x310 [ 1698.995775] xas_alloc+0x336/0x440 [ 1698.996191] xas_create+0x34a/0x10d0 [ 1698.996630] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1698.997236] xas_store+0x8c/0x1c40 [ 1698.997650] __xa_store+0x164/0x2d0 [ 1698.998083] ? xa_delete_node+0x280/0x280 [ 1698.998564] ? trace_hardirqs_on+0x5b/0x180 [ 1698.999061] xa_store+0x31/0x50 [ 1698.999442] __io_uring_add_tctx_node+0x1cf/0x520 [ 1698.999995] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1699.000593] ? alloc_fd+0x2e7/0x670 [ 1699.001016] io_uring_setup+0x1fbb/0x2980 [ 1699.001498] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1699.002089] ? wait_for_completion_io+0x270/0x270 [ 1699.002656] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1699.003256] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1699.003851] do_syscall_64+0x33/0x40 [ 1699.004279] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1699.004867] RIP: 0033:0x7f341b7f3b19 [ 1699.005295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1699.007407] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1699.008279] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1699.009097] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1699.009910] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1699.010734] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1699.011553] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1699.016682] FAULT_INJECTION: forcing a failure. [ 1699.016682] name failslab, interval 1, probability 0, space 0, times 0 [ 1699.018095] CPU: 1 PID: 13637 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1699.018892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1699.019837] Call Trace: [ 1699.020137] dump_stack+0x107/0x167 [ 1699.020557] should_fail.cold+0x5/0xa [ 1699.020991] ? create_object.isra.0+0x3a/0xa30 [ 1699.021513] should_failslab+0x5/0x20 [ 1699.021946] kmem_cache_alloc+0x5b/0x310 [ 1699.022418] create_object.isra.0+0x3a/0xa30 [ 1699.022921] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1699.023499] kmem_cache_alloc_trace+0x151/0x320 [ 1699.024034] io_uring_alloc_task_context+0x99/0x6a0 [ 1699.024606] ? io_import_iovec+0x1120/0x1120 [ 1699.025107] ? lock_downgrade+0x6d0/0x6d0 [ 1699.025577] ? do_raw_spin_lock+0x121/0x260 [ 1699.026081] ? rwlock_bug.part.0+0x90/0x90 [ 1699.026569] __io_uring_add_tctx_node+0x2c6/0x520 [ 1699.027118] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1699.027711] ? alloc_fd+0x2e7/0x670 [ 1699.028134] io_uring_setup+0x1fbb/0x2980 [ 1699.028613] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1699.029192] ? wait_for_completion_io+0x270/0x270 [ 1699.029752] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1699.030359] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1699.030951] do_syscall_64+0x33/0x40 [ 1699.031380] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1699.031965] RIP: 0033:0x7fb912e91b19 [ 1699.032390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1699.034499] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1699.035368] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1699.036182] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1699.036995] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1699.037808] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1699.038630] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:31 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000740)={0x5, 0x80, 0x5, 0x8, 0x95, 0x8, 0x0, 0x9, 0x602, 0x7, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000700), 0x2}, 0x4000, 0x2, 0x7, 0x5, 0x7, 0x80000001, 0x4, 0x0, 0xef, 0x0, 0x6}, 0xffffffffffffffff, 0x1, r0, 0x2) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000007c0)={{0x1, 0x1, 0x18, r1, @out_args}, './file0\x00'}) ioctl$PERF_EVENT_IOC_REFRESH(r2, 0x2402, 0x7) fork() r3 = getpid() process_vm_readv(r3, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0x3, 0x7f, 0x4, 0x9, 0x0, 0x0, 0x8411, 0x14, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1ff, 0x1, @perf_bp={&(0x7f0000000000), 0x1}, 0x10204, 0xf5, 0x8402, 0x2, 0x9, 0x8629, 0xda4, 0x0, 0x4, 0x0, 0x2}, r3, 0x1, r0, 0x2) 07:14:31 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, 0x0, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1699.103632] FAULT_INJECTION: forcing a failure. [ 1699.103632] name failslab, interval 1, probability 0, space 0, times 0 [ 1699.104982] CPU: 1 PID: 13695 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1699.105779] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1699.106746] Call Trace: [ 1699.107051] dump_stack+0x107/0x167 [ 1699.107464] should_fail.cold+0x5/0xa [ 1699.107899] ? create_object.isra.0+0x3a/0xa30 [ 1699.108415] should_failslab+0x5/0x20 [ 1699.108850] kmem_cache_alloc+0x5b/0x310 [ 1699.109314] ? mark_held_locks+0x9e/0xe0 [ 1699.109778] create_object.isra.0+0x3a/0xa30 [ 1699.110285] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1699.110867] kmem_cache_alloc+0x159/0x310 [ 1699.111341] xas_alloc+0x336/0x440 [ 1699.111747] xas_create+0x34a/0x10d0 [ 1699.112180] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1699.112774] xas_store+0x8c/0x1c40 [ 1699.113184] __xa_store+0x164/0x2d0 [ 1699.113600] ? xa_delete_node+0x280/0x280 [ 1699.114083] ? trace_hardirqs_on+0x5b/0x180 [ 1699.114576] xa_store+0x31/0x50 [ 1699.114951] __io_uring_add_tctx_node+0x1cf/0x520 [ 1699.115501] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1699.116096] ? alloc_fd+0x2e7/0x670 [ 1699.116518] io_uring_setup+0x1fbb/0x2980 [ 1699.116993] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1699.117572] ? wait_for_completion_io+0x270/0x270 [ 1699.118139] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1699.118739] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1699.119326] do_syscall_64+0x33/0x40 [ 1699.119749] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1699.120330] RIP: 0033:0x7ff9de16bb19 [ 1699.120758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1699.122863] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1699.123733] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1699.124547] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1699.125359] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1699.126182] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1699.126995] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1699.480493] loop6: detected capacity change from 0 to 67108864 07:14:46 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x76a8, &(0x7f0000000300), 0x0, 0x0) 07:14:46 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 29) 07:14:46 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f0000000000), 0x2}, 0x80, 0x5, 0x2, 0x8, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:14:46 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1714.053272] FAULT_INJECTION: forcing a failure. [ 1714.053272] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.055351] CPU: 1 PID: 13864 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1714.056579] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.058044] Call Trace: [ 1714.058531] dump_stack+0x107/0x167 [ 1714.059180] should_fail.cold+0x5/0xa [ 1714.059858] ? create_object.isra.0+0x3a/0xa30 [ 1714.060669] should_failslab+0x5/0x20 [ 1714.061346] kmem_cache_alloc+0x5b/0x310 [ 1714.062069] create_object.isra.0+0x3a/0xa30 [ 1714.062862] kmemleak_alloc_percpu+0xa0/0x100 [ 1714.063660] pcpu_alloc+0x4e2/0x1240 [ 1714.064346] __percpu_counter_init+0x10d/0x2d0 [ 1714.065165] io_uring_alloc_task_context+0xcc/0x6a0 [ 1714.066050] ? io_import_iovec+0x1120/0x1120 [ 1714.066836] ? lock_downgrade+0x6d0/0x6d0 [ 1714.067568] ? do_raw_spin_lock+0x121/0x260 [ 1714.068327] ? rwlock_bug.part.0+0x90/0x90 [ 1714.069083] __io_uring_add_tctx_node+0x2c6/0x520 [ 1714.069940] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.070872] ? alloc_fd+0x2e7/0x670 [ 1714.071535] io_uring_setup+0x1fbb/0x2980 [ 1714.072272] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.073162] ? wait_for_completion_io+0x270/0x270 [ 1714.074036] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.074978] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.075895] do_syscall_64+0x33/0x40 [ 1714.076553] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.077464] RIP: 0033:0x7fb912e91b19 [ 1714.078118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.081384] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.082741] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1714.084003] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1714.085275] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1714.086544] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1714.087812] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1714.105162] FAULT_INJECTION: forcing a failure. [ 1714.105162] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.107188] CPU: 1 PID: 13869 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1714.108415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.109914] Call Trace: [ 1714.110394] dump_stack+0x107/0x167 [ 1714.111038] should_fail.cold+0x5/0xa [ 1714.111728] ? ___slab_alloc+0x155/0x700 [ 1714.112450] ? create_object.isra.0+0x3a/0xa30 [ 1714.113252] should_failslab+0x5/0x20 [ 1714.113922] kmem_cache_alloc+0x5b/0x310 [ 1714.114665] create_object.isra.0+0x3a/0xa30 [ 1714.115442] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1714.116343] kmem_cache_alloc+0x159/0x310 [ 1714.117082] xas_alloc+0x336/0x440 [ 1714.117710] xas_create+0x34a/0x10d0 [ 1714.118391] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.119320] xas_store+0x8c/0x1c40 [ 1714.119962] __xa_store+0x164/0x2d0 [ 1714.120609] ? xa_delete_node+0x280/0x280 [ 1714.121366] ? trace_hardirqs_on+0x5b/0x180 [ 1714.122149] xa_store+0x31/0x50 [ 1714.122739] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.123594] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.124505] ? alloc_fd+0x2e7/0x670 [ 1714.125157] io_uring_setup+0x1fbb/0x2980 [ 1714.125887] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.126783] ? wait_for_completion_io+0x270/0x270 [ 1714.127649] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.128566] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.129475] do_syscall_64+0x33/0x40 [ 1714.130131] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.131063] RIP: 0033:0x7ff9de16bb19 [ 1714.131710] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.134943] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.136271] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1714.137520] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1714.138768] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1714.140011] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1714.141252] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:46 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 44) 07:14:46 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@remote, 0x3, 0x2, 0x0, 0x8, 0x1ff, 0x40}, 0x20) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:14:46 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 46) 07:14:46 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1714.156266] FAULT_INJECTION: forcing a failure. [ 1714.156266] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.158403] CPU: 1 PID: 13877 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1714.159630] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.161086] Call Trace: [ 1714.161551] dump_stack+0x107/0x167 [ 1714.162205] should_fail.cold+0x5/0xa [ 1714.162878] ? create_object.isra.0+0x3a/0xa30 [ 1714.163685] should_failslab+0x5/0x20 [ 1714.164350] kmem_cache_alloc+0x5b/0x310 [ 1714.165063] ? mark_held_locks+0x9e/0xe0 [ 1714.165775] create_object.isra.0+0x3a/0xa30 [ 1714.166555] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1714.167451] kmem_cache_alloc+0x159/0x310 [ 1714.168202] xas_alloc+0x336/0x440 [ 1714.168835] xas_create+0x34a/0x10d0 [ 1714.169499] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.170424] xas_store+0x8c/0x1c40 [ 1714.171067] __xa_store+0x164/0x2d0 [ 1714.171704] ? xa_delete_node+0x280/0x280 [ 1714.172438] ? trace_hardirqs_on+0x5b/0x180 [ 1714.173198] xa_store+0x31/0x50 [ 1714.173779] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.174637] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.175547] ? alloc_fd+0x2e7/0x670 [ 1714.176196] io_uring_setup+0x1fbb/0x2980 [ 1714.176928] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.177815] ? wait_for_completion_io+0x270/0x270 [ 1714.178684] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.179598] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.180487] do_syscall_64+0x33/0x40 [ 1714.181134] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.182014] RIP: 0033:0x7f341b7f3b19 [ 1714.182667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.185860] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.187180] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1714.188417] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1714.189642] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1714.190875] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1714.192113] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 45) 07:14:47 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7}, 0x1c) [ 1714.308951] FAULT_INJECTION: forcing a failure. [ 1714.308951] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.310990] CPU: 1 PID: 13981 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1714.312156] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.313565] Call Trace: [ 1714.314014] dump_stack+0x107/0x167 [ 1714.314616] should_fail.cold+0x5/0xa [ 1714.315240] ? xas_alloc+0x336/0x440 [ 1714.315847] should_failslab+0x5/0x20 [ 1714.316473] kmem_cache_alloc+0x5b/0x310 [ 1714.317155] xas_alloc+0x336/0x440 [ 1714.317747] xas_create+0x34a/0x10d0 [ 1714.318395] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.319266] xas_store+0x8c/0x1c40 [ 1714.319870] __xa_store+0x164/0x2d0 [ 1714.320477] ? xa_delete_node+0x280/0x280 [ 1714.321170] ? trace_hardirqs_on+0x5b/0x180 [ 1714.321885] xa_store+0x31/0x50 [ 1714.322438] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.323232] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.324108] ? alloc_fd+0x2e7/0x670 [ 1714.324724] io_uring_setup+0x1fbb/0x2980 [ 1714.325411] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.326261] ? wait_for_completion_io+0x270/0x270 [ 1714.327076] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.327937] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.328793] do_syscall_64+0x33/0x40 [ 1714.329411] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.330263] RIP: 0033:0x7f341b7f3b19 [ 1714.330877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.333941] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.335226] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1714.336414] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1714.337593] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1714.338780] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1714.339957] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:47 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 30) 07:14:47 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 47) [ 1714.375771] FAULT_INJECTION: forcing a failure. [ 1714.375771] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.377687] CPU: 1 PID: 13985 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1714.378826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.380193] Call Trace: [ 1714.380632] dump_stack+0x107/0x167 [ 1714.381230] should_fail.cold+0x5/0xa [ 1714.381852] ? create_object.isra.0+0x3a/0xa30 [ 1714.382604] should_failslab+0x5/0x20 [ 1714.383233] kmem_cache_alloc+0x5b/0x310 [ 1714.383903] create_object.isra.0+0x3a/0xa30 [ 1714.384634] kmemleak_alloc_percpu+0xa0/0x100 [ 1714.385360] pcpu_alloc+0x4e2/0x1240 [ 1714.385988] __percpu_counter_init+0x10d/0x2d0 [ 1714.386746] io_uring_alloc_task_context+0xcc/0x6a0 [ 1714.387562] ? io_import_iovec+0x1120/0x1120 [ 1714.388267] ? lock_downgrade+0x6d0/0x6d0 [ 1714.388934] ? do_raw_spin_lock+0x121/0x260 [ 1714.389625] ? rwlock_bug.part.0+0x90/0x90 [ 1714.390344] __io_uring_add_tctx_node+0x2c6/0x520 [ 1714.391129] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.391973] ? alloc_fd+0x2e7/0x670 [ 1714.392568] io_uring_setup+0x1fbb/0x2980 [ 1714.393249] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.394072] ? wait_for_completion_io+0x270/0x270 [ 1714.394903] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.395747] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.396581] do_syscall_64+0x33/0x40 [ 1714.397184] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.398027] RIP: 0033:0x7fb912e91b19 [ 1714.398647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.401625] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.402848] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1714.403992] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1714.405137] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1714.406307] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1714.407463] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:14:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 46) 07:14:47 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 31) [ 1714.528660] FAULT_INJECTION: forcing a failure. [ 1714.528660] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.530494] CPU: 1 PID: 14094 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1714.531521] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.532748] Call Trace: [ 1714.533146] dump_stack+0x107/0x167 [ 1714.533681] should_fail.cold+0x5/0xa [ 1714.534262] ? create_object.isra.0+0x3a/0xa30 [ 1714.534947] should_failslab+0x5/0x20 [ 1714.535516] kmem_cache_alloc+0x5b/0x310 [ 1714.536119] ? mark_held_locks+0x9e/0xe0 [ 1714.536721] create_object.isra.0+0x3a/0xa30 [ 1714.537359] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1714.538109] kmem_cache_alloc+0x159/0x310 [ 1714.538736] xas_alloc+0x336/0x440 [ 1714.539254] xas_create+0x34a/0x10d0 [ 1714.539805] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.540566] xas_store+0x8c/0x1c40 [ 1714.541112] __xa_store+0x164/0x2d0 [ 1714.541642] ? xa_delete_node+0x280/0x280 [ 1714.542255] ? trace_hardirqs_on+0x5b/0x180 [ 1714.542901] xa_store+0x31/0x50 [ 1714.543385] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.544084] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.544848] ? alloc_fd+0x2e7/0x670 [ 1714.545376] FAULT_INJECTION: forcing a failure. [ 1714.545376] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.547006] io_uring_setup+0x1fbb/0x2980 [ 1714.547028] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.547040] ? wait_for_completion_io+0x270/0x270 [ 1714.547073] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.547088] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.547105] do_syscall_64+0x33/0x40 [ 1714.547120] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.547129] RIP: 0033:0x7f341b7f3b19 [ 1714.547142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.547150] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.547165] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1714.547172] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1714.547181] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1714.547188] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1714.547206] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1714.573769] CPU: 0 PID: 13988 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1714.575394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.577309] Call Trace: [ 1714.578049] dump_stack+0x107/0x167 [ 1714.579106] should_fail.cold+0x5/0xa [ 1714.580140] ? xas_alloc+0x336/0x440 [ 1714.581151] should_failslab+0x5/0x20 [ 1714.582110] kmem_cache_alloc+0x5b/0x310 [ 1714.583362] xas_alloc+0x336/0x440 [ 1714.584416] xas_create+0x34a/0x10d0 [ 1714.585659] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1714.587081] xas_store+0x8c/0x1c40 [ 1714.588436] __xa_store+0x164/0x2d0 [ 1714.589482] ? xa_delete_node+0x280/0x280 [ 1714.590786] ? trace_hardirqs_on+0x5b/0x180 [ 1714.592119] xa_store+0x31/0x50 [ 1714.593065] __io_uring_add_tctx_node+0x1cf/0x520 [ 1714.594313] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.595577] ? alloc_fd+0x2e7/0x670 [ 1714.596844] io_uring_setup+0x1fbb/0x2980 [ 1714.598125] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.599360] ? wait_for_completion_io+0x270/0x270 [ 1714.601119] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.602414] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.603824] do_syscall_64+0x33/0x40 [ 1714.604786] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.606031] RIP: 0033:0x7ff9de16bb19 [ 1714.606979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.611050] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.612887] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1714.614554] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1714.616212] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1714.617873] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1714.619543] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:14:47 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) sendmsg$inet6(r0, &(0x7f0000000280)={&(0x7f00000001c0)={0xa, 0x4e20, 0x2, @remote, 0x10001}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000500)="e3c7cf0b4f40ace7284f1533d1e231317b78f2d8bbeadee509d8b52714fe068e93ea0e6dc5641be655d08889cbc3c3fb1eb5cfa4b3b88d165fe5fb5e1a5347b4c732802746ecf2573f8cb1b34ae5eca3d0404c099a5c89911ae399eb6748e34342099b8bd5cad4e83dedea820cb5f80234d19ccf59ac04a7bbe87d959cc897b013f455a1eb85540b674fc78b342833381bb9ec0291ec699257aac5b69a7e37336718b01e38cc180f3132aed18b118965fadcc87a0070bf5a0e0c2874ed798916ffe327a9af7d3ccd9879ca51ebf32e7069259b596d7d4feea234a44775f9a53117b185873156fa0b0dbf291f", 0xec}, {&(0x7f0000000600)="1417c0fc36e66946fe8cbe8ca61b7d845bfdff611a78f3f6539ff55f5612b40c27b325a57a3e337da10bb934d924961d88a1ff854af0316d7959a367c03c419d973d6c04060b5710218430f4b0e5c6720a9271fe76cce61b97c81a423002711cb5b5d830f6aee7b013ff875829be0473be78a1252e4f18206c0eeb27e04bc2b2d02976a2bf7b0cf583507ea9538cdc7b31a109a415aafa1ed82e4aff72cf5959ba5489a77c188852c733881f78d5625870bb02e63d5d5e02642ce4faa06f39311fe05a5db2faf35a", 0xc8}], 0x2, &(0x7f0000000700)=[@rthdrdstopts={{0x1020, 0x29, 0x37, {0x59, 0x200, '\x00', [@generic={0x3f, 0x1000, "fe94a3690b333463288aad1d3f1e2c41b73d5aeda0473e6ca7b29487b75497821dda5d0536bc3647bb447893c2214781e16e5c0efe05dbf9ad3345e2a34d2f146c2186904be4e092eae41a02990cc4f003f5ff962cde94bcd80ba566838e47646b33c87de5132d2404b0930d56daf473eaf777684635205eff7c85e480375acfd96214ba290bf036ef376a79e1192dfd2945c3133bdf525046ba38e4672396f34a54d80874164fd799e770ae58ce37107dbe2aa919c6170d21ecd4b1ee690adf9253e53b6a5ec20629b0070c809ae6ef1d48c5cf62e8537d73297be5327dcfdc97f45739ce21f7ce220429ce948dcee2ed0ef8e55eb47c63ca9c0304aa4080699ca9fef37498a29dc449ba8f1d4ef2356aa95a5a04896b67ca403bcc550b373b72e9ec2c78b1d1a466847a0e872814f2902903d1f2b0454c479f6c21423f5e14195b39aefaf2334b62d3cf9e50219c1db6a0c5cd05448a12aa9c69a233ef06d0fec21f1e0473a6a9d39807db4dedd546f129bf6f99629888220411ae864ad14812e057cd7afa42481224210023b4b4fcda9396eedebf2978d7efbcb56a1286a756cdac84507d7cea8eb2bf3eefbf34b7777b4988ed3b89596a0ae5e67a3ee9cfd898005aab8ae2ccc3fa1dcb5fd51a1ddf1aab0ffa6ed1807fcbd6365b99ba53fd096fa51b249b24a6eacb3a613e72532c169dabc5aa9c29702ba93e798faca611370d6bb5b70e36b75444801c3392479c24c976c9d7f11359c630f8ec7b5157614ea3faca3eba8a47249deec649663ea929ab582a449e043165bf5bd7c25a3a6de0eaeeb6a667edfbaa5e274da174b84c819ba81d5f9ac41aef5f3127f2349bb15a0ad0013aa8b29c57baa8c15f30be0e58afc06643e04e5b671fbf30e46ff2214e2ef62bcfa953cd9a97d4cfcdcbb2b76fef55d255f3ef7b5707c54d52c8201d6123e1d3bf52145cf2f155c12f038a9d5663d962e43954f5331942cc37249fea40f82e9c1b608e0afe183cc16eb1d4c64f004690cbe9e24948df9e02baa4f47ff3d4d41beba4c1b7ea45b74f8996e398c11cab846e75e1dedfce325ef731bca7051e12c214813610e1d9010cb09f29653be02731ccc52f238c0532ea2713259a826033d58bde1ac461d2b092d36a6f9f261e05e31dbb2eb4c30ad06b9525fd32016379792213c0085b3454e8a6a5474966c548a232093289feaf0867cd0a10614a741041c0fd5e0ed47f7d801a279e440bb50e596ca172f3d8240fb4f89ba2a7fa85287137e747d2d675a7e844d7001b242021a6711cf1f33abcda132ee2e50ef01de94706a156c34bf657e6e96f7fc1e32e29265dd1fcb0c6942445c800014cbd74674d098d0dedfc0f6630a17e15c8aaaf919034a482921cac9e8693b7c4b51d1c7b41d213fb076b480252b7b67f8715e2b39444637cb0749fafcad630edb045456c28015804949e1dbef292afa937f08e0c4d4b6eeb41f6c8543ff67f77c265968bb114998829415865070444f23f45915ba2a70b5ee59b982e494d2668780fcb3a2a7f4162187ffd6b0fdde85214d0ac2824164b84ebb299ade3944db77e57d17a00b068c186cd7ecc3bfa14a7352ac13de832d456253ecd6cf8d27189ede7067f4c14f7e99791c6ea591a3644cc5352b06d0f3c19ad92314d6a427f45e00613d6c70e5e179b51610a7b88e62e67a9993b49e2cbbb45227c1e4a1a8421dacbb33064cf106e546b6f558476870e5afb7ddbaa2d57e9740dbb404ba0949f64f6a0da603a88711d29f07c6c51456e33a573efd035c28f530e3096551ad7d4e0abf7b573e658c06ea1c961dfce60ce43141ea75162564d37ade1e9f516319ae92f1e2b27aed978ea5a328ac3f0cb46c7c3ac26579bf6e2d108df5a1facf9c3e6141aac464768c3482b53e7b8e031bf2995ba50a8a0602041e7b25c63419a905832e26e3da64d5b65c5b3a65e82beb2f25f7f0347c5e08c4e8c0068f34f1faf29955e96c9c64d99b8f7ee603f634110af0cedea9d0843abaca16132807e1869452fcdccd280cf4474e1e619f41089c9aba64eb608d140e8154b59c8d886994778dcbadafc4741d990c5a0fc3872b9c92d8fda0d9c06410347787a234d1f192e08e023ee1392742abfeab5a38522a0afc48518464c7d2c7babda0403aa4e36535e508fbbf6728b85da49661780c59998b70fd51e1345e3098702c60f2adfd0ac8bb87b6bb1df6f434a4714118b732cf94498c1af5fcc316b9496f8b81d7ab58164e43feef86b96fd4e1a0b3112d62b81d9c8c8aef1aac31838e8da1dbee9cde2046e02e35200a4f5be5ea5a4ee12ead180e63f30baac918f522d19f39ddefa811889ea3017e04d0acda7f1076d37415ff4bbf0003dd4253234502538ae66cbba1f7b471869de6b5b2aaa0d711069d02c39f158f1e31d05bbf70e8ecaae41c708217d204e667193c7b6941795c2ec2dce723919a20dd19e66175d3198cea9fba7b0340f272293efd9940e63d33e8464e5825b9090fe4fab21bcf0381fe6046780b6d75cdf54aa94c7cd0de57f8c907d9dfdf88cd89ec12dd0a85767b13205e773646a3f39ee23b43874f6584a85b1ee2ba80894269908c8e35006875fb11f1391f0e47322eae83d4f958412650a62e8e826d7d30f23bafbe90c7fb0614be9aa0c2dd17e3b954a6a31b9014abaec1eb711f623165345a84edca29f489bbb20add3019f1167df94247ce984b7dce36924c145c4af42cc0dc31e12ac0210b467fb27730e683647a5986d5e8838dd19df25f550daccefb8c9ffac43dd0670b3aaf9285f1c60969731796a81aab5ed4d6df3ba67a080681347fee253b6fd0be4e29c5763d0d0e3695a6a565e06be71fc10baabb49e1eac2f653e9c7bf640e45256eea91550286311ce941f03a30a2c306fce1326058d64b19593aa1326d5bd0625d8f679b7d28820e09abd9648539f24ebce14033e78dc3f2f26fbb1ef1aa66a9ee0f60bccf6a7b80d3387ce05a90c8251cfd716082abf9f1664e92a9988bcb440b64739b693ca81ae40d63373963026e582611c02f091817954f2338011759abccb42ca728fc732b4ec9823b7b1d40fe71af26cc24f713310ffb912e23cd55799eb89a584b2a8ad620b12381edd14e6dfe8d5f03cbd59e10abed05638a5f6c7e7c12a6352bd1ef05dbfbe0be881f5839d7b7a0f9e4d1b4329c0cb989b9d52cb47ee0b4352d198496151cb8945be6b432641901254d10db78e8d9fa7843f6cd7c8cbda26fbb6878b9bc169478868504e2383279b6e420b80168a8b2d916eb96df777f0914753f4d6455c493f2bbc98aa33f34a30935ae059be47b21bc7e1224920937f4812669a702f09bb0915c3582ace8363529c5df5f6642fef7807259011ead286af72e87f6a34de31f60f19154d31deb43fc68e318baf7fe82d9a24c8350d59e7cc5c3cdeb435b1c9e88cca962688e8744a5e9928d0fb983d9eab1763f422790ad6dfe5395a715f953e25474638408112607994d563a94c1791e97f29fd91ec15a66e7852a44c3b78d2a0f392157ef8b84e79a503c73f39615e54843d1630717d1921062caf68a6a94f507781bcef0934d0f3949da60c8064788b5672d23f4eb59f7b8b18b350fceb27df62584cfdbd1bb4f3eb6e518a4704464df91bfa474ce244fc04da3cfa810b36e27ebb2661b1df9112af673bd427b0003c36a17b468b571b0076c33bc414a5b9d939dd3304cb481d67bf95ffaecc85b14af916ae187799b37a006ec38b833293833355ffe0fdf98b3cd79914fddff158cccc1f3a2528586c124eae11266c1530813a49b403225c2644387c0eda3163b802323534077ef440410552360383674348b799b4c3fa9013019e8550be5b892ec7e2fb87ee87bbc8f4431683a37f808a271aa60f80f2081897fff9cbf83e6ff8e3158d4fe1c0c22bdd40d8b7b3d75d190f2893253022dd3f6993393cae21b88b8c25cf1aa878afb8839c4200b11eb983569f3d52bb143ef15cd56c2371215224cdd5293f0d28206d7211dbcc104953edc8437cb876c25b8191174704fcc51aa6d3354903156df53163aaf8c98da0b0f5bea779c8bdd79eacec0e2e51c864bb29f84611a5fedef243d3ee4a31c018130d1a9a473932401307f58581854d16b0c4013ca14d77d08f40df31aede71461e1c146576532e7058ecc6f2a86d58d887dd11a3846948836b6f8cdea8ab18953b787c5a5d03b86bd0909d36fcb665f3fb6e68d8c9848749a902fb8108b92eef529947dc2f2c66a3c7815726cfc5038cac1baff050b46867be645476b42f7dc226fbc37a3c1537550b21c40510d350f0760830721cb69e3af9bc25a3edab9c4460ddd2d35d0f9cbad9284c59ffeb4dc9b0a2037f9dce3fd0bbad6aaf79b85feaf3f21860eba738c6769a1375d81a0572a7a8710559ac2af3dc7d87bdc6b0aaa6156a1e55f2390c493ee9c601500549f1183c4b317ab8167276193805c17f4db48b9b8c51920e621a93e52e4240d578c45e610635958f8514850f0ccfc27b07594c9343bd6303ff5762a1f0466d820621475b52b6e0bdde868b5963892d6d81fe926116eed7883590a0d22e22dd57779d4785729209767b521e4a910cfa873998867fa2bed8a98280d5e6da9595069920471e6567175554bf0fd9d00637f53218bc2d55f8a554d6c58e029dd0848e61e07b292df8af44942b964c26163c1456b733bfc0c927e0b02e4dfb5baaf3ab06267227bfce5b4c975782ce6c62dda36bce53d8bda98f1ec147e952ad637a72f6cee2d707a5afcc68fbf153dbec2d8cf2628bb7d1052b89ce07334510c1fa75d16232a190ed709ab2bc01c1850902022402746edc898335cd5564d3eea42833a09fd95970b5919f37838806f70a0e501eccb227a482ee0c51e195162654d3be4021ff20c98dc07970f489c54ce910fa23b7170603cc7e9d947c32786792dbf6d13d288aa72794d56728d374c078539e6f8aab6120bacc3bb68e5914d01292489eea5c88bc430b507a11c1b4178874064db73c5c83dcba45c5adacd5cc787390ceb9f5ced1da62edd742341ae1457c9c249c59f7848afc67af65bc338323cca10752259c98894daf2a5a31497c6464229b58bfba04effbc2f05ed9daf43c28e02f17e903c80d5ef7857fac3dc86193f8341dcaa55144bae721731cb659ecbf7e7c696bbb2aedbbc9c4c8c458e8fe6c97b932400475eefd0c548ce54e1a85f550cbd4a578ee7957c2068803cf82685d871d9492f1b95c5dc966ad1d9b7cd02514c3c674232dfe2f18ff2d5f1dd4ed047d65558b1d75bbc6cdc2afdd4fc69cef59ec3bf363377d8595100b966a7d291129ab5dd9b4dc3936f7f0fb0d02b7004ecc63ceebb196b64951503c9e66e3928d99a1ea7d9f451f460aa7dcb2b2fb850b7a2894128f12649a99cc51060f5ffae5f58f611b0cbda862987e7714623dbe9cf33a6c22cb8a8e0078baceaf4d407eaa063a8ed2c85b7032d030ff400bde116bfd42e27725221b445081ff38a9e02b325af8ec453ffc6e6135bc1482490e4df0f4d8af47f79e00884f13b7c043cc95001635b0282b8552ce6cf812c32003dba973bd2c5affd3d03a9464d75a52b1f828601e1fac62217d97180aefdbb032fdda5456006b9a966928c5c45700f987aa5c18774e7d45295888fe2032726fdecf62d6e097f71c0be6557989c4706359c89e135c61aacfecbbb353ea75df840fa65db2c984b64a6a6dd96d7a7801050dc5516c9915f5903485c29b33e652c5bab751cebaa00a472c0698b7ff31a1"}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x3}}], 0x1038}, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000000040)={{r2}, 0xf000000000000000, 0x4, 0xffffffffffffffff}) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000004, 0x80010, r3, 0x0) pidfd_getfd(r3, r1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x35, &(0x7f0000000000), 0x4) r4 = accept4(r3, &(0x7f0000000080)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @local}}, &(0x7f0000000100)=0x80, 0x80800) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000180)=0xffff, 0x4) accept(r0, &(0x7f0000000340)=@x25={0x9, @remote}, &(0x7f00000003c0)=0x80) [ 1714.638204] FAULT_INJECTION: forcing a failure. [ 1714.638204] name failslab, interval 1, probability 0, space 0, times 0 [ 1714.639833] CPU: 1 PID: 14100 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1714.640803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1714.641963] Call Trace: [ 1714.642337] dump_stack+0x107/0x167 [ 1714.642842] should_fail.cold+0x5/0xa [ 1714.643376] ? io_uring_alloc_task_context+0x4a3/0x6a0 [ 1714.644104] should_failslab+0x5/0x20 [ 1714.644633] kmem_cache_alloc_trace+0x55/0x320 [ 1714.645266] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1714.645976] ? io_import_iovec+0x1120/0x1120 [ 1714.646600] ? lock_downgrade+0x6d0/0x6d0 [ 1714.647166] ? do_raw_spin_lock+0x121/0x260 [ 1714.647759] ? rwlock_bug.part.0+0x90/0x90 [ 1714.648339] __io_uring_add_tctx_node+0x2c6/0x520 [ 1714.648997] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1714.649717] ? alloc_fd+0x2e7/0x670 [ 1714.650233] io_uring_setup+0x1fbb/0x2980 [ 1714.650817] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1714.651524] ? wait_for_completion_io+0x270/0x270 [ 1714.652201] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1714.652911] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1714.653625] do_syscall_64+0x33/0x40 [ 1714.654152] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1714.654863] RIP: 0033:0x7fb912e91b19 [ 1714.655371] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1714.657890] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1714.658947] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1714.659919] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1714.660892] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1714.661872] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1714.662858] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1714.861891] loop6: detected capacity change from 0 to 67108864 07:15:02 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 47) 07:15:02 executing program 3: perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x76, 0x0, 0x0, 0x2, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x2, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000100)='./file0/file0\x00', 0x67a482, 0x144) fork() r0 = fspick(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x0) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x0, 0xc) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x11, r0, 0x73c0000) 07:15:02 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 32) [ 1729.700610] FAULT_INJECTION: forcing a failure. [ 1729.700610] name failslab, interval 1, probability 0, space 0, times 0 [ 1729.702129] CPU: 1 PID: 14315 Comm: syz-executor.7 Not tainted 5.10.246 #1 07:15:02 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x76a9, &(0x7f0000000300), 0x0, 0x0) 07:15:02 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x326}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_RINGS_SET(r6, &(0x7f0000016580)={0x0, 0x0, &(0x7f0000016540)={&(0x7f0000003940)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01000000000000000000100000001800018014000200776c616e3000000000030000000000000800090000000000fe8527b3dc4bc42416cb6979efbe0d74a7d7ca770493ee010eb5f51386e3608ca454b2364e248f0dec537b260726f3ff2ca34d6772e88b145787fdb494f8b92db6184d0fa087f18d64fc6048ae09a4c9ca1247221170604d72f54870cdc3331b06"], 0x34}}, 0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) r8 = dup(r7) r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r8, 0x8936, &(0x7f0000000080)={@private0={0xfc, 0x0, '\x00', 0x1}, 0x78, r10}) ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000003740)={'sit0\x00', &(0x7f00000036c0)={'syztnl2\x00', 0x0, 0x29, 0x0, 0x7f, 0xf25, 0x1c, @dev={0xfe, 0x80, '\x00', 0x1b}, @local, 0x40, 0x80, 0x85, 0x4c4}}) [ 1729.703184] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1729.704578] Call Trace: [ 1729.705031] dump_stack+0x107/0x167 [ 1729.705573] should_fail.cold+0x5/0xa sendmmsg$inet(r6, &(0x7f0000003800)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000340)="a6875c858ea46b3107d7ed3d5e854979d43a2319a9d2a8816b77b25d9440b65daa6ecd72dcfd5df8be2d0195bb5f335cc6a99c2d5c340262c5d24add73f6c59e500424a79ef967cc584b0c282c2a3d0fcb36263004bd30242cb5a13bc4902a19b2be20b334cf8e6a159c65b846fe114f80d200c86d1e30676659f5f9760537a60b6accee80735dbc7e059cea7d337b33", 0x90}], 0x1, &(0x7f0000000180)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x2}}], 0x18}}, {{&(0x7f00000001c0)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10, &(0x7f0000000c00)=[{&(0x7f0000000500)="48aaeafab571ed6db0c0a93d4df26bace2cce2e7f7efa7a4c2720f33795b472249805db2b6a9604bf49b599179aa875b510f941c5a9fe013666acc40216e4b079e26ba6a105b028fe851e6b45bb046833769cab2a026ac198f4e4d73c1770cdd6aef0090c64c39a8e6b316bc52ef257722b482c9cb2a572041e747df89c07e94e084386c4956fbbdb9fa8f42ea8bbe7e04806a487ab87b1310cb483e763eb2d280107c8ea98f3c849b1b7527ae3252aab07de8992ef46a3990ab09e16b4923a55784692b77d04834dc4ecc3406ca9c85657db48907fff9bc08531e4672299fcfd44f42aff71173f9be587d8f6627b356", 0xf0}, {&(0x7f0000000280)="961a5e846bd153c88e4a2419cff81f0eb9ff338633f8771873536104f5952eb04bcca250e5566ad375e53f13c811e0a35bc21bb465", 0x35}, {&(0x7f0000000440)="206a09788a400ec1c1ea3efdbc98dd5222a9ee5d9e", 0x15}, {&(0x7f0000000600)="152386aa998d4a89dd97d2f27350bc02caffa4b6c5b0d9172c893a30c0907d9b74e8d3d543fe6f607f277ccba7ce53dea55ad1c2a1342079bbca38a483dc337cb9fc33de5fcdbb2a564f1ee06bfe9b02079e1246c03061927f5a1418c63f8a622d1de513b56f550f7213bccf595adc950a3315c1445c8859d3adf7ac26e5d397916bd676d6b142089d2221a7ce1425f64628d5c90762dee488943a27632e01ab10bd0962be8e5231923c38c7f0d3f8f6e1a95fdecb45cb80aab9a3367e8cd13e39544a82b021728f8c1e743dcb8d19d342", 0xd1}, {&(0x7f0000000800)="9cd05d2f5f7264b185c895f61e69fd09b73f4c644a7a1ce61e32ddcf23ce1fd8326af1569353e53d96ebba8ef6612289d657152547de3b91546c0f9cf18a496e192f8a27b519a8c23b1d3bb7b73bed1167855916651ff5e6128d736492638f7797b50da2dadb6f9f15272b05944eba1db63d8db1f3665294f693714fd658dd4745c999fb4cc59b267f92b9061262a1a22e121616ed30a198502f093d0253", 0x9e}, {&(0x7f00000008c0)="03bcc9d1e920993a495a6d5b566cbda8f77244acc3d36fcfdb689d62bcc3f7b8bef822925da1b588524c92409d24938201f120ce1352b92be4994a26c8381c7289d790a7d0ef0a47005086a070e5e479e7baf32edd0c4ee7fc746a6d2ebe84135c2a54fad6421a9550f7444b13d2c37beb9d9236290fe916027c1efd1d62b9110a5d92d6731aecba6d758cc7344118978ae881bcba073be8a32051a955e68d5a2a20a3", 0xa3}, {&(0x7f0000000980)="0a89737ac99c25117d669048fe7a171e9d5769cd86845a8cd268d259cefca432bdf8f330ce26ad17f4cc03cb2d0de353f9df23e9ecf0d24b76b5948fb05ae1c3f034fd6487725d0276d58f5376921eb70e763b948306b71967530729439f28606129ceca7e25d6280dfd12643cf14db5c8678d27ffc72d190ef2c8712d0fe467574c0258219a959b22c473e84e71b13e0db42454533052e3e5c3e493717be32b18f8b646c6670bdcee8bc89949a463a0486424965abab532294002418ea1268a3334ba9306d643a594355665c8771b7e102eba463e6c21dcd92559cf25267050721717ae8cdc067f2148643bf0cf0e3a0ac0b26456352613", 0xf8}, {&(0x7f0000000a80)="0b923b60f186c8b9e25aa5f3d897afcdb9acc2e4aac498a247bd522ac3ae4ec4c0a771dfc9a365ed60ebef81634311b436a449198a51f0d5c2539d4685495fbe595e81f221e9e59ab2e04e125c22cecab9d78f9672175d43995512bbcc1ca65fb709", 0x62}, {&(0x7f0000000b00)}, {&(0x7f0000000b40)="f24cbff3c980edac1e8e63940f72ee9c335de2b54ec0c30ab53e1760edcaef9393bb4e824ad04b807a649462785eeabd512f7a77dce0ec5d6f34130cd7bd9f6e2b67b6d2f512f7dafa81a21c7b7b4802f34919320a7ff248926a32c4fdda91bf91f2b12673da21b347ed517495590f9d57f5c2993a5d532d78f82518d107637a4c86db91b55eda177a9e38792a7c57b161d4551523f2ab20f4e2c0be19820b103904c61b0b8cf51856397047afd8823c24", 0xb1}], 0xa, &(0x7f0000000cc0)=[@ip_ttl={{0x14, 0x0, 0x2, 0x1f}}, @ip_ttl={{0x14, 0x0, 0x2, 0x3}}], 0x30}}, {{&(0x7f0000000d00)={0x2, 0x4e22, @empty}, 0x10, &(0x7f0000000e40)=[{&(0x7f0000000d40)="0c5e09523b754d6f460d17630545be65618988df5e1dd4473f1619892e098c05ec5b3534a0b64cef6e294387a0fc8bd70d367a243932adee5e3121aed8395df93876a64bc63152477b1a33955207651f6b590bf9a91bc48e38c2226a5acdeed880838e99f9ff64da30d5465753ad5b4e45c48c7deeb2703fd40253cb1b4ef933f1311fcf394819211d99aa037ea44913801920423f0791568483b8e88c6467b8bf591fcb3465a293e157d1b9cce15b67bff28b5dbcffd13b7beaa96425852bb8ce7dd9bf7678436d89f581649222329d77c9df3203aebb4469984660077ea6a16b", 0xe1}], 0x1, &(0x7f0000000e80)=[@ip_ttl={{0x14, 0x0, 0x2, 0x8}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x7}}], 0x30}}, {{&(0x7f0000000ec0)={0x2, 0x4e23, @private=0xa010100}, 0x10, &(0x7f00000032c0)=[{&(0x7f0000000f00)="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", 0x1000}, {&(0x7f0000001f00)="3452364a7483edeb314e11cae1e2b203ecc9915cc9f643f11e79593eca2535f44703dae12903944d770a4a3ec50afd974c2b57d381f4779e32222159556edf0e94bd07f372b6b9657d0ae204ef1fe2e87a671114c089da6f55551dab15ee86e66d29146f08b7f9c9e50247c2bb081bea0052032504f30d81b3d7b70f32899399b208a6379822f413a18701715c051c51ae93b5924b81f61f3a63edbd191e605237f08fc44c5371170f1ab6cb64f32d7502c4271a61218376fa7bad2555401ee7802cff8db72308e0a01527b84dd1952e03cb3982366ea2246ccd6c34b4dbfe47b36cc19ba3", 0xe5}, {&(0x7f0000002000)="c3333bb2810257d80e34012a420fd2cba6fa853199c846a3f5833791cc5395fab959e72fd35d7a676c07e7d103b906621b342471b07587f5cb7fb76905afa80c51674b190fda8f6622a95b0556e0183d2bfe50a63265657d712f706f78fcde36d34525ad6f5430a52e965cdf1347c2b47385f6b6ee5bb00835a2866c1ababdabb56ac2f9769d725e08d50fd1a1f3ff8ca3f7f04f240485ee8970137e3781f4b6a3e2a6399b19e87a81d2d5fffeca1d2d6954c24944f3801bd23b7e865d9773bb", 0xc0}, {&(0x7f00000020c0)="2c01d13efabb61f8f247fe8fc205b8167944fe1c123329b74c68196ec747bbc6c93b23a53b5bcd119400f59df3bfc0bbc765a84210a78acd9e57fa3e35e5fef407e10f43eecd484778bb18304d523c2927b4fde0b0e2b1bae8c0f7519f106f53ef6c6202decef17a5d59a7aea6a8c27c9cf4cb21eb092b001d9a3179d2f8fd7f8fad53fafbc0d407c7a75bc41e3c3d803f48d3a1c3da5840a90feb43115bc6a6dfaae3e3c9eeabc6ac", 0xa9}, {&(0x7f0000002180)="a3fc7dc0ae02bd3964f765e0d0630032f4028450d898a05f9dd2c7ff50635dabdc240fa98c1fab91b961e3b738d435407796ee35b55a229cd119e0449573af2027d9c53bfba87b287d3889c548b5b82f9b374b58b26926dcfa82e44f3f0f3706c81199e0be1b88b8ab24cfd100aa40c774c44d7ad28160e91d64364ebc3f759a229effcaf952cfbc", 0x88}, {&(0x7f0000002240)="05aa", 0x2}, {&(0x7f0000002280)="3f7bc13217cc81fa", 0x8}, {&(0x7f00000022c0)="1d18204e197898d3bc0d2641617ade5d0c94cc2d2f3f6808078d1ae172e2750acb1b0a446d4c1abd94a92f8b49820acd7f318161884ebbd07ac96e8af924b642ad368c3c55e6a06531346aac9aad68826faa9ee71c885277ef02419fabaff8dc8383b8e1b7ea0ce1f840a8f186d84d253d93003baf41fce4ac930b7d25a66cdf36e48a6a634d2827f5014e20952a1c893004ff0c6afd447028b867ae12b462bde80d18ed726b76e794681bbfa00d018a50bc9251e5f36cfe73ab50d92057139469d98f786ca3212e01470e192f129d095069f9cde3bc33d393575c8de6c08133a172f3aacd6b6cb59c9fd7074e728e78b5863d332c3e04443966133b493e2a1a010474d52272933e0a770b4c9ccd2c22e27ab0930a95ae41ffbddf643c1ddcd64f53925cef35f77e814c8c37f4a50b2c563334790bb508e086cfccd5c7a5501c6280271f54470f7697df72b09aa0af83e10431ca713be4946d1243ad9a68f5affb2bc3ce356ec47b9ea3ff21508e61b3c5437b0a80c7595fd065a3aacf55cac783963aaee157037980a15e2c682ed16cfcd115043d5c4ba8b6a354481c55ff2351d860c32aa63ac5af708c0972ed0da366f7f95bffce321dc73f4bfe898eb9c837f6711af5e2712cac7669893d17bdf465ccd9c16c6f2771069ae76db702d99d59b4c7a5a908cbdd5fb203ed4748a3386b75a83422645aa26bf7c273d86852d30e29365d5a05034040e1e13bb881c7ef62b7bca47059bdecf0739ee8471fb17c61f2b2b65c1b2e8e001b45971060edaed7fa945ad0b482725102ac755558dc5ae896a9cf9baab4d2dad99e892c0ba756c71a75305ed009428e64616da23efdcc9c01534a430a0ea0a29354a52879c50243c759f20d9d76cc09b9857103c5992ccecf87e8569b84ed0800f0ed2dda234af904f7c3fd9d287e43ee2b57501f717fa3890d6beaddc17cdc214feff684d86fceefbf7c4b7c1e2ac7f01037b86bc990271fd9b1460bb02b5d6f30d2d7d7b4f65b3731215cf2c61ec0b7f38e30aaf7f3d8f0373c0f95961d7255bb7d98d38b09a259c032a2ed78f496c76115a1aa058c4584621b9f984bee0b86b76281daf3a38fa07a1c51c60476ec90ba0193cb1630c8f13029479187be33fe8dcefae52802e65abf957290eec1e55da82c5891938e20cba461c63d691f112809fae8e3d191e026c9d60da0eeed39ee14e8c75626a95a3bef97a2f20e13ba9ab1fe3bce60e0464c955ddff14c0e5e82f891c204501455d6234928051cf81895f07a170ff1ef600349939e5e7c0bbdd5d5b7927ef686ca21234c0b0d14bf5eb69fc6f800a35384d4547fa6ce722f8f20ceea57eb34d39b92bef5eb10f8bdcec61260c61a1e8ed3a2295a789f6b8190011aff28a19e388c96e61279606b47bf1fe45cbd0116f4c4edf474985a3d4dc0c79dd8d397f7dce2021dead8dcb2276422d0d403af4d6c833fe062e9d2b6122e568541f03aa22a9901bb70fec2f3b0ec551af81950c07bfda2b39d986f038e591b6c44d0d38281b6adff689d3e6d4e73e94aef74fcc9ff03c9ffc6c520e0d416d39ce2633ab6dfba178424db10e02fcf1a29cd698e46886117e060f15fdeff875882f91ded4ac1d2f803f1780e804c29a31a08f2afb2270ee930f4fdaa776efac50b45d3f369da8609d2e43d523156e55c5f02c339d4bea03f51821c144fa324bf244104f5cc4054d71f9889b56f15c2e4c5f6641cee779af484cc9262dd0176543816265f46ed5e5b8b7ff5fd8d748280ee47d94bec983c8459e3afa1deaf36eb77347b2e81b97dd259de525ad71a6e10b7945cab06c6cca17f6867f7067a18745a893fcc3f758b5cf0266d99fd13825e295c18a531fd62ca221862c5e0b368e0e34aa21144986c34dfc2322f8c76e3149804185cdd24da76e0a25615320315d5ffec997a880f8366e49e5f110feb5bcd351dbd56dd46803533d5ebdf87cdbf8a1cbd9980bf0f7a914028f2791e11fe14267cde45ef311c918e768267cf66a9d2cf7399863ed3f3b34bf63267c9889604bff329a4854a0150dfe0842c406a44fa442658e9e32ffa90d7f4742a27093dd6bd5f1065d6128ce934fe8ad5c4cd97ba7687fbb431434dbe3dadd1af5af69767ce5025184fa6f1a7ee29de71094a49573880c6d0d2b6b960d064f1c4603c65d5b26f341e81058ed25100adc489673a3dfa0e80917ea1588a976b795fb4d4402ad520a35e5b1317b4b769c5d81b8d149c5e52feb6ddbd9448dc9b78ce0ca0d34c3da04cb905088660a9781d707c4c3e81ec6b9b0f38bf27f761b87f083d9726e6a9029be7e60c4e64c8ce7015233d42e00f26575f8177483ca53298de907422d982360d59fbbcb12d2ed897f607782c6a59f75061c7a6df1cfa2bb5efb5434ff4c1446f6385429cf27a1116123be05c32e7222ee08440618574bbf1655b10856ec8aeb59f714446daf1c854532aae62c0cfda4c5b27a80b90dbad0d0a22ed71b1c26837addc402d7eb33b57491d55bba3aca1438ff2d5b0c48c2c7c0fc8efa7a85afbba9a8f73f60ae3ed78406785fb8917b765015ed6dcad6adbb51cda4c4cff335f2b6e081996dd572acd57612b287940fb7fe94bba6ea234ac66534d9d0d03e4389dea4f1a42ed2c8c3c567d438c4a81b8cfcd7383dbdf3efbd2f58beb5cf5154917a2d60561a660c9af8682550c806fe9ceda5c72683f8a36686d29a69c6b3c27cb885de3416b5408f77892f8550624254751f167f191f06107236ceb8cc56e71532d86a11dbfbe5041e7f3cb194ee15abef77209a88191d92226fd96ae9150a4790c270575955b5f9a79321a9aa12b612e74aeebd58602e342726528c3893dae1f3c8c433a99075d14dc71ccbf40255cef7581d0f37975e5a221d1b45a7b97d646c9daf32590a41158bd7a0ce9eccfb3e49dc98903cdff5718a04aa45bb9e9271c3b14ebc011acf4b179ea7106c2872e145db256d8d48a28d9284df992f7c96514ce903c615dcb131d709e97f54683aa0970a0087a12521d509d93e3193eb9b6d751d301552ddfecc05c5cc528570496da96442e90f812da29645ac37fe1a013472aee73271fa8500f83fb3e42fabd3adea846f12c1d07cdd60419654592a770de4c5a77c89a090dd28470ab6c79300a818cedad997f773d597e7e19b1c2517c42a503c16d714f01ef46633f77bdb7a804fa836f421bc7f33d2bed55f41dd839bb2a306019045f9ad949ea91921d808d0fe6e26b5f35c5bc4dc920c0c1818494bf74b71dc26d8a8cf7de012de7429ec5b6cb093b799a4b9576b3cdff7bb19a845256e11063f49653ab424fad652b93368343e41f7c9cbfb9ffd3675b23c92bbfdcf19ddfd58b10e271f77e089c3f980df506a44101ee894822e55f45404f413d4598e396135dffcb5eb8238f6d30f51fb73627afaebf0894089aa8a8c55cb73004e3afdb0be722df318b8f833dbfdd1ffd92e45c165bcc0fa35c20094126335b252dc388df59aa43235447a5afc64b773e51cf35560796dc025d6fcda082c247ac57914e54fa4827c3dcd48b9a21ab1f579e176c00f8a8b76f18ecffaab3e4833061ddc4da9623be6cd024435c18431f8aac9221f1096667be46357757008ed3bb9588ff2a1d8606a34195390fa2dc438c327e609f5347adb2f475afbf37e717d2ddd07fd1d4f9e60ea9cd68a1a713c9f80042b79666d8d8c6106a1336a2d9b3720f861eb983fad39570a0279c48261a355dc190594a70b30343abd8833315dfd6cffac9d1a5ffe1059df248310f0226da0f21e76412b5186ca95d7e485658115acb22e8c15ab4b90ef30caf6b4d8bcb8db63a88af960ffc087e84227b0625f1ee8dcf46bae26eea7f41f3154fc5d13cccc5353d9b3177fbe1b73760e3697c22c81153256236f357385f239824a5189dddf186214766d5718c1ea0536d3a34f24a45123f8ca948b73a6b572ffa68eec22c77520ae2e163fac3863569d50488226ce4245abcfa1738eb2ef1a1f1870a105fa843227ea25bdf85225b46fb601f1ee890f3ebd2ee5536f41534ec6d77dfeb11564d129a98c83711fcffc28579e0cef329615bbbf601b122b1a2fc30b630e99a557ae6537e3f479db63161a821dde68fed7b83fee4d667920571921b21f9ccaae00b73641c3b7595d29c6efacc94557cbc1f85dcfa65615abc56c2a9dc8cdb553eeb9f848013b38d764f2f79970c67bc2a960f13c07881f38687216113131bf892ced034432a91cfde873365900216d4af5c489b9bfdd5b30446a491d9883459f0c101e46bcbfbf1e108e8f4dcd51d808dcc92086a4606fc1ba2dd134a5a31852ea2289a58b8eb145b7499562dc413f0ef0032638d25874e0a2be42f207cc6743c1a7b6152d619955bfb9124b3cfb767f1f7971dc7c91fbc5aadf568a78077bc00fdf4e47ba6c54fe114dfa051fa104def1b27a9be573508363f5cdac8986a7b864b5265225dbff85728f9fdbf8aec7f2355a504da85e38932ef4004856469180d4e1ad74591885c07b531ca0239ccaa7a5fdc485e02491f633a3d150e958c56bf73b6ebb4d32b71c5cf8c658290feebdb5da4227e54a9232e9eeb78a0b141c57dbbf05983737cc59f5e0b5477f2eaeaf25ca07533252f2ec227b84367b7dd26f697c15a51b3697e10838ffae9eae2ff7cd9825c9825daeffe9173367fa762d4bb157c2818664e85813d1de4393c49bf54745c0b0943372d0770c35e276990d9252d9c64da89073f856b0f4dac4344d7c7617db154aa0f79b9f320373d51ada8ed123efef239553d5dad1a309c99cabdcf3f899d2c32e030a6100f478e1426889ffafe090db91abb3d9f146063ea044fa0e0074d7c5a49ede9f9198108cfea95c246d4475fba0b06e579eba123a34dfa0bf920092c7b869e90f422a8aaee4b22f78dfa75109514461e25c0b6f5dc89b6b71b2faced66f5dc13c20043966c2b5465c2b12362c6f15f5490470c5586412e4101bad430eb058136327a2d4e439dcaf666c0bcb1a9ba02cb302285d7bd3499457b73bcc0b20e26d5d32d6c87c54021eb1b5d036f4bb3503e2e0b0a42e7648d6aca293ca09a5ad40ca29f31f85435db8e25a9a0369b1215b43bd554613e3e40366ec83761b03c0c852afce8d6e09c3598c845e97d509cf181a1e8fc0c5ad23b757f1ba844f93671e03ac1658ace1ff95ff8dae25518473ca53f663c0ba2041688d25d8b2f950824e621cf35dc295f416a1b425a2396f0a4e97b1dcd50bf36db8c5a639b117e7665b4dae193229b604ef700dd9baff2cb67b36f9573a3ba3b3a3d1f37b9cc459d4a857aff894f60580f0109805109ac5e4d050cbfbfce82eb4ea90ac68ba9454f244f9594cc71bf9e4f7c5cd8ff65b9480d3667fc7c661aee1729d2ae1ebffbc81d3d0945301a6413f30dfb67288fec24d3f56138b0fc86b01b7f8f3ddb57196fe1ee29a6abbc84ade2495a24adaf1d5ffa3318f61624e23f28382e9bddc565cad53d6d7e3d0b3f6434d7f7c91aebcb2f4d8f1525e6d3b9e0180e1b24de0e573f9a82f4d868a46f2e8d51f1a8340f937eb7affd1ffba2d38e736ebc03e4258c454fac699e8ea59c7b29432536381436d48d90f56f7b78210126a2e7cd9604330fa9980ab25a1ffe6824eecb5856d466bcd413cf0a7e2ded582f8e819d0ace90227178c2b72488c943db353b294572e600dbea9adb627454b0f8ef0956fcab529a48461f8ec88eb817ae957d522645b44b349d3b36b86fbeb9aa489d65057bec57d9015910a66ab13ce6a52448", 0x1000}], 0x8, &(0x7f0000003340)=[@ip_retopts={{0xf8, 0x0, 0x7, {[@timestamp_addr={0x44, 0x4, 0xaa, 0x1, 0x5}, @ra={0x94, 0x4}, @timestamp_prespec={0x44, 0x14, 0x4b, 0x3, 0x5, [{@multicast1, 0x10001}, {@loopback, 0x9}]}, @cipso={0x86, 0x6a, 0x1, [{0x5, 0x5, "4c8680"}, {0x1, 0x8, "3fd9aab04ab4"}, {0x5, 0x8, "81acac13dacb"}, {0x6, 0xe, "7ec88dff1a4f08fc99587a2d"}, {0x2, 0xc, "2f1750d8af1d98175c39"}, {0x0, 0xf, "ffcce4dcb2980b5c97e851425a"}, {0x5, 0x12, "9aeee8d04be7a024904b8006bfb5f139"}, {0x5, 0xd, "d89c0fd534954d4ce6b727"}, {0x0, 0x7, "b1defec3c6"}]}, @timestamp={0x44, 0x1c, 0x71, 0x0, 0xd, [0x7, 0x60, 0x8, 0x2, 0x3, 0x3ff]}, @end, @rr={0x7, 0x1b, 0xb5, [@local, @multicast2, @local, @empty, @private=0xa010102, @loopback]}, @rr={0x7, 0x27, 0xa5, [@remote, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, @local, @remote, @empty, @local, @empty]}]}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @remote}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @empty, @remote}}}], 0x150}}, {{&(0x7f00000034c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x2f}}, 0x10, &(0x7f0000003680)=[{&(0x7f0000003500)="6a9c1935b72c0cb485b9738d9f5ad6bf65a230694523c67fed9f4a459f3eec486a0c7323da7587c61a30aa552427973460a9", 0x32}, {&(0x7f0000003540)="8198c02efd6343caf9088dcec438026946e4747d748653d2ba38b629bb6ea5e2efec8f6698e5c3c601307d72119f99bf2514f4b63640202e87f36d810d3018192cb1620d2eac4591d4d1b13780917a61edcf8f6f3ea881cd99214b735d5d74f5775c47cef66e666c66e727909aa26522387dbb0830721724c48f630b7d1b8f5123797693888745fd974281ea7b3cb4ae0344ad2bbeda90f2083cc7b5057814f27d70b0deb357", 0xa6}, {&(0x7f0000003600)="c575cf909e3021560a6f24096abe9c3d51dcfb58cfe4a5e81dd82440b0ea1f768e4df9fce9f0a025479096c8b7f0bbe060052d30ca59134cbc88ca8d1e7a65966cb8cb58a91245de24df6f2c261e8c8136d7b0745adffcd2a13ad20c28c13c9e622c02b96d3c31d11e307aa77e497f0dcec1db6872f5ae98c5dae82f094d5d", 0x7f}], 0x3, &(0x7f0000003780)=[@ip_ttl={{0x14, 0x0, 0x2, 0x9}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r11, @multicast2, @multicast1}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_ttl={{0x14, 0x0, 0x2, 0x592f}}, @ip_tos_u8={{0x11}}], 0x80}}], 0x5, 0x10) syz_io_uring_submit(0x0, r4, &(0x7f0000000040)=@IORING_OP_FSYNC={0x3, 0x5, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x4) r12 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) pidfd_getfd(r12, r1, 0x0) connect$inet6(r12, &(0x7f0000000000)={0xa, 0x4e24, 0xf7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xa75b}, 0x1c) [ 1729.706147] ? create_object.isra.0+0x3a/0xa30 [ 1729.706853] should_failslab+0x5/0x20 [ 1729.707349] kmem_cache_alloc+0x5b/0x310 [ 1729.707883] ? mark_held_locks+0x9e/0xe0 [ 1729.708424] create_object.isra.0+0x3a/0xa30 [ 1729.709023] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1729.709702] kmem_cache_alloc+0x159/0x310 [ 1729.710249] xas_alloc+0x336/0x440 [ 1729.710725] xas_create+0x34a/0x10d0 [ 1729.711236] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1729.711938] xas_store+0x8c/0x1c40 [ 1729.712421] __xa_store+0x164/0x2d0 [ 1729.712901] ? xa_delete_node+0x280/0x280 [ 1729.713450] ? trace_hardirqs_on+0x5b/0x180 [ 1729.714022] xa_store+0x31/0x50 [ 1729.714462] __io_uring_add_tctx_node+0x1cf/0x520 [ 1729.715097] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1729.715782] ? alloc_fd+0x2e7/0x670 [ 1729.716266] io_uring_setup+0x1fbb/0x2980 [ 1729.716818] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1729.717490] ? wait_for_completion_io+0x270/0x270 [ 1729.718143] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1729.718842] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1729.719521] do_syscall_64+0x33/0x40 [ 1729.720010] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1729.720682] RIP: 0033:0x7ff9de16bb19 [ 1729.721178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1729.723578] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1729.724575] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1729.725525] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1729.726464] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1729.727410] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1729.728359] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:02 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:02 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 48) 07:15:02 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x9) fork() [ 1729.811753] FAULT_INJECTION: forcing a failure. [ 1729.811753] name failslab, interval 1, probability 0, space 0, times 0 [ 1729.815888] CPU: 0 PID: 14323 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1729.817540] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1729.819633] Call Trace: [ 1729.820471] dump_stack+0x107/0x167 [ 1729.821495] should_fail.cold+0x5/0xa [ 1729.822529] ? create_object.isra.0+0x3a/0xa30 [ 1729.823689] should_failslab+0x5/0x20 [ 1729.824775] kmem_cache_alloc+0x5b/0x310 [ 1729.826181] create_object.isra.0+0x3a/0xa30 [ 1729.827305] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1729.828936] kmem_cache_alloc_trace+0x151/0x320 [ 1729.830487] io_uring_alloc_task_context+0x4a3/0x6a0 [ 1729.831801] ? io_import_iovec+0x1120/0x1120 [ 1729.832933] ? lock_downgrade+0x6d0/0x6d0 [ 1729.834005] ? do_raw_spin_lock+0x121/0x260 [ 1729.835170] ? rwlock_bug.part.0+0x90/0x90 [ 1729.836467] __io_uring_add_tctx_node+0x2c6/0x520 07:15:02 executing program 5: socket$inet6_tcp(0xa, 0x1, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r0, 0x10000000) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080), 0x0, &(0x7f00000000c0)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}, 0x80000020) setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000000)=0x21a, 0x4) [ 1729.837730] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1729.839084] ? alloc_fd+0x2e7/0x670 [ 1729.840341] io_uring_setup+0x1fbb/0x2980 [ 1729.841610] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1729.843467] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1729.844746] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1729.846145] do_syscall_64+0x33/0x40 [ 1729.847118] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1729.848350] RIP: 0033:0x7fb912e91b19 [ 1729.849292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1729.853686] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1729.855503] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1729.857211] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1729.858922] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1729.860809] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1729.862603] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:02 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 49) [ 1729.895492] FAULT_INJECTION: forcing a failure. [ 1729.895492] name failslab, interval 1, probability 0, space 0, times 0 [ 1729.896934] CPU: 1 PID: 14512 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1729.897773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1729.898784] Call Trace: [ 1729.899110] dump_stack+0x107/0x167 [ 1729.899561] should_fail.cold+0x5/0xa [ 1729.900025] ? xas_alloc+0x336/0x440 [ 1729.900476] should_failslab+0x5/0x20 [ 1729.900954] kmem_cache_alloc+0x5b/0x310 [ 1729.901449] xas_alloc+0x336/0x440 [ 1729.901885] xas_create+0x34a/0x10d0 [ 1729.902353] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1729.902994] xas_store+0x8c/0x1c40 [ 1729.903442] __xa_store+0x164/0x2d0 [ 1729.903886] ? xa_delete_node+0x280/0x280 [ 1729.904088] FAULT_INJECTION: forcing a failure. [ 1729.904088] name failslab, interval 1, probability 0, space 0, times 0 [ 1729.904395] ? trace_hardirqs_on+0x5b/0x180 [ 1729.904413] xa_store+0x31/0x50 [ 1729.904435] __io_uring_add_tctx_node+0x1cf/0x520 [ 1729.904447] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1729.909146] ? alloc_fd+0x2e7/0x670 [ 1729.909593] io_uring_setup+0x1fbb/0x2980 [ 1729.910096] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1729.910720] ? wait_for_completion_io+0x270/0x270 [ 1729.911318] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1729.911954] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1729.912576] do_syscall_64+0x33/0x40 [ 1729.913023] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1729.913640] RIP: 0033:0x7ff9de16bb19 [ 1729.914092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1729.916322] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1729.917240] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1729.918107] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1729.918968] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1729.919823] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1729.920689] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1729.921693] CPU: 0 PID: 14312 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1729.923307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1729.925188] Call Trace: [ 1729.925913] dump_stack+0x107/0x167 [ 1729.926947] should_fail.cold+0x5/0xa [ 1729.927968] ? xas_alloc+0x336/0x440 [ 1729.929064] should_failslab+0x5/0x20 [ 1729.929995] kmem_cache_alloc+0x5b/0x310 [ 1729.931390] xas_alloc+0x336/0x440 [ 1729.932417] xas_create+0x34a/0x10d0 [ 1729.933640] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1729.935072] xas_store+0x8c/0x1c40 [ 1729.936425] __xa_store+0x164/0x2d0 [ 1729.937482] ? xa_delete_node+0x280/0x280 [ 1729.938817] ? trace_hardirqs_on+0x5b/0x180 [ 1729.940171] xa_store+0x31/0x50 [ 1729.941131] __io_uring_add_tctx_node+0x1cf/0x520 [ 1729.942392] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1729.943683] ? alloc_fd+0x2e7/0x670 [ 1729.944949] io_uring_setup+0x1fbb/0x2980 [ 1729.946242] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1729.947511] ? wait_for_completion_io+0x270/0x270 [ 1729.949296] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1729.950746] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1729.952363] do_syscall_64+0x33/0x40 [ 1729.953349] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1729.954798] RIP: 0033:0x7f341b7f3b19 [ 1729.955805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1729.959780] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1729.961612] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1729.963286] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1729.965062] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1729.966754] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1729.968462] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:02 executing program 5: pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r1, 0x10000000) ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000000)=0x5) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x10, &(0x7f0000000080)=0x2, 0x4) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0) fcntl$setpipe(r3, 0x407, 0xdd) sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000500)={&(0x7f0000000440)={0x30, 0x3, 0x6, 0x301, 0x0, 0x0, {0x7, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x4) r4 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) pidfd_getfd(r5, r4, 0x0) inotify_add_watch(r5, &(0x7f0000000380)='./file0\x00', 0x200) r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x138, 0x0, 0x9, 0x101, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFCTH_TUPLE={0x88, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0xbe}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x43}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @NFCTH_STATUS={0x8}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x100}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x15}, @NFCTH_TUPLE={0x38, 0x2, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @loopback}}}]}, @NFCTH_TUPLE={0x30, 0x2, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}]}, @NFCTH_STATUS={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_STATUS={0x8}]}, 0x138}, 0x1, 0x0, 0x0, 0x20048054}, 0x1) setsockopt$sock_timeval(r6, 0x1, 0x14, &(0x7f0000000140)={r7, r8/1000+60000}, 0x10) 07:15:02 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:02 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpid() process_vm_readv(r0, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x20, 0x8, 0x8, 0x2, 0x0, 0x4a8, 0x20, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7fff, 0x4, @perf_config_ext={0x100000001, 0x5}, 0x41031, 0x37d0, 0x1, 0x1, 0x6, 0x3d13, 0x86a7, 0x0, 0x3, 0x0, 0x7}, r0, 0x0, 0xffffffffffffffff, 0x2) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:15:02 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 50) [ 1730.119091] FAULT_INJECTION: forcing a failure. [ 1730.119091] name failslab, interval 1, probability 0, space 0, times 0 [ 1730.120478] CPU: 1 PID: 14740 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1730.121292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1730.122252] Call Trace: [ 1730.122573] dump_stack+0x107/0x167 [ 1730.122993] should_fail.cold+0x5/0xa [ 1730.123434] ? create_object.isra.0+0x3a/0xa30 [ 1730.123968] should_failslab+0x5/0x20 [ 1730.124414] kmem_cache_alloc+0x5b/0x310 [ 1730.124891] ? mark_held_locks+0x9e/0xe0 [ 1730.125357] create_object.isra.0+0x3a/0xa30 [ 1730.125865] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1730.126455] kmem_cache_alloc+0x159/0x310 [ 1730.126943] xas_alloc+0x336/0x440 [ 1730.127357] xas_create+0x34a/0x10d0 [ 1730.127790] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1730.128400] xas_store+0x8c/0x1c40 [ 1730.128821] __xa_store+0x164/0x2d0 [ 1730.129240] ? xa_delete_node+0x280/0x280 [ 1730.129725] ? trace_hardirqs_on+0x5b/0x180 [ 1730.130231] xa_store+0x31/0x50 [ 1730.130622] __io_uring_add_tctx_node+0x1cf/0x520 [ 1730.131184] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1730.131802] ? alloc_fd+0x2e7/0x670 [ 1730.132225] io_uring_setup+0x1fbb/0x2980 [ 1730.132706] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1730.133289] ? wait_for_completion_io+0x270/0x270 [ 1730.133854] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1730.134463] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1730.135064] do_syscall_64+0x33/0x40 [ 1730.135498] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1730.136091] RIP: 0033:0x7ff9de16bb19 [ 1730.136516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1730.138633] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1730.139510] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1730.140328] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1730.141147] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1730.141961] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1730.142799] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:02 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r1, 0x10000000) setsockopt$inet6_tcp_int(r1, 0x6, 0x1e, &(0x7f0000000000)=0x7ff, 0x4) socket$nl_generic(0x10, 0x3, 0x10) 07:15:02 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 33) [ 1730.198322] FAULT_INJECTION: forcing a failure. [ 1730.198322] name failslab, interval 1, probability 0, space 0, times 0 [ 1730.199714] CPU: 1 PID: 14747 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1730.200497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1730.201453] Call Trace: [ 1730.201773] dump_stack+0x107/0x167 [ 1730.202196] should_fail.cold+0x5/0xa [ 1730.202655] ? io_wq_create+0xeb/0xc00 [ 1730.203110] should_failslab+0x5/0x20 [ 1730.203550] __kmalloc+0x72/0x390 [ 1730.203964] io_wq_create+0xeb/0xc00 [ 1730.204406] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1730.204997] ? io_import_iovec+0x1120/0x1120 [ 1730.205507] ? io_apoll_task_func+0x2d0/0x2d0 [ 1730.206037] ? __io_req_find_next+0x300/0x300 [ 1730.206559] ? do_raw_spin_lock+0x121/0x260 [ 1730.207063] ? rwlock_bug.part.0+0x90/0x90 [ 1730.207552] __io_uring_add_tctx_node+0x2c6/0x520 [ 1730.208117] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1730.208732] ? alloc_fd+0x2e7/0x670 [ 1730.209177] io_uring_setup+0x1fbb/0x2980 [ 1730.209665] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1730.210257] ? wait_for_completion_io+0x270/0x270 [ 1730.210850] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1730.211461] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1730.212060] do_syscall_64+0x33/0x40 [ 1730.212497] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1730.213088] RIP: 0033:0x7fb912e91b19 [ 1730.213526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1730.215662] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1730.216546] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1730.217373] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1730.218192] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1730.219026] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1730.219851] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1730.576059] loop6: detected capacity change from 0 to 67108864 07:15:17 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8, 0x0, 0xfffffffb}, 0x0, 0xffffbfffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) r0 = timerfd_create(0x6, 0x80000) flock(r0, 0x5) fork() 07:15:17 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 51) 07:15:17 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x76aa, &(0x7f0000000300), 0x0, 0x0) 07:15:17 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000016140), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000016580)={0x0, 0x0, &(0x7f0000016540)={&(0x7f0000000040)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x9}]}, 0x34}}, 0x0) getpeername(r2, &(0x7f0000000000)=@isdn, &(0x7f00000000c0)=0x80) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) socket$inet6_tcp(0xa, 0x1, 0x0) 07:15:17 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 34) 07:15:17 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:17 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 48) 07:15:17 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(r2, r1, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd=r4, 0x4, 0x0, 0xac4a, 0x6, 0x1}, 0x5) fallocate(r0, 0x4, 0xfffffffffffffff9, 0x0) [ 1745.118237] FAULT_INJECTION: forcing a failure. [ 1745.118237] name failslab, interval 1, probability 0, space 0, times 0 [ 1745.120127] CPU: 1 PID: 14965 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1745.121106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1745.122276] Call Trace: [ 1745.122660] dump_stack+0x107/0x167 [ 1745.123184] should_fail.cold+0x5/0xa [ 1745.123727] ? create_object.isra.0+0x3a/0xa30 [ 1745.124362] should_failslab+0x5/0x20 [ 1745.124895] kmem_cache_alloc+0x5b/0x310 [ 1745.125463] ? mark_held_locks+0x9e/0xe0 [ 1745.126046] create_object.isra.0+0x3a/0xa30 [ 1745.126688] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1745.127403] kmem_cache_alloc+0x159/0x310 [ 1745.127990] xas_alloc+0x336/0x440 [ 1745.128488] xas_create+0x34a/0x10d0 [ 1745.129018] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1745.129770] xas_store+0x8c/0x1c40 [ 1745.130278] __xa_store+0x164/0x2d0 [ 1745.130799] ? xa_delete_node+0x280/0x280 [ 1745.131385] ? trace_hardirqs_on+0x5b/0x180 [ 1745.132014] xa_store+0x31/0x50 [ 1745.132491] __io_uring_add_tctx_node+0x1cf/0x520 [ 1745.133172] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1745.133918] ? alloc_fd+0x2e7/0x670 [ 1745.134449] io_uring_setup+0x1fbb/0x2980 [ 1745.135046] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1745.135755] ? wait_for_completion_io+0x270/0x270 [ 1745.136463] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1745.137222] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1745.137960] do_syscall_64+0x33/0x40 [ 1745.138490] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1745.139221] RIP: 0033:0x7f341b7f3b19 [ 1745.139746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1745.142331] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1745.143399] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1745.144412] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1745.145423] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1745.146422] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1745.147429] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1745.185210] FAULT_INJECTION: forcing a failure. [ 1745.185210] name failslab, interval 1, probability 0, space 0, times 0 [ 1745.188278] CPU: 0 PID: 14957 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1745.189903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1745.191813] Call Trace: [ 1745.192543] dump_stack+0x107/0x167 [ 1745.193575] should_fail.cold+0x5/0xa [ 1745.194613] ? xas_alloc+0x336/0x440 [ 1745.195613] should_failslab+0x5/0x20 [ 1745.196561] kmem_cache_alloc+0x5b/0x310 [ 1745.197782] xas_alloc+0x336/0x440 [ 1745.198826] xas_create+0x34a/0x10d0 [ 1745.200050] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1745.201443] xas_store+0x8c/0x1c40 [ 1745.202779] __xa_store+0x164/0x2d0 [ 1745.203810] ? xa_delete_node+0x280/0x280 [ 1745.205088] ? trace_hardirqs_on+0x5b/0x180 [ 1745.206400] xa_store+0x31/0x50 [ 1745.207355] __io_uring_add_tctx_node+0x1cf/0x520 [ 1745.208590] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1745.209837] ? alloc_fd+0x2e7/0x670 [ 1745.211105] io_uring_setup+0x1fbb/0x2980 [ 1745.212376] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1745.213596] ? wait_for_completion_io+0x270/0x270 [ 1745.215351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1745.216627] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1745.218037] do_syscall_64+0x33/0x40 [ 1745.219004] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1745.220230] RIP: 0033:0x7ff9de16bb19 [ 1745.221175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1745.225239] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1745.227088] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1745.228748] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1745.230399] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1745.232059] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1745.233709] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1745.252833] FAULT_INJECTION: forcing a failure. [ 1745.252833] name failslab, interval 1, probability 0, space 0, times 0 [ 1745.255933] CPU: 0 PID: 14964 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1745.257537] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1745.259431] Call Trace: [ 1745.260149] dump_stack+0x107/0x167 [ 1745.261175] should_fail.cold+0x5/0xa [ 1745.262183] ? create_object.isra.0+0x3a/0xa30 [ 1745.263386] should_failslab+0x5/0x20 [ 1745.264347] kmem_cache_alloc+0x5b/0x310 [ 1745.265560] create_object.isra.0+0x3a/0xa30 [ 1745.266620] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1745.267990] __kmalloc+0x16e/0x390 [ 1745.269095] io_wq_create+0xeb/0xc00 [ 1745.270297] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1745.271633] ? io_import_iovec+0x1120/0x1120 [ 1745.272766] ? io_apoll_task_func+0x2d0/0x2d0 [ 1745.273847] ? __io_req_find_next+0x300/0x300 [ 1745.274929] ? do_raw_spin_lock+0x121/0x260 [ 1745.276039] ? rwlock_bug.part.0+0x90/0x90 [ 1745.277272] __io_uring_add_tctx_node+0x2c6/0x520 [ 1745.278498] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1745.279753] ? alloc_fd+0x2e7/0x670 [ 1745.281003] io_uring_setup+0x1fbb/0x2980 [ 1745.282248] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1745.283466] ? wait_for_completion_io+0x270/0x270 [ 1745.285200] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1745.286470] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1745.287868] do_syscall_64+0x33/0x40 [ 1745.288813] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1745.290030] RIP: 0033:0x7fb912e91b19 [ 1745.290966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1745.295005] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1745.296826] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1745.298463] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f 07:15:18 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 49) [ 1745.300126] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1745.301913] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1745.303567] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1745.352509] FAULT_INJECTION: forcing a failure. [ 1745.352509] name failslab, interval 1, probability 0, space 0, times 0 [ 1745.354038] CPU: 1 PID: 15103 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1745.354932] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1745.355987] Call Trace: [ 1745.356328] dump_stack+0x107/0x167 [ 1745.356800] should_fail.cold+0x5/0xa [ 1745.357291] ? xas_alloc+0x336/0x440 [ 1745.357775] should_failslab+0x5/0x20 [ 1745.358258] kmem_cache_alloc+0x5b/0x310 [ 1745.358794] xas_alloc+0x336/0x440 [ 1745.359259] xas_create+0x34a/0x10d0 [ 1745.359779] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1745.360448] xas_store+0x8c/0x1c40 [ 1745.360911] __xa_store+0x164/0x2d0 [ 1745.361371] ? xa_delete_node+0x280/0x280 [ 1745.361905] ? trace_hardirqs_on+0x5b/0x180 [ 1745.362454] xa_store+0x31/0x50 [ 1745.362897] __io_uring_add_tctx_node+0x1cf/0x520 [ 1745.363511] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1745.364177] ? alloc_fd+0x2e7/0x670 [ 1745.364645] io_uring_setup+0x1fbb/0x2980 [ 1745.365172] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1745.365816] ? wait_for_completion_io+0x270/0x270 [ 1745.366448] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1745.367123] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1745.367776] do_syscall_64+0x33/0x40 [ 1745.368242] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1745.368940] RIP: 0033:0x7f341b7f3b19 [ 1745.369410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1745.371749] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1745.372722] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1745.373635] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1745.374538] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1745.375466] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1745.376383] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:18 executing program 5: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/crypto\x00', 0x0, 0x0) ioctl$SG_GET_TIMEOUT(r0, 0x2202, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000080), 0x4) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}, 0x5}, 0x1c) 07:15:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:18 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 35) 07:15:18 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000000)=@gcm_256={{0x304}, "6cd6b3c741a82c31", "cfd109cd6d9019914397bd0f6dbb70e083b5ff15bf70bd53ce8be852cc5d808f", "9f7c1c4a", "cb6a39bc98ff29c2"}, 0x38) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x9, 0x4) [ 1745.572220] FAULT_INJECTION: forcing a failure. [ 1745.572220] name failslab, interval 1, probability 0, space 0, times 0 [ 1745.573619] CPU: 1 PID: 15297 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1745.574410] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1745.575380] Call Trace: [ 1745.575690] dump_stack+0x107/0x167 [ 1745.576108] should_fail.cold+0x5/0xa [ 1745.576551] ? io_wq_create+0x6ef/0xc00 [ 1745.577016] should_failslab+0x5/0x20 [ 1745.577457] kmem_cache_alloc_node_trace+0x59/0x340 [ 1745.578037] io_wq_create+0x6ef/0xc00 [ 1745.578478] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1745.579075] ? io_import_iovec+0x1120/0x1120 [ 1745.579581] ? io_apoll_task_func+0x2d0/0x2d0 [ 1745.580109] ? __io_req_find_next+0x300/0x300 [ 1745.580624] ? do_raw_spin_lock+0x121/0x260 [ 1745.581118] ? rwlock_bug.part.0+0x90/0x90 [ 1745.581608] __io_uring_add_tctx_node+0x2c6/0x520 [ 1745.582160] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1745.582769] ? alloc_fd+0x2e7/0x670 [ 1745.583191] io_uring_setup+0x1fbb/0x2980 [ 1745.583681] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1745.584267] ? wait_for_completion_io+0x270/0x270 [ 1745.584832] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1745.585430] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1745.586020] do_syscall_64+0x33/0x40 [ 1745.586449] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1745.587042] RIP: 0033:0x7fb912e91b19 [ 1745.587467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1745.589568] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1745.590442] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1745.591272] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1745.592088] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1745.592904] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1745.593730] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:18 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 52) 07:15:18 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 50) [ 1745.654929] FAULT_INJECTION: forcing a failure. [ 1745.654929] name failslab, interval 1, probability 0, space 0, times 0 [ 1745.656309] CPU: 1 PID: 15387 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1745.657115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1745.658065] Call Trace: [ 1745.658373] dump_stack+0x107/0x167 [ 1745.658805] should_fail.cold+0x5/0xa [ 1745.659249] ? create_object.isra.0+0x3a/0xa30 [ 1745.659776] should_failslab+0x5/0x20 [ 1745.660220] kmem_cache_alloc+0x5b/0x310 [ 1745.660692] ? mark_held_locks+0x9e/0xe0 [ 1745.661176] create_object.isra.0+0x3a/0xa30 [ 1745.661680] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1745.662261] kmem_cache_alloc+0x159/0x310 [ 1745.662748] xas_alloc+0x336/0x440 [ 1745.663156] xas_create+0x34a/0x10d0 [ 1745.663589] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1745.664198] xas_store+0x8c/0x1c40 [ 1745.664615] __xa_store+0x164/0x2d0 [ 1745.665034] ? xa_delete_node+0x280/0x280 [ 1745.665519] ? trace_hardirqs_on+0x5b/0x180 [ 1745.666018] xa_store+0x31/0x50 [ 1745.666398] __io_uring_add_tctx_node+0x1cf/0x520 [ 1745.666957] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1745.667557] ? alloc_fd+0x2e7/0x670 [ 1745.667983] io_uring_setup+0x1fbb/0x2980 [ 1745.668462] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1745.669044] ? wait_for_completion_io+0x270/0x270 [ 1745.669613] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1745.670218] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1745.670818] do_syscall_64+0x33/0x40 [ 1745.671250] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1745.671841] RIP: 0033:0x7ff9de16bb19 [ 1745.672273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1745.674385] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1745.675270] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1745.676091] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1745.676912] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1745.677735] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1745.678563] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:18 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000080), 0x90040, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f00000000c0)) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f0000000040)="52000000ea00", 0x10) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000000)=0xffff, 0x4) [ 1745.740201] loop6: detected capacity change from 0 to 67108864 [ 1745.748899] FAULT_INJECTION: forcing a failure. [ 1745.748899] name failslab, interval 1, probability 0, space 0, times 0 [ 1745.751729] CPU: 0 PID: 15373 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1745.753351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1745.755260] Call Trace: [ 1745.756001] dump_stack+0x107/0x167 [ 1745.757048] should_fail.cold+0x5/0xa [ 1745.758092] ? create_object.isra.0+0x3a/0xa30 [ 1745.759298] should_failslab+0x5/0x20 [ 1745.760255] kmem_cache_alloc+0x5b/0x310 [ 1745.761299] ? mark_held_locks+0x9e/0xe0 [ 1745.762498] create_object.isra.0+0x3a/0xa30 [ 1745.763583] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1745.764991] kmem_cache_alloc+0x159/0x310 [ 1745.766254] xas_alloc+0x336/0x440 [ 1745.767341] xas_create+0x34a/0x10d0 [ 1745.768579] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1745.769989] xas_store+0x8c/0x1c40 [ 1745.771352] __xa_store+0x164/0x2d0 [ 1745.772386] ? xa_delete_node+0x280/0x280 [ 1745.773704] ? trace_hardirqs_on+0x5b/0x180 [ 1745.775057] xa_store+0x31/0x50 [ 1745.776027] __io_uring_add_tctx_node+0x1cf/0x520 [ 1745.777288] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1745.778551] ? alloc_fd+0x2e7/0x670 [ 1745.779821] io_uring_setup+0x1fbb/0x2980 [ 1745.781101] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1745.782325] ? wait_for_completion_io+0x270/0x270 [ 1745.784130] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1745.785431] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1745.786852] do_syscall_64+0x33/0x40 [ 1745.787817] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1745.789058] RIP: 0033:0x7f341b7f3b19 [ 1745.789995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1745.794078] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1745.795925] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1745.797606] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1745.799263] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1745.800923] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1745.802594] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:33 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 53) 07:15:33 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 36) [ 1760.245255] FAULT_INJECTION: forcing a failure. [ 1760.245255] name failslab, interval 1, probability 0, space 0, times 0 [ 1760.247015] CPU: 1 PID: 15617 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1760.248142] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1760.249470] Call Trace: [ 1760.249833] dump_stack+0x107/0x167 [ 1760.250425] should_fail.cold+0x5/0xa [ 1760.251056] ? xas_alloc+0x336/0x440 [ 1760.251666] should_failslab+0x5/0x20 [ 1760.252275] kmem_cache_alloc+0x5b/0x310 [ 1760.252933] xas_alloc+0x336/0x440 [ 1760.253514] xas_create+0x34a/0x10d0 [ 1760.254124] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1760.254980] xas_store+0x8c/0x1c40 [ 1760.255572] __xa_store+0x164/0x2d0 [ 1760.256160] ? xa_delete_node+0x280/0x280 [ 1760.256836] ? trace_hardirqs_on+0x5b/0x180 [ 1760.257531] xa_store+0x31/0x50 [ 1760.258054] __io_uring_add_tctx_node+0x1cf/0x520 [ 1760.258846] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1760.259689] ? alloc_fd+0x2e7/0x670 [ 1760.260294] io_uring_setup+0x1fbb/0x2980 [ 1760.260963] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1760.261783] ? wait_for_completion_io+0x270/0x270 [ 1760.262579] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1760.263438] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1760.264280] do_syscall_64+0x33/0x40 [ 1760.264879] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1760.265701] RIP: 0033:0x7f341b7f3b19 [ 1760.266299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1760.269294] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1760.270520] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1760.272355] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1760.274175] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1760.275982] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1760.277578] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:33 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r2, 0x10000000) setsockopt$inet6_tcp_int(r2, 0x6, 0x10, &(0x7f0000000000)=0x1, 0x4) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x8000, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x8010, r3, 0x0) io_uring_register$IORING_REGISTER_PROBE(r3, 0x8, &(0x7f0000000180)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0x15) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f00000000c0), &(0x7f0000000100)=0x8faa5fd597e51424) sendmsg$nl_netfilter(r0, &(0x7f0000000480)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000440)={&(0x7f0000000280)={0x18c, 0x14, 0x6, 0x301, 0x70bd2a, 0x25dfdbfc, {0x1, 0x0, 0xa}, [@nested={0x177, 0x13, 0x0, 0x1, [@generic="7c86e4f38fda587cb954e347d49d393ae64fc27e509582e6665598416743652a4fcad5f09ef61eb402ecd4e6ff9e20722443d1d85b212e", @generic="0d7d7b63c437e2e7702575713c5d5aa0cc5806776ac571622674ee417f212d0ab7d99c5d3bd5b96951b2f2c70a38bc84c525241fe6b51ef3ab16b4c04b78efa496c7ad81f58a3a23cf2736ec0d9117f15b744cbd2bff7281fcca59e12dc0eab48342f585b7c77a62539ca0c1f0668efbc7fa496c4446aae44c913f86c6f43c812e8c22893c9bd3b264f205cfa63f6a954294224cc291e9a096ea0ba105f643028472382aeb1b5f8b9a8c4e2f938fe195ffdb8ab4389bb2102573b8", @typed={0x39, 0x0, 0x0, 0x0, @binary="4cbfaef4c3c28ea0fda08fbf7418168ee663c8d207fc24b623e188f8e2503f44fc5bfea2d5874e4669e908e3c40ca3618154a9b734"}, @generic="ddbd51b032b51ac46bc565f0a0d6079d2bd36cc490915993132bd73a494199479bcb9b1733e18b5114e0e2976e75025e5d468382bbb696e2c4a6875daba9211788c1f227e4"]}]}, 0x18c}, 0x1, 0x0, 0x0, 0x8c5}, 0x81) 07:15:33 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:33 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x76ab, &(0x7f0000000300), 0x0, 0x0) 07:15:33 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() r1 = getpid() process_vm_readv(r1, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x3f, 0x1f, 0x40, 0x8, 0x0, 0x100, 0x20000, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_config_ext={0x7f, 0xffff}, 0x1, 0x8000, 0xe8c, 0x0, 0x8, 0x8, 0x401, 0x0, 0xff, 0x0, 0x7f}, r1, 0xffffffffffffffff, r0, 0x9) 07:15:33 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 51) 07:15:33 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f0000000100)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x1, 0xbb, 0x6, 0xff, 0x2, 0x6, 0x56130e3e, 0x101, 0x40, 0x23e, 0x9, 0x7, 0x38, 0x1, 0x9, 0xff, 0x23}, [{0x7, 0x8, 0x1, 0x9b5, 0x5, 0x3f9, 0x10000, 0xffff}, {0x70000000, 0x3ff, 0xfffffffffffffffb, 0x3c3, 0x0, 0x983c, 0xc8, 0x6}], "da99b4c4064ea3e8cef5f9dc4b175d4648c0c04527451d4b3ff5a440f00d0cf7d1049ab546857d928187947b07463f4b7a14b3ba843aa5e054a363ab9a64670f846d861663cb22a76bfb659ef074c1ae23535713f54204efe1ad2134b85a4f6f4f", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x911) r1 = fork() r2 = msgget$private(0x0, 0x0) r3 = syz_open_procfs(0x0, 0x0) fspick(r3, 0x0, 0x0) sched_getparam(r1, &(0x7f0000000080)) r4 = pidfd_getfd(r3, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, r5}}, './file0\x00'}) r6 = getpid() msgctl$IPC_INFO(r2, 0x3, &(0x7f0000000a40)=""/140) process_vm_readv(r6, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) msgctl$IPC_SET(r2, 0x1, &(0x7f0000000000)={{0x0, 0x0, 0x0, 0xee00, r5, 0x8, 0x9}, 0x0, 0x0, 0x3, 0xfffffffffffffffa, 0x0, 0x400, 0xfffffffffffffffa, 0x9, 0x4, 0xcb, r6, r1}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) r7 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r7, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000c00)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x0, {0x0, r8}}, 0x1000) [ 1760.339100] FAULT_INJECTION: forcing a failure. [ 1760.339100] name failslab, interval 1, probability 0, space 0, times 0 [ 1760.342382] CPU: 0 PID: 15621 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1760.344043] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1760.345988] Call Trace: [ 1760.346754] dump_stack+0x107/0x167 [ 1760.347810] should_fail.cold+0x5/0xa [ 1760.348854] ? create_object.isra.0+0x3a/0xa30 [ 1760.350056] should_failslab+0x5/0x20 [ 1760.351037] kmem_cache_alloc+0x5b/0x310 [ 1760.352088] ? io_wq_create+0x114/0xc00 [ 1760.353262] create_object.isra.0+0x3a/0xa30 [ 1760.354359] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1760.355780] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1760.357261] io_wq_create+0x6ef/0xc00 [ 1760.358517] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1760.359891] ? io_import_iovec+0x1120/0x1120 [ 1760.361063] ? io_apoll_task_func+0x2d0/0x2d0 [ 1760.362179] ? __io_req_find_next+0x300/0x300 [ 1760.363302] ? do_raw_spin_lock+0x121/0x260 [ 1760.364448] ? rwlock_bug.part.0+0x90/0x90 [ 1760.365726] __io_uring_add_tctx_node+0x2c6/0x520 [ 1760.366997] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1760.368279] ? alloc_fd+0x2e7/0x670 [ 1760.369549] io_uring_setup+0x1fbb/0x2980 [ 1760.370840] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1760.372083] ? wait_for_completion_io+0x270/0x270 [ 1760.373838] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1760.375150] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1760.376572] do_syscall_64+0x33/0x40 [ 1760.377545] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1760.378809] RIP: 0033:0x7fb912e91b19 [ 1760.379763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1760.383907] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1760.385765] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1760.387462] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1760.389149] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1760.390845] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1760.392531] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1760.433581] FAULT_INJECTION: forcing a failure. [ 1760.433581] name failslab, interval 1, probability 0, space 0, times 0 [ 1760.436726] CPU: 0 PID: 15612 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1760.438338] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1760.440199] Call Trace: [ 1760.440922] dump_stack+0x107/0x167 [ 1760.441944] should_fail.cold+0x5/0xa [ 1760.442961] ? xas_alloc+0x336/0x440 [ 1760.443973] should_failslab+0x5/0x20 [ 1760.444906] kmem_cache_alloc+0x5b/0x310 [ 1760.446112] xas_alloc+0x336/0x440 [ 1760.447146] xas_create+0x34a/0x10d0 [ 1760.448367] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1760.449738] xas_store+0x8c/0x1c40 [ 1760.451093] __xa_store+0x164/0x2d0 [ 1760.452110] ? xa_delete_node+0x280/0x280 [ 1760.453400] ? trace_hardirqs_on+0x5b/0x180 [ 1760.454719] xa_store+0x31/0x50 [ 1760.455653] __io_uring_add_tctx_node+0x1cf/0x520 [ 1760.456865] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1760.458090] ? alloc_fd+0x2e7/0x670 [ 1760.459347] io_uring_setup+0x1fbb/0x2980 [ 1760.460607] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1760.461792] ? wait_for_completion_io+0x270/0x270 [ 1760.463520] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1760.464765] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1760.466130] do_syscall_64+0x33/0x40 [ 1760.467087] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1760.468275] RIP: 0033:0x7ff9de16bb19 [ 1760.469196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1760.473120] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1760.474930] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1760.476556] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1760.478170] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1760.479785] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1760.481396] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:33 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 52) 07:15:33 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000000), 0x4) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0xfffffffc, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) r4 = dup(r3) setsockopt$inet6_tcp_int(r4, 0x6, 0x7, &(0x7f0000000040)=0xb71, 0x4) 07:15:33 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{0x0}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1760.572459] FAULT_INJECTION: forcing a failure. [ 1760.572459] name failslab, interval 1, probability 0, space 0, times 0 [ 1760.574918] CPU: 1 PID: 15633 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1760.576373] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1760.578114] Call Trace: [ 1760.578685] dump_stack+0x107/0x167 [ 1760.579458] should_fail.cold+0x5/0xa [ 1760.580269] ? create_object.isra.0+0x3a/0xa30 [ 1760.581231] should_failslab+0x5/0x20 [ 1760.582043] kmem_cache_alloc+0x5b/0x310 [ 1760.582910] ? mark_held_locks+0x9e/0xe0 [ 1760.583777] create_object.isra.0+0x3a/0xa30 [ 1760.584703] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1760.585779] kmem_cache_alloc+0x159/0x310 [ 1760.586678] xas_alloc+0x336/0x440 [ 1760.587444] xas_create+0x34a/0x10d0 [ 1760.588248] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1760.589362] xas_store+0x8c/0x1c40 [ 1760.590136] __xa_store+0x164/0x2d0 [ 1760.590918] ? xa_delete_node+0x280/0x280 [ 1760.591802] ? trace_hardirqs_on+0x5b/0x180 [ 1760.592724] xa_store+0x31/0x50 [ 1760.593423] __io_uring_add_tctx_node+0x1cf/0x520 [ 1760.594459] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1760.595578] ? alloc_fd+0x2e7/0x670 [ 1760.596370] io_uring_setup+0x1fbb/0x2980 [ 1760.597256] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1760.598322] ? wait_for_completion_io+0x270/0x270 [ 1760.599381] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1760.600489] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1760.601584] do_syscall_64+0x33/0x40 [ 1760.602373] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1760.603461] RIP: 0033:0x7f341b7f3b19 [ 1760.604257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1760.608150] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1760.609749] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1760.611255] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1760.612750] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1760.614244] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1760.615763] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:33 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 37) 07:15:33 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:33 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x0, @fd_index, 0x1f, 0x6, 0xed8, 0x1, 0x1, {0x0, r5}}, 0x8) syz_io_uring_submit(0x0, r3, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1, {0x0, r5}}, 0x508) r6 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) pidfd_getfd(r7, r6, 0x0) setsockopt$inet6_tcp_int(r7, 0x6, 0x17, &(0x7f0000000040)=0x6, 0x4) 07:15:33 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 53) [ 1760.888352] FAULT_INJECTION: forcing a failure. [ 1760.888352] name failslab, interval 1, probability 0, space 0, times 0 [ 1760.892127] CPU: 0 PID: 15741 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1760.893717] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1760.895599] Call Trace: [ 1760.896311] dump_stack+0x107/0x167 [ 1760.897314] should_fail.cold+0x5/0xa [ 1760.898310] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1760.899572] should_failslab+0x5/0x20 [ 1760.900506] kmem_cache_alloc_trace+0x55/0x320 [ 1760.901795] __io_uring_add_tctx_node+0x15c/0x520 [ 1760.903018] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1760.904248] ? alloc_fd+0x2e7/0x670 [ 1760.905455] io_uring_setup+0x1fbb/0x2980 [ 1760.906695] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1760.907901] ? wait_for_completion_io+0x270/0x270 [ 1760.909588] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1760.910859] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1760.912232] do_syscall_64+0x33/0x40 [ 1760.913173] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1760.914380] RIP: 0033:0x7fb912e91b19 [ 1760.915316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1760.919319] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1760.921129] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1760.922791] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1760.924434] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1760.926069] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1760.927701] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:33 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 54) [ 1760.994389] FAULT_INJECTION: forcing a failure. [ 1760.994389] name failslab, interval 1, probability 0, space 0, times 0 [ 1760.996856] CPU: 1 PID: 15865 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1760.998296] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1761.000035] Call Trace: [ 1761.000589] dump_stack+0x107/0x167 [ 1761.001360] should_fail.cold+0x5/0xa [ 1761.002169] ? xas_alloc+0x336/0x440 [ 1761.002958] should_failslab+0x5/0x20 [ 1761.003750] kmem_cache_alloc+0x5b/0x310 [ 1761.004602] xas_alloc+0x336/0x440 [ 1761.005340] xas_create+0x34a/0x10d0 [ 1761.006137] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1761.007237] xas_store+0x8c/0x1c40 [ 1761.007994] __xa_store+0x164/0x2d0 [ 1761.008758] ? xa_delete_node+0x280/0x280 [ 1761.009628] ? trace_hardirqs_on+0x5b/0x180 [ 1761.010534] xa_store+0x31/0x50 [ 1761.011239] __io_uring_add_tctx_node+0x1cf/0x520 [ 1761.012248] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1761.013335] ? alloc_fd+0x2e7/0x670 [ 1761.014111] io_uring_setup+0x1fbb/0x2980 [ 1761.014987] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1761.016036] ? wait_for_completion_io+0x270/0x270 [ 1761.017061] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1761.018155] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1761.019254] do_syscall_64+0x33/0x40 [ 1761.020050] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1761.021142] RIP: 0033:0x7f341b7f3b19 [ 1761.021933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1761.025856] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1761.027484] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1761.029001] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1761.030510] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1761.032028] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1761.033540] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1761.223396] FAULT_INJECTION: forcing a failure. [ 1761.223396] name failslab, interval 1, probability 0, space 0, times 0 [ 1761.226119] CPU: 0 PID: 15969 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1761.227764] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1761.229694] Call Trace: [ 1761.230438] dump_stack+0x107/0x167 [ 1761.231504] should_fail.cold+0x5/0xa [ 1761.232543] ? create_object.isra.0+0x3a/0xa30 [ 1761.233738] should_failslab+0x5/0x20 [ 1761.234713] kmem_cache_alloc+0x5b/0x310 [ 1761.235761] ? mark_held_locks+0x9e/0xe0 [ 1761.236961] create_object.isra.0+0x3a/0xa30 [ 1761.238052] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1761.239472] kmem_cache_alloc+0x159/0x310 [ 1761.240739] xas_alloc+0x336/0x440 [ 1761.241803] xas_create+0x34a/0x10d0 [ 1761.243042] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1761.244473] xas_store+0x8c/0x1c40 [ 1761.245854] __xa_store+0x164/0x2d0 [ 1761.246935] ? xa_delete_node+0x280/0x280 [ 1761.248254] ? trace_hardirqs_on+0x5b/0x180 [ 1761.249603] xa_store+0x31/0x50 [ 1761.250560] __io_uring_add_tctx_node+0x1cf/0x520 [ 1761.251832] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1761.253095] ? alloc_fd+0x2e7/0x670 [ 1761.254372] io_uring_setup+0x1fbb/0x2980 [ 1761.255666] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1761.256865] ? wait_for_completion_io+0x270/0x270 [ 1761.258668] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1761.259970] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1761.261393] do_syscall_64+0x33/0x40 [ 1761.262364] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1761.263616] RIP: 0033:0x7ff9de16bb19 [ 1761.264565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1761.268659] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1761.270509] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1761.272189] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1761.273863] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1761.275550] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1761.277219] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:47 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 38) 07:15:47 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f0000000100)={{}, "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"}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:15:47 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:47 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:15:47 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x76ac, &(0x7f0000000300), 0x0, 0x0) 07:15:47 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 54) 07:15:47 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 55) 07:15:47 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = socket$nl_sock_diag(0x10, 0x3, 0x4) fsetxattr$trusted_overlay_upper(r1, &(0x7f0000000000), &(0x7f00000000c0)={0x0, 0xfb, 0x47, 0x1, 0x5, "a0fa208a4439fb93bc913f5b6473b13f", "8bd7a212c87e5e1cd4a8a4522704b1f07e819bfaadcca8c96978b906f8b23df160f45c1c8ee806edc82e84401fdbbde6c6ec"}, 0x47, 0x1) [ 1775.032421] FAULT_INJECTION: forcing a failure. [ 1775.032421] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.034099] CPU: 1 PID: 16121 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1775.035034] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1775.036127] Call Trace: [ 1775.036477] dump_stack+0x107/0x167 [ 1775.036959] should_fail.cold+0x5/0xa [ 1775.037464] ? xas_alloc+0x336/0x440 [ 1775.037956] should_failslab+0x5/0x20 [ 1775.038456] kmem_cache_alloc+0x5b/0x310 [ 1775.039012] xas_alloc+0x336/0x440 [ 1775.039492] xas_create+0x34a/0x10d0 [ 1775.039989] xas_store+0x8c/0x1c40 [ 1775.040466] __xa_store+0x164/0x2d0 [ 1775.040942] ? xa_delete_node+0x280/0x280 [ 1775.041490] ? trace_hardirqs_on+0x5b/0x180 [ 1775.042054] xa_store+0x31/0x50 [ 1775.042493] __io_uring_add_tctx_node+0x1cf/0x520 [ 1775.043130] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1775.043811] ? alloc_fd+0x2e7/0x670 [ 1775.044300] io_uring_setup+0x1fbb/0x2980 [ 1775.044855] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1775.045529] ? wait_for_completion_io+0x270/0x270 [ 1775.046172] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1775.046876] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1775.047557] do_syscall_64+0x33/0x40 [ 1775.048042] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.048708] RIP: 0033:0x7ff9de16bb19 [ 1775.049201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1775.051599] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1775.052589] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1775.053537] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1775.054471] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1775.055420] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1775.056361] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:47 executing program 5: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r2 = pidfd_getfd(r1, r0, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0xa400, 0x0) r3 = openat(r2, &(0x7f00000000c0)='./file0\x00', 0x400001, 0xc8) syz_io_uring_setup(0x71e3, &(0x7f0000000280)={0x0, 0x9503, 0x20, 0x1, 0x36, 0x0, r3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000500)) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x1e, &(0x7f0000000080)=0x4, 0x4) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000016140), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_RINGS_SET(r5, &(0x7f0000016580)={0x0, 0x0, &(0x7f0000016540)={&(0x7f0000000040)={0x24, r4, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x7}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x9}]}, 0x24}}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_NEW_STATION(r6, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x60, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}, @NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x20}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x6, 0xbd, [0x3]}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0xa, 0xbd, [0x1, 0x9, 0x7]}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x9}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0xf9ec}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x3}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x253}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0xffe}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x40018) ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r5, 0x8983, &(0x7f0000000100)={0x2, 'veth0_to_bond\x00', {0x7}, 0x9cbf}) fdatasync(r3) [ 1775.107985] FAULT_INJECTION: forcing a failure. [ 1775.107985] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.110797] CPU: 0 PID: 16127 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1775.112437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1775.114353] Call Trace: [ 1775.115105] dump_stack+0x107/0x167 [ 1775.116157] should_fail.cold+0x5/0xa [ 1775.117195] ? create_object.isra.0+0x3a/0xa30 [ 1775.118397] should_failslab+0x5/0x20 [ 1775.119368] kmem_cache_alloc+0x5b/0x310 [ 1775.120412] ? mark_held_locks+0x9e/0xe0 [ 1775.121603] create_object.isra.0+0x3a/0xa30 [ 1775.122689] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1775.124105] kmem_cache_alloc+0x159/0x310 [ 1775.125369] xas_alloc+0x336/0x440 [ 1775.126400] FAULT_INJECTION: forcing a failure. [ 1775.126400] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.126428] xas_create+0x34a/0x10d0 [ 1775.129083] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1775.130495] xas_store+0x8c/0x1c40 [ 1775.131870] __xa_store+0x164/0x2d0 [ 1775.132915] ? xa_delete_node+0x280/0x280 [ 1775.134219] ? trace_hardirqs_on+0x5b/0x180 [ 1775.135564] xa_store+0x31/0x50 [ 1775.136512] __io_uring_add_tctx_node+0x1cf/0x520 [ 1775.137756] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1775.139016] ? alloc_fd+0x2e7/0x670 [ 1775.140287] io_uring_setup+0x1fbb/0x2980 [ 1775.141566] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1775.142790] ? wait_for_completion_io+0x270/0x270 [ 1775.144581] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1775.145864] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1775.147287] do_syscall_64+0x33/0x40 [ 1775.148247] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.149479] RIP: 0033:0x7f341b7f3b19 [ 1775.150418] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1775.154455] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1775.156300] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1775.157948] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1775.159612] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1775.161275] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1775.162938] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1775.165116] CPU: 1 PID: 16091 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1775.165973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1775.167013] Call Trace: [ 1775.167353] dump_stack+0x107/0x167 [ 1775.167809] should_fail.cold+0x5/0xa [ 1775.168289] ? create_object.isra.0+0x3a/0xa30 [ 1775.168849] should_failslab+0x5/0x20 [ 1775.169323] kmem_cache_alloc+0x5b/0x310 [ 1775.169843] create_object.isra.0+0x3a/0xa30 [ 1775.170384] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1775.171021] kmem_cache_alloc_trace+0x151/0x320 [ 1775.171612] __io_uring_add_tctx_node+0x15c/0x520 [ 1775.172204] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1775.172849] ? alloc_fd+0x2e7/0x670 [ 1775.173303] io_uring_setup+0x1fbb/0x2980 [ 1775.173814] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1775.174434] ? wait_for_completion_io+0x270/0x270 [ 1775.175044] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1775.175685] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1775.176325] do_syscall_64+0x33/0x40 [ 1775.176788] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.177415] RIP: 0033:0x7fb912e91b19 [ 1775.177870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1775.180117] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1775.181042] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1775.181908] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1775.182773] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1775.183655] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1775.184526] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:48 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:48 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 56) 07:15:48 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x9, &(0x7f0000000080), 0x4) 07:15:48 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)=':', 0x1}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:15:48 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000000)) dup2(r0, r0) fork() ptrace(0x4208, 0x0) [ 1775.330945] FAULT_INJECTION: forcing a failure. [ 1775.330945] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.332314] CPU: 1 PID: 16387 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1775.333113] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1775.334062] Call Trace: [ 1775.334373] dump_stack+0x107/0x167 [ 1775.334800] should_fail.cold+0x5/0xa [ 1775.335268] ? create_object.isra.0+0x3a/0xa30 [ 1775.335791] should_failslab+0x5/0x20 [ 1775.336230] kmem_cache_alloc+0x5b/0x310 [ 1775.336704] ? mark_held_locks+0x9e/0xe0 [ 1775.337176] create_object.isra.0+0x3a/0xa30 [ 1775.337679] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1775.338264] kmem_cache_alloc+0x159/0x310 [ 1775.338741] xas_alloc+0x336/0x440 [ 1775.339160] xas_create+0x34a/0x10d0 [ 1775.339590] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1775.340185] xas_store+0x8c/0x1c40 [ 1775.340602] __xa_store+0x164/0x2d0 [ 1775.341018] ? xa_delete_node+0x280/0x280 [ 1775.341498] ? trace_hardirqs_on+0x5b/0x180 [ 1775.341998] xa_store+0x31/0x50 [ 1775.342376] __io_uring_add_tctx_node+0x1cf/0x520 [ 1775.342940] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1775.343538] ? alloc_fd+0x2e7/0x670 [ 1775.343961] io_uring_setup+0x1fbb/0x2980 [ 1775.344441] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1775.345020] ? wait_for_completion_io+0x270/0x270 [ 1775.345588] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1775.346192] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1775.346781] do_syscall_64+0x33/0x40 [ 1775.347212] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.347795] RIP: 0033:0x7ff9de16bb19 [ 1775.348222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1775.350330] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1775.351219] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1775.352040] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1775.352861] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1775.353670] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1775.354483] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:48 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 39) 07:15:48 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r3 = pidfd_getfd(r2, r1, 0x0) syz_io_uring_setup(0x71e3, &(0x7f0000000280)={0x0, 0x94ff, 0x20, 0x1, 0x36, 0x0, r3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000500)) getsockopt$inet6_tcp_buf(r3, 0x6, 0x1f, &(0x7f00000000c0)=""/180, &(0x7f0000000000)=0xb4) 07:15:48 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 55) [ 1775.472207] FAULT_INJECTION: forcing a failure. [ 1775.472207] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.473593] CPU: 1 PID: 16400 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1775.474390] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1775.475349] Call Trace: [ 1775.475660] dump_stack+0x107/0x167 [ 1775.476078] should_fail.cold+0x5/0xa [ 1775.476518] ? xas_alloc+0x336/0x440 [ 1775.476945] should_failslab+0x5/0x20 [ 1775.477384] kmem_cache_alloc+0x5b/0x310 [ 1775.477852] xas_alloc+0x336/0x440 [ 1775.478262] xas_create+0x34a/0x10d0 [ 1775.478696] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1775.479303] xas_store+0x8c/0x1c40 [ 1775.479716] __xa_store+0x164/0x2d0 [ 1775.480135] ? xa_delete_node+0x280/0x280 [ 1775.480612] ? trace_hardirqs_on+0x5b/0x180 [ 1775.481108] xa_store+0x31/0x50 [ 1775.481492] __io_uring_add_tctx_node+0x1cf/0x520 [ 1775.482040] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1775.482639] ? alloc_fd+0x2e7/0x670 [ 1775.483067] io_uring_setup+0x1fbb/0x2980 [ 1775.483549] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1775.484125] ? wait_for_completion_io+0x270/0x270 [ 1775.484690] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1775.485287] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1775.485881] do_syscall_64+0x33/0x40 [ 1775.486308] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.486898] RIP: 0033:0x7f341b7f3b19 [ 1775.487329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1775.489419] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1775.490288] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1775.491117] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1775.491935] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1775.492747] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1775.493555] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:15:48 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 57) 07:15:48 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 56) [ 1775.579558] FAULT_INJECTION: forcing a failure. [ 1775.579558] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.583836] CPU: 0 PID: 16401 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1775.585451] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1775.587368] Call Trace: [ 1775.588096] dump_stack+0x107/0x167 [ 1775.589126] should_fail.cold+0x5/0xa [ 1775.590146] ? xas_alloc+0x336/0x440 [ 1775.591157] should_failslab+0x5/0x20 [ 1775.592106] kmem_cache_alloc+0x5b/0x310 [ 1775.593322] xas_alloc+0x336/0x440 [ 1775.594360] xas_create+0x34a/0x10d0 [ 1775.595596] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1775.596505] FAULT_INJECTION: forcing a failure. [ 1775.596505] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.596954] xas_store+0x8c/0x1c40 [ 1775.599382] __xa_store+0x164/0x2d0 [ 1775.600407] ? xa_delete_node+0x280/0x280 [ 1775.601693] ? trace_hardirqs_on+0x5b/0x180 [ 1775.603021] xa_store+0x31/0x50 [ 1775.603958] __io_uring_add_tctx_node+0x1cf/0x520 [ 1775.605194] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1775.606441] ? alloc_fd+0x2e7/0x670 [ 1775.607710] io_uring_setup+0x1fbb/0x2980 [ 1775.608973] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1775.610188] ? wait_for_completion_io+0x270/0x270 [ 1775.611948] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1775.613223] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1775.614628] do_syscall_64+0x33/0x40 [ 1775.615595] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.616822] RIP: 0033:0x7fb912e91b19 [ 1775.617762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1775.621801] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1775.623644] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1775.625306] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1775.626965] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1775.628619] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1775.630268] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1775.632429] CPU: 1 PID: 16513 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1775.633226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1775.634123] Call Trace: [ 1775.634435] dump_stack+0x107/0x167 [ 1775.634862] should_fail.cold+0x5/0xa [ 1775.635299] ? create_object.isra.0+0x3a/0xa30 [ 1775.635793] should_failslab+0x5/0x20 [ 1775.636228] kmem_cache_alloc+0x5b/0x310 [ 1775.636697] ? mark_held_locks+0x9e/0xe0 [ 1775.637138] create_object.isra.0+0x3a/0xa30 [ 1775.637641] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1775.638202] kmem_cache_alloc+0x159/0x310 [ 1775.638698] xas_alloc+0x336/0x440 [ 1775.639092] xas_create+0x34a/0x10d0 [ 1775.639524] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1775.640124] xas_store+0x8c/0x1c40 [ 1775.640539] __xa_store+0x164/0x2d0 [ 1775.640958] ? xa_delete_node+0x280/0x280 [ 1775.641437] ? trace_hardirqs_on+0x5b/0x180 [ 1775.641932] xa_store+0x31/0x50 [ 1775.642312] __io_uring_add_tctx_node+0x1cf/0x520 [ 1775.642874] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1775.643472] ? alloc_fd+0x2e7/0x670 [ 1775.643891] io_uring_setup+0x1fbb/0x2980 [ 1775.644375] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1775.644951] ? wait_for_completion_io+0x270/0x270 [ 1775.645516] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1775.646114] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1775.646672] do_syscall_64+0x33/0x40 [ 1775.647108] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.647691] RIP: 0033:0x7f341b7f3b19 [ 1775.648095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1775.650197] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1775.651074] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1775.651854] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1775.652616] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1775.653377] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1775.654138] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1775.757070] FAULT_INJECTION: forcing a failure. [ 1775.757070] name failslab, interval 1, probability 0, space 0, times 0 [ 1775.759775] CPU: 0 PID: 16533 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1775.761385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1775.763303] Call Trace: [ 1775.764036] dump_stack+0x107/0x167 [ 1775.765075] should_fail.cold+0x5/0xa [ 1775.766100] ? create_object.isra.0+0x3a/0xa30 [ 1775.767290] should_failslab+0x5/0x20 [ 1775.768241] kmem_cache_alloc+0x5b/0x310 [ 1775.769273] ? mark_held_locks+0x9e/0xe0 [ 1775.770457] create_object.isra.0+0x3a/0xa30 [ 1775.771535] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1775.772922] kmem_cache_alloc+0x159/0x310 [ 1775.774172] xas_alloc+0x336/0x440 [ 1775.775229] xas_create+0x34a/0x10d0 [ 1775.776458] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1775.777865] xas_store+0x8c/0x1c40 [ 1775.779228] __xa_store+0x164/0x2d0 [ 1775.780278] ? xa_delete_node+0x280/0x280 [ 1775.781581] ? trace_hardirqs_on+0x5b/0x180 [ 1775.782933] xa_store+0x31/0x50 [ 1775.783885] __io_uring_add_tctx_node+0x1cf/0x520 [ 1775.785126] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1775.786384] ? alloc_fd+0x2e7/0x670 [ 1775.787667] io_uring_setup+0x1fbb/0x2980 [ 1775.788948] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1775.790174] ? wait_for_completion_io+0x270/0x270 [ 1775.791962] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1775.793245] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1775.794664] do_syscall_64+0x33/0x40 [ 1775.795645] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1775.796876] RIP: 0033:0x7ff9de16bb19 [ 1775.797818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1775.801874] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1775.803730] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1775.805386] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1775.807063] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1775.808722] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1775.810387] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1775.865823] loop6: detected capacity change from 0 to 67108864 07:16:02 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f0000000240)=[{&(0x7f0000000700)=""/222, 0xde}], 0x1}, 0x0) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) syz_io_uring_submit(r3, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/bus/usb', 0x0, 0x10) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x0, @fd_index, 0x401, 0x0, 0x100, 0x1, 0x0, {0x0, r5}}, 0x8) syz_io_uring_submit(r3, 0x0, &(0x7f0000000240)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r4, &(0x7f0000000180)=0x80, &(0x7f00000001c0)=@hci, 0x0, 0x80800, 0x1, {0x0, r5}}, 0x6d21) ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000080)={'ip6gre0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x6, 0xff, 0x98, 0x8, 0x20, @private2, @rand_addr=' \x01\x00', 0x80, 0x8, 0x9, 0x1ff}}) bind$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x1, r6, 0x1, 0x81, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3c}}, 0x14) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:16:02 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)=':', 0x1}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:16:02 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x7a00, &(0x7f0000000300), 0x0, 0x0) 07:16:02 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 40) [ 1789.810698] FAULT_INJECTION: forcing a failure. [ 1789.810698] name failslab, interval 1, probability 0, space 0, times 0 [ 1789.812251] CPU: 1 PID: 16723 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1789.813175] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1789.814265] Call Trace: [ 1789.814626] dump_stack+0x107/0x167 [ 1789.815129] should_fail.cold+0x5/0xa [ 1789.815640] ? xas_alloc+0x336/0x440 [ 1789.816133] should_failslab+0x5/0x20 [ 1789.816625] kmem_cache_alloc+0x5b/0x310 [ 1789.817153] xas_alloc+0x336/0x440 [ 1789.817619] xas_create+0x34a/0x10d0 [ 1789.818107] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1789.818786] xas_store+0x8c/0x1c40 [ 1789.819263] __xa_store+0x164/0x2d0 [ 1789.819733] ? xa_delete_node+0x280/0x280 [ 1789.820279] ? trace_hardirqs_on+0x5b/0x180 [ 1789.820841] xa_store+0x31/0x50 [ 1789.821275] __io_uring_add_tctx_node+0x1cf/0x520 [ 1789.821900] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1789.822577] ? alloc_fd+0x2e7/0x670 [ 1789.823073] io_uring_setup+0x1fbb/0x2980 [ 1789.823611] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1789.824280] ? wait_for_completion_io+0x270/0x270 [ 1789.824925] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1789.825610] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1789.826283] do_syscall_64+0x33/0x40 [ 1789.826767] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1789.827446] RIP: 0033:0x7f341b7f3b19 [ 1789.827928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1789.830298] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1789.831315] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1789.832259] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1789.833174] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1789.834091] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1789.835043] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1789.852125] FAULT_INJECTION: forcing a failure. [ 1789.852125] name failslab, interval 1, probability 0, space 0, times 0 [ 1789.853645] CPU: 1 PID: 16733 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1789.854540] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1789.855610] Call Trace: [ 1789.855951] dump_stack+0x107/0x167 [ 1789.856417] should_fail.cold+0x5/0xa [ 1789.856914] ? create_object.isra.0+0x3a/0xa30 [ 1789.857508] should_failslab+0x5/0x20 [ 1789.858005] kmem_cache_alloc+0x5b/0x310 [ 1789.858541] ? mark_held_locks+0x9e/0xe0 [ 1789.859075] create_object.isra.0+0x3a/0xa30 [ 1789.859639] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1789.860294] kmem_cache_alloc+0x159/0x310 [ 1789.860832] xas_alloc+0x336/0x440 [ 1789.861290] xas_create+0x34a/0x10d0 [ 1789.861778] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1789.862446] xas_store+0x8c/0x1c40 [ 1789.862913] __xa_store+0x164/0x2d0 [ 1789.863392] ? xa_delete_node+0x280/0x280 [ 1789.863927] ? trace_hardirqs_on+0x5b/0x180 [ 1789.864485] xa_store+0x31/0x50 [ 1789.864917] __io_uring_add_tctx_node+0x1cf/0x520 [ 1789.865547] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1789.866213] ? alloc_fd+0x2e7/0x670 [ 1789.866688] io_uring_setup+0x1fbb/0x2980 [ 1789.867231] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1789.867886] ? wait_for_completion_io+0x270/0x270 [ 1789.868529] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1789.869195] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1789.869860] do_syscall_64+0x33/0x40 [ 1789.870344] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1789.871012] RIP: 0033:0x7ff9de16bb19 [ 1789.871487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1789.873858] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1789.874846] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1789.875722] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1789.876634] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1789.877568] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1789.878432] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:02 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r2, 0x4245, 0xa9b2, 0x2, &(0x7f0000000000)={[0x1]}, 0x8) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r4 = pidfd_getfd(r3, r1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, &(0x7f0000000040)={0x62fe8f54, 0x2, 0x800, 0x5, 0x1}, 0x14) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @private1, 0x8b6c7e6}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x2, 0x4) 07:16:02 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 57) 07:16:02 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) syz_open_dev$vcsa(&(0x7f0000001300), 0x6, 0x400) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000700)={0x0, 0x4, {0x7ff, @struct={0x0, 0x9}, 0x0, 0x80000006, 0xe362, 0x7ff, 0x8, 0x400, 0x40, @struct={0xb6e, 0x2}, 0x3, 0x5, [0x2, 0x2, 0x80000000, 0xfffffffffffffff8, 0x1000bf8, 0x3ff]}, {0x7, @usage=0xc84, 0x0, 0x3, 0x27, 0x5, 0x66, 0xfffffffffffffffb, 0xa1, @struct={0x6205, 0x4}, 0xfffff10b, 0x3, [0x80000001, 0x81, 0x727e, 0x20, 0x9, 0x1000]}, {0x8000, @usage=0x77, 0x0, 0x24, 0x9ba9, 0x8, 0x5, 0x9ada, 0x470, @struct={0x40, 0x200}, 0x800, 0x3, [0x1f, 0x2, 0x0, 0x0, 0x8000, 0x6]}, {0x9, 0x9, 0x7}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000b00)={0x0, 0xf3f, 0x1}) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000000f00)={0x10, 0x8, {0x15426342, @usage=0x3, r2, 0x1, 0x100000001, 0x5, 0x3, 0x6, 0x6, @usage=0x958, 0x3, 0x7, [0x6, 0x6, 0x5, 0x100000001, 0x80000000, 0x7]}, {0x2, @usage, r3, 0x3, 0x1000, 0x80000001, 0x8, 0xff, 0x444, @struct={0xfffffffd}, 0x3, 0x1, [0x800, 0x8fb6, 0x1, 0x0, 0xfffffffffffffff9, 0x7b9]}, {0x40, @struct={0x1, 0x800}, 0x0, 0x0, 0x0, 0x5, 0x19, 0x40, 0x80, @struct={0x40, 0x5}, 0x8, 0x1f1a, [0x6, 0x7, 0x1000, 0xfffffffffffff801, 0x0, 0x5c40]}, {0x9, 0x100000000, 0xa04}}) fork() r4 = getpid() openat$sr(0xffffffffffffff9c, &(0x7f0000001340), 0x400000, 0x0) process_vm_readv(r4, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) ptrace$getregset(0x4204, r4, 0x2, &(0x7f0000000080)={&(0x7f0000000000)=""/77, 0x4d}) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x10000000) 07:16:02 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 58) [ 1789.900620] FAULT_INJECTION: forcing a failure. [ 1789.900620] name failslab, interval 1, probability 0, space 0, times 0 [ 1789.902002] CPU: 1 PID: 16730 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1789.902859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1789.903902] Call Trace: [ 1789.904242] dump_stack+0x107/0x167 [ 1789.904706] should_fail.cold+0x5/0xa [ 1789.905183] ? create_object.isra.0+0x3a/0xa30 [ 1789.905770] should_failslab+0x5/0x20 [ 1789.906262] kmem_cache_alloc+0x5b/0x310 [ 1789.906776] create_object.isra.0+0x3a/0xa30 [ 1789.907349] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1789.908001] kmem_cache_alloc+0x159/0x310 [ 1789.908527] xas_alloc+0x336/0x440 [ 1789.908975] xas_create+0x34a/0x10d0 [ 1789.909458] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1789.910128] xas_store+0x8c/0x1c40 [ 1789.910600] __xa_store+0x164/0x2d0 [ 1789.911073] ? xa_delete_node+0x280/0x280 [ 1789.911603] ? trace_hardirqs_on+0x5b/0x180 [ 1789.912150] xa_store+0x31/0x50 [ 1789.912578] __io_uring_add_tctx_node+0x1cf/0x520 [ 1789.913190] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1789.913856] ? alloc_fd+0x2e7/0x670 [ 1789.914319] io_uring_setup+0x1fbb/0x2980 [ 1789.914858] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1789.915512] ? wait_for_completion_io+0x270/0x270 [ 1789.916133] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1789.916802] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1789.917458] do_syscall_64+0x33/0x40 [ 1789.917926] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1789.918565] RIP: 0033:0x7fb912e91b19 [ 1789.919038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1789.921332] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1789.922279] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1789.923178] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1789.924082] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1789.924975] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1789.925879] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:02 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 59) 07:16:02 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 58) 07:16:02 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)=':', 0x1}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:16:02 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 41) 07:16:02 executing program 5: sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14050000", @ANYRES16=0x0, @ANYBLOB="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"], 0x514}, 0x1, 0x0, 0x0, 0x8000}, 0x20000004) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) [ 1790.165020] FAULT_INJECTION: forcing a failure. [ 1790.165020] name failslab, interval 1, probability 0, space 0, times 0 [ 1790.170474] CPU: 0 PID: 16895 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1790.172110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1790.174026] Call Trace: [ 1790.174765] dump_stack+0x107/0x167 [ 1790.175818] should_fail.cold+0x5/0xa [ 1790.176853] ? xas_alloc+0x336/0x440 [ 1790.177865] should_failslab+0x5/0x20 [ 1790.178821] kmem_cache_alloc+0x5b/0x310 [ 1790.180057] xas_alloc+0x336/0x440 [ 1790.181105] xas_create+0x34a/0x10d0 [ 1790.182340] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1790.183762] xas_store+0x8c/0x1c40 [ 1790.185109] __xa_store+0x164/0x2d0 [ 1790.186159] ? xa_delete_node+0x280/0x280 [ 1790.187468] ? trace_hardirqs_on+0x5b/0x180 [ 1790.188802] xa_store+0x31/0x50 [ 1790.189758] __io_uring_add_tctx_node+0x1cf/0x520 [ 1790.191010] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1790.192272] ? alloc_fd+0x2e7/0x670 [ 1790.193537] io_uring_setup+0x1fbb/0x2980 [ 1790.194812] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1790.196045] ? wait_for_completion_io+0x270/0x270 [ 1790.197798] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1790.199091] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1790.200500] do_syscall_64+0x33/0x40 [ 1790.201461] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1790.202697] RIP: 0033:0x7ff9de16bb19 [ 1790.203655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1790.207748] RSP: 002b:00007ff9db6e1108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1790.209600] RAX: ffffffffffffffda RBX: 00007ff9de27ef60 RCX: 00007ff9de16bb19 [ 1790.211269] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f 07:16:02 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_config_ext={0x5, 0x6}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, r1, 0x0) mlock2(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) finit_module(r0, &(0x7f0000000080)='[}@[/-n\x00', 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) ioctl$SCSI_IOCTL_DOORLOCK(0xffffffffffffffff, 0x5380) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r2, 0x10000000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x8, 0x6, 0xa6, 0x80, 0x0, 0x5, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x8000, 0x4, @perf_config_ext={0x8000, 0x6}, 0x0, 0x1, 0x6, 0x9, 0x0, 0xff, 0x5, 0x0, 0x10000, 0x0, 0x2}, 0x0, 0xf, r2, 0x1) fork() [ 1790.212939] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1790.214804] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1790.216485] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1790.247345] FAULT_INJECTION: forcing a failure. [ 1790.247345] name failslab, interval 1, probability 0, space 0, times 0 [ 1790.250098] CPU: 0 PID: 16963 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1790.251781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1790.253756] Call Trace: [ 1790.254513] dump_stack+0x107/0x167 [ 1790.255609] should_fail.cold+0x5/0xa [ 1790.256671] ? create_object.isra.0+0x3a/0xa30 [ 1790.257897] should_failslab+0x5/0x20 [ 1790.258886] kmem_cache_alloc+0x5b/0x310 [ 1790.259963] ? mark_held_locks+0x9e/0xe0 [ 1790.261178] create_object.isra.0+0x3a/0xa30 [ 1790.262289] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1790.263746] kmem_cache_alloc+0x159/0x310 [ 1790.265040] xas_alloc+0x336/0x440 [ 1790.266128] xas_create+0x34a/0x10d0 [ 1790.267412] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1790.268870] xas_store+0x8c/0x1c40 [ 1790.270260] __xa_store+0x164/0x2d0 [ 1790.271352] ? xa_delete_node+0x280/0x280 [ 1790.272688] ? trace_hardirqs_on+0x5b/0x180 [ 1790.274058] xa_store+0x31/0x50 [ 1790.275046] __io_uring_add_tctx_node+0x1cf/0x520 [ 1790.276326] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1790.277622] ? alloc_fd+0x2e7/0x670 [ 1790.278919] io_uring_setup+0x1fbb/0x2980 [ 1790.280237] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1790.281494] ? wait_for_completion_io+0x270/0x270 [ 1790.283315] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1790.284635] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1790.286085] do_syscall_64+0x33/0x40 [ 1790.287083] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1790.288354] RIP: 0033:0x7f341b7f3b19 [ 1790.289321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1790.293524] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1790.295428] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1790.297142] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1790.298855] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1790.300583] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1790.302292] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:03 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1, &(0x7f0000000000)=0x2, 0x4) 07:16:03 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0x2}], 0x1}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:16:03 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 60) [ 1790.380235] FAULT_INJECTION: forcing a failure. [ 1790.380235] name failslab, interval 1, probability 0, space 0, times 0 [ 1790.383099] CPU: 0 PID: 17153 Comm: syz-executor.1 Not tainted 5.10.246 #1 07:16:03 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0x2}], 0x1}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1790.384720] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1790.386739] Call Trace: [ 1790.387487] dump_stack+0x107/0x167 [ 1790.388538] should_fail.cold+0x5/0xa [ 1790.389573] ? xas_alloc+0x336/0x440 [ 1790.390587] should_failslab+0x5/0x20 [ 1790.391555] kmem_cache_alloc+0x5b/0x310 [ 1790.392790] xas_alloc+0x336/0x440 [ 1790.393835] xas_create+0x34a/0x10d0 [ 1790.395088] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1790.396496] xas_store+0x8c/0x1c40 [ 1790.397850] __xa_store+0x164/0x2d0 [ 1790.398893] ? xa_delete_node+0x280/0x280 [ 1790.400205] ? trace_hardirqs_on+0x5b/0x180 [ 1790.401541] xa_store+0x31/0x50 [ 1790.402488] __io_uring_add_tctx_node+0x1cf/0x520 [ 1790.403741] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1790.404996] ? alloc_fd+0x2e7/0x670 [ 1790.406264] io_uring_setup+0x1fbb/0x2980 [ 1790.407555] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1790.409396] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1790.410674] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1790.412101] do_syscall_64+0x33/0x40 [ 1790.413063] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1790.414301] RIP: 0033:0x7fb912e91b19 [ 1790.415254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1790.419349] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1790.421191] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1790.422856] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1790.424518] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1790.426176] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1790.427843] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1790.436821] FAULT_INJECTION: forcing a failure. [ 1790.436821] name failslab, interval 1, probability 0, space 0, times 0 [ 1790.438160] CPU: 1 PID: 17163 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1790.438962] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1790.439921] Call Trace: [ 1790.440223] dump_stack+0x107/0x167 [ 1790.440643] should_fail.cold+0x5/0xa [ 1790.441087] ? create_object.isra.0+0x3a/0xa30 [ 1790.441609] should_failslab+0x5/0x20 [ 1790.442051] kmem_cache_alloc+0x5b/0x310 [ 1790.442526] ? mark_held_locks+0x9e/0xe0 [ 1790.442999] create_object.isra.0+0x3a/0xa30 [ 1790.443486] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1790.444072] kmem_cache_alloc+0x159/0x310 [ 1790.444530] xas_alloc+0x336/0x440 [ 1790.444941] xas_create+0x34a/0x10d0 [ 1790.445376] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1790.445981] xas_store+0x8c/0x1c40 [ 1790.446400] __xa_store+0x164/0x2d0 [ 1790.446823] ? xa_delete_node+0x280/0x280 [ 1790.447317] ? trace_hardirqs_on+0x5b/0x180 [ 1790.447818] xa_store+0x31/0x50 [ 1790.448202] __io_uring_add_tctx_node+0x1cf/0x520 [ 1790.448759] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1790.449365] ? alloc_fd+0x2e7/0x670 [ 1790.449796] io_uring_setup+0x1fbb/0x2980 [ 1790.450276] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1790.450856] ? wait_for_completion_io+0x270/0x270 [ 1790.451427] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1790.452032] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1790.452624] do_syscall_64+0x33/0x40 [ 1790.453051] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1790.453638] RIP: 0033:0x7ff9de16bb19 [ 1790.454048] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1790.456164] RSP: 002b:00007ff9db6c0108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1790.457035] RAX: ffffffffffffffda RBX: 00007ff9de27f020 RCX: 00007ff9de16bb19 [ 1790.457811] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1790.458636] RBP: 00000000200002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1790.459420] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000000000000 [ 1790.460189] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:18 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 59) 07:16:18 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) lseek(r1, 0xac99, 0x3) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:16:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0x2}], 0x1}, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:16:18 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 61) 07:16:18 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 42) 07:16:18 executing program 0: set_tid_address(&(0x7f0000000000)) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0x9c, 0x86, 0x1, 0x99, 0x0, 0x4, 0x18004, 0x8, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x800, 0x1, @perf_bp={&(0x7f0000000040), 0x9}, 0x100a0, 0x7fff, 0x0, 0x2, 0x8, 0xdaa, 0x33, 0x0, 0x4, 0x0, 0x1}, 0x0, 0x1, r0, 0x8) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) set_tid_address(&(0x7f0000000080)) fork() 07:16:18 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x7e00, &(0x7f0000000300), 0x0, 0x0) 07:16:18 executing program 3: r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f00000007c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="2e2f66696c653000f8a4eedf7141"]) r2 = syz_open_procfs(0x0, 0x0) fspick(r2, 0x0, 0x0) r3 = pidfd_getfd(r2, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000000003f496d0ff3", @ANYRES32, @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB='./file0\x00']) r5 = syz_open_procfs(0x0, 0x0) fspick(r5, 0x0, 0x0) r6 = pidfd_getfd(r5, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r6, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, r7}}, './file0\x00'}) lstat(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000800)='system.posix_acl_access\x00', &(0x7f0000000900)=ANY=[@ANYBLOB="02000000010004000000000002000400", @ANYRES32=0xee00, @ANYBLOB="040002000000000008000400", @ANYRES32=r1, @ANYBLOB="08000500", @ANYRES32=r4, @ANYBLOB="08000400", @ANYRES32, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r7, @ANYBLOB='\b\x00\x00\x00', @ANYRES32, @ANYBLOB='\b\x00\a\x00', @ANYRES32=0xee00, @ANYBLOB="08000500", @ANYRES32=r8, @ANYBLOB='\b\x00\x00\x00', @ANYRES32, @ANYBLOB="08000500", @ANYRES32=0x0, @ANYBLOB="10000100000000002000020000000000"], 0x74, 0x3) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) r9 = syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xfcd, 0xa, &(0x7f00000005c0)=[{&(0x7f0000000080)="dd156c3c83b34943afb69754055511efb33ed0a3", 0x14, 0xffe0}, {&(0x7f0000000100)="1e6a5261e33deea5ae6980f6f32eecaee0cc9c89b0da11e77d1f8546b3589bcd095486e44e1fe941afa8d6ba757d81671449587852a488fa72070dbbdf2c265b67e220cd60df153d97f75338e1331b2ed21d0f79969664c0c0972aaf8a2efbe2de280b92551fb991d3c2df2f28b90990f9f239977e69d0cc24a79736c9ef80f02425f5d5b5522e9dabb368b133551c9c8278aee2355a5e02995f16", 0x14}, {&(0x7f00000001c0)="5c08376663b81770df15f3aa267526434d6ad4e09baa75cc6ba0e2f88b2a992e43a85da1907f69ed85836fe7b2e5a24863c9d1e22fb4fcc5327ae99aec1ea1d2c352ce69afe69374d08903b912db32c8a5518d3705c1fcc09552e4657f2925968b43a2ea92ee41aefad266193a533ae5ee202f2debebdcafd2ae0a1763eabaa9d054b6fa987dc5353ed48f1d0b001a123ed369ce7d1f2cdee85baef33c1ab7cabdabaf836529956407f4f98f3fb44ec10aa44f9e60e98fc1213fcf537e1fceb2", 0xc0, 0x296d}, {&(0x7f0000000280)="ab115a39d4bbed878a078045dc25720bcb8e7b0149954034b7b4c8a54716592c4374745bea4f609208a626e506a14d706fa75a563684fc38181f8a6f82797d0af463a60b80adbf3f3a8cf108c5557069415e283381a8062b681c1f04ce3552fb34c60ab7ab1b738a0ca6a1105dc4b550b847636484692c", 0x77, 0x3ff}, {&(0x7f0000000300)="8de8b475c2ef32252eeeda02d0f6f91ce64c5901743b1f41146d9432901bfe1ef48450b486a15a791e070000005e103ee4f5773f7d96a475037f82d45e48", 0x3e, 0x5}, {&(0x7f0000000340)="04d9e3e3fb2c74925badde7b5020de2f7e7b571d18c0cfe3753d6004042bcdf59b61acdbbabeb4a4c88d68b22a5e1ea123ed", 0x32, 0x2}, {&(0x7f0000000380)="156ebc015eeb6a3cd7ae9540b2571316eab313781bafbfb9090c71ccb7281b969bef8c32a2c45ac1e8e4bcb126cfb302f686529edc567bb7b040a8453e1d393f82818b9e7a7766b01b929dd9df219a3203ab05d641ce161202dff8cc5fb3e7f47e2a72d2581a6c18276ffc3541c69c05ff427b25eb2fac81d0c5b9aa5154790ff70a6d54cadb13669e86fafe451cc0d8e6805d7ebb75d1ca269889e6064ae2e5eaa4425c729c4edf1000ddbee3609d30fef6aa1f1d7ff72f", 0xb8, 0x7}, {&(0x7f0000000440)="5fcdf8f0ca97c0a3476786a5b77b4807d8317b9f638bf7e285d24393ca8ea0441b5f66f15782e883810bb25ddf148064365aa2df2d2ac258393d4b3ecafb6dae772ea6a30665", 0x46, 0x101}, {&(0x7f00000004c0)="25bec22cd2a6bc08bcbff2d2461305e795e8a508bf13932dee9323d88991f8951176448e2ba7e96d8206716b4ae5478ad7a7fb85c607ed9d6020074ea091d4003f790ed5ffab6c2c9f393474c8d566af59f6aaaebc60101589039a8de678113bd95aff49b8edd4a1b0ad4dde23c4da88ddf53142b7f080d57f0d13d96cdf8f58f6c77f67b2c7ab00600f9fb7a6846dc7963de3dae3038a3b22900a61257aeecb9f534f2b036b8ff445550b791cfcc2b296f02c32bdb4d6c99a6aba0ba2aaae", 0xbf, 0x1000}, {&(0x7f0000000580)="29cfe363316261f2edfd17bf6354d84ee714aa01326dcc5f973e37", 0x1b, 0x1}], 0x300000, &(0x7f00000006c0)=ANY=[@ANYBLOB='sys_immutable,obj_role=,uid<', @ANYRESDEC=0xee01, @ANYBLOB=',uit<', @ANYRESDEC=0x0, @ANYBLOB=',pcr=00000000000000000046,hash,uid=', @ANYRESDEC=0xee00, @ANYBLOB=',\x00']) openat(r9, &(0x7f0000000780)='./file0\x00', 0x400, 0x8) fork() [ 1805.679048] FAULT_INJECTION: forcing a failure. [ 1805.679048] name failslab, interval 1, probability 0, space 0, times 0 [ 1805.680670] CPU: 1 PID: 17275 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1805.681610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1805.682748] Call Trace: [ 1805.683115] dump_stack+0x107/0x167 [ 1805.683623] should_fail.cold+0x5/0xa [ 1805.684150] ? create_object.isra.0+0x3a/0xa30 [ 1805.684774] should_failslab+0x5/0x20 [ 1805.685296] kmem_cache_alloc+0x5b/0x310 [ 1805.685852] ? mark_held_locks+0x9e/0xe0 [ 1805.686409] create_object.isra.0+0x3a/0xa30 [ 1805.687013] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1805.687715] kmem_cache_alloc+0x159/0x310 [ 1805.688290] xas_alloc+0x336/0x440 [ 1805.688778] xas_create+0x34a/0x10d0 [ 1805.689302] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1805.690010] xas_store+0x8c/0x1c40 [ 1805.690501] __xa_store+0x164/0x2d0 [ 1805.690993] ? xa_delete_node+0x280/0x280 [ 1805.691567] ? trace_hardirqs_on+0x5b/0x180 [ 1805.692153] xa_store+0x31/0x50 [ 1805.692601] __io_uring_add_tctx_node+0x1cf/0x520 [ 1805.693253] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1805.693961] ? alloc_fd+0x2e7/0x670 [ 1805.694462] io_uring_setup+0x1fbb/0x2980 [ 1805.695027] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1805.695722] ? wait_for_completion_io+0x270/0x270 [ 1805.696390] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1805.697098] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1805.697795] do_syscall_64+0x33/0x40 [ 1805.698303] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1805.698999] RIP: 0033:0x7fb912e91b19 [ 1805.699515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1805.702003] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1805.703042] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1805.704011] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1805.704975] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1805.705943] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1805.706912] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1805.736071] FAULT_INJECTION: forcing a failure. [ 1805.736071] name failslab, interval 1, probability 0, space 0, times 0 [ 1805.737842] CPU: 1 PID: 17283 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1805.738790] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1805.739905] Call Trace: [ 1805.740272] dump_stack+0x107/0x167 [ 1805.740754] should_fail.cold+0x5/0xa [ 1805.741264] ? vm_area_dup+0x78/0x290 [ 1805.741767] should_failslab+0x5/0x20 [ 1805.742278] kmem_cache_alloc+0x5b/0x310 [ 1805.742828] vm_area_dup+0x78/0x290 [ 1805.743323] ? lock_release+0x680/0x680 [ 1805.743855] ? mark_lock+0xf5/0x2df0 [ 1805.744361] ? lock_chain_count+0x20/0x20 [ 1805.744922] ? mark_lock+0xf5/0x2df0 [ 1805.745423] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1805.746119] ? lock_chain_count+0x20/0x20 [ 1805.746670] ? mark_lock+0xf5/0x2df0 [ 1805.747178] ? vm_area_alloc+0x110/0x110 [ 1805.747717] ? __lock_acquire+0x1657/0x5b00 [ 1805.748307] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1805.749006] ? SOFTIRQ_verbose+0x10/0x10 [ 1805.749547] ? vmacache_find+0x55/0x2a0 [ 1805.750088] __split_vma+0xa8/0x4e0 [ 1805.750582] __do_munmap+0x365/0x1260 [ 1805.751107] ? arch_get_unmapped_area+0x450/0x450 [ 1805.751760] mmap_region+0x7cc/0x1500 [ 1805.752283] do_mmap+0x868/0x1370 [ 1805.752761] vm_mmap_pgoff+0x198/0x1f0 [ 1805.753282] ? randomize_page+0xb0/0xb0 [ 1805.753825] ksys_mmap_pgoff+0x41c/0x560 [ 1805.754373] ? find_mergeable_anon_vma+0x250/0x250 [ 1805.755028] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1805.755735] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1805.756414] do_syscall_64+0x33/0x40 [ 1805.756907] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1805.757576] RIP: 0033:0x7ff9de16bb62 [ 1805.758076] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1805.760525] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1805.761527] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1805.762501] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1805.763458] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1805.764415] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1805.765381] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1805.861088] FAULT_INJECTION: forcing a failure. [ 1805.861088] name failslab, interval 1, probability 0, space 0, times 0 [ 1805.864240] CPU: 0 PID: 17281 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1805.866036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1805.868053] Call Trace: [ 1805.868932] dump_stack+0x107/0x167 [ 1805.870060] should_fail.cold+0x5/0xa [ 1805.871175] ? xas_alloc+0x336/0x440 [ 1805.872188] should_failslab+0x5/0x20 [ 1805.873149] kmem_cache_alloc+0x5b/0x310 [ 1805.874383] xas_alloc+0x336/0x440 [ 1805.875443] xas_create+0x34a/0x10d0 [ 1805.876685] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1805.878088] xas_store+0x8c/0x1c40 [ 1805.879451] __xa_store+0x164/0x2d0 [ 1805.880500] ? xa_delete_node+0x280/0x280 [ 1805.881808] ? trace_hardirqs_on+0x5b/0x180 [ 1805.883158] xa_store+0x31/0x50 [ 1805.884127] __io_uring_add_tctx_node+0x1cf/0x520 [ 1805.885392] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1805.886649] ? alloc_fd+0x2e7/0x670 [ 1805.887916] io_uring_setup+0x1fbb/0x2980 [ 1805.889185] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1805.890401] ? wait_for_completion_io+0x270/0x270 [ 1805.892172] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1805.893452] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1805.894862] do_syscall_64+0x33/0x40 [ 1805.895833] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1805.897064] RIP: 0033:0x7f341b7f3b19 [ 1805.898006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 07:16:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1805.902069] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1805.904067] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1805.905726] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1805.907391] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1805.909045] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1805.910694] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:18 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 43) 07:16:18 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x5, &(0x7f0000000000)=0xf94, 0x4) clock_gettime(0x0, &(0x7f0000006fc0)={0x0, 0x0}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000006dc0)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000000c0)=""/138, 0x8a}, {&(0x7f0000000180)=""/162, 0xa2}, {&(0x7f0000000240)=""/77, 0x4d}, {&(0x7f0000000040)=""/43, 0x2b}, {&(0x7f00000002c0)=""/232, 0xe8}, {&(0x7f00000003c0)=""/104, 0x68}, {&(0x7f0000000440)=""/219, 0xdb}, {&(0x7f0000000540)=""/112, 0x70}], 0x8}}, {{&(0x7f0000000640)=@abs, 0x6e, &(0x7f0000000900)=[{&(0x7f00000006c0)=""/96, 0x60}, {&(0x7f0000000740)=""/240, 0xf0}, {&(0x7f0000000840)=""/106, 0x6a}, {&(0x7f00000008c0)=""/39, 0x27}], 0x4, &(0x7f0000000940)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}}, {{&(0x7f00000009c0), 0x6e, &(0x7f0000001b40)=[{&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000001a40)=""/233, 0xe9}], 0x2}}, {{&(0x7f0000001b80)=@abs, 0x6e, &(0x7f0000002000)=[{&(0x7f0000001c00)=""/131, 0x83}, {&(0x7f0000001cc0)=""/222, 0xde}, {&(0x7f0000001dc0)=""/245, 0xf5}, {&(0x7f0000001ec0)=""/165, 0xa5}, {&(0x7f0000001f80)=""/108, 0x6c}], 0x5, &(0x7f0000002080)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f00000020c0)=@abs, 0x6e, &(0x7f00000031c0)=[{&(0x7f0000002140)=""/4096, 0x1000}, {&(0x7f0000003140)=""/112, 0x70}], 0x2, &(0x7f0000003200)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98}}, {{&(0x7f00000032c0), 0x6e, &(0x7f00000055c0)=[{&(0x7f0000003340)=""/161, 0xa1}, {&(0x7f0000003400)=""/107, 0x6b}, {&(0x7f0000003480)=""/4096, 0x1000}, {&(0x7f0000004480)=""/4096, 0x1000}, {&(0x7f0000005480)=""/55, 0x37}, {&(0x7f00000054c0)=""/211, 0xd3}], 0x6, &(0x7f0000005640)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000005680), 0x6e, &(0x7f0000006a00)=[{&(0x7f0000005700)=""/52, 0x34}, {&(0x7f0000005740)=""/167, 0xa7}, {&(0x7f0000005800)=""/4096, 0x1000}, {&(0x7f0000006800)=""/181, 0xb5}, {&(0x7f00000068c0)=""/62, 0x3e}, {&(0x7f0000006900)=""/195, 0xc3}], 0x6}}, {{0x0, 0x0, &(0x7f0000006c40)=[{&(0x7f0000006a80)=""/130, 0x82}, {&(0x7f0000006b40)=""/207, 0xcf}], 0x2, &(0x7f0000006c80)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x138}}], 0x8, 0x12001, &(0x7f0000007000)={r1, r2+60000000}) setsockopt$inet6_tcp_int(r3, 0x6, 0xa, &(0x7f0000000080), 0x4) [ 1806.020884] FAULT_INJECTION: forcing a failure. [ 1806.020884] name failslab, interval 1, probability 0, space 0, times 0 [ 1806.023692] CPU: 0 PID: 17397 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1806.025306] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.027232] Call Trace: [ 1806.027968] dump_stack+0x107/0x167 [ 1806.029014] should_fail.cold+0x5/0xa [ 1806.030046] ? xas_alloc+0x336/0x440 [ 1806.031056] should_failslab+0x5/0x20 [ 1806.032025] kmem_cache_alloc+0x5b/0x310 [ 1806.033258] xas_alloc+0x336/0x440 [ 1806.034321] xas_create+0x34a/0x10d0 [ 1806.035639] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1806.037359] xas_store+0x8c/0x1c40 [ 1806.039305] __xa_store+0x164/0x2d0 [ 1806.040761] ? xa_delete_node+0x280/0x280 [ 1806.042592] ? trace_hardirqs_on+0x5b/0x180 [ 1806.044484] xa_store+0x31/0x50 [ 1806.045812] __io_uring_add_tctx_node+0x1cf/0x520 [ 1806.047474] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1806.048837] ? alloc_fd+0x2e7/0x670 [ 1806.050643] io_uring_setup+0x1fbb/0x2980 [ 1806.052437] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1806.053924] ? wait_for_completion_io+0x270/0x270 [ 1806.055897] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1806.057214] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1806.059169] do_syscall_64+0x33/0x40 [ 1806.060473] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.062116] RIP: 0033:0x7fb912e91b19 [ 1806.063408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1806.068677] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1806.071134] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1806.073212] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1806.075220] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1806.076978] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1806.078617] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:18 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 62) 07:16:18 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1806.170208] FAULT_INJECTION: forcing a failure. [ 1806.170208] name failslab, interval 1, probability 0, space 0, times 0 [ 1806.173141] CPU: 0 PID: 17418 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1806.174785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.176715] Call Trace: [ 1806.177479] dump_stack+0x107/0x167 [ 1806.178559] should_fail.cold+0x5/0xa [ 1806.179630] ? create_object.isra.0+0x3a/0xa30 [ 1806.180848] should_failslab+0x5/0x20 [ 1806.181824] kmem_cache_alloc+0x5b/0x310 [ 1806.183111] create_object.isra.0+0x3a/0xa30 [ 1806.184220] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1806.185663] kmem_cache_alloc+0x159/0x310 [ 1806.186969] vm_area_dup+0x78/0x290 [ 1806.188238] ? mark_lock+0xf5/0x2df0 [ 1806.189455] ? lock_chain_count+0x20/0x20 [ 1806.190692] ? perf_event_switch_output+0x7d0/0x7d0 [ 1806.192069] ? lock_chain_count+0x20/0x20 [ 1806.193112] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1806.194224] ? trace_hardirqs_on+0x5b/0x180 [ 1806.195482] ? mark_lock+0xf5/0x2df0 [ 1806.196573] ? vm_area_alloc+0x110/0x110 [ 1806.197767] ? __lock_acquire+0x1657/0x5b00 [ 1806.199391] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1806.200688] ? SOFTIRQ_verbose+0x10/0x10 [ 1806.201764] ? vmacache_find+0x55/0x2a0 [ 1806.202907] __split_vma+0xa8/0x4e0 [ 1806.204038] __do_munmap+0x365/0x1260 [ 1806.205120] ? arch_get_unmapped_area+0x450/0x450 [ 1806.206611] mmap_region+0x7cc/0x1500 [ 1806.208121] do_mmap+0x868/0x1370 [ 1806.209383] vm_mmap_pgoff+0x198/0x1f0 [ 1806.210625] ? randomize_page+0xb0/0xb0 [ 1806.212173] ksys_mmap_pgoff+0x41c/0x560 [ 1806.213335] ? find_mergeable_anon_vma+0x250/0x250 [ 1806.214684] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1806.215993] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1806.217447] do_syscall_64+0x33/0x40 [ 1806.218432] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.219685] RIP: 0033:0x7ff9de16bb62 [ 1806.220642] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1806.224709] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1806.226581] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1806.228267] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1806.229940] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1806.231626] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1806.233390] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:19 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000400)=ANY=[@ANYBLOB="010000000100000018000000b194edad4e45d835dfc68ad70337667613cf17df7b55470c41cf334ba37714a88849cdd54fe8a5ec37c42fed2bdc098a172e0d481be90f5664d0ef9a801ff3b4efd928d35c9b443ff0a9329e5c59a783e4004c9376cef0ae6bcccc3914f9836067d33d2a44caecccf69df446a0f040833201f30e9c9e600254de606537e67de5708b935e9413fc8bf2b8de64a1bf54f8a15bd5d490009f97f32157f525472d678313186c3060ef9741410fee4b3a2bb63ef524f130f9c577f77be7251127ad0aa70049503de2301fa22a98cbe757f37f0edaf9ae7cc8d13d8e6a4d9677c74ebcc1ff0a5643f113b2c5481fc58bb499520cc4", @ANYBLOB="9fb9ad421abca6fda7577c67712f1beb34f5a0d234b8bbccc14a863853422bfc6888d7c20e4c02e48d746fe6a3a0974de79e45efdca91fd314801f5d2cef244e5829ede42bd3b4f7376570dd62a088bd9cbbe83c2915b2c78ea7d1dd1cf955a1743031", @ANYBLOB="04000000a11e0000feff002e2f66af19b4ebd8fb29243dd32c2df52eada655696c652000e628faa73fb4e048dd77a602e4a658c967759827a643b25c8b62fba88c25366d56f28783c12c552e6f06dc61f57269ea15248a272d43461d4959f78484f7d2cf53eab08bd2d86b2000476aec0b24ee2185e85fe60c87aeccfc55f87e87af3ecaa2768bc81aeb0f33eacdd34deab204244c4ef01b2b3b07ad91d3cbe1ed7aeb36f21775fc7d6c68d2c5b714e1c83c05864dfe4f5544e94ff9"]) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r3 = pidfd_getfd(r2, r1, 0x0) r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) fcntl$getown(r4, 0x9) r5 = creat(&(0x7f00000001c0)='./file0\x00', 0x80) syz_io_uring_setup(0x71e3, &(0x7f0000000280)={0x0, 0x94ff, 0x4, 0x1, 0x20000036, 0x0, r5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000300), &(0x7f0000000500)) setsockopt$inet6_tcp_int(r3, 0x6, 0x1, &(0x7f0000000040)=0x6, 0x33) fcntl$setflags(r0, 0x2, 0x0) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000016140), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_RINGS_SET(r7, &(0x7f0000016580)={0x0, 0x0, &(0x7f0000016540)={&(0x7f0000000040)={0x34, r6, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x9}]}, 0x34}}, 0x0) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r3) io_uring_register$IORING_UNREGISTER_EVENTFD(r2, 0x5, 0x0, 0x0) sendmsg$NL80211_CMD_ASSOCIATE(r7, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f0000000340)={0xb4, r8, 0x200, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8000}}}}, [@NL80211_ATTR_FILS_KEK={0x15, 0xf2, "8cd88ac24cedd9e41aace28004b83f27f0"}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x80000, {0x200, 0xff, 0x4, 0xfffb}}}, @NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0xe000, {0x8001, 0x5e3, 0x81, 0x4}}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x800, 0x3, 0x2, 0x0, {0x6, 0x4, 0x0, 0x8, 0x0, 0x1, 0x1, 0x3, 0x1}, 0x8, 0x380e, 0x9}}, @NL80211_ATTR_USE_RRM={0x4}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x1000, {0x7, 0x6, 0x0, 0x8}}}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x10001}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x99e}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x16d5}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}]]}, 0xb4}, 0x1, 0x0, 0x0, 0x10000004}, 0x8000) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:16:19 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 60) 07:16:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:16:19 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 44) [ 1806.371900] FAULT_INJECTION: forcing a failure. [ 1806.371900] name failslab, interval 1, probability 0, space 0, times 0 [ 1806.374545] CPU: 0 PID: 17513 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1806.376171] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.377698] FAULT_INJECTION: forcing a failure. [ 1806.377698] name failslab, interval 1, probability 0, space 0, times 0 [ 1806.378047] Call Trace: [ 1806.380038] dump_stack+0x107/0x167 [ 1806.381081] should_fail.cold+0x5/0xa [ 1806.382114] ? create_object.isra.0+0x3a/0xa30 [ 1806.383314] should_failslab+0x5/0x20 [ 1806.384277] kmem_cache_alloc+0x5b/0x310 [ 1806.385314] ? mark_held_locks+0x9e/0xe0 [ 1806.386497] create_object.isra.0+0x3a/0xa30 [ 1806.387587] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1806.388992] kmem_cache_alloc+0x159/0x310 [ 1806.390240] xas_alloc+0x336/0x440 [ 1806.391287] xas_create+0x34a/0x10d0 [ 1806.392531] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1806.393945] xas_store+0x8c/0x1c40 [ 1806.395316] __xa_store+0x164/0x2d0 [ 1806.396371] ? xa_delete_node+0x280/0x280 [ 1806.397676] ? trace_hardirqs_on+0x5b/0x180 [ 1806.399026] xa_store+0x31/0x50 [ 1806.399987] __io_uring_add_tctx_node+0x1cf/0x520 [ 1806.401233] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1806.402496] ? alloc_fd+0x2e7/0x670 [ 1806.403785] io_uring_setup+0x1fbb/0x2980 [ 1806.405068] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1806.406289] ? wait_for_completion_io+0x270/0x270 [ 1806.408076] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1806.409363] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1806.410783] do_syscall_64+0x33/0x40 [ 1806.411756] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.412996] RIP: 0033:0x7f341b7f3b19 [ 1806.413945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1806.418022] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1806.419869] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1806.421523] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1806.423184] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1806.424846] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1806.426505] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1806.428699] CPU: 1 PID: 17563 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1806.429497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1806.430393] Call Trace: [ 1806.430704] dump_stack+0x107/0x167 [ 1806.431122] should_fail.cold+0x5/0xa [ 1806.431571] ? create_object.isra.0+0x3a/0xa30 [ 1806.432096] should_failslab+0x5/0x20 [ 1806.432534] kmem_cache_alloc+0x5b/0x310 [ 1806.433003] ? mark_held_locks+0x9e/0xe0 [ 1806.433469] create_object.isra.0+0x3a/0xa30 [ 1806.433969] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1806.434592] kmem_cache_alloc+0x159/0x310 [ 1806.435114] xas_alloc+0x336/0x440 [ 1806.435627] xas_create+0x34a/0x10d0 [ 1806.436093] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1806.436699] xas_store+0x8c/0x1c40 [ 1806.437118] __xa_store+0x164/0x2d0 [ 1806.437536] ? xa_delete_node+0x280/0x280 [ 1806.437994] ? trace_hardirqs_on+0x5b/0x180 [ 1806.438490] xa_store+0x31/0x50 [ 1806.438854] __io_uring_add_tctx_node+0x1cf/0x520 [ 1806.439413] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1806.439980] ? alloc_fd+0x2e7/0x670 [ 1806.440403] io_uring_setup+0x1fbb/0x2980 [ 1806.440885] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1806.441466] ? wait_for_completion_io+0x270/0x270 [ 1806.442005] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1806.442608] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1806.443215] do_syscall_64+0x33/0x40 [ 1806.443647] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1806.444236] RIP: 0033:0x7fb912e91b19 [ 1806.444643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1806.446736] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1806.447610] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1806.448373] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1806.449185] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1806.449959] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1806.450778] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1806.474237] loop6: detected capacity change from 0 to 67108864 07:16:19 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:16:19 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f00000002c0), 0x7}, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000480)=ANY=[@ANYBLOB="0100000209fdf8205cf8b42e", @ANYRES32=r1, @ANYBLOB="05000000000000002e2f66696c653000"]) ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000740)=ANY=[@ANYBLOB="00000000fffffdfd020100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d4571082000000000000000000000000000000000000000000824a700900"/260]) ioctl$BTRFS_IOC_START_SYNC(r1, 0x80089418, &(0x7f0000000100)=0x0) ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000000980)={{r2}, r3, 0x14, @inherit={0x68, &(0x7f00000003c0)={0x1, 0x4, 0x0, 0x0, {0x11, 0x1, 0x400, 0x4, 0x3ff}, [0x8001, 0x5, 0xffffffff, 0x9]}}, @name="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"}) ioctl$BTRFS_IOC_RM_DEV_V2(r0, 0x5000943a, &(0x7f00000005c0)={{r0}, r3, 0x4, @unused=[0x5f, 0xac5, 0xfffffffffffff5ab, 0x6], @subvolid=0x8}) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r4 = socket(0x23, 0x1, 0x7fffffff) ioctl$F2FS_IOC_GARBAGE_COLLECT(r4, 0x4004f506, &(0x7f00000001c0)) r5 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x81, 0x4, &(0x7f0000000340)=[{&(0x7f00000000c0)="5cbcd4f12d7956b0396c07a63c2b877a1004820e8020d61bc8c059a43e593bc0792374c477c412a108785b870b06e0b834f7396e582d4c86eb2555afc137c314606713bb4e20bf23f75f500c73c2cdc0f2f6e7805f745862e856dd53452611bd176b47955f33956588bd078bca219768672a7d6ccd401485898cad24551f64913ee27f350cd8e8eeb44ed7f71350ce5d79fbdbd83aad26495817ac75218ae90ced8edae63a2b9715da80ea614a8eb9cc9ec480c3cd9ca6b0bbd9e45a28ced95c648831eaf9", 0xc5, 0x81}, {&(0x7f00000001c0), 0x0, 0x4}, {&(0x7f0000000200)="9d74f2a162094faa8978c78a0a2acfb49788ea65b3b2d22d1345356023d4ebe5eaf8b5411d4df17b3394814aa192cb0aa91b3f00db6b19d456642beeefbe678bd12a3ecec4dda6d64bd9ddb022fc5232e8a252d08f9701c804fa15019079e8154663aae3d679a8c8d8001048988a5f4cc726547d5e91d1db8e7a8c8b9659844b4e8007761ecd7f7634bc91f9113fc2188a74e271aeb4323f2f880119cdc8e42058156867d9dcd3bfdd02", 0xaa, 0xfffffffffffffffd}, {&(0x7f00000002c0)="8749de50eab2565da9449e8ff1723d63b4e2d784a8fa1f91476e3d9220ac91e006ddd393cd26edb5f247588e23aa6e36fad57418a8ab863fe0dcaec58a3c8d27f5db7bc4169597f17ec1bc62e60cb719c98e3a8950651400b86dcdb49a375f3ac12aa89d22b4f1c5654e1d2f97a6957b0144dc2d395eb571052a7f2fcb", 0x7d, 0x40000000000}], 0x2000, &(0x7f0000000500)=ANY=[@ANYBLOB='nnonumtail=1,nonumtail=0,obj_role=*.@,uid=', @ANYRESDEC=0x0, @ANYBLOB=',seclabel,fowner>', @ANYRESDEC, @ANYBLOB="2c646f6e745f61707072616973652c6f626a5f957c20bfe2efa53da3ca53f38c7bef726f6c653d5e28275d212c6d61736b3d5e4d41595f444541442c00"]) syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, r5, 0x0, &(0x7f0000000480)='./file0\x00', 0x10c, 0x10000, 0x23456}, 0x1) [ 1806.663005] loop5: detected capacity change from 0 to 135266304 07:16:32 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 63) 07:16:32 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpid() process_vm_readv(r0, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r3 = pidfd_getfd(r2, r1, 0x0) syz_io_uring_setup(0x71e3, &(0x7f0000000280)={0x0, 0x94ff, 0x20, 0x1, 0x36, 0x0, r3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000500)) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x5, 0x7f, 0xc4, 0x0, 0x3, 0x400, 0x4, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, @perf_bp, 0x4b000, 0x7, 0x1f, 0x4, 0x4, 0x3ff, 0xe16, 0x0, 0xffff8217, 0x0, 0x1}, r0, 0xa, r3, 0x9) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000700)={0x3, 0x8, 0x80000001}) fork() 07:16:32 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 45) 07:16:32 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x8004, &(0x7f0000000300), 0x0, 0x0) 07:16:32 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 61) 07:16:32 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:16:32 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x644600, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x17, &(0x7f0000000040)=0x5, 0x4) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:16:32 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(r0, &(0x7f0000000000)=""/128, 0x80, 0x25) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x3000000, 0x10, 0xffffffffffffffff, 0x4a774000) fork() [ 1820.114175] FAULT_INJECTION: forcing a failure. [ 1820.114175] name failslab, interval 1, probability 0, space 0, times 0 [ 1820.115671] CPU: 1 PID: 17958 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1820.116558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1820.117625] Call Trace: [ 1820.117951] dump_stack+0x107/0x167 [ 1820.118417] should_fail.cold+0x5/0xa [ 1820.118905] ? xas_alloc+0x336/0x440 [ 1820.119385] should_failslab+0x5/0x20 [ 1820.119870] kmem_cache_alloc+0x5b/0x310 [ 1820.120390] xas_alloc+0x336/0x440 [ 1820.120847] xas_create+0x34a/0x10d0 [ 1820.121338] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1820.122007] xas_store+0x8c/0x1c40 [ 1820.122473] __xa_store+0x164/0x2d0 [ 1820.122940] ? xa_delete_node+0x280/0x280 [ 1820.123450] ? trace_hardirqs_on+0x5b/0x180 [ 1820.124002] xa_store+0x31/0x50 [ 1820.124430] __io_uring_add_tctx_node+0x1cf/0x520 [ 1820.125043] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1820.125715] ? alloc_fd+0x2e7/0x670 [ 1820.126184] io_uring_setup+0x1fbb/0x2980 [ 1820.126723] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1820.127372] ? wait_for_completion_io+0x270/0x270 [ 1820.128005] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1820.128674] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1820.129291] do_syscall_64+0x33/0x40 [ 1820.129764] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1820.130409] RIP: 0033:0x7fb912e91b19 [ 1820.130876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1820.133242] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1820.134153] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1820.134999] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1820.135869] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1820.136717] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1820.137566] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:32 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:16:33 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1820.266131] FAULT_INJECTION: forcing a failure. [ 1820.266131] name failslab, interval 1, probability 0, space 0, times 0 [ 1820.269160] CPU: 0 PID: 17953 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1820.270840] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1820.272819] Call Trace: [ 1820.273588] dump_stack+0x107/0x167 [ 1820.274728] should_fail.cold+0x5/0xa [ 1820.275816] ? anon_vma_clone+0xdc/0x590 [ 1820.276942] should_failslab+0x5/0x20 [ 1820.277937] kmem_cache_alloc+0x5b/0x310 [ 1820.279232] anon_vma_clone+0xdc/0x590 [ 1820.280614] __split_vma+0x17c/0x4e0 [ 1820.281777] __do_munmap+0x365/0x1260 [ 1820.282880] ? arch_get_unmapped_area+0x450/0x450 [ 1820.284414] mmap_region+0x7cc/0x1500 [ 1820.285932] do_mmap+0x868/0x1370 [ 1820.287207] vm_mmap_pgoff+0x198/0x1f0 [ 1820.288470] ? randomize_page+0xb0/0xb0 [ 1820.290013] ksys_mmap_pgoff+0x41c/0x560 [ 1820.291190] ? find_mergeable_anon_vma+0x250/0x250 [ 1820.292563] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1820.293892] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1820.295367] do_syscall_64+0x33/0x40 [ 1820.296366] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1820.297664] RIP: 0033:0x7ff9de16bb62 [ 1820.298686] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1820.302869] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1820.304781] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1820.306486] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1820.308225] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1820.309933] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1820.311653] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1820.319105] FAULT_INJECTION: forcing a failure. [ 1820.319105] name failslab, interval 1, probability 0, space 0, times 0 [ 1820.322057] CPU: 0 PID: 17938 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1820.323697] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1820.325619] Call Trace: [ 1820.326369] dump_stack+0x107/0x167 [ 1820.327455] should_fail.cold+0x5/0xa [ 1820.328512] ? vm_area_dup+0x78/0x290 [ 1820.329583] should_failslab+0x5/0x20 [ 1820.330552] kmem_cache_alloc+0x5b/0x310 [ 1820.331833] vm_area_dup+0x78/0x290 [ 1820.333079] ? mark_lock+0xf5/0x2df0 [ 1820.334285] ? lock_chain_count+0x20/0x20 [ 1820.335532] ? perf_event_switch_output+0x7d0/0x7d0 [ 1820.336892] ? lock_chain_count+0x20/0x20 [ 1820.337932] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1820.339039] ? trace_hardirqs_on+0x5b/0x180 [ 1820.340294] ? mark_lock+0xf5/0x2df0 [ 1820.341382] ? vm_area_alloc+0x110/0x110 [ 1820.342575] ? __lock_acquire+0x1657/0x5b00 [ 1820.344198] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1820.345497] ? SOFTIRQ_verbose+0x10/0x10 [ 1820.346573] ? vmacache_find+0x55/0x2a0 [ 1820.347722] __split_vma+0xa8/0x4e0 [ 1820.348846] __do_munmap+0x365/0x1260 [ 1820.349923] ? arch_get_unmapped_area+0x450/0x450 [ 1820.351415] mmap_region+0x7cc/0x1500 [ 1820.352911] do_mmap+0x868/0x1370 [ 1820.354165] vm_mmap_pgoff+0x198/0x1f0 [ 1820.355408] ? randomize_page+0xb0/0xb0 [ 1820.356944] ksys_mmap_pgoff+0x41c/0x560 [ 1820.358103] ? find_mergeable_anon_vma+0x250/0x250 [ 1820.359454] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1820.360760] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1820.362206] do_syscall_64+0x33/0x40 [ 1820.363190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1820.364446] RIP: 0033:0x7f341b7f3b62 [ 1820.365402] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1820.369484] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1820.371362] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1820.373039] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1820.374714] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1820.376393] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1820.378067] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1820.534898] loop6: detected capacity change from 0 to 67108864 07:16:49 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) pidfd_getfd(r1, r0, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e23, 0xfffffffb, @remote, 0x81}, 0x1c) fork() 07:16:49 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:16:49 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0xa676, &(0x7f0000000300), 0x0, 0x0) 07:16:49 executing program 0: recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001a80)=[{{&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000000180)=[{&(0x7f0000000080)=""/38, 0x26}], 0x1, &(0x7f00000001c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x148}}, {{&(0x7f0000000340), 0x6e, &(0x7f0000000540)=[{&(0x7f00000003c0)=""/110, 0x6e}, {&(0x7f0000000440)=""/220, 0xdc}], 0x2, &(0x7f0000000580)=[@cred={{0x1c}}], 0x20}}, {{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000005c0)=""/14, 0xe}, {0xfffffffffffffffd}, {&(0x7f0000000600)=""/112, 0x70}], 0x3, &(0x7f00000006c0)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xf0}}, {{&(0x7f00000007c0)=@abs, 0x6e, &(0x7f0000000ec0)=[{&(0x7f0000000840)=""/139, 0x8b}, {&(0x7f0000000900)=""/218, 0xda}, {&(0x7f0000000a00)=""/59, 0x3b}, {&(0x7f0000000a40)=""/229, 0xe5}, {&(0x7f0000000b40)=""/183, 0xb7}, {&(0x7f0000000c00)=""/196, 0xc4}, {&(0x7f0000000d00)=""/236, 0xec}, {&(0x7f0000000e00)=""/165, 0xa5}], 0x8, &(0x7f0000000f40)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x158}}, {{&(0x7f00000010c0), 0x6e, &(0x7f0000001240)=[{&(0x7f0000001140)=""/243, 0xf3}], 0x1}}, {{0x0, 0x0, &(0x7f0000001480)=[{&(0x7f0000001280)=""/98, 0x62}, {&(0x7f0000001300)=""/218, 0xda}, {&(0x7f0000001400)=""/18, 0x12}, {&(0x7f0000001440)=""/4, 0x4}], 0x4, &(0x7f00000014c0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x160}}, {{&(0x7f0000001640)=@abs, 0x6e, &(0x7f0000001780)=[{&(0x7f00000016c0)=""/191, 0xbf}], 0x1}}, {{&(0x7f00000017c0)=@abs, 0x6e, &(0x7f0000001a00)=[{&(0x7f0000001840)=""/154, 0x9a}, {&(0x7f0000001900)=""/224, 0xe0}], 0x2, &(0x7f0000001a40)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}}], 0x8, 0x22, 0x0) r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x9, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x5}, 0x4000, 0x0, 0x2, 0x8, 0x4cef197}, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) r3 = fork() r4 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) dup3(r4, r0, 0x80000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x88, 0x1f, 0x1, 0x1, 0x0, 0x5, 0x20000, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x5, @perf_config_ext={0x4, 0x7fffffff}, 0x4100d, 0x7, 0x9, 0x5, 0x40c7, 0x8, 0x5, 0x0, 0x4, 0x0, 0x6}, r3, 0xe, r2, 0x1) 07:16:49 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 46) 07:16:49 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd8) linkat(r1, &(0x7f00000000c0)='./file0\x00', r1, &(0x7f0000000100)='./file0\x00', 0x1400) setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000040)=ANY=[@ANYRESDEC=r1], 0x18) 07:16:49 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 64) 07:16:49 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 62) [ 1836.505782] FAULT_INJECTION: forcing a failure. [ 1836.505782] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.508217] CPU: 1 PID: 18277 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1836.509738] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.511484] Call Trace: [ 1836.512041] dump_stack+0x107/0x167 [ 1836.512806] should_fail.cold+0x5/0xa [ 1836.513601] ? create_object.isra.0+0x3a/0xa30 [ 1836.514565] should_failslab+0x5/0x20 [ 1836.515368] kmem_cache_alloc+0x5b/0x310 [ 1836.516229] ? mark_held_locks+0x9e/0xe0 [ 1836.517077] create_object.isra.0+0x3a/0xa30 [ 1836.518005] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.519079] kmem_cache_alloc+0x159/0x310 [ 1836.519977] xas_alloc+0x336/0x440 [ 1836.520726] xas_create+0x34a/0x10d0 [ 1836.521518] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.522622] xas_store+0x8c/0x1c40 [ 1836.523378] __xa_store+0x164/0x2d0 [ 1836.524149] ? xa_delete_node+0x280/0x280 [ 1836.525025] ? trace_hardirqs_on+0x5b/0x180 [ 1836.525939] xa_store+0x31/0x50 [ 1836.526628] __io_uring_add_tctx_node+0x1cf/0x520 [ 1836.527658] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1836.528753] ? alloc_fd+0x2e7/0x670 [ 1836.529530] io_uring_setup+0x1fbb/0x2980 [ 1836.530399] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1836.531460] ? wait_for_completion_io+0x270/0x270 [ 1836.532522] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.533619] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.534709] do_syscall_64+0x33/0x40 [ 1836.535500] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.536574] RIP: 0033:0x7fb912e91b19 [ 1836.537353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1836.541214] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1836.542824] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1836.544326] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1836.545824] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1836.547324] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1836.548839] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1836.568742] FAULT_INJECTION: forcing a failure. [ 1836.568742] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.571329] CPU: 1 PID: 18300 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1836.572792] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.574535] Call Trace: [ 1836.575092] dump_stack+0x107/0x167 [ 1836.575876] should_fail.cold+0x5/0xa [ 1836.576684] ? create_object.isra.0+0x3a/0xa30 [ 1836.577553] FAULT_INJECTION: forcing a failure. [ 1836.577553] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.579913] should_failslab+0x5/0x20 [ 1836.579933] kmem_cache_alloc+0x5b/0x310 [ 1836.579959] create_object.isra.0+0x3a/0xa30 [ 1836.579975] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.580001] kmem_cache_alloc+0x159/0x310 [ 1836.580028] vm_area_dup+0x78/0x290 [ 1836.580049] ? lock_release+0x680/0x680 [ 1836.580072] ? mark_lock+0xf5/0x2df0 [ 1836.580099] ? lock_chain_count+0x20/0x20 [ 1836.580118] ? mark_lock+0xf5/0x2df0 [ 1836.580144] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.580163] ? lock_chain_count+0x20/0x20 [ 1836.580188] ? mark_lock+0xf5/0x2df0 [ 1836.580213] ? vm_area_alloc+0x110/0x110 [ 1836.580236] ? __lock_acquire+0x1657/0x5b00 [ 1836.593136] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.594223] ? SOFTIRQ_verbose+0x10/0x10 [ 1836.595070] ? vmacache_find+0x55/0x2a0 [ 1836.595915] __split_vma+0xa8/0x4e0 [ 1836.596680] __do_munmap+0x365/0x1260 [ 1836.597487] ? arch_get_unmapped_area+0x450/0x450 [ 1836.598494] mmap_region+0x7cc/0x1500 [ 1836.599303] do_mmap+0x868/0x1370 [ 1836.600054] vm_mmap_pgoff+0x198/0x1f0 [ 1836.600878] ? randomize_page+0xb0/0xb0 [ 1836.601724] ksys_mmap_pgoff+0x41c/0x560 [ 1836.602572] ? find_mergeable_anon_vma+0x250/0x250 [ 1836.603609] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.604699] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.605778] do_syscall_64+0x33/0x40 [ 1836.606557] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.607632] RIP: 0033:0x7f341b7f3b62 [ 1836.608410] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1836.612274] RSP: 002b:00007f3418d480f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1836.613864] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1836.615350] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1836.616852] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1836.618336] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1836.619837] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1836.621377] CPU: 0 PID: 18271 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1836.623030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.624984] Call Trace: [ 1836.625745] dump_stack+0x107/0x167 [ 1836.626823] should_fail.cold+0x5/0xa [ 1836.627899] ? create_object.isra.0+0x3a/0xa30 [ 1836.629117] should_failslab+0x5/0x20 [ 1836.630100] kmem_cache_alloc+0x5b/0x310 [ 1836.631382] create_object.isra.0+0x3a/0xa30 [ 1836.632498] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.633940] kmem_cache_alloc+0x159/0x310 [ 1836.635238] anon_vma_clone+0xdc/0x590 [ 1836.636604] __split_vma+0x17c/0x4e0 [ 1836.637759] __do_munmap+0x365/0x1260 [ 1836.638848] ? arch_get_unmapped_area+0x450/0x450 [ 1836.640351] mmap_region+0x7cc/0x1500 [ 1836.641862] do_mmap+0x868/0x1370 [ 1836.643135] vm_mmap_pgoff+0x198/0x1f0 [ 1836.644382] ? randomize_page+0xb0/0xb0 [ 1836.645932] ksys_mmap_pgoff+0x41c/0x560 [ 1836.647097] ? find_mergeable_anon_vma+0x250/0x250 [ 1836.648463] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.649773] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.651227] do_syscall_64+0x33/0x40 [ 1836.652227] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.653474] RIP: 0033:0x7ff9de16bb62 [ 1836.654438] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1836.658521] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1836.660395] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1836.662071] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1836.663753] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1836.665427] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1836.667109] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:49 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:16:49 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 65) 07:16:49 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 47) 07:16:49 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x8, &(0x7f0000000000)=0x1, 0x4) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) setsockopt$inet6_tcp_int(r0, 0x6, 0x24, &(0x7f0000000040)=0x5, 0x4) 07:16:49 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 63) [ 1836.952475] FAULT_INJECTION: forcing a failure. [ 1836.952475] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.955064] CPU: 1 PID: 18554 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1836.956568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1836.958355] Call Trace: [ 1836.958931] dump_stack+0x107/0x167 [ 1836.959732] should_fail.cold+0x5/0xa [ 1836.960555] ? create_object.isra.0+0x3a/0xa30 [ 1836.961538] should_failslab+0x5/0x20 [ 1836.962359] kmem_cache_alloc+0x5b/0x310 [ 1836.963236] ? mark_held_locks+0x9e/0xe0 [ 1836.964120] create_object.isra.0+0x3a/0xa30 [ 1836.965062] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1836.966162] kmem_cache_alloc+0x159/0x310 [ 1836.967066] xas_alloc+0x336/0x440 [ 1836.967645] FAULT_INJECTION: forcing a failure. [ 1836.967645] name failslab, interval 1, probability 0, space 0, times 0 [ 1836.970184] xas_create+0x34a/0x10d0 [ 1836.970219] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1836.970241] xas_store+0x8c/0x1c40 [ 1836.970278] __xa_store+0x164/0x2d0 [ 1836.970301] ? xa_delete_node+0x280/0x280 [ 1836.970334] ? trace_hardirqs_on+0x5b/0x180 [ 1836.975650] xa_store+0x31/0x50 [ 1836.976364] __io_uring_add_tctx_node+0x1cf/0x520 [ 1836.977403] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1836.978530] ? alloc_fd+0x2e7/0x670 [ 1836.979328] io_uring_setup+0x1fbb/0x2980 [ 1836.980237] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1836.981327] ? wait_for_completion_io+0x270/0x270 [ 1836.982391] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1836.983528] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1836.984651] do_syscall_64+0x33/0x40 [ 1836.985460] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1836.986573] RIP: 0033:0x7f341b7f3b19 [ 1836.987380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1836.991384] RSP: 002b:00007f3418d69108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1836.993049] RAX: ffffffffffffffda RBX: 00007f341b906f60 RCX: 00007f341b7f3b19 [ 1836.994598] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1836.996155] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1836.997701] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1836.999249] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1837.000854] CPU: 0 PID: 18489 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1837.002541] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1837.004526] Call Trace: [ 1837.005281] dump_stack+0x107/0x167 [ 1837.006349] should_fail.cold+0x5/0xa [ 1837.007406] ? xas_alloc+0x336/0x440 [ 1837.008454] should_failslab+0x5/0x20 [ 1837.009438] kmem_cache_alloc+0x5b/0x310 [ 1837.010698] xas_alloc+0x336/0x440 [ 1837.011780] xas_create+0x34a/0x10d0 [ 1837.013041] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1837.014487] xas_store+0x8c/0x1c40 [ 1837.015859] __xa_store+0x164/0x2d0 [ 1837.016928] ? xa_delete_node+0x280/0x280 [ 1837.018250] ? trace_hardirqs_on+0x5b/0x180 [ 1837.019624] xa_store+0x31/0x50 [ 1837.020593] __io_uring_add_tctx_node+0x1cf/0x520 [ 1837.021870] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1837.023174] ? alloc_fd+0x2e7/0x670 [ 1837.024471] io_uring_setup+0x1fbb/0x2980 [ 1837.025778] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1837.027040] ? wait_for_completion_io+0x270/0x270 [ 1837.028842] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1837.030173] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1837.031630] do_syscall_64+0x33/0x40 [ 1837.032619] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1837.033892] RIP: 0033:0x7fb912e91b19 [ 1837.034817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1837.038879] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1837.040725] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1837.042383] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1837.044044] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1837.045703] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1837.047359] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1837.081471] FAULT_INJECTION: forcing a failure. [ 1837.081471] name failslab, interval 1, probability 0, space 0, times 0 [ 1837.083906] CPU: 1 PID: 18695 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1837.085352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1837.087076] Call Trace: [ 1837.087640] dump_stack+0x107/0x167 [ 1837.088405] should_fail.cold+0x5/0xa [ 1837.089203] ? vm_area_dup+0x78/0x290 [ 1837.089998] should_failslab+0x5/0x20 [ 1837.090793] kmem_cache_alloc+0x5b/0x310 [ 1837.091656] vm_area_dup+0x78/0x290 [ 1837.092419] ? find_held_lock+0x2c/0x110 [ 1837.093279] ? __vma_adjust+0x66e/0x2510 [ 1837.094141] ? lock_downgrade+0x6d0/0x6d0 [ 1837.095024] ? up_write+0x191/0x550 [ 1837.095827] ? downgrade_write+0x3a0/0x3a0 [ 1837.096714] ? anon_vma_interval_tree_remove+0xb34/0xf30 [ 1837.097840] ? vm_area_alloc+0x110/0x110 [ 1837.098693] ? __vma_adjust+0xbb8/0x2510 [ 1837.099565] ? vmacache_find+0x55/0x2a0 [ 1837.100392] __split_vma+0xa8/0x4e0 [ 1837.101155] __do_munmap+0xf40/0x1260 [ 1837.101954] ? arch_get_unmapped_area+0x450/0x450 [ 1837.102958] mmap_region+0x7cc/0x1500 [ 1837.103776] do_mmap+0x868/0x1370 [ 1837.104508] vm_mmap_pgoff+0x198/0x1f0 [ 1837.105331] ? randomize_page+0xb0/0xb0 [ 1837.106176] ksys_mmap_pgoff+0x41c/0x560 [ 1837.107044] ? find_mergeable_anon_vma+0x250/0x250 [ 1837.108085] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1837.109208] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1837.110309] do_syscall_64+0x33/0x40 [ 1837.111104] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1837.112198] RIP: 0033:0x7ff9de16bb62 [ 1837.112979] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1837.116871] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1837.118478] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1837.119985] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1837.121487] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1837.122990] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1837.124500] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:16:49 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f0000000080)=0x4, 0x4) 07:16:50 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:17:07 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 48) 07:17:07 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000080)=0x0) r1 = creat(&(0x7f0000000100)='./file0\x00', 0x40) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x1f, 0x8, 0x3, 0x8, 0x0, 0x48000000000, 0xd41a0, 0xf, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400, 0x2, @perf_config_ext={0x8, 0x7}, 0x500, 0xffffffff, 0x0, 0x7, 0x5, 0x3, 0x1000, 0x0, 0x7, 0x0, 0x2}, r0, 0x6, r1, 0x3) fork() 07:17:07 executing program 3: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x0, 0x80010, 0xffffffffffffffff, 0x8c2fa000) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x8, 0x4000010, r0, 0x98d17000) fork() ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000740)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f00000007c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="001a6a002ebd18696c653000585dcadab3ee"]) r4 = getpid() process_vm_readv(r4, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) r5 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000700), 0x2, 0x0) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000008, 0x10, r5, 0xce4e3000) process_vm_readv(r4, &(0x7f0000000000)=[{&(0x7f0000000100)=""/238, 0xee}], 0x1, &(0x7f0000000080)=[{&(0x7f0000000200)=""/196, 0xc4}, {&(0x7f0000000300)=""/135, 0x87}, {&(0x7f0000000040)=""/35, 0x23}], 0x3, 0x0) 07:17:07 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, 0x0, &(0x7f0000000280), 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:17:07 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x3, &(0x7f0000000080), 0x4) r1 = syz_open_dev$vcsa(&(0x7f0000000000), 0xffffffffffffffff, 0x6b5763afa2149b55) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @rand_addr=' \x01\x00', 0x1ff}, 0x1c) 07:17:07 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 66) 07:17:07 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0xa776, &(0x7f0000000300), 0x0, 0x0) 07:17:07 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 64) [ 1854.259558] FAULT_INJECTION: forcing a failure. [ 1854.259558] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.262189] CPU: 1 PID: 18823 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1854.263688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.265471] Call Trace: [ 1854.266042] dump_stack+0x107/0x167 [ 1854.266826] should_fail.cold+0x5/0xa [ 1854.267646] ? create_object.isra.0+0x3a/0xa30 [ 1854.268634] should_failslab+0x5/0x20 [ 1854.269450] kmem_cache_alloc+0x5b/0x310 [ 1854.270325] create_object.isra.0+0x3a/0xa30 [ 1854.271265] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1854.272370] kmem_cache_alloc+0x159/0x310 [ 1854.273263] vm_area_dup+0x78/0x290 [ 1854.274048] ? find_held_lock+0x2c/0x110 [ 1854.274924] ? __vma_adjust+0x66e/0x2510 [ 1854.275807] ? lock_downgrade+0x6d0/0x6d0 [ 1854.276710] ? up_write+0x191/0x550 [ 1854.277488] ? downgrade_write+0x3a0/0x3a0 [ 1854.278394] ? anon_vma_interval_tree_remove+0xb34/0xf30 [ 1854.279548] ? vm_area_alloc+0x110/0x110 [ 1854.280431] ? __vma_adjust+0xbb8/0x2510 [ 1854.281323] ? vmacache_find+0x55/0x2a0 [ 1854.282173] __split_vma+0xa8/0x4e0 [ 1854.282958] __do_munmap+0xf40/0x1260 [ 1854.283790] ? arch_get_unmapped_area+0x450/0x450 [ 1854.284827] mmap_region+0x7cc/0x1500 [ 1854.285659] do_mmap+0x868/0x1370 [ 1854.286411] vm_mmap_pgoff+0x198/0x1f0 [ 1854.287251] ? randomize_page+0xb0/0xb0 [ 1854.288135] ksys_mmap_pgoff+0x41c/0x560 [ 1854.289004] ? find_mergeable_anon_vma+0x250/0x250 [ 1854.290054] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.291174] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.292289] do_syscall_64+0x33/0x40 [ 1854.293084] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.294177] RIP: 0033:0x7ff9de16bb62 [ 1854.294971] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1854.298916] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1854.300556] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1854.302086] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1854.303614] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1854.305156] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1854.306676] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1854.328832] FAULT_INJECTION: forcing a failure. [ 1854.328832] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.331802] CPU: 0 PID: 18818 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1854.333487] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.335518] Call Trace: [ 1854.336313] dump_stack+0x107/0x167 [ 1854.337407] should_fail.cold+0x5/0xa [ 1854.338489] ? create_object.isra.0+0x3a/0xa30 [ 1854.339785] should_failslab+0x5/0x20 [ 1854.340790] kmem_cache_alloc+0x5b/0x310 [ 1854.341875] ? mark_held_locks+0x9e/0xe0 [ 1854.343121] create_object.isra.0+0x3a/0xa30 [ 1854.344261] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1854.345740] kmem_cache_alloc+0x159/0x310 [ 1854.347067] xas_alloc+0x336/0x440 [ 1854.348179] xas_create+0x34a/0x10d0 [ 1854.349476] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1854.350983] xas_store+0x8c/0x1c40 [ 1854.352405] __xa_store+0x164/0x2d0 [ 1854.353495] ? xa_delete_node+0x280/0x280 [ 1854.354902] ? trace_hardirqs_on+0x5b/0x180 [ 1854.356310] xa_store+0x31/0x50 [ 1854.357361] __io_uring_add_tctx_node+0x1cf/0x520 [ 1854.359032] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1854.360701] ? alloc_fd+0x2e7/0x670 [ 1854.362489] io_uring_setup+0x1fbb/0x2980 [ 1854.364100] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1854.365393] ? wait_for_completion_io+0x270/0x270 [ 1854.367234] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.368624] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.370102] do_syscall_64+0x33/0x40 [ 1854.371110] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.372218] FAULT_INJECTION: forcing a failure. [ 1854.372218] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.372381] RIP: 0033:0x7fb912e91b19 [ 1854.375729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1854.379977] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1854.381913] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1854.383657] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1854.385416] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1854.387152] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1854.388906] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1854.391160] CPU: 1 PID: 18828 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1854.392666] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.394444] Call Trace: [ 1854.395015] dump_stack+0x107/0x167 [ 1854.395815] should_fail.cold+0x5/0xa [ 1854.396635] ? create_object.isra.0+0x3a/0xa30 [ 1854.397621] should_failslab+0x5/0x20 [ 1854.398442] kmem_cache_alloc+0x5b/0x310 [ 1854.399321] create_object.isra.0+0x3a/0xa30 [ 1854.400280] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1854.401379] kmem_cache_alloc+0x159/0x310 [ 1854.402280] anon_vma_clone+0xdc/0x590 [ 1854.403132] __split_vma+0x17c/0x4e0 [ 1854.403945] __do_munmap+0x365/0x1260 [ 1854.404764] ? arch_get_unmapped_area+0x450/0x450 [ 1854.405804] mmap_region+0x7cc/0x1500 [ 1854.406638] do_mmap+0x868/0x1370 [ 1854.407396] vm_mmap_pgoff+0x198/0x1f0 [ 1854.408247] ? randomize_page+0xb0/0xb0 [ 1854.409116] ksys_mmap_pgoff+0x41c/0x560 [ 1854.409992] ? find_mergeable_anon_vma+0x250/0x250 [ 1854.411053] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.412189] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.413296] do_syscall_64+0x33/0x40 [ 1854.414096] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.415197] RIP: 0033:0x7f341b7f3b62 [ 1854.416003] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1854.419966] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1854.421602] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1854.423133] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1854.424682] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1854.426214] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1854.427761] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:07 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x630100, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x4, &(0x7f0000000040)=0xffff0001, 0x4) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f00000000c0)={{0x0, 0x6, 0x5, 0x1, 0x9, 0x8, 0x2, 0xfff, 0x0, 0x0, 0x2, 0x7fffffff, 0x6, 0x8, 0x3}}) 07:17:07 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x4e) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:17:07 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 67) 07:17:07 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 49) [ 1854.644810] FAULT_INJECTION: forcing a failure. [ 1854.644810] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.647341] CPU: 1 PID: 19078 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1854.648811] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.650542] Call Trace: [ 1854.651098] dump_stack+0x107/0x167 [ 1854.651873] should_fail.cold+0x5/0xa [ 1854.652676] ? anon_vma_clone+0xdc/0x590 [ 1854.653529] should_failslab+0x5/0x20 [ 1854.654333] kmem_cache_alloc+0x5b/0x310 [ 1854.655194] anon_vma_clone+0xdc/0x590 [ 1854.656019] __split_vma+0x17c/0x4e0 [ 1854.656796] __do_munmap+0xf40/0x1260 [ 1854.657597] ? arch_get_unmapped_area+0x450/0x450 [ 1854.658610] mmap_region+0x7cc/0x1500 [ 1854.659419] do_mmap+0x868/0x1370 [ 1854.660161] vm_mmap_pgoff+0x198/0x1f0 [ 1854.660972] ? randomize_page+0xb0/0xb0 [ 1854.661821] ksys_mmap_pgoff+0x41c/0x560 [ 1854.662663] ? find_mergeable_anon_vma+0x250/0x250 [ 1854.663705] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.664802] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.665879] do_syscall_64+0x33/0x40 [ 1854.666660] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.667731] RIP: 0033:0x7ff9de16bb62 [ 1854.668499] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1854.672331] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1854.673909] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1854.675379] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1854.676849] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1854.678290] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1854.679720] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:07 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, 0x0, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:17:07 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 68) 07:17:07 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000000)={'ip6tnl0\x00', 0x0, 0x2f, 0x2, 0x1f, 0x3f, 0x3, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @private1, 0x9d798a11394eaaf7, 0x10, 0x9, 0x101}}) [ 1854.896048] FAULT_INJECTION: forcing a failure. [ 1854.896048] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.898719] CPU: 0 PID: 19168 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1854.900355] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.902272] Call Trace: [ 1854.903005] dump_stack+0x107/0x167 [ 1854.904064] should_fail.cold+0x5/0xa [ 1854.905096] ? xas_alloc+0x336/0x440 [ 1854.906107] should_failslab+0x5/0x20 [ 1854.907066] kmem_cache_alloc+0x5b/0x310 [ 1854.908313] xas_alloc+0x336/0x440 [ 1854.909363] xas_create+0x34a/0x10d0 [ 1854.910605] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1854.912037] xas_store+0x8c/0x1c40 [ 1854.913391] __xa_store+0x164/0x2d0 [ 1854.914446] ? xa_delete_node+0x280/0x280 [ 1854.915762] ? trace_hardirqs_on+0x5b/0x180 [ 1854.917109] xa_store+0x31/0x50 [ 1854.918062] __io_uring_add_tctx_node+0x1cf/0x520 [ 1854.918331] FAULT_INJECTION: forcing a failure. [ 1854.918331] name failslab, interval 1, probability 0, space 0, times 0 [ 1854.919275] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1854.922551] ? alloc_fd+0x2e7/0x670 [ 1854.923828] io_uring_setup+0x1fbb/0x2980 [ 1854.925112] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1854.926947] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.928249] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.929673] do_syscall_64+0x33/0x40 [ 1854.930646] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.931900] RIP: 0033:0x7fb912e91b19 [ 1854.932846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1854.936922] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1854.938761] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1854.940439] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1854.942100] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1854.943771] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1854.945427] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1854.947609] CPU: 1 PID: 19289 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1854.948874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1854.950371] Call Trace: [ 1854.950859] dump_stack+0x107/0x167 [ 1854.951518] should_fail.cold+0x5/0xa [ 1854.952223] ? create_object.isra.0+0x3a/0xa30 [ 1854.953038] should_failslab+0x5/0x20 [ 1854.953719] kmem_cache_alloc+0x5b/0x310 [ 1854.954449] create_object.isra.0+0x3a/0xa30 [ 1854.955230] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1854.956153] kmem_cache_alloc+0x159/0x310 [ 1854.956897] anon_vma_clone+0xdc/0x590 [ 1854.957592] __split_vma+0x17c/0x4e0 [ 1854.958253] __do_munmap+0xf40/0x1260 [ 1854.958927] ? arch_get_unmapped_area+0x450/0x450 [ 1854.959789] mmap_region+0x7cc/0x1500 [ 1854.960477] do_mmap+0x868/0x1370 [ 1854.961104] vm_mmap_pgoff+0x198/0x1f0 [ 1854.961800] ? randomize_page+0xb0/0xb0 [ 1854.962516] ksys_mmap_pgoff+0x41c/0x560 [ 1854.963235] ? find_mergeable_anon_vma+0x250/0x250 [ 1854.964125] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1854.965056] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1854.965988] do_syscall_64+0x33/0x40 [ 1854.966655] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1854.967556] RIP: 0033:0x7ff9de16bb62 [ 1854.968222] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1854.971494] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1854.972838] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1854.974097] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1854.975349] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1854.976606] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1854.977851] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:07 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 65) [ 1855.012028] FAULT_INJECTION: forcing a failure. [ 1855.012028] name failslab, interval 1, probability 0, space 0, times 0 [ 1855.014042] CPU: 1 PID: 19308 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1855.015256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1855.016716] Call Trace: [ 1855.017179] dump_stack+0x107/0x167 [ 1855.017808] should_fail.cold+0x5/0xa [ 1855.018468] ? vm_area_dup+0x78/0x290 [ 1855.019129] should_failslab+0x5/0x20 [ 1855.019798] kmem_cache_alloc+0x5b/0x310 [ 1855.020503] vm_area_dup+0x78/0x290 [ 1855.021136] ? find_held_lock+0x2c/0x110 [ 1855.021842] ? __vma_adjust+0x66e/0x2510 [ 1855.022543] ? lock_downgrade+0x6d0/0x6d0 [ 1855.023273] ? up_write+0x191/0x550 [ 1855.023913] ? downgrade_write+0x3a0/0x3a0 [ 1855.024641] ? anon_vma_interval_tree_remove+0xb34/0xf30 [ 1855.025573] ? vm_area_alloc+0x110/0x110 [ 1855.026284] ? __vma_adjust+0xbb8/0x2510 [ 1855.027009] ? vmacache_find+0x55/0x2a0 [ 1855.027703] __split_vma+0xa8/0x4e0 [ 1855.028330] __do_munmap+0xf40/0x1260 [ 1855.028986] ? arch_get_unmapped_area+0x450/0x450 [ 1855.029822] mmap_region+0x7cc/0x1500 [ 1855.030494] do_mmap+0x868/0x1370 [ 1855.031102] vm_mmap_pgoff+0x198/0x1f0 [ 1855.031788] ? randomize_page+0xb0/0xb0 [ 1855.032482] ksys_mmap_pgoff+0x41c/0x560 [ 1855.033180] ? find_mergeable_anon_vma+0x250/0x250 [ 1855.034023] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1855.034924] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1855.035850] do_syscall_64+0x33/0x40 [ 1855.036498] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1855.037378] RIP: 0033:0x7f341b7f3b62 [ 1855.038012] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1855.041179] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1855.042496] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1855.043727] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1855.044938] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1855.046134] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1855.047342] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:22 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x800000000000, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) 07:17:22 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0xa876, &(0x7f0000000300), 0x0, 0x0) 07:17:22 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, &(0x7f0000000000)={'icmp\x00'}, &(0x7f0000000040)=0x1e) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) pidfd_getfd(r2, r1, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e21, 0x1ff, @private2={0xfc, 0x2, '\x00', 0x1}, 0x40}, 0x1c) 07:17:22 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 66) 07:17:22 executing program 0: migrate_pages(0xffffffffffffffff, 0xffffffffffff0000, &(0x7f0000000000)=0x1, &(0x7f0000000040)=0x80) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x7}, 0x0, 0x0, 0x2, 0x8, 0x0, 0x0, 0x0, 0x0, 0xa5fb}, 0x0, 0x8, 0xffffffffffffffff, 0x0) r0 = getpid() process_vm_readv(r0, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000016140), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000016580)={0x0, 0x0, &(0x7f0000016540)={&(0x7f0000000040)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x9}]}, 0x34}}, 0x0) sendmsg$nl_generic(r2, &(0x7f00000007c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x64, 0x26, 0x4, 0x70bd26, 0x25dfdbfb, {0x15}, [@generic="ada16333a26d7ba58e742c3f8d91644055c942f44397c96c7be48506b88e5d336d6dc6fc4d9fc36e2acff55d3a308df968ed83b9117edd1f4bba556fa6d9d9257ecc328ea28ca021", @typed={0x8, 0x5, 0x0, 0x0, @u32=0x2}]}, 0x64}, 0x1, 0x0, 0x0, 0x880}, 0x2c00c818) prctl$PR_SET_PTRACER(0x59616d61, r0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:17:22 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 69) 07:17:22 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 50) 07:17:22 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, 0x0, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) [ 1869.976513] FAULT_INJECTION: forcing a failure. [ 1869.976513] name failslab, interval 1, probability 0, space 0, times 0 [ 1869.978435] CPU: 0 PID: 19466 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1869.979424] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1869.980839] Call Trace: [ 1869.981382] dump_stack+0x107/0x167 [ 1869.982148] should_fail.cold+0x5/0xa [ 1869.982840] ? vm_area_alloc+0x1c/0x110 [ 1869.983606] should_failslab+0x5/0x20 [ 1869.984278] kmem_cache_alloc+0x5b/0x310 [ 1869.985119] vm_area_alloc+0x1c/0x110 [ 1869.985798] mmap_region+0x982/0x1500 [ 1869.986766] do_mmap+0x868/0x1370 [ 1869.987551] vm_mmap_pgoff+0x198/0x1f0 [ 1869.988325] ? randomize_page+0xb0/0xb0 [ 1869.989396] ksys_mmap_pgoff+0x41c/0x560 [ 1869.990222] ? find_mergeable_anon_vma+0x250/0x250 [ 1869.990885] FAULT_INJECTION: forcing a failure. [ 1869.990885] name failslab, interval 1, probability 0, space 0, times 0 [ 1869.991146] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1869.994218] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1869.995175] do_syscall_64+0x33/0x40 [ 1869.995877] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1869.996609] RIP: 0033:0x7ff9de16bb62 [ 1869.997156] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1869.999506] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1870.000568] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1870.001505] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1870.002446] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1870.003407] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1870.004370] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1870.005670] CPU: 1 PID: 19475 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1870.007163] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.008933] Call Trace: [ 1870.009496] dump_stack+0x107/0x167 [ 1870.010279] should_fail.cold+0x5/0xa [ 1870.011086] ? create_object.isra.0+0x3a/0xa30 [ 1870.012068] should_failslab+0x5/0x20 [ 1870.012898] kmem_cache_alloc+0x5b/0x310 [ 1870.013761] create_object.isra.0+0x3a/0xa30 [ 1870.014678] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1870.015761] kmem_cache_alloc+0x159/0x310 [ 1870.016645] vm_area_dup+0x78/0x290 [ 1870.017430] ? find_held_lock+0x2c/0x110 [ 1870.018302] ? __vma_adjust+0x66e/0x2510 [ 1870.019188] ? lock_downgrade+0x6d0/0x6d0 [ 1870.020132] ? up_write+0x191/0x550 [ 1870.020912] ? downgrade_write+0x3a0/0x3a0 [ 1870.021810] ? anon_vma_interval_tree_remove+0xb34/0xf30 [ 1870.022959] ? vm_area_alloc+0x110/0x110 [ 1870.023217] FAULT_INJECTION: forcing a failure. [ 1870.023217] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.023817] ? __vma_adjust+0xbb8/0x2510 [ 1870.023875] ? vmacache_find+0x55/0x2a0 [ 1870.023895] __split_vma+0xa8/0x4e0 [ 1870.023919] __do_munmap+0xf40/0x1260 [ 1870.023941] ? arch_get_unmapped_area+0x450/0x450 [ 1870.023969] mmap_region+0x7cc/0x1500 [ 1870.030334] do_mmap+0x868/0x1370 [ 1870.031070] vm_mmap_pgoff+0x198/0x1f0 [ 1870.031912] ? randomize_page+0xb0/0xb0 [ 1870.032767] ksys_mmap_pgoff+0x41c/0x560 [ 1870.033622] ? find_mergeable_anon_vma+0x250/0x250 [ 1870.034717] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.035819] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.036940] do_syscall_64+0x33/0x40 [ 1870.037734] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.038828] RIP: 0033:0x7f341b7f3b62 [ 1870.039599] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1870.043500] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1870.045162] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1870.046667] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1870.048179] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1870.049694] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1870.051173] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1870.052721] CPU: 0 PID: 19472 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1870.053635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.054684] Call Trace: [ 1870.055112] dump_stack+0x107/0x167 [ 1870.055703] should_fail.cold+0x5/0xa [ 1870.056316] ? create_object.isra.0+0x3a/0xa30 [ 1870.056981] should_failslab+0x5/0x20 [ 1870.057542] kmem_cache_alloc+0x5b/0x310 [ 1870.058124] ? mark_held_locks+0x9e/0xe0 [ 1870.058814] create_object.isra.0+0x3a/0xa30 [ 1870.059436] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1870.060242] kmem_cache_alloc+0x159/0x310 [ 1870.061094] xas_alloc+0x336/0x440 [ 1870.061699] xas_create+0x34a/0x10d0 [ 1870.062558] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1870.063350] xas_store+0x8c/0x1c40 [ 1870.064151] __xa_store+0x164/0x2d0 [ 1870.064750] ? xa_delete_node+0x280/0x280 [ 1870.065840] xa_store+0x31/0x50 [ 1870.066421] __io_uring_add_tctx_node+0x1cf/0x520 [ 1870.067224] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1870.068084] ? alloc_fd+0x2e7/0x670 [ 1870.068931] io_uring_setup+0x1fbb/0x2980 [ 1870.069683] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1870.070367] ? wait_for_completion_io+0x270/0x270 [ 1870.071391] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.072135] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.072954] do_syscall_64+0x33/0x40 [ 1870.073486] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.074197] RIP: 0033:0x7fb912e91b19 [ 1870.074765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.077397] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1870.078476] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1870.079409] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1870.080347] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1870.081388] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1870.082559] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:22 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r1, 0x10000000) unlinkat(r1, &(0x7f0000000000)='./file0\x00', 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r2, 0x10000000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) fork() 07:17:23 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 70) [ 1870.285913] FAULT_INJECTION: forcing a failure. [ 1870.285913] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.287453] CPU: 0 PID: 19685 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1870.288356] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.289395] Call Trace: [ 1870.289811] dump_stack+0x107/0x167 [ 1870.290397] should_fail.cold+0x5/0xa [ 1870.290974] ? create_object.isra.0+0x3a/0xa30 [ 1870.291628] should_failslab+0x5/0x20 [ 1870.292155] kmem_cache_alloc+0x5b/0x310 [ 1870.292853] create_object.isra.0+0x3a/0xa30 [ 1870.293421] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1870.294196] kmem_cache_alloc+0x159/0x310 [ 1870.294906] vm_area_alloc+0x1c/0x110 [ 1870.295460] mmap_region+0x982/0x1500 [ 1870.296244] do_mmap+0x868/0x1370 [ 1870.296923] vm_mmap_pgoff+0x198/0x1f0 [ 1870.297581] ? randomize_page+0xb0/0xb0 [ 1870.298400] ksys_mmap_pgoff+0x41c/0x560 [ 1870.299023] ? find_mergeable_anon_vma+0x250/0x250 [ 1870.299744] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.300452] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.301237] do_syscall_64+0x33/0x40 [ 1870.301760] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.302432] RIP: 0033:0x7ff9de16bb62 [ 1870.302974] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1870.305085] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1870.306070] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1870.306966] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1870.307885] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1870.308783] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1870.309682] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:23 executing program 5: r0 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) pidfd_getfd(r1, r0, 0x0) write$tun(r1, &(0x7f0000000000)={@val={0x0, 0x8864}, @val={0x4, 0x80, 0x9, 0x7ff, 0x7356, 0x11}, @arp=@generic={0x30a, 0x1c, 0x6, 0xd, 0x3, @remote, "1a12d7833b937816885ef81848", @local, "51ad705b0b655ca12ff734318ed9"}}, 0x3d) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x24, &(0x7f0000000080)=0x3eb, 0x4) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r3, 0x10000000) setsockopt$inet6_tcp_int(r3, 0x6, 0x9, &(0x7f0000000040)=0x200000, 0x4) 07:17:23 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 51) [ 1870.472516] FAULT_INJECTION: forcing a failure. [ 1870.472516] name failslab, interval 1, probability 0, space 0, times 0 [ 1870.475122] CPU: 1 PID: 19748 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1870.476712] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1870.478597] Call Trace: [ 1870.479236] dump_stack+0x107/0x167 [ 1870.480064] should_fail.cold+0x5/0xa [ 1870.480941] ? xas_alloc+0x336/0x440 [ 1870.481769] should_failslab+0x5/0x20 [ 1870.482628] kmem_cache_alloc+0x5b/0x310 [ 1870.483524] xas_alloc+0x336/0x440 [ 1870.484349] xas_create+0x34a/0x10d0 [ 1870.485185] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1870.486386] xas_store+0x8c/0x1c40 [ 1870.487180] __xa_store+0x164/0x2d0 [ 1870.488027] ? xa_delete_node+0x280/0x280 [ 1870.488965] ? trace_hardirqs_on+0x5b/0x180 [ 1870.489961] xa_store+0x31/0x50 [ 1870.490691] __io_uring_add_tctx_node+0x1cf/0x520 [ 1870.491782] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1870.492950] ? alloc_fd+0x2e7/0x670 [ 1870.493796] io_uring_setup+0x1fbb/0x2980 [ 1870.494715] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1870.495879] ? wait_for_completion_io+0x270/0x270 [ 1870.496969] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1870.498163] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1870.499300] do_syscall_64+0x33/0x40 [ 1870.500154] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1870.501253] RIP: 0033:0x7fb912e91b19 [ 1870.502090] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1870.506093] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1870.507789] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1870.509344] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1870.510917] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1870.512484] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1870.514079] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1870.717969] loop6: detected capacity change from 0 to 67108864 07:17:37 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 71) [ 1884.339961] FAULT_INJECTION: forcing a failure. [ 1884.339961] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.342266] FAULT_INJECTION: forcing a failure. [ 1884.342266] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.342406] CPU: 1 PID: 19904 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1884.345325] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.347082] Call Trace: [ 1884.347647] dump_stack+0x107/0x167 [ 1884.348436] should_fail.cold+0x5/0xa [ 1884.349246] ? anon_vma_clone+0xdc/0x590 [ 1884.350105] should_failslab+0x5/0x20 [ 1884.350913] kmem_cache_alloc+0x5b/0x310 [ 1884.351778] anon_vma_clone+0xdc/0x590 [ 1884.352612] __split_vma+0x17c/0x4e0 [ 1884.353405] __do_munmap+0xf40/0x1260 [ 1884.354195] ? arch_get_unmapped_area+0x450/0x450 [ 1884.355223] mmap_region+0x7cc/0x1500 [ 1884.356033] do_mmap+0x868/0x1370 [ 1884.356785] vm_mmap_pgoff+0x198/0x1f0 [ 1884.357618] ? randomize_page+0xb0/0xb0 [ 1884.358474] ksys_mmap_pgoff+0x41c/0x560 [ 1884.359341] ? find_mergeable_anon_vma+0x250/0x250 [ 1884.360415] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1884.361534] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.362595] do_syscall_64+0x33/0x40 [ 1884.363384] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1884.364450] RIP: 0033:0x7f341b7f3b62 [ 1884.365242] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1884.369039] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1884.370656] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1884.372115] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1884.373567] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1884.375021] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1884.376486] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1884.377990] CPU: 0 PID: 19899 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1884.378978] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.380129] Call Trace: [ 1884.380578] dump_stack+0x107/0x167 [ 1884.381211] should_fail.cold+0x5/0xa [ 1884.381846] ? vm_area_dup+0x78/0x290 [ 1884.382470] should_failslab+0x5/0x20 [ 1884.383046] kmem_cache_alloc+0x5b/0x310 [ 1884.383808] vm_area_dup+0x78/0x290 [ 1884.384554] ? mark_lock+0xf5/0x2df0 [ 1884.385268] ? lock_chain_count+0x20/0x20 [ 1884.385994] ? perf_event_switch_output+0x7d0/0x7d0 [ 1884.386935] ? mark_lock+0xf5/0x2df0 [ 1884.387578] ? vm_area_alloc+0x110/0x110 [ 1884.388294] ? __lock_acquire+0x1657/0x5b00 [ 1884.389236] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1884.389998] ? SOFTIRQ_verbose+0x10/0x10 [ 1884.390636] ? vmacache_find+0x55/0x2a0 [ 1884.391303] __split_vma+0xa8/0x4e0 [ 1884.391970] __do_munmap+0x365/0x1260 [ 1884.392613] ? arch_get_unmapped_area+0x450/0x450 [ 1884.393369] ? lock_release+0x680/0x680 [ 1884.394051] mmap_region+0x7cc/0x1500 [ 1884.394924] do_mmap+0x868/0x1370 [ 1884.395657] vm_mmap_pgoff+0x198/0x1f0 [ 1884.396407] ? randomize_page+0xb0/0xb0 [ 1884.397300] ksys_mmap_pgoff+0x41c/0x560 [ 1884.397978] ? find_mergeable_anon_vma+0x250/0x250 [ 1884.398758] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1884.399515] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.400368] do_syscall_64+0x33/0x40 [ 1884.400949] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1884.401674] RIP: 0033:0x7ff9de16bb62 [ 1884.402233] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1884.404602] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1884.405681] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1884.406648] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1884.407621] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1884.408601] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1884.409569] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:37 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0xa976, &(0x7f0000000300), 0x0, 0x0) 07:17:37 executing program 3: mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0xffffe000) fork() 07:17:37 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 67) 07:17:37 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r3 = pidfd_getfd(r2, r1, 0x0) syz_io_uring_setup(0x71e3, &(0x7f0000000280)={0x0, 0x94ff, 0x20, 0x1, 0x36, 0x0, r3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000500)) ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) 07:17:37 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, 0x0, 0xc0c00) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:17:37 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 52) 07:17:37 executing program 0: r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000016140), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_RINGS_SET(r1, &(0x7f0000016580)={0x0, 0x0, &(0x7f0000016540)={&(0x7f0000000180)=ANY=[@ANYBLOB="1503790e28e34924b0f9e42922421a80eee227e6d9fa5da73bf27de8924f0c6553a7e4faf2d39a5b02d658d61819248b84f96d5114404ddb2a56839a303e8ac94702d6d1f14d", @ANYRES16=r0, @ANYBLOB="01000000000000000000100000001800018014000200776c616e3000000000000000000000000800090000000000"], 0x34}}, 0x0) sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x48, 0x0, 0x8, 0x70fd29, 0x25dfdbff, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond_slave_0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x2}]}, 0x48}, 0x1, 0x0, 0x0, 0x84}, 0x10) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x9, 0x0, 0x0, 0x4, 0xc166, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xd, 0xffffffffffffffff, 0x8) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() r2 = getpid() r3 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r5 = pidfd_getfd(r4, r3, 0x0) syz_io_uring_setup(0x71e3, &(0x7f0000000280)={0x0, 0x94ff, 0x20, 0x1, 0x36, 0x0, r5}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000500)) r6 = syz_open_dev$vcsn(&(0x7f0000000b40), 0x2, 0x505580) ioctl$FS_IOC_GETFSMAP(r6, 0xc0c0583b, &(0x7f0000000b80)={0x0, 0x0, 0x4, 0x0, '\x00', [{0x6, 0x80000000, 0x8, 0x4, 0x100000001, 0x40}, {0x6b33fe8d, 0x8cc, 0x5, 0x0, 0x2, 0x600000000000}], ['\x00', '\x00', '\x00', '\x00']}) openat2(r5, &(0x7f0000000ac0)='./file0\x00', &(0x7f0000000b00)={0x1, 0x40, 0x4}, 0x18) process_vm_readv(r2, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) process_vm_writev(r2, &(0x7f0000000540)=[{&(0x7f0000000200)=""/109, 0x6d}, {&(0x7f0000000280)=""/91, 0x5b}, {&(0x7f0000000300)=""/108, 0x6c}, {&(0x7f0000000380)=""/183, 0xb7}, {&(0x7f0000000440)=""/208, 0xd0}], 0x5, &(0x7f0000000a40)=[{&(0x7f00000005c0)=""/103, 0x67}, {&(0x7f0000000640)=""/138, 0x8a}, {&(0x7f0000000700)=""/136, 0x88}, {&(0x7f00000007c0)=""/178, 0xb2}, {&(0x7f0000000880)=""/134, 0x86}, {&(0x7f0000000940)=""/17, 0x11}, {&(0x7f0000000980)=""/146, 0x92}], 0x7, 0x0) shutdown(r1, 0x1) [ 1884.427539] FAULT_INJECTION: forcing a failure. [ 1884.427539] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.430334] CPU: 1 PID: 19911 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1884.431886] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.433739] Call Trace: [ 1884.434316] dump_stack+0x107/0x167 [ 1884.435175] should_fail.cold+0x5/0xa [ 1884.436058] ? create_object.isra.0+0x3a/0xa30 [ 1884.437093] should_failslab+0x5/0x20 [ 1884.437961] kmem_cache_alloc+0x5b/0x310 07:17:37 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 68) [ 1884.438891] ? mark_held_locks+0x9e/0xe0 [ 1884.439908] create_object.isra.0+0x3a/0xa30 [ 1884.440892] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1884.441996] kmem_cache_alloc+0x159/0x310 [ 1884.442936] xas_alloc+0x336/0x440 [ 1884.443747] xas_create+0x34a/0x10d0 [ 1884.444606] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1884.445799] xas_store+0x8c/0x1c40 [ 1884.446610] __xa_store+0x164/0x2d0 [ 1884.447438] ? xa_delete_node+0x280/0x280 [ 1884.448355] ? trace_hardirqs_on+0x5b/0x180 [ 1884.449336] xa_store+0x31/0x50 [ 1884.450093] __io_uring_add_tctx_node+0x1cf/0x520 [ 1884.451153] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1884.452305] ? alloc_fd+0x2e7/0x670 [ 1884.453154] io_uring_setup+0x1fbb/0x2980 [ 1884.454095] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1884.455231] ? wait_for_completion_io+0x270/0x270 [ 1884.456391] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1884.457562] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.458709] do_syscall_64+0x33/0x40 [ 1884.459552] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1884.460719] RIP: 0033:0x7fb912e91b19 [ 1884.461559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1884.465609] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1884.467282] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1884.468874] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1884.470461] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1884.472024] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1884.473621] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1884.508193] FAULT_INJECTION: forcing a failure. [ 1884.508193] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.510886] CPU: 0 PID: 19916 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1884.511828] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.512926] Call Trace: [ 1884.513359] dump_stack+0x107/0x167 [ 1884.513975] should_fail.cold+0x5/0xa [ 1884.514568] ? create_object.isra.0+0x3a/0xa30 [ 1884.515253] should_failslab+0x5/0x20 [ 1884.515809] kmem_cache_alloc+0x5b/0x310 [ 1884.516535] create_object.isra.0+0x3a/0xa30 [ 1884.517158] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1884.517961] kmem_cache_alloc+0x159/0x310 [ 1884.518693] anon_vma_clone+0xdc/0x590 [ 1884.519452] __split_vma+0x17c/0x4e0 [ 1884.520109] __do_munmap+0xf40/0x1260 [ 1884.520725] ? arch_get_unmapped_area+0x450/0x450 [ 1884.521568] mmap_region+0x7cc/0x1500 [ 1884.522414] do_mmap+0x868/0x1370 [ 1884.523131] vm_mmap_pgoff+0x198/0x1f0 [ 1884.523832] ? randomize_page+0xb0/0xb0 [ 1884.524703] ksys_mmap_pgoff+0x41c/0x560 [ 1884.525351] ? find_mergeable_anon_vma+0x250/0x250 [ 1884.526110] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1884.526843] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.527661] do_syscall_64+0x33/0x40 [ 1884.528222] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1884.528929] RIP: 0033:0x7f341b7f3b62 [ 1884.529468] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1884.531731] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1884.532785] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1884.533720] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1884.534649] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1884.535579] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1884.536529] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:37 executing program 5: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0xc) 07:17:37 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 69) 07:17:37 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 72) 07:17:37 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8, 0x0, 0x21cd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:17:37 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 53) 07:17:37 executing program 3: r0 = getpid() process_vm_readv(r0, &(0x7f00000004c0)=[{&(0x7f0000000100)=""/235, 0xeb}, {&(0x7f0000000200)=""/231, 0xe7}, {&(0x7f0000000300)=""/53, 0x35}, {&(0x7f0000000340)=""/193, 0xc1}, {&(0x7f0000000440)=""/96, 0x60}], 0x5, &(0x7f00000006c0)=[{&(0x7f0000000540)=""/141, 0x8d}, {&(0x7f0000000600)=""/125, 0x7d}, {&(0x7f0000000680)=""/4, 0x4}], 0x3, 0x0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x73, 0x0, 0x0, 0x8, 0x0, 0x0, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_config_ext={0x1, 0x5}, 0x0, 0x0, 0x2}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1884.737424] FAULT_INJECTION: forcing a failure. [ 1884.737424] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.739092] CPU: 0 PID: 20121 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1884.739980] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.741028] Call Trace: [ 1884.741445] dump_stack+0x107/0x167 [ 1884.742024] should_fail.cold+0x5/0xa [ 1884.742594] ? vm_area_alloc+0x1c/0x110 [ 1884.743192] should_failslab+0x5/0x20 [ 1884.743721] kmem_cache_alloc+0x5b/0x310 [ 1884.744417] vm_area_alloc+0x1c/0x110 [ 1884.744976] mmap_region+0x982/0x1500 [ 1884.745783] do_mmap+0x868/0x1370 [ 1884.746457] vm_mmap_pgoff+0x198/0x1f0 [ 1884.747116] ? randomize_page+0xb0/0xb0 [ 1884.747933] ksys_mmap_pgoff+0x41c/0x560 [ 1884.748559] ? find_mergeable_anon_vma+0x250/0x250 [ 1884.749281] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1884.749983] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.750770] do_syscall_64+0x33/0x40 [ 1884.751303] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1884.752003] RIP: 0033:0x7f341b7f3b62 [ 1884.752519] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1884.754718] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1884.755734] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1884.756643] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1884.757543] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1884.758444] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1884.759357] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1884.766272] FAULT_INJECTION: forcing a failure. [ 1884.766272] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.767923] CPU: 0 PID: 20124 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1884.768831] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.769870] Call Trace: [ 1884.770276] dump_stack+0x107/0x167 [ 1884.770865] should_fail.cold+0x5/0xa [ 1884.771443] ? create_object.isra.0+0x3a/0xa30 [ 1884.772108] should_failslab+0x5/0x20 [ 1884.772637] kmem_cache_alloc+0x5b/0x310 [ 1884.773333] create_object.isra.0+0x3a/0xa30 [ 1884.773929] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1884.774714] kmem_cache_alloc+0x159/0x310 [ 1884.775415] vm_area_dup+0x78/0x290 [ 1884.776099] ? mark_lock+0xf5/0x2df0 [ 1884.776752] ? lock_chain_count+0x20/0x20 [ 1884.777424] ? perf_event_switch_output+0x7d0/0x7d0 [ 1884.778298] ? mark_lock+0xf5/0x2df0 [ 1884.778898] ? vm_area_alloc+0x110/0x110 [ 1884.779546] ? __lock_acquire+0x1657/0x5b00 [ 1884.780425] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1884.781128] ? SOFTIRQ_verbose+0x10/0x10 [ 1884.781716] ? vmacache_find+0x55/0x2a0 [ 1884.782334] __split_vma+0xa8/0x4e0 [ 1884.782942] __do_munmap+0x365/0x1260 [ 1884.783528] ? arch_get_unmapped_area+0x450/0x450 [ 1884.784244] ? lock_release+0x680/0x680 [ 1884.784878] mmap_region+0x7cc/0x1500 [ 1884.785691] do_mmap+0x868/0x1370 [ 1884.786371] vm_mmap_pgoff+0x198/0x1f0 [ 1884.787039] ? randomize_page+0xb0/0xb0 [ 1884.787871] ksys_mmap_pgoff+0x41c/0x560 [ 1884.788516] ? find_mergeable_anon_vma+0x250/0x250 [ 1884.789249] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1884.789952] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.790735] do_syscall_64+0x33/0x40 [ 1884.791262] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1884.791939] RIP: 0033:0x7ff9de16bb62 [ 1884.792469] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1884.794677] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1884.795684] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1884.796601] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1884.797513] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1884.798429] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1884.799335] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1884.823055] FAULT_INJECTION: forcing a failure. [ 1884.823055] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.825536] CPU: 1 PID: 20220 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1884.827014] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.828711] Call Trace: [ 1884.829262] dump_stack+0x107/0x167 [ 1884.830003] should_fail.cold+0x5/0xa [ 1884.830787] ? xas_alloc+0x336/0x440 [ 1884.831548] should_failslab+0x5/0x20 [ 1884.832330] kmem_cache_alloc+0x5b/0x310 [ 1884.833162] xas_alloc+0x336/0x440 [ 1884.833889] xas_create+0x34a/0x10d0 [ 1884.834670] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1884.835738] xas_store+0x8c/0x1c40 [ 1884.836524] __xa_store+0x164/0x2d0 [ 1884.837279] ? xa_delete_node+0x280/0x280 [ 1884.838179] ? trace_hardirqs_on+0x5b/0x180 [ 1884.839110] xa_store+0x31/0x50 [ 1884.839829] __io_uring_add_tctx_node+0x1cf/0x520 [ 1884.840878] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1884.842002] ? alloc_fd+0x2e7/0x670 [ 1884.842800] io_uring_setup+0x1fbb/0x2980 [ 1884.843699] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1884.844790] ? wait_for_completion_io+0x270/0x270 [ 1884.845845] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1884.846966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1884.848083] do_syscall_64+0x33/0x40 [ 1884.848882] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1884.849981] RIP: 0033:0x7fb912e91b19 [ 1884.850775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1884.854719] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1884.856338] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1884.857799] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1884.859266] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1884.860766] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1884.862335] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:37 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 70) 07:17:37 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r0, 0x10000000) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e24, @empty}, 0x10) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/cgroups\x00', 0x0, 0x0) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x10, r1, 0xb3edd000) fork() [ 1884.987881] FAULT_INJECTION: forcing a failure. [ 1884.987881] name failslab, interval 1, probability 0, space 0, times 0 [ 1884.991140] CPU: 0 PID: 20336 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1884.992039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1884.993074] Call Trace: [ 1884.993486] dump_stack+0x107/0x167 [ 1884.994068] should_fail.cold+0x5/0xa [ 1884.994644] ? create_object.isra.0+0x3a/0xa30 [ 1884.995308] should_failslab+0x5/0x20 [ 1884.995834] kmem_cache_alloc+0x5b/0x310 [ 1884.996537] create_object.isra.0+0x3a/0xa30 [ 1884.997129] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1884.997919] kmem_cache_alloc+0x159/0x310 [ 1884.998623] vm_area_alloc+0x1c/0x110 [ 1884.999179] mmap_region+0x982/0x1500 [ 1884.999983] do_mmap+0x868/0x1370 [ 1885.000678] vm_mmap_pgoff+0x198/0x1f0 [ 1885.001349] ? randomize_page+0xb0/0xb0 [ 1885.002185] ksys_mmap_pgoff+0x41c/0x560 [ 1885.002818] ? find_mergeable_anon_vma+0x250/0x250 [ 1885.003544] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1885.004265] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1885.005060] do_syscall_64+0x33/0x40 [ 1885.005588] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1885.006266] RIP: 0033:0x7f341b7f3b62 [ 1885.006784] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1885.008989] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1885.009999] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1885.010906] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1885.011823] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1885.012725] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1885.013630] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:54 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0xaa76, &(0x7f0000000300), 0x0, 0x0) 07:17:54 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 71) 07:17:54 executing program 0: ioctl$TIOCL_GETKMSGREDIRECT(0xffffffffffffffff, 0x541c, &(0x7f0000000000)) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) 07:17:54 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 54) 07:17:54 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 73) 07:17:54 executing program 5: lseek(0xffffffffffffffff, 0x40, 0x3) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) setsockopt$inet6_MRT6_ADD_MIF(r0, 0x29, 0xca, &(0x7f0000000000)={0x101, 0x1, 0x0, 0x58, 0xe44}, 0xc) 07:17:54 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0x0) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:17:54 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x2480, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x0, 0x5e033, r1, 0x0) fork() [ 1901.435441] FAULT_INJECTION: forcing a failure. [ 1901.435441] name failslab, interval 1, probability 0, space 0, times 0 [ 1901.437710] CPU: 1 PID: 20559 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1901.439026] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1901.440600] Call Trace: [ 1901.441110] dump_stack+0x107/0x167 [ 1901.441805] should_fail.cold+0x5/0xa [ 1901.442530] ? create_object.isra.0+0x3a/0xa30 [ 1901.443391] should_failslab+0x5/0x20 [ 1901.444126] kmem_cache_alloc+0x5b/0x310 [ 1901.445290] create_object.isra.0+0x3a/0xa30 [ 1901.446383] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1901.447665] kmem_cache_alloc+0x159/0x310 [ 1901.448723] vm_area_alloc+0x1c/0x110 [ 1901.449511] mmap_region+0x982/0x1500 [ 1901.450317] do_mmap+0x868/0x1370 [ 1901.451043] vm_mmap_pgoff+0x198/0x1f0 [ 1901.451851] ? randomize_page+0xb0/0xb0 [ 1901.452696] ksys_mmap_pgoff+0x41c/0x560 [ 1901.453536] ? find_mergeable_anon_vma+0x250/0x250 [ 1901.454555] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1901.455636] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1901.456724] do_syscall_64+0x33/0x40 [ 1901.457499] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1901.458570] RIP: 0033:0x7f341b7f3b62 [ 1901.459339] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1901.463147] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1901.464743] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1901.466209] RDX: 0000000000000003 RSI: 0000000000120140 RDI: 00000000200a0000 [ 1901.467686] RBP: 00000000200a0000 R08: 0000000000000005 R09: 0000000000000000 [ 1901.469161] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1901.470641] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:54 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 72) [ 1901.624465] FAULT_INJECTION: forcing a failure. [ 1901.624465] name failslab, interval 1, probability 0, space 0, times 0 [ 1901.627556] CPU: 0 PID: 20561 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1901.629194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1901.631096] Call Trace: [ 1901.631843] dump_stack+0x107/0x167 [ 1901.632911] should_fail.cold+0x5/0xa [ 1901.633962] ? anon_vma_clone+0xdc/0x590 [ 1901.635060] should_failslab+0x5/0x20 [ 1901.636031] kmem_cache_alloc+0x5b/0x310 [ 1901.637324] anon_vma_clone+0xdc/0x590 [ 1901.638664] __split_vma+0x17c/0x4e0 [ 1901.639813] __do_munmap+0x365/0x1260 [ 1901.640889] ? arch_get_unmapped_area+0x450/0x450 [ 1901.642180] ? lock_release+0x680/0x680 [ 1901.643340] mmap_region+0x7cc/0x1500 [ 1901.644840] do_mmap+0x868/0x1370 [ 1901.646088] vm_mmap_pgoff+0x198/0x1f0 [ 1901.647312] ? randomize_page+0xb0/0xb0 [ 1901.648826] ksys_mmap_pgoff+0x41c/0x560 [ 1901.649986] ? find_mergeable_anon_vma+0x250/0x250 [ 1901.651328] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1901.652636] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1901.654063] do_syscall_64+0x33/0x40 [ 1901.655051] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1901.656295] RIP: 0033:0x7ff9de16bb62 [ 1901.657247] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1901.661250] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1901.663114] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1901.664798] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1901.666472] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1901.668143] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1901.669822] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1901.688490] FAULT_INJECTION: forcing a failure. [ 1901.688490] name failslab, interval 1, probability 0, space 0, times 0 [ 1901.691309] CPU: 0 PID: 20564 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1901.692937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1901.694835] Call Trace: [ 1901.695566] dump_stack+0x107/0x167 [ 1901.696617] should_fail.cold+0x5/0xa [ 1901.697645] ? create_object.isra.0+0x3a/0xa30 [ 1901.698830] should_failslab+0x5/0x20 [ 1901.699776] kmem_cache_alloc+0x5b/0x310 [ 1901.700830] ? mark_held_locks+0x9e/0xe0 [ 1901.702000] create_object.isra.0+0x3a/0xa30 [ 1901.703063] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1901.704453] kmem_cache_alloc+0x159/0x310 [ 1901.705709] xas_alloc+0x336/0x440 [ 1901.706752] xas_create+0x34a/0x10d0 [ 1901.707619] FAULT_INJECTION: forcing a failure. [ 1901.707619] name failslab, interval 1, probability 0, space 0, times 0 [ 1901.710344] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1901.711757] xas_store+0x8c/0x1c40 [ 1901.713119] __xa_store+0x164/0x2d0 [ 1901.714170] ? xa_delete_node+0x280/0x280 [ 1901.715474] ? trace_hardirqs_on+0x5b/0x180 [ 1901.716808] xa_store+0x31/0x50 [ 1901.717744] __io_uring_add_tctx_node+0x1cf/0x520 [ 1901.718978] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1901.720224] ? alloc_fd+0x2e7/0x670 [ 1901.721501] io_uring_setup+0x1fbb/0x2980 [ 1901.722776] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1901.724003] ? wait_for_completion_io+0x270/0x270 [ 1901.725781] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1901.727065] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1901.728484] do_syscall_64+0x33/0x40 [ 1901.729445] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1901.730680] RIP: 0033:0x7fb912e91b19 [ 1901.731610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1901.735682] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1901.737525] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1901.739186] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1901.740847] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1901.742506] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1901.744162] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1901.746367] CPU: 1 PID: 20754 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1901.747984] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1901.749779] Call Trace: [ 1901.750338] dump_stack+0x107/0x167 [ 1901.751113] should_fail.cold+0x5/0xa [ 1901.751926] ? create_object.isra.0+0x3a/0xa30 [ 1901.752904] should_failslab+0x5/0x20 [ 1901.753706] kmem_cache_alloc+0x5b/0x310 [ 1901.754583] create_object.isra.0+0x3a/0xa30 [ 1901.755490] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1901.756579] kmem_cache_alloc+0x159/0x310 [ 1901.757444] vm_area_dup+0x78/0x290 [ 1901.758220] ? mark_held_locks+0x9e/0xe0 [ 1901.759083] ? mark_lock+0xf5/0x2df0 [ 1901.759878] ? lock_chain_count+0x20/0x20 [ 1901.760762] ? __lock_acquire+0x1657/0x5b00 [ 1901.761686] ? mark_lock+0xf5/0x2df0 [ 1901.762455] ? find_held_lock+0x2c/0x110 [ 1901.763316] ? vm_area_alloc+0x110/0x110 [ 1901.764163] ? __lock_acquire+0x1657/0x5b00 [ 1901.765095] ? lock_acquire+0x197/0x470 [ 1901.765921] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1901.767026] ? SOFTIRQ_verbose+0x10/0x10 [ 1901.767880] ? vmacache_find+0x55/0x2a0 [ 1901.768804] __split_vma+0xa8/0x4e0 [ 1901.769812] __do_munmap+0x365/0x1260 [ 1901.770822] ? arch_get_unmapped_area+0x450/0x450 [ 1901.772144] ? lock_release+0x680/0x680 [ 1901.773105] mmap_region+0x7cc/0x1500 [ 1901.773951] do_mmap+0x868/0x1370 [ 1901.774711] vm_mmap_pgoff+0x198/0x1f0 [ 1901.775536] ? randomize_page+0xb0/0xb0 [ 1901.776453] ksys_mmap_pgoff+0x41c/0x560 [ 1901.777327] ? find_mergeable_anon_vma+0x250/0x250 [ 1901.778393] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1901.779511] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1901.780665] do_syscall_64+0x33/0x40 [ 1901.781453] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1901.782539] RIP: 0033:0x7f341b7f3b62 [ 1901.783342] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1901.787289] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1901.788916] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1901.790428] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1901.791943] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1901.793479] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1901.794988] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:54 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r1, r0, &(0x7f0000000180)=0x5, 0xfffffffffffffffc) setsockopt$inet6_tcp_int(r0, 0x6, 0x1b, &(0x7f0000000000)=0x4, 0x4) 07:17:54 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r0, 0x10000000) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x7, 0x7, 0x2, 0x3, 0x0, 0x4, 0x20080, 0x5, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffc0, 0x2, @perf_config_ext={0x3f, 0x9}, 0x12000, 0x7, 0x100, 0x9, 0x5, 0x9, 0xffff, 0x0, 0x4, 0x0, 0x7}, 0x0, 0x5, r0, 0x9) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:17:54 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 74) 07:17:54 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x3, 0x82) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x80010, r2, 0x10000000) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80650000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x64, 0x3, 0x1, 0x201, 0x0, 0x0, {0x7, 0x0, 0x7}, [@CTA_TUPLE_REPLY={0x38, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x2}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x8000}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x6}]}, 0x64}, 0x1, 0x0, 0x0, 0x20}, 0x4000) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x8, @remote, 0x9}, 0x1c) 07:17:54 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 55) [ 1902.079779] FAULT_INJECTION: forcing a failure. [ 1902.079779] name failslab, interval 1, probability 0, space 0, times 0 [ 1902.082838] CPU: 0 PID: 20840 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1902.084477] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1902.086416] Call Trace: [ 1902.087178] dump_stack+0x107/0x167 [ 1902.088275] should_fail.cold+0x5/0xa [ 1902.089343] ? anon_vma_clone+0xdc/0x590 [ 1902.090488] should_failslab+0x5/0x20 [ 1902.091467] kmem_cache_alloc+0x5b/0x310 [ 1902.092762] anon_vma_clone+0xdc/0x590 [ 1902.094121] __split_vma+0x17c/0x4e0 [ 1902.095275] __do_munmap+0x365/0x1260 [ 1902.096375] ? arch_get_unmapped_area+0x450/0x450 [ 1902.097677] ? lock_release+0x680/0x680 [ 1902.098856] mmap_region+0x7cc/0x1500 [ 1902.100367] do_mmap+0x868/0x1370 [ 1902.101630] vm_mmap_pgoff+0x198/0x1f0 [ 1902.102899] ? randomize_page+0xb0/0xb0 [ 1902.103479] ksys_mmap_pgoff+0x41c/0x560 [ 1902.105056] ? find_mergeable_anon_vma+0x250/0x250 [ 1902.106407] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1902.107726] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1902.109194] do_syscall_64+0x33/0x40 [ 1902.110179] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1902.111440] RIP: 0033:0x7ff9de16bb62 [ 1902.112415] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1902.116557] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1902.118465] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1902.120166] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1902.121892] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1902.123596] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1902.125302] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1902.148208] FAULT_INJECTION: forcing a failure. [ 1902.148208] name failslab, interval 1, probability 0, space 0, times 0 [ 1902.150690] CPU: 1 PID: 21009 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1902.152212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1902.154014] Call Trace: [ 1902.154610] dump_stack+0x107/0x167 [ 1902.155401] should_fail.cold+0x5/0xa [ 1902.156237] ? create_object.isra.0+0x3a/0xa30 [ 1902.157239] should_failslab+0x5/0x20 [ 1902.158072] kmem_cache_alloc+0x5b/0x310 [ 1902.158965] ? mark_held_locks+0x9e/0xe0 [ 1902.159860] create_object.isra.0+0x3a/0xa30 [ 1902.160838] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1902.161950] kmem_cache_alloc+0x159/0x310 [ 1902.162863] xas_alloc+0x336/0x440 [ 1902.163647] xas_create+0x34a/0x10d0 [ 1902.164479] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1902.165638] xas_store+0x8c/0x1c40 [ 1902.166417] __xa_store+0x164/0x2d0 [ 1902.167217] ? xa_delete_node+0x280/0x280 [ 1902.168133] ? trace_hardirqs_on+0x5b/0x180 [ 1902.169092] xa_store+0x31/0x50 [ 1902.169820] __io_uring_add_tctx_node+0x1cf/0x520 [ 1902.170879] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1902.172012] ? alloc_fd+0x2e7/0x670 [ 1902.172827] io_uring_setup+0x1fbb/0x2980 [ 1902.173735] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1902.174826] ? wait_for_completion_io+0x270/0x270 [ 1902.175909] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1902.177036] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1902.178207] do_syscall_64+0x33/0x40 [ 1902.179226] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1902.180625] RIP: 0033:0x7fb912e91b19 [ 1902.181630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1902.185851] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1902.187485] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1902.189194] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1902.190827] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1902.192372] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1902.193891] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:17:55 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x47f996689004b3e8, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) r1 = socket$packet(0x11, 0x2, 0x300) getsockopt$packet_int(r1, 0x107, 0x11, 0x0, &(0x7f00000001c0)) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) sendmsg$inet(r0, &(0x7f00000000c0)={&(0x7f0000000180)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x8004) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) setresuid(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x204b008, &(0x7f0000000440)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@posixacl}], [{@fowner_lt={'fowner<', 0xee01}}, {@permit_directio}, {@fowner_eq}, {@subj_role={'subj_role', 0x3d, '*[^'}}, {@seclabel}]}}) r2 = fcntl$dupfd(r0, 0x0, r0) sendmsg$inet6(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x8923, &(0x7f0000000000)={'sit0\x00', 0x0}) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:17:55 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0x0) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:18:09 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 75) 07:18:09 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r3 = pidfd_getfd(r2, r1, 0x0) sendmsg$inet6(r2, &(0x7f0000000380)={&(0x7f0000000000)={0xa, 0x4e21, 0x8, @remote, 0x9}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000040)="6b98c4d2ee994d41878b4f4d94b2d3dfbe0783ff1c150054", 0x18}, {&(0x7f00000000c0)="14614af6b436aba87fe5fa7d187c28f66617b80ea738697656c64f07cee960a44597db39", 0x24}, {&(0x7f0000000100)="e8c9741394724aea56d6021542ee05b4a63d9f979b6693f952d2354da50bca311b4a2ddc5feaa25a4867", 0x2a}, {&(0x7f0000000140)="8b373a5ef58e3d953d41ac3672eb506db2680d5a4334d64e6d8396eddc03f38aab10f2007f96da1397e1255be2832534f1e2ccee45893e38d3ed3a0291c863491ad100c5c40a703c99c98abfd1e4a412add7", 0x52}, {&(0x7f00000001c0)="e6562c11005ebe5bd777ac280e37528d3737bb58cf1f96b454b86c01ad6eda722604338cfddf5c79723b174ea894861caa44e17da71b60aae29ac1aed46e8a86d318d8dd70ff628102ab4e049125a3259bc6fdfafc049a3beaded712ed074226af8e5727d22e87e8177fca08607e8b2335dbff3471c7273875b9698dbabcdca7185272aadd32707b6b0fbb76376ffaefc750d1d97e506cec15108a1cf6c319d4c7ab443c236db9fc1ca26f5228724a95df25f214b914916b2db8d60e874f82614a4d1f9c1250eaabb367de0f2b97892cff5a77030ceef93b5c0cf8327a767d7f218c7d2df465faa5cc35033d7bc5afadff5a", 0xf2}], 0x5, &(0x7f0000000340)}, 0x800) mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000001, 0x10, r1, 0x8000000) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_OPENAT={0x12, 0x5, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000340)='./file0\x00', 0x81, 0xd4002, 0x12345, {0x0, r4}}, 0x7) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000000, 0x10, r3, 0x0) 07:18:09 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 73) 07:18:09 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) fork() 07:18:09 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0x0) connect$inet6(r0, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:18:09 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0xab76, &(0x7f0000000300), 0x0, 0x0) 07:18:09 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 56) 07:18:09 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0x2, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1916.373010] FAULT_INJECTION: forcing a failure. [ 1916.373010] name failslab, interval 1, probability 0, space 0, times 0 [ 1916.375323] CPU: 1 PID: 21307 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1916.376676] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1916.378282] Call Trace: [ 1916.378807] dump_stack+0x107/0x167 [ 1916.379517] should_fail.cold+0x5/0xa [ 1916.380265] ? create_object.isra.0+0x3a/0xa30 [ 1916.381154] should_failslab+0x5/0x20 [ 1916.381920] kmem_cache_alloc+0x5b/0x310 [ 1916.382714] ? mark_held_locks+0x9e/0xe0 [ 1916.383509] create_object.isra.0+0x3a/0xa30 [ 1916.384372] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1916.385373] kmem_cache_alloc+0x159/0x310 [ 1916.386195] xas_alloc+0x336/0x440 [ 1916.386891] xas_create+0x34a/0x10d0 [ 1916.387628] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1916.388671] xas_store+0x8c/0x1c40 [ 1916.389386] __xa_store+0x164/0x2d0 [ 1916.390098] ? xa_delete_node+0x280/0x280 [ 1916.390918] ? trace_hardirqs_on+0x5b/0x180 [ 1916.391765] xa_store+0x31/0x50 [ 1916.392415] __io_uring_add_tctx_node+0x1cf/0x520 [ 1916.393359] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1916.394365] ? alloc_fd+0x2e7/0x670 [ 1916.395080] io_uring_setup+0x1fbb/0x2980 [ 1916.395888] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1916.396892] ? wait_for_completion_io+0x270/0x270 [ 1916.397860] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1916.398874] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1916.399881] do_syscall_64+0x33/0x40 [ 1916.400616] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1916.401603] RIP: 0033:0x7fb912e91b19 [ 1916.402319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1916.405887] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1916.407358] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1916.408750] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1916.410141] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1916.411527] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1916.412913] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1916.477358] FAULT_INJECTION: forcing a failure. [ 1916.477358] name failslab, interval 1, probability 0, space 0, times 0 [ 1916.479495] CPU: 1 PID: 21310 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1916.480812] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1916.482370] Call Trace: [ 1916.482861] dump_stack+0x107/0x167 [ 1916.483554] should_fail.cold+0x5/0xa [ 1916.484270] ? vm_area_alloc+0x1c/0x110 [ 1916.485034] should_failslab+0x5/0x20 [ 1916.485747] kmem_cache_alloc+0x5b/0x310 [ 1916.486511] vm_area_alloc+0x1c/0x110 [ 1916.487217] mmap_region+0x982/0x1500 [ 1916.487933] do_mmap+0x868/0x1370 [ 1916.488599] vm_mmap_pgoff+0x198/0x1f0 [ 1916.489327] ? randomize_page+0xb0/0xb0 [ 1916.490090] ksys_mmap_pgoff+0x41c/0x560 [ 1916.490855] ? find_mergeable_anon_vma+0x250/0x250 [ 1916.491770] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1916.492755] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1916.493714] do_syscall_64+0x33/0x40 [ 1916.494406] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1916.495344] RIP: 0033:0x7ff9de16bb62 [ 1916.496029] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1916.499452] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1916.500871] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1916.502186] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1916.503497] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1916.504815] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1916.506123] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1916.520545] FAULT_INJECTION: forcing a failure. [ 1916.520545] name failslab, interval 1, probability 0, space 0, times 0 [ 1916.525269] CPU: 0 PID: 21298 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1916.527176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1916.529411] Call Trace: [ 1916.530261] dump_stack+0x107/0x167 [ 1916.531486] should_fail.cold+0x5/0xa [ 1916.532667] ? anon_vma_clone+0xdc/0x590 [ 1916.533875] should_failslab+0x5/0x20 [ 1916.534994] kmem_cache_alloc+0x5b/0x310 [ 1916.536436] anon_vma_clone+0xdc/0x590 [ 1916.537946] __split_vma+0x17c/0x4e0 [ 1916.539191] __do_munmap+0x365/0x1260 [ 1916.540409] ? arch_get_unmapped_area+0x450/0x450 [ 1916.541851] ? lock_release+0x680/0x680 [ 1916.543149] mmap_region+0x7cc/0x1500 [ 1916.544831] do_mmap+0x868/0x1370 [ 1916.546209] vm_mmap_pgoff+0x198/0x1f0 [ 1916.547599] ? randomize_page+0xb0/0xb0 [ 1916.549307] ksys_mmap_pgoff+0x41c/0x560 [ 1916.550622] ? find_mergeable_anon_vma+0x250/0x250 [ 1916.552089] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1916.553525] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1916.555098] do_syscall_64+0x33/0x40 [ 1916.556183] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1916.557575] RIP: 0033:0x7f341b7f3b62 [ 1916.558606] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1916.563181] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1916.565276] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1916.567106] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1916.569004] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1916.570884] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1916.572739] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:18:09 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000004c0)='fd\x00') getdents(r1, &(0x7f0000000000)=""/158, 0x18) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x440840, 0x0) setsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000100)={0x77359400}, 0x10) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) 07:18:09 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 74) 07:18:09 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 76) [ 1916.782859] FAULT_INJECTION: forcing a failure. [ 1916.782859] name failslab, interval 1, probability 0, space 0, times 0 [ 1916.784646] CPU: 1 PID: 21553 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1916.785685] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1916.786923] Call Trace: [ 1916.787327] dump_stack+0x107/0x167 [ 1916.787875] should_fail.cold+0x5/0xa [ 1916.788464] ? create_object.isra.0+0x3a/0xa30 [ 1916.789150] should_failslab+0x5/0x20 [ 1916.789721] kmem_cache_alloc+0x5b/0x310 [ 1916.790336] create_object.isra.0+0x3a/0xa30 [ 1916.790990] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1916.791742] kmem_cache_alloc+0x159/0x310 [ 1916.792379] anon_vma_clone+0xdc/0x590 [ 1916.792962] __split_vma+0x17c/0x4e0 [ 1916.793515] __do_munmap+0x365/0x1260 [ 1916.794088] ? arch_get_unmapped_area+0x450/0x450 [ 1916.794818] ? lock_release+0x680/0x680 [ 1916.795415] mmap_region+0x7cc/0x1500 [ 1916.795988] do_mmap+0x868/0x1370 [ 1916.796512] vm_mmap_pgoff+0x198/0x1f0 [ 1916.797089] ? randomize_page+0xb0/0xb0 [ 1916.797685] ksys_mmap_pgoff+0x41c/0x560 [ 1916.798281] ? find_mergeable_anon_vma+0x250/0x250 [ 1916.799006] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1916.799774] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1916.800545] do_syscall_64+0x33/0x40 [ 1916.801092] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1916.801845] RIP: 0033:0x7f341b7f3b62 [ 1916.802400] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1916.805116] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1916.806237] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1916.807281] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1916.808335] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1916.809387] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1916.810437] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:18:09 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 57) 07:18:09 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() [ 1916.888318] FAULT_INJECTION: forcing a failure. [ 1916.888318] name failslab, interval 1, probability 0, space 0, times 0 [ 1916.889938] CPU: 1 PID: 21626 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1916.890896] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1916.892061] Call Trace: [ 1916.892448] dump_stack+0x107/0x167 [ 1916.892961] should_fail.cold+0x5/0xa [ 1916.893497] ? xas_alloc+0x336/0x440 [ 1916.894012] should_failslab+0x5/0x20 [ 1916.894535] kmem_cache_alloc+0x5b/0x310 [ 1916.895101] xas_alloc+0x336/0x440 [ 1916.895596] xas_create+0x34a/0x10d0 [ 1916.896120] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1916.896874] xas_store+0x8c/0x1c40 [ 1916.897381] __xa_store+0x164/0x2d0 [ 1916.897884] ? xa_delete_node+0x280/0x280 [ 1916.898469] ? trace_hardirqs_on+0x5b/0x180 [ 1916.899071] xa_store+0x31/0x50 [ 1916.899529] __io_uring_add_tctx_node+0x1cf/0x520 [ 1916.900185] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1916.900912] ? alloc_fd+0x2e7/0x670 [ 1916.901418] io_uring_setup+0x1fbb/0x2980 [ 1916.902005] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1916.902698] ? wait_for_completion_io+0x270/0x270 [ 1916.903374] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1916.904092] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1916.904809] do_syscall_64+0x33/0x40 [ 1916.905319] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1916.906028] RIP: 0033:0x7fb912e91b19 [ 1916.906539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1916.909105] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1916.910153] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1916.911127] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1916.912099] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1916.913082] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1916.914062] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:18:09 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0xa, &(0x7f0000000040)=0x6, 0x4) r2 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x2a000, 0x0) pidfd_getfd(r4, r2, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r3, 0x6, 0xe, &(0x7f00000000c0)={@in={{0x2, 0x4e20, @multicast2}}, 0x0, 0x0, 0x2e, 0x0, "67f10e2b444bf0dd453348ca152c3c21eee0c8e6457cf0f5df4bde2296e8e34452696fedaf1d3b2dbf401914bfd9ced276d4763f1938ef5bd2c97525781844236d312b0d8e5d17f506d31eb80cc5b358"}, 0xd8) 07:18:09 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 75) [ 1916.987400] FAULT_INJECTION: forcing a failure. [ 1916.987400] name failslab, interval 1, probability 0, space 0, times 0 [ 1916.990495] CPU: 0 PID: 21574 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1916.992244] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1916.994298] Call Trace: [ 1916.995115] dump_stack+0x107/0x167 [ 1916.996270] should_fail.cold+0x5/0xa [ 1916.997370] ? create_object.isra.0+0x3a/0xa30 [ 1916.998630] should_failslab+0x5/0x20 [ 1916.999625] kmem_cache_alloc+0x5b/0x310 [ 1917.000953] create_object.isra.0+0x3a/0xa30 [ 1917.002075] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1917.003559] kmem_cache_alloc+0x159/0x310 [ 1917.004956] vm_area_alloc+0x1c/0x110 [ 1917.006032] mmap_region+0x982/0x1500 [ 1917.007607] do_mmap+0x868/0x1370 [ 1917.008950] vm_mmap_pgoff+0x198/0x1f0 [ 1917.010267] ? randomize_page+0xb0/0xb0 [ 1917.011867] ksys_mmap_pgoff+0x41c/0x560 [ 1917.013102] ? find_mergeable_anon_vma+0x250/0x250 [ 1917.014538] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1917.015959] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1917.017483] do_syscall_64+0x33/0x40 [ 1917.018524] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.019762] RIP: 0033:0x7ff9de16bb62 [ 1917.020731] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1917.025145] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1917.027100] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1917.028863] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1917.030609] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1917.032264] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1917.033931] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1917.091098] FAULT_INJECTION: forcing a failure. [ 1917.091098] name failslab, interval 1, probability 0, space 0, times 0 [ 1917.092607] CPU: 1 PID: 21663 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1917.093490] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.094555] Call Trace: [ 1917.094894] dump_stack+0x107/0x167 [ 1917.095361] should_fail.cold+0x5/0xa [ 1917.095839] ? vm_area_alloc+0x1c/0x110 [ 1917.096336] should_failslab+0x5/0x20 [ 1917.096853] kmem_cache_alloc+0x5b/0x310 [ 1917.097355] vm_area_alloc+0x1c/0x110 [ 1917.097811] mmap_region+0x982/0x1500 [ 1917.098281] do_mmap+0x868/0x1370 [ 1917.098707] vm_mmap_pgoff+0x198/0x1f0 [ 1917.099180] ? randomize_page+0xb0/0xb0 [ 1917.099667] ksys_mmap_pgoff+0x41c/0x560 [ 1917.100157] ? find_mergeable_anon_vma+0x250/0x250 [ 1917.100767] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1917.101400] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1917.102023] do_syscall_64+0x33/0x40 [ 1917.102466] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.103085] RIP: 0033:0x7f341b7f3b62 [ 1917.103529] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1917.105731] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1917.106643] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1917.107494] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1917.108343] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1917.109202] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1917.110055] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:18:09 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 58) 07:18:09 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:18:10 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000000c0)={@in={{0x2, 0x4e22, @loopback}}, 0x0, 0x0, 0x3f, 0x0, "526c35912c543f58419bf7ad8c43bb6f39b8e2f8819b6075899b1db3e6f812f99bac8ac7b3898d867cf5788db1a628b00d2fa6f7f38aa739d059300faf2adc7712601e1fdb70059f7e40fad9faaffb1c"}, 0xd8) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN(r1, 0x4040942c, &(0x7f0000000000)={0x0, 0x401, [0x4, 0x2, 0x7, 0x1000, 0x1, 0x5]}) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080), 0x4) r3 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x3062, 0x0, 0x4000000, 0x7a}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000005, 0x20010, r3, 0x0) syz_io_uring_submit(r5, r2, &(0x7f0000000440)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x2) r6 = pidfd_getfd(r4, r3, 0x0) syz_io_uring_setup(0x71df, &(0x7f0000000280)={0x0, 0x5530, 0x20, 0x1, 0x36, 0x0, r6}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000540)) sendmsg$AUDIT_USER_AVC(r6, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="a00000005304000125bd7000fddbdf252634d0b49824b5463a4b2857fc98cdaa9c0bd4744320fb0e7c7e60ab1fbe21ccc3b1f34b3a3e4f6b313f4aec22647053c0db1e8a10a386b7f94a8971a1af99310af0cd701a070a1095c63e5f145a3274f5e2a5b3c1a19149b6d7b8e0f71c99f524929fa5a9d9f48638373456e7815646675842f5fe6e95cf78997d6262ef7eaa4daff6455028d6ce34cd794c83000000"], 0xa0}, 0x1, 0x0, 0x0, 0x400c815}, 0x4401c) setsockopt$inet6_tcp_int(r4, 0x6, 0x11, &(0x7f0000000500)=0x800, 0x4) [ 1917.254961] FAULT_INJECTION: forcing a failure. [ 1917.254961] name failslab, interval 1, probability 0, space 0, times 0 [ 1917.257694] CPU: 0 PID: 21732 Comm: syz-executor.1 Not tainted 5.10.246 #1 [ 1917.259336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.261416] Call Trace: [ 1917.262306] dump_stack+0x107/0x167 [ 1917.263481] should_fail.cold+0x5/0xa [ 1917.264736] ? create_object.isra.0+0x3a/0xa30 [ 1917.266013] should_failslab+0x5/0x20 [ 1917.266950] kmem_cache_alloc+0x5b/0x310 [ 1917.267958] ? mark_held_locks+0x9e/0xe0 [ 1917.269136] create_object.isra.0+0x3a/0xa30 [ 1917.270190] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1917.271554] kmem_cache_alloc+0x159/0x310 [ 1917.272791] xas_alloc+0x336/0x440 [ 1917.274017] xas_create+0x34a/0x10d0 [ 1917.275294] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1917.276683] xas_store+0x8c/0x1c40 [ 1917.278022] __xa_store+0x164/0x2d0 [ 1917.279050] ? xa_delete_node+0x280/0x280 [ 1917.280337] ? trace_hardirqs_on+0x5b/0x180 [ 1917.281660] xa_store+0x31/0x50 [ 1917.282588] __io_uring_add_tctx_node+0x1cf/0x520 [ 1917.283795] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1917.285015] ? alloc_fd+0x2e7/0x670 [ 1917.286260] io_uring_setup+0x1fbb/0x2980 [ 1917.287517] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1917.288701] ? wait_for_completion_io+0x270/0x270 [ 1917.290444] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1917.291692] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1917.293076] do_syscall_64+0x33/0x40 [ 1917.294014] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.295220] RIP: 0033:0x7fb912e91b19 [ 1917.296134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1917.299567] loop6: detected capacity change from 0 to 67108864 [ 1917.300019] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1917.302527] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1917.304179] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1917.305808] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1917.307413] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1917.309035] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:18:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 76) 07:18:10 executing program 3: r0 = syz_io_uring_setup(0x1c28, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x4000000, 0x327}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/tty/drivers\x00', 0x0, 0x0) pidfd_getfd(r1, r0, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000000080)={'syztnl2\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x29, 0xf, 0x1, 0x7, 0x52, @mcast1, @mcast1, 0x40, 0x8000, 0x9, 0xfffffe00}}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) fork() 07:18:10 executing program 7: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), 0x0) (fail_nth: 77) 07:18:10 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0xac76, &(0x7f0000000300), 0x0, 0x0) [ 1917.415231] FAULT_INJECTION: forcing a failure. [ 1917.415231] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1917.416746] CPU: 1 PID: 21851 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1917.417549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.418501] Call Trace: [ 1917.418818] dump_stack+0x107/0x167 [ 1917.419242] should_fail.cold+0x5/0xa [ 1917.419683] __alloc_pages_nodemask+0x182/0x600 [ 1917.420221] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1917.420927] ? walk_mem_res+0x170/0x170 [ 1917.421391] alloc_pages_current+0x187/0x280 [ 1917.421899] pte_alloc_one+0x16/0x1a0 [ 1917.422340] __pte_alloc+0x1d/0x330 [ 1917.422768] remap_pfn_range_internal+0x9a3/0xf60 [ 1917.423327] ? lookup_memtype+0x5b/0x200 [ 1917.423804] ? apply_to_existing_page_range+0x40/0x40 [ 1917.424408] remap_pfn_range+0xcd/0x160 [ 1917.424872] ? remap_pfn_range_notrack+0x70/0x70 [ 1917.425422] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1917.426021] io_uring_mmap+0x398/0x530 [ 1917.426475] mmap_file+0x5e/0xe0 [ 1917.426869] mmap_region+0xc4d/0x1500 [ 1917.427319] do_mmap+0x868/0x1370 [ 1917.427730] vm_mmap_pgoff+0x198/0x1f0 [ 1917.428180] ? randomize_page+0xb0/0xb0 [ 1917.428655] ksys_mmap_pgoff+0x41c/0x560 [ 1917.429123] ? find_mergeable_anon_vma+0x250/0x250 [ 1917.429688] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1917.430292] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1917.430886] do_syscall_64+0x33/0x40 [ 1917.431313] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.431907] RIP: 0033:0x7ff9de16bb62 [ 1917.432337] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1917.434455] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1917.435332] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1917.436145] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1917.436970] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1917.437789] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1917.438610] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1917.574684] FAULT_INJECTION: forcing a failure. [ 1917.574684] name failslab, interval 1, probability 0, space 0, times 0 [ 1917.578308] CPU: 0 PID: 21850 Comm: syz-executor.2 Not tainted 5.10.246 #1 [ 1917.579875] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.581735] Call Trace: [ 1917.582457] dump_stack+0x107/0x167 [ 1917.583493] should_fail.cold+0x5/0xa 07:18:10 executing program 5: socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x2, 0x2000, @fd_index=0xf6a, 0x4, 0x6, 0x5, 0x4, 0x1, {0x1}}, 0x1f) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/wakeup_count', 0x20000, 0x1d9) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) read(r0, &(0x7f0000000000)=""/63, 0x3f) [ 1917.584538] ? create_object.isra.0+0x3a/0xa30 [ 1917.585711] should_failslab+0x5/0x20 [ 1917.586637] kmem_cache_alloc+0x5b/0x310 [ 1917.588026] create_object.isra.0+0x3a/0xa30 [ 1917.589267] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1917.590708] kmem_cache_alloc+0x159/0x310 [ 1917.591941] vm_area_alloc+0x1c/0x110 [ 1917.592998] mmap_region+0x982/0x1500 [ 1917.594650] do_mmap+0x868/0x1370 [ 1917.596154] vm_mmap_pgoff+0x198/0x1f0 [ 1917.597363] ? randomize_page+0xb0/0xb0 [ 1917.598820] ksys_mmap_pgoff+0x41c/0x560 [ 1917.600028] ? find_mergeable_anon_vma+0x250/0x250 [ 1917.601502] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1917.602974] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1917.604383] do_syscall_64+0x33/0x40 [ 1917.605318] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.606500] RIP: 0033:0x7f341b7f3b62 [ 1917.607407] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1917.611208] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1917.613311] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1917.615068] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1917.616641] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1917.618199] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1917.619764] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1917.658906] ------------[ cut here ]------------ [ 1917.659666] WARNING: CPU: 1 PID: 21851 at arch/x86/mm/pat/memtype.c:1019 get_pat_info+0x216/0x270 [ 1917.660724] Modules linked in: [ 1917.661108] CPU: 1 PID: 21851 Comm: syz-executor.7 Not tainted 5.10.246 #1 [ 1917.661958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.662963] RIP: 0010:get_pat_info+0x216/0x270 [ 1917.663499] Code: c1 ea 03 80 3c 02 00 75 71 49 89 1e eb 8e e8 31 89 2e 00 0f 0b e9 97 fe ff ff 41 bc ea ff ff ff e9 77 ff ff ff e8 1a 89 2e 00 <0f> 0b 41 bc ea ff ff ff e9 65 ff ff ff 4c 89 ff e8 a5 a2 5a 00 e9 [ 1917.665664] RSP: 0018:ffff888045ea7890 EFLAGS: 00010212 [ 1917.666290] RAX: 0000000000014e2d RBX: ffff888043a7e900 RCX: ffffc90008033000 [ 1917.667231] RDX: 0000000000040000 RSI: ffffffff81124466 RDI: 0000000000000007 [ 1917.668424] RBP: ffff888045ea7948 R08: 0000000000000000 R09: ffff888045ea7818 [ 1917.669281] R10: 0000000000000020 R11: 0000000000000001 R12: 0000000000000028 [ 1917.670143] R13: 1ffff11008bd4f12 R14: 0000000000000000 R15: ffff888043a7e950 [ 1917.671003] FS: 00007ff9db6e1700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 1917.671975] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1917.672673] CR2: 00007f4e0f134450 CR3: 0000000048f28000 CR4: 0000000000350ee0 [ 1917.673509] Call Trace: [ 1917.673848] ? pgprot_writethrough+0xc0/0xc0 [ 1917.674361] ? finish_task_switch+0x126/0x5d0 [ 1917.675338] ? finish_task_switch+0xef/0x5d0 [ 1917.676245] untrack_pfn+0xdc/0x240 [ 1917.677090] ? track_pfn_insert+0x150/0x150 [ 1917.677854] ? lock_downgrade+0x6d0/0x6d0 [ 1917.678678] ? uprobe_munmap+0x95/0x560 [ 1917.679426] unmap_single_vma+0x1bc/0x300 [ 1917.680229] zap_page_range_single+0x2ce/0x450 [ 1917.681213] ? unmap_single_vma+0x300/0x300 [ 1917.682114] ? remap_pfn_range_internal+0xc56/0xf60 [ 1917.683577] ? lookup_memtype+0x5b/0x200 [ 1917.684630] ? apply_to_existing_page_range+0x40/0x40 [ 1917.685740] remap_pfn_range+0x139/0x160 [ 1917.686734] ? remap_pfn_range_notrack+0x70/0x70 [ 1917.687722] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1917.688772] io_uring_mmap+0x398/0x530 [ 1917.689230] mmap_file+0x5e/0xe0 [ 1917.689640] mmap_region+0xc4d/0x1500 [ 1917.690102] do_mmap+0x868/0x1370 [ 1917.690511] vm_mmap_pgoff+0x198/0x1f0 [ 1917.691004] ? randomize_page+0xb0/0xb0 [ 1917.691472] ksys_mmap_pgoff+0x41c/0x560 [ 1917.691961] ? find_mergeable_anon_vma+0x250/0x250 [ 1917.692555] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1917.693159] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1917.693773] do_syscall_64+0x33/0x40 [ 1917.694205] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.694809] RIP: 0033:0x7ff9de16bb62 [ 1917.695239] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1917.697385] RSP: 002b:00007ff9db6e10f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1917.698277] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007ff9de16bb62 [ 1917.699116] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1917.699953] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1917.700799] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000000000000 [ 1917.701630] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1917.702465] irq event stamp: 1203 [ 1917.702889] hardirqs last enabled at (1213): [] console_unlock+0x92d/0xb40 [ 1917.703891] hardirqs last disabled at (1222): [] console_unlock+0x839/0xb40 [ 1917.704910] softirqs last enabled at (678): [] asm_call_irq_on_stack+0x12/0x20 [ 1917.705951] softirqs last disabled at (601): [] asm_call_irq_on_stack+0x12/0x20 [ 1917.706989] ---[ end trace 0fbdb7a42aead742 ]--- 07:18:10 executing program 3: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x872, 0x0, @perf_bp={&(0x7f00000000c0), 0x2}, 0x0, 0x0, 0x2, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x5e033, 0xffffffffffffffff, 0x0) 07:18:10 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0xa, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @empty, 0x2}, 0x1c) setsockopt$sock_timeval(r0, 0x1, 0x43, &(0x7f0000000040)={0x0, 0xea60}, 0x10) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000001100)) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000200)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000280)=0x80, 0xc0c00) connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x0, 0x0, @private0}, 0x1c) getdents64(0xffffffffffffffff, 0x0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x4e24, 0x53e, @private0={0xfc, 0x0, '\x00', 0x1}}, 0x1c) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x470202, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000340)={'bridge_slave_1\x00', {0x2, 0x0, @dev}}) 07:18:10 executing program 2: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 77) 07:18:10 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x8126, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) (fail_nth: 59) [ 1917.769215] FAULT_INJECTION: forcing a failure. [ 1917.769215] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1917.770634] CPU: 1 PID: 22162 Comm: syz-executor.2 Tainted: G W 5.10.246 #1 [ 1917.771579] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.772543] Call Trace: [ 1917.772845] dump_stack+0x107/0x167 [ 1917.773264] should_fail.cold+0x5/0xa [ 1917.773708] __alloc_pages_nodemask+0x182/0x600 [ 1917.774245] ? __alloc_pages_slowpath.constprop.0+0x2310/0x2310 [ 1917.774939] ? walk_mem_res+0x170/0x170 [ 1917.775408] alloc_pages_current+0x187/0x280 [ 1917.775925] pte_alloc_one+0x16/0x1a0 [ 1917.776371] __pte_alloc+0x1d/0x330 [ 1917.776791] remap_pfn_range_internal+0x9a3/0xf60 [ 1917.777353] ? lookup_memtype+0x5b/0x200 [ 1917.777828] ? apply_to_existing_page_range+0x40/0x40 [ 1917.778428] remap_pfn_range+0xcd/0x160 [ 1917.778887] ? remap_pfn_range_notrack+0x70/0x70 [ 1917.779437] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1917.780047] io_uring_mmap+0x398/0x530 [ 1917.780513] mmap_file+0x5e/0xe0 [ 1917.780905] mmap_region+0xc4d/0x1500 [ 1917.781347] do_mmap+0x868/0x1370 [ 1917.781751] vm_mmap_pgoff+0x198/0x1f0 [ 1917.782197] ? randomize_page+0xb0/0xb0 [ 1917.782659] ksys_mmap_pgoff+0x41c/0x560 [ 1917.783133] ? find_mergeable_anon_vma+0x250/0x250 [ 1917.783714] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1917.784312] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1917.784908] do_syscall_64+0x33/0x40 [ 1917.785333] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.785914] RIP: 0033:0x7f341b7f3b62 [ 1917.786337] Code: 00 00 00 00 00 0f 1f 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 3b 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 5b 5d c3 0f 1f 00 48 c7 c0 bc ff ff ff 64 [ 1917.788472] RSP: 002b:00007f3418d690f8 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 1917.789345] RAX: ffffffffffffffda RBX: 0000000000008011 RCX: 00007f341b7f3b62 [ 1917.790164] RDX: 0000000000000003 RSI: 0000000000200000 RDI: 0000000020ffc000 [ 1917.790985] RBP: 0000000020ffc000 R08: 0000000000000005 R09: 0000000010000000 [ 1917.791803] R10: 0000000000008011 R11: 0000000000000206 R12: 0000000020000140 [ 1917.792632] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 07:18:10 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000000)=0x6, 0x4) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x9, &(0x7f0000000080)=0x1, 0x4) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x100000) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000016140), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000016580)={0x0, 0x0, &(0x7f0000016540)={&(0x7f0000000040)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x9}]}, 0x34}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000000c0)) [ 1917.833412] FAULT_INJECTION: forcing a failure. [ 1917.833412] name failslab, interval 1, probability 0, space 0, times 0 [ 1917.834739] CPU: 1 PID: 22193 Comm: syz-executor.1 Tainted: G W 5.10.246 #1 [ 1917.835689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1917.836641] Call Trace: [ 1917.836952] dump_stack+0x107/0x167 [ 1917.837375] should_fail.cold+0x5/0xa [ 1917.837820] ? xas_alloc+0x336/0x440 [ 1917.838248] should_failslab+0x5/0x20 [ 1917.838694] kmem_cache_alloc+0x5b/0x310 [ 1917.839164] xas_alloc+0x336/0x440 [ 1917.839577] xas_create+0x34a/0x10d0 [ 1917.840022] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1917.840638] xas_store+0x8c/0x1c40 [ 1917.841057] __xa_store+0x164/0x2d0 [ 1917.841477] ? xa_delete_node+0x280/0x280 [ 1917.841960] ? trace_hardirqs_on+0x5b/0x180 [ 1917.842461] xa_store+0x31/0x50 [ 1917.842845] __io_uring_add_tctx_node+0x1cf/0x520 [ 1917.843401] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1917.844007] ? alloc_fd+0x2e7/0x670 [ 1917.844435] io_uring_setup+0x1fbb/0x2980 [ 1917.844918] ? __do_sys_io_uring_enter+0x1890/0x1890 [ 1917.845503] ? wait_for_completion_io+0x270/0x270 [ 1917.846078] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1917.846682] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1917.847276] do_syscall_64+0x33/0x40 [ 1917.847703] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1917.848291] RIP: 0033:0x7fb912e91b19 [ 1917.848724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1917.850855] RSP: 002b:00007fb910407108 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9 [ 1917.851733] RAX: ffffffffffffffda RBX: 00007fb912fa4f60 RCX: 00007fb912e91b19 [ 1917.852564] RDX: 0000000020ffc000 RSI: 00000000200002c0 RDI: 0000000000004d4f [ 1917.853385] RBP: 00000000200002c0 R08: 0000000020000140 R09: 0000000020000140 [ 1917.854209] R10: 0000000020000200 R11: 0000000000000202 R12: 0000000020000140 [ 1917.855028] R13: 0000000020ffc000 R14: 0000000020000200 R15: 00000000200a0000 [ 1918.108392] loop6: detected capacity change from 0 to 67108864 VM DIAGNOSIS: 07:18:10 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff888009233dc8 RCX=0000000000000000 RDX=1ffff110012467c2 RSI=0000000000000004 RDI=ffff888009233e14 RBP=0000000000000000 RSP=ffff88803ee278f8 R8 =0000000000000001 R9 =0000000000050000 R10=0000000000000005 R11=0000000000000001 R12=ffff888009233480 R13=ffff888009233df0 R14=ffff88800cdbc028 R15=0000000000050000 RIP=ffffffff8126e9ff RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00005555918e7400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffe6ea32d68 CR3=000000003ee1c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=000004f8000000060000034000000270 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff822e5bcc RDI=ffffffff879f8240 RBP=ffffffff879f8200 RSP=ffff888045ea7280 R8 =0000000000000001 R9 =0000000000000003 R10=ffffed1008bd4e41 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=0000000000000001 R15=ffffffff879f8250 RIP=ffffffff822e5c20 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff9db6e1700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f4e0f134450 CR3=0000000048f28000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f4eb110c7c000007f4eb110c7c8 XMM02=00007f4eb110c7e000007f4eb110c7c0 XMM03=00007f4eb110c7c800007f4eb110c7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000